Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
File:                     XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft (raw, json)
Hash identifier:          kCCZhXnqB7hZu2uWP4ORo0efDY3kYCEjR1LWxBpgN14=
Subject key identifier:   6F:09:57:25:12:C1:E6:E5:28:E7:12:B9:10:36:49:2C:86:28:12:2B
Authority key identifier: 5E:55:AF:DE:34:21:1B:CE:E6:A7:FD:99:24:88:A2:49:27:B4:69:47
Certificate issuer:       /CN=5e55afde34211bcee6a7fd992488a24927b46947
Certificate serial:       0198D583E9F9B3A23AF207C3F24708953641
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
Manifest number:          0293
Signing time:             Sat 23 Aug 2025 06:00:48 +0000
Manifest this update:     Sat 23 Aug 2025 06:00:48 +0000
Manifest next update:     Sun 24 Aug 2025 06:00:48 +0000
Files and hashes:         1: XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl (hash: k11U8CsKTg+ZQguYczmtb0vUksIjvqSGhLYiKnJKpDY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:83:e9:f9:b3:a2:3a:f2:07:c3:f2:47:08:95:36:41
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5e55afde34211bcee6a7fd992488a24927b46947
        Validity
            Not Before: Aug 23 06:00:48 2025 GMT
            Not After : Aug 24 06:00:48 2025 GMT
        Subject: CN=6f09572512c1e6e528e712b91036492c8628122b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:50:67:7c:58:d3:10:bc:e3:b3:f9:03:a9:76:
                    96:20:22:c2:f5:c3:3f:d2:a0:50:be:71:eb:48:e8:
                    40:2f:1e:2e:69:5b:27:00:5f:a2:49:57:e9:1f:83:
                    5b:f1:5e:63:6c:0c:d6:c1:02:77:9d:07:54:4f:32:
                    a8:a1:e0:73:a4:bf:da:f1:54:26:13:ec:92:9d:d1:
                    e7:a0:67:19:63:ff:74:66:fd:8d:c1:bf:d6:57:57:
                    06:6a:ec:c3:22:ed:9f:aa:fe:23:02:3e:2e:86:e1:
                    9c:42:0c:7c:8a:ee:71:2e:42:0d:d2:e5:17:43:91:
                    8b:cd:58:49:ee:4d:32:62:48:1c:34:af:8c:d9:4a:
                    f9:f0:fe:17:1a:9a:eb:e2:38:81:e4:fb:af:d2:ef:
                    16:51:0b:2e:d8:c9:02:b5:6a:1c:06:bd:c7:fc:38:
                    f1:62:d5:64:e7:85:47:6d:5d:e0:fa:d8:c4:1a:f5:
                    9d:c0:39:5b:f7:1e:36:a8:2e:9a:cd:21:7c:c9:61:
                    13:e1:9d:d2:17:12:f0:34:cd:1e:e6:a2:16:c5:92:
                    db:2e:44:31:57:af:a8:af:36:4e:40:2c:31:f9:fa:
                    9d:94:c8:3b:2e:14:9d:fa:f0:4a:62:69:61:ea:78:
                    6a:a1:50:e0:ee:b0:77:ac:89:56:18:99:8a:a5:07:
                    6d:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:09:57:25:12:C1:E6:E5:28:E7:12:B9:10:36:49:2C:86:28:12:2B
            X509v3 Authority Key Identifier:
                keyid:5E:55:AF:DE:34:21:1B:CE:E6:A7:FD:99:24:88:A2:49:27:B4:69:47

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XlWv3jQhG87mp_2ZJIiiSSe0aUc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d28ac8-f6b8-4b47-ba93-de7b41678b6f/1/XlWv3jQhG87mp_2ZJIiiSSe0aUc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a0:d4:9b:3e:e0:69:00:c1:51:67:77:96:51:4e:cd:25:9d:40:
         4d:5c:f1:60:37:8b:65:1d:35:f6:d3:c8:f0:ab:96:e9:54:4b:
         d2:9e:e7:4c:0c:1b:d7:2a:f0:75:a1:9b:d9:54:ce:92:a9:96:
         f1:e7:5c:57:84:cc:14:07:a5:61:56:af:3e:3d:10:6d:e7:a9:
         14:0b:9f:91:b4:c2:0c:48:09:7b:fb:9e:c0:c4:fa:6b:ca:04:
         db:9c:ca:f2:7f:a3:b8:ca:e4:29:d1:40:75:c5:22:07:b6:9b:
         64:56:3c:5a:a6:c0:d8:5f:62:09:f5:4e:8f:99:6b:7a:90:92:
         7d:ed:64:c2:90:39:8e:4d:97:b0:60:0a:0e:bd:39:bb:6a:20:
         04:ae:91:cc:0d:9e:91:81:f3:39:9e:48:b3:e6:2f:48:98:62:
         4e:e3:8f:0d:b4:93:5b:0e:80:83:9a:49:8e:f9:fe:a2:ef:4b:
         e6:18:c4:f6:1d:c4:a0:f4:cc:aa:ad:d4:4c:b0:0f:f6:0f:dc:
         4c:4d:71:e9:8b:37:df:60:a4:51:70:ec:19:62:46:e5:bd:b2:
         7e:17:09:ab:54:d3:59:13:e5:9e:c7:12:c9:d5:68:f6:fb:04:
         b4:dc:4c:1c:92:a3:c7:cb:0e:83:31:05:f1:13:60:e1:02:28:
         53:40:77:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg+n5s6I68gfD8kcIlTZBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVlNTVhZmRlMzQyMTFiY2VlNmE3ZmQ5OTI0ODhhMjQ5Mjdi
NDY5NDcwHhcNMjUwODIzMDYwMDQ4WhcNMjUwODI0MDYwMDQ4WjAzMTEwLwYDVQQD
Eyg2ZjA5NTcyNTEyYzFlNmU1MjhlNzEyYjkxMDM2NDkyYzg2MjgxMjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn1BnfFjTELzjs/kDqXaWICLC9cM/
0qBQvnHrSOhALx4uaVsnAF+iSVfpH4Nb8V5jbAzWwQJ3nQdUTzKooeBzpL/a8VQm
E+ySndHnoGcZY/90Zv2Nwb/WV1cGauzDIu2fqv4jAj4uhuGcQgx8iu5xLkIN0uUX
Q5GLzVhJ7k0yYkgcNK+M2Ur58P4XGprr4jiB5Puv0u8WUQsu2MkCtWocBr3H/Djx
YtVk54VHbV3g+tjEGvWdwDlb9x42qC6azSF8yWET4Z3SFxLwNM0e5qIWxZLbLkQx
V6+orzZOQCwx+fqdlMg7LhSd+vBKYmlh6nhqoVDg7rB3rIlWGJmKpQdthwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG8JVyUSweblKOcSuRA2SSyGKBIrMB8GA1UdIwQY
MBaAFF5Vr940IRvO5qf9mSSIokkntGlHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWGxXdjNqUWhHODdtcF8yWkpJaWlTU2UwYVVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYS9kMjhhYzgtZjZiOC00YjQ3LWJhOTMt
ZGU3YjQxNjc4YjZmLzEvWGxXdjNqUWhHODdtcF8yWkpJaWlTU2UwYVVjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYS9kMjhhYzgtZjZiOC00YjQ3LWJhOTMtZGU3YjQxNjc4YjZm
LzEvWGxXdjNqUWhHODdtcF8yWkpJaWlTU2UwYVVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoNSbPuBp
AMFRZ3eWUU7NJZ1ATVzxYDeLZR019tPI8KuW6VRL0p7nTAwb1yrwdaGb2VTOkqmW
8edcV4TMFAelYVavPj0QbeepFAufkbTCDEgJe/uewMT6a8oE25zK8n+juMrkKdFA
dcUiB7abZFY8WqbA2F9iCfVOj5lrepCSfe1kwpA5jk2XsGAKDr05u2ogBK6RzA2e
kYHzOZ5Is+YvSJhiTuOPDbSTWw6Ag5pJjvn+ou9L5hjE9h3EoPTMqq3UTLAP9g/c
TE1x6Ys332CkUXDsGWJG5b2yfhcJq1TTWRPlnscSydVo9vsEtNxMHJKjx8sOgzEF
8RNg4QIoU0B3tA==
-----END CERTIFICATE-----