Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
File:                     hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json)
Hash identifier:          gPd2wrZprNfEsjfmXzVsVa+C6wxcZ7ZbMorvZX5d4Tg=
Subject key identifier:   F6:50:0D:4C:3B:49:79:47:F7:0E:27:A9:41:30:D5:96:E2:13:09:C2
Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
Certificate issuer:       /CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Certificate serial:       0198D47442BF218DB2BA8121D54394643C4A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
Manifest number:          10D1
Signing time:             Sat 23 Aug 2025 01:04:05 +0000
Manifest this update:     Sat 23 Aug 2025 01:04:05 +0000
Manifest next update:     Sun 24 Aug 2025 01:04:05 +0000
Files and hashes:         1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: G3g+rGmPbX/0/wwMNbdUrnSmxA4ihHauK63+QYE6zig=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:74:42:bf:21:8d:b2:ba:81:21:d5:43:94:64:3c:4a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9
        Validity
            Not Before: Aug 23 01:04:05 2025 GMT
            Not After : Aug 24 01:04:05 2025 GMT
        Subject: CN=f6500d4c3b497947f70e27a94130d596e21309c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:16:ce:52:9f:21:dc:2b:f4:da:a7:d6:82:ad:
                    2f:87:5c:46:ec:5d:fb:1a:5d:9d:d7:94:3f:d2:25:
                    25:d4:e4:55:68:93:a4:6c:3d:2e:9d:0d:3f:b8:04:
                    b8:f5:8d:3a:4c:0d:9f:af:52:66:c9:ec:ed:f7:f3:
                    fd:12:da:20:93:21:92:4b:c4:d2:dc:9b:f7:19:73:
                    83:35:9e:ee:19:5f:d1:54:4f:98:d9:38:4a:dd:bf:
                    50:20:82:87:e5:cb:a5:6a:48:73:1b:e2:59:bd:0c:
                    04:e4:fb:96:3c:d1:a9:b8:df:17:c6:db:ec:c4:0e:
                    75:e7:8e:9a:75:e1:c3:c5:f2:f7:4a:a8:cf:43:1b:
                    c9:4c:8b:86:e4:00:2d:79:63:eb:60:63:68:e4:4a:
                    bb:ea:6a:59:8d:6d:0b:47:09:74:df:cb:e7:6b:ca:
                    fd:d8:e5:17:72:e7:21:52:8c:6c:36:e8:ac:ee:c7:
                    8f:96:e7:c0:0e:2a:55:6d:0d:23:10:d8:a8:a8:a5:
                    f0:31:08:b0:8f:20:64:00:c6:65:74:38:12:2b:30:
                    47:ae:b3:f7:56:1b:4b:34:1a:ab:0e:bc:3b:c9:fc:
                    57:cf:2e:02:40:c1:6b:82:70:53:de:fc:9e:be:82:
                    6e:5e:b5:78:05:7e:71:6d:68:26:fc:b6:53:bd:8a:
                    a8:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:50:0D:4C:3B:49:79:47:F7:0E:27:A9:41:30:D5:96:E2:13:09:C2
            X509v3 Authority Key Identifier:
                keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:50:d2:68:07:0d:9c:bb:d0:35:f5:c0:87:a0:02:fd:2c:99:
         58:c2:e1:1a:11:18:10:f0:d3:90:bd:0f:d3:e2:37:a8:7d:23:
         d2:a7:3b:42:18:65:9c:d5:63:a8:c4:18:67:f4:b6:48:da:01:
         16:2c:b4:20:15:10:c6:4f:33:36:63:8c:28:9d:a0:0f:55:82:
         74:59:10:98:c8:df:c2:d9:cb:19:f2:2a:24:a6:c8:79:f4:d5:
         c0:58:10:37:48:82:b9:fb:b0:22:8e:a3:39:ee:66:21:e5:59:
         af:1a:d3:7e:ed:f2:f2:68:3c:f6:b3:bf:10:d6:d8:f9:3a:a1:
         72:f3:4f:4b:25:49:5f:32:0f:af:7e:6a:79:b5:97:c8:0a:9c:
         4d:b2:cf:e4:1e:92:06:99:40:66:8f:cd:92:73:f5:a9:4e:99:
         b6:28:b6:ed:3c:c4:af:cd:12:64:1d:64:dd:fc:c5:90:32:ba:
         43:e2:77:af:d3:15:4e:19:d2:41:75:1a:fe:77:fc:4b:96:5d:
         07:7f:46:a2:c9:11:01:f6:12:8f:37:37:42:9a:24:5c:e8:74:
         78:f0:36:a8:69:d9:a5:eb:78:77:da:48:e3:88:6f:2c:49:e4:
         d8:c9:51:7a:1f:e6:fc:76:5a:70:81:d6:f3:3e:72:3c:e6:bd:
         76:a6:77:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUdEK/IY2yuoEh1UOUZDxKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MmNhYWU5ZjBmYjc5ZGVjNjg0NGJlYWNlOGMyMjFjZWY0
ZDMyYzkwHhcNMjUwODIzMDEwNDA1WhcNMjUwODI0MDEwNDA1WjAzMTEwLwYDVQQD
EyhmNjUwMGQ0YzNiNDk3OTQ3ZjcwZTI3YTk0MTMwZDU5NmUyMTMwOWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlRbOUp8h3Cv02qfWgq0vh1xG7F37
Gl2d15Q/0iUl1ORVaJOkbD0unQ0/uAS49Y06TA2fr1Jmyezt9/P9EtogkyGSS8TS
3Jv3GXODNZ7uGV/RVE+Y2ThK3b9QIIKH5culakhzG+JZvQwE5PuWPNGpuN8Xxtvs
xA51546adeHDxfL3SqjPQxvJTIuG5AAteWPrYGNo5Eq76mpZjW0LRwl038vna8r9
2OUXcuchUoxsNuis7sePlufADipVbQ0jENioqKXwMQiwjyBkAMZldDgSKzBHrrP3
VhtLNBqrDrw7yfxXzy4CQMFrgnBT3vyevoJuXrV4BX5xbWgm/LZTvYqotQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPZQDUw7SXlH9w4nqUEw1ZbiEwnCMB8GA1UdIwQY
MBaAFIcsqunw+3nexoRL6s6MIhzvTTLJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC82Yzc5MWYtYmE4NS00YzAzLWI3OTEt
ZTViMTY3MmQ0YjE3LzEvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC82Yzc5MWYtYmE4NS00YzAzLWI3OTEtZTViMTY3MmQ0YjE3
LzEvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVVDSaAcN
nLvQNfXAh6AC/SyZWMLhGhEYEPDTkL0P0+I3qH0j0qc7QhhlnNVjqMQYZ/S2SNoB
Fiy0IBUQxk8zNmOMKJ2gD1WCdFkQmMjfwtnLGfIqJKbIefTVwFgQN0iCufuwIo6j
Oe5mIeVZrxrTfu3y8mg89rO/ENbY+TqhcvNPSyVJXzIPr35qebWXyAqcTbLP5B6S
BplAZo/NknP1qU6Ztii27TzEr80SZB1k3fzFkDK6Q+J3r9MVThnSQXUa/nf8S5Zd
B39GoskRAfYSjzc3QpokXOh0ePA2qGnZpet4d9pI44hvLEnk2MlReh/m/HZacIHW
8z5yPOa9dqZ3rA==
-----END CERTIFICATE-----