Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.mft
File:                     i5epFTYKSH1c9dXGZeW_4f_1Np8.mft (raw, json)
Hash identifier:          boiRgTkuURpThYEvy4Gd+yGz5hwvrfJ3tGrRluBMix0=
Subject key identifier:   5C:A3:BE:3B:B9:F9:62:64:1C:A2:0F:15:C1:96:38:AC:E5:E2:C4:49
Authority key identifier: 8B:97:A9:15:36:0A:48:7D:5C:F5:D5:C6:65:E5:BF:E1:FF:F5:36:9F
Certificate issuer:       /CN=8b97a915360a487d5cf5d5c665e5bfe1fff5369f
Certificate serial:       0198D473FFA203DC820A508C907170F0EF22
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/i5epFTYKSH1c9dXGZeW_4f_1Np8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.mft
Manifest number:          04E6
Signing time:             Sat 23 Aug 2025 01:03:48 +0000
Manifest this update:     Sat 23 Aug 2025 01:03:48 +0000
Manifest next update:     Sun 24 Aug 2025 01:03:48 +0000
Files and hashes:         1: i5epFTYKSH1c9dXGZeW_4f_1Np8.crl (hash: NHEH7sl8BN3zlQFjCL1Cm7o22TkDfGu2b2xrGlXLEmA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/i5epFTYKSH1c9dXGZeW_4f_1Np8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:73:ff:a2:03:dc:82:0a:50:8c:90:71:70:f0:ef:22
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b97a915360a487d5cf5d5c665e5bfe1fff5369f
        Validity
            Not Before: Aug 23 01:03:48 2025 GMT
            Not After : Aug 24 01:03:48 2025 GMT
        Subject: CN=5ca3be3bb9f962641ca20f15c19638ace5e2c449
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:08:19:f7:6f:7d:ec:90:c3:5b:3c:34:79:45:
                    9f:31:c3:0f:50:2a:f2:ce:8f:8b:7a:8a:80:4b:63:
                    67:61:ba:05:e2:22:9f:40:d1:e1:7f:d3:2e:41:4c:
                    91:e9:3e:ca:8b:76:bc:32:2a:22:3f:7a:47:36:aa:
                    52:7d:28:7c:77:31:59:4b:6e:90:5e:b2:32:51:bb:
                    70:f7:e5:2b:5d:e3:81:b9:5b:7e:1a:36:d9:66:49:
                    df:77:48:29:e7:36:e6:8a:58:e2:e5:da:c9:59:a4:
                    2b:e0:d9:a7:33:e2:ac:c5:38:3c:d7:50:7c:c4:af:
                    8f:6f:ff:49:46:d6:3b:c3:c3:bf:2a:d7:f9:64:bd:
                    94:03:d4:3f:a5:13:01:40:fa:88:3d:13:72:95:0f:
                    ff:95:00:32:97:c8:c8:eb:64:15:58:18:63:ee:c5:
                    ec:17:4d:b0:59:6b:c2:97:aa:f4:35:56:7e:ae:95:
                    5a:d2:2f:f5:39:ec:f1:4b:06:7f:6f:73:47:1c:07:
                    f5:fb:99:f1:41:a8:99:09:df:94:5d:58:37:a7:d5:
                    81:e0:6a:ed:ee:98:b6:80:cb:6b:4c:a0:5f:51:7c:
                    59:e4:8e:3d:6e:35:35:fe:0f:84:21:f2:6b:54:64:
                    c0:7c:45:3c:f1:eb:af:66:78:9a:39:43:70:18:ad:
                    75:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:A3:BE:3B:B9:F9:62:64:1C:A2:0F:15:C1:96:38:AC:E5:E2:C4:49
            X509v3 Authority Key Identifier:
                keyid:8B:97:A9:15:36:0A:48:7D:5C:F5:D5:C6:65:E5:BF:E1:FF:F5:36:9F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5epFTYKSH1c9dXGZeW_4f_1Np8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/7d4a29-023f-42d7-aab7-d87b361acd89/1/i5epFTYKSH1c9dXGZeW_4f_1Np8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:6a:ef:d8:08:e2:9f:db:2c:55:ae:fb:e3:e3:0f:97:1b:8d:
         42:ee:5b:02:a0:fc:88:4a:cb:db:17:e7:0b:0b:c4:1c:60:96:
         4b:f2:8a:f2:98:d3:23:75:c4:1c:f5:ff:85:cf:45:3d:f1:0c:
         cc:14:68:33:94:bb:4a:65:43:af:07:fa:70:7f:2c:01:c7:5b:
         07:35:05:1c:98:d0:bd:e9:0b:bb:bc:0e:a8:5a:87:16:1a:2a:
         c8:21:4c:3b:87:80:0e:4c:a6:d2:3c:55:36:a4:ef:21:c3:58:
         23:3b:d7:90:e0:73:fd:6d:c7:3c:bf:75:96:2d:6e:2d:6a:2e:
         bd:0f:24:33:70:b7:32:12:cd:47:44:9a:5c:dd:12:81:de:0b:
         21:6d:d7:3c:47:31:07:6c:e1:74:99:30:31:c8:bd:db:04:71:
         e7:b5:e4:42:db:4c:6b:f7:70:3a:31:31:b4:7d:f4:32:16:c8:
         de:bc:20:1d:36:cb:72:4f:05:3a:dd:2b:04:a8:35:18:41:bc:
         74:51:2a:99:36:06:eb:58:8e:8e:14:17:35:33:50:64:4d:92:
         3f:40:b5:8a:f1:6b:57:2e:bf:0b:1c:3f:06:e2:9e:61:e6:00:
         ac:25:7e:35:f8:9c:97:8b:e7:44:e4:72:57:9e:e8:5f:e5:b0:
         b2:1e:ca:e1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc/+iA9yCClCMkHFw8O8iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiOTdhOTE1MzYwYTQ4N2Q1Y2Y1ZDVjNjY1ZTViZmUxZmZm
NTM2OWYwHhcNMjUwODIzMDEwMzQ4WhcNMjUwODI0MDEwMzQ4WjAzMTEwLwYDVQQD
Eyg1Y2EzYmUzYmI5Zjk2MjY0MWNhMjBmMTVjMTk2MzhhY2U1ZTJjNDQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4AgZ92997JDDWzw0eUWfMcMPUCry
zo+LeoqAS2NnYboF4iKfQNHhf9MuQUyR6T7Ki3a8MioiP3pHNqpSfSh8dzFZS26Q
XrIyUbtw9+UrXeOBuVt+GjbZZknfd0gp5zbmilji5drJWaQr4NmnM+KsxTg811B8
xK+Pb/9JRtY7w8O/Ktf5ZL2UA9Q/pRMBQPqIPRNylQ//lQAyl8jI62QVWBhj7sXs
F02wWWvCl6r0NVZ+rpVa0i/1OezxSwZ/b3NHHAf1+5nxQaiZCd+UXVg3p9WB4Grt
7pi2gMtrTKBfUXxZ5I49bjU1/g+EIfJrVGTAfEU88euvZniaOUNwGK118wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFyjvju5+WJkHKIPFcGWOKzl4sRJMB8GA1UdIwQY
MBaAFIuXqRU2Ckh9XPXVxmXlv+H/9TafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTVlcEZUWUtTSDFjOWRYR1plV180Zl8xTnA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy83ZDRhMjktMDIzZi00MmQ3LWFhYjct
ZDg3YjM2MWFjZDg5LzEvaTVlcEZUWUtTSDFjOWRYR1plV180Zl8xTnA4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy83ZDRhMjktMDIzZi00MmQ3LWFhYjctZDg3YjM2MWFjZDg5
LzEvaTVlcEZUWUtTSDFjOWRYR1plV180Zl8xTnA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX2rv2Aji
n9ssVa774+MPlxuNQu5bAqD8iErL2xfnCwvEHGCWS/KK8pjTI3XEHPX/hc9FPfEM
zBRoM5S7SmVDrwf6cH8sAcdbBzUFHJjQvekLu7wOqFqHFhoqyCFMO4eADkym0jxV
NqTvIcNYIzvXkOBz/W3HPL91li1uLWouvQ8kM3C3MhLNR0SaXN0Sgd4LIW3XPEcx
B2zhdJkwMci92wRx57XkQttMa/dwOjExtH30MhbI3rwgHTbLck8FOt0rBKg1GEG8
dFEqmTYG61iOjhQXNTNQZE2SP0C1ivFrVy6/Cxw/BuKeYeYArCV+Nficl4vnRORy
V57oX+Wwsh7K4Q==
-----END CERTIFICATE-----