Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.mft
File:                     VFjdpvrZNtqJUgABqigr-syLguM.mft (raw, json)
Hash identifier:          ACVXm4Ex8UvbrrST++0yZq+KXyiZ30fpFAHF2Jlv6nY=
Subject key identifier:   F7:85:10:00:F3:C8:37:F1:34:0D:FC:DA:66:03:D0:9D:39:F8:69:FC
Authority key identifier: 54:58:DD:A6:FA:D9:36:DA:89:52:00:01:AA:28:2B:FA:CC:8B:82:E3
Certificate issuer:       /CN=5458dda6fad936da89520001aa282bfacc8b82e3
Certificate serial:       0198D660692C319531D5490C404C3AE6F9CA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VFjdpvrZNtqJUgABqigr-syLguM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.mft
Manifest number:          1131
Signing time:             Sat 23 Aug 2025 10:01:39 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:39 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:39 +0000
Files and hashes:         1: VFjdpvrZNtqJUgABqigr-syLguM.crl (hash: dGR38Vq8dbI36yCrHFwAXM1uFH5nCPfjHz5oAf4nd6c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VFjdpvrZNtqJUgABqigr-syLguM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:69:2c:31:95:31:d5:49:0c:40:4c:3a:e6:f9:ca
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5458dda6fad936da89520001aa282bfacc8b82e3
        Validity
            Not Before: Aug 23 10:01:39 2025 GMT
            Not After : Aug 24 10:01:39 2025 GMT
        Subject: CN=f7851000f3c837f1340dfcda6603d09d39f869fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:ae:73:8a:21:3f:9e:7a:07:64:b3:47:f7:64:
                    06:62:fe:d4:51:fb:2d:0c:42:6a:83:ee:40:92:67:
                    1a:4c:e4:20:a0:2d:d1:0c:90:de:7b:95:0e:9f:84:
                    94:87:b3:24:f5:82:35:0d:95:f8:10:d4:c0:fc:e5:
                    60:53:db:0e:4b:50:11:6a:36:d9:a9:80:d2:4a:a3:
                    04:de:91:95:c1:cd:55:f2:a7:32:e3:23:f6:cd:c2:
                    49:f5:18:d2:be:97:59:b2:99:2d:eb:b3:15:ec:b2:
                    bb:9b:95:de:19:b2:13:96:a1:3c:aa:32:e0:01:b2:
                    a4:92:5c:b9:e2:d3:8b:47:e0:d0:c6:92:23:3c:b0:
                    bf:9d:77:23:38:da:5c:53:14:8d:98:f9:80:7e:8c:
                    84:3e:95:1f:cf:9f:d5:b3:6c:d9:f9:6d:62:cf:5c:
                    06:a8:10:d0:d7:36:17:b3:36:68:51:b9:3e:f2:16:
                    cb:50:78:02:ad:d5:a2:a1:b7:48:32:7e:90:a1:ba:
                    65:bb:0c:32:f5:33:87:cd:83:60:72:86:1a:d4:8d:
                    5a:12:04:cd:5d:b0:d9:db:b4:b7:d5:3c:61:e8:d3:
                    6b:fe:9f:41:37:62:8b:98:af:ae:41:b2:82:fb:d6:
                    7c:3e:c5:58:93:64:a6:2d:1d:d5:6f:0b:59:3f:ad:
                    1d:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:85:10:00:F3:C8:37:F1:34:0D:FC:DA:66:03:D0:9D:39:F8:69:FC
            X509v3 Authority Key Identifier:
                keyid:54:58:DD:A6:FA:D9:36:DA:89:52:00:01:AA:28:2B:FA:CC:8B:82:E3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VFjdpvrZNtqJUgABqigr-syLguM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:42:70:ea:5a:72:96:07:b7:fe:e2:fc:3b:d4:2c:11:1e:e1:
         4b:ac:5f:10:1f:7c:4b:5c:ec:60:f5:cd:78:07:80:96:d8:5b:
         5b:c2:6d:4f:34:39:a9:a1:76:96:bc:36:20:ed:6f:99:b4:85:
         d6:e8:fd:e9:43:18:9d:34:68:42:89:4f:eb:c3:b1:fd:af:7b:
         3f:6a:96:c5:e6:c7:4c:79:fc:36:aa:e3:58:ee:9a:6a:a8:89:
         86:ff:2d:d7:9e:d5:f0:b8:8c:f0:40:07:dc:ac:80:40:bc:97:
         b5:3e:50:fa:ba:a3:d6:ab:38:66:5d:92:cf:38:c9:9c:57:04:
         b8:de:90:2d:57:e8:86:3d:e2:9d:a4:c3:25:44:3c:5c:3b:2c:
         ac:ac:c4:fd:f5:59:c9:9c:87:31:cd:91:b6:36:a5:c8:d0:ee:
         1f:7b:06:b6:e8:96:37:e2:27:51:7e:7d:e7:dc:61:3e:74:78:
         f3:21:f6:a7:3d:cd:c0:32:54:2e:4b:e2:21:0f:31:03:31:49:
         db:ed:60:30:22:8c:8f:60:5b:cc:52:c6:9b:b1:ab:2f:23:16:
         48:b5:2f:0b:c0:84:bc:30:3a:99:47:6b:fe:60:f0:23:23:40:
         dd:85:21:9e:d5:01:5f:3e:72:7c:60:b4:53:a6:b3:db:25:02:
         a1:29:40:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYGksMZUx1UkMQEw65vnKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NThkZGE2ZmFkOTM2ZGE4OTUyMDAwMWFhMjgyYmZhY2M4
YjgyZTMwHhcNMjUwODIzMTAwMTM5WhcNMjUwODI0MTAwMTM5WjAzMTEwLwYDVQQD
EyhmNzg1MTAwMGYzYzgzN2YxMzQwZGZjZGE2NjAzZDA5ZDM5Zjg2OWZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6a5ziiE/nnoHZLNH92QGYv7UUfst
DEJqg+5AkmcaTOQgoC3RDJDee5UOn4SUh7Mk9YI1DZX4ENTA/OVgU9sOS1ARajbZ
qYDSSqME3pGVwc1V8qcy4yP2zcJJ9RjSvpdZspkt67MV7LK7m5XeGbITlqE8qjLg
AbKkkly54tOLR+DQxpIjPLC/nXcjONpcUxSNmPmAfoyEPpUfz5/Vs2zZ+W1iz1wG
qBDQ1zYXszZoUbk+8hbLUHgCrdWiobdIMn6Qobpluwwy9TOHzYNgcoYa1I1aEgTN
XbDZ27S31Txh6NNr/p9BN2KLmK+uQbKC+9Z8PsVYk2SmLR3VbwtZP60dCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPeFEADzyDfxNA382mYD0J05+Gn8MB8GA1UdIwQY
MBaAFFRY3ab62TbaiVIAAaooK/rMi4LjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkZqZHB2clpOdHFKVWdBQnFpZ3Itc3lMZ3VNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC80NzgxZWEtMGEzMi00M2Y5LTk4OTAt
ZGU5N2JjZDQwMzY4LzEvVkZqZHB2clpOdHFKVWdBQnFpZ3Itc3lMZ3VNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC80NzgxZWEtMGEzMi00M2Y5LTk4OTAtZGU5N2JjZDQwMzY4
LzEvVkZqZHB2clpOdHFKVWdBQnFpZ3Itc3lMZ3VNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYUJw6lpy
lge3/uL8O9QsER7hS6xfEB98S1zsYPXNeAeAlthbW8JtTzQ5qaF2lrw2IO1vmbSF
1uj96UMYnTRoQolP68Ox/a97P2qWxebHTHn8NqrjWO6aaqiJhv8t157V8LiM8EAH
3KyAQLyXtT5Q+rqj1qs4Zl2SzzjJnFcEuN6QLVfohj3inaTDJUQ8XDssrKzE/fVZ
yZyHMc2RtjalyNDuH3sGtuiWN+InUX5959xhPnR48yH2pz3NwDJULkviIQ8xAzFJ
2+1gMCKMj2BbzFLGm7GrLyMWSLUvC8CEvDA6mUdr/mDwIyNA3YUhntUBXz5yfGC0
U6az2yUCoSlAjw==
-----END CERTIFICATE-----