Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/c451f6-866a-4091-aa88-f0abb9558d45/1/A0BZzz9bz7oJObTF2cPThs7NTOw.mft
File:                     A0BZzz9bz7oJObTF2cPThs7NTOw.mft (raw, json)
Hash identifier:          whGodVFenfWUd+2E+mEfvh58JBwcqJXd89eQRDc8E6o=
Subject key identifier:   4C:47:26:37:C7:2D:3D:3E:40:22:69:0F:77:9F:31:D6:70:70:D1:D5
Authority key identifier: 03:40:59:CF:3F:5B:CF:BA:09:39:B4:C5:D9:C3:D3:86:CE:CD:4C:EC
Certificate issuer:       /CN=034059cf3f5bcfba0939b4c5d9c3d386cecd4cec
Certificate serial:       0198D4A80064FE20CE9649DB3272884F0054
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/A0BZzz9bz7oJObTF2cPThs7NTOw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/c451f6-866a-4091-aa88-f0abb9558d45/1/A0BZzz9bz7oJObTF2cPThs7NTOw.mft
Manifest number:          15
Signing time:             Sat 23 Aug 2025 02:00:36 +0000
Manifest this update:     Sat 23 Aug 2025 02:00:36 +0000
Manifest next update:     Sun 24 Aug 2025 02:00:36 +0000
Files and hashes:         1: A0BZzz9bz7oJObTF2cPThs7NTOw.crl (hash: XNXHgtBxakK/wTzSd4HqKvR9G3MsrTAruUNphGZnAms=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/c451f6-866a-4091-aa88-f0abb9558d45/1/A0BZzz9bz7oJObTF2cPThs7NTOw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/c451f6-866a-4091-aa88-f0abb9558d45/1/A0BZzz9bz7oJObTF2cPThs7NTOw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/A0BZzz9bz7oJObTF2cPThs7NTOw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 02:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:a8:00:64:fe:20:ce:96:49:db:32:72:88:4f:00:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=034059cf3f5bcfba0939b4c5d9c3d386cecd4cec
        Validity
            Not Before: Aug 23 02:00:36 2025 GMT
            Not After : Aug 24 02:00:36 2025 GMT
        Subject: CN=4c472637c72d3d3e4022690f779f31d67070d1d5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:f9:7c:17:61:99:86:99:ad:1f:ae:f3:63:ab:
                    9a:c3:e2:6c:4a:30:1a:d0:7b:10:4f:b2:81:1f:ea:
                    e8:bd:31:08:f7:03:84:98:5e:04:7b:47:78:60:cb:
                    80:6b:70:a2:b3:f5:69:a1:84:44:03:4c:aa:13:e6:
                    01:e7:56:d4:95:21:88:bd:33:12:13:e5:af:a0:c9:
                    d0:89:49:2a:af:0b:d3:8f:c9:f8:f2:25:17:4e:7f:
                    1f:fb:c8:c3:32:eb:ea:b5:4b:94:09:fe:ea:9b:38:
                    de:04:7d:50:a2:9c:02:53:fc:6f:8f:5f:09:b3:e5:
                    a1:11:76:fa:b8:84:ca:f9:b9:c5:a7:fb:71:0c:4c:
                    8c:ba:1b:37:ca:0e:a8:f3:59:6c:f9:54:98:77:49:
                    e4:cf:a6:f6:38:ae:41:c9:0c:5a:85:dd:c3:32:d2:
                    34:66:88:e4:a1:c1:e9:50:58:08:0e:a2:be:b9:39:
                    8c:a2:0c:c3:be:c2:27:cd:85:97:36:0e:dc:93:ac:
                    b3:8c:7f:ac:64:3c:23:50:97:c4:96:ea:77:35:dc:
                    c6:27:47:55:7c:1b:c5:31:34:78:d6:de:78:47:4b:
                    dc:28:0d:6d:a5:7d:43:f7:87:a4:be:49:be:81:d2:
                    b7:9f:b4:47:48:b8:2b:5a:82:13:a9:90:e8:81:40:
                    4a:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:47:26:37:C7:2D:3D:3E:40:22:69:0F:77:9F:31:D6:70:70:D1:D5
            X509v3 Authority Key Identifier:
                keyid:03:40:59:CF:3F:5B:CF:BA:09:39:B4:C5:D9:C3:D3:86:CE:CD:4C:EC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A0BZzz9bz7oJObTF2cPThs7NTOw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/c451f6-866a-4091-aa88-f0abb9558d45/1/A0BZzz9bz7oJObTF2cPThs7NTOw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/c451f6-866a-4091-aa88-f0abb9558d45/1/A0BZzz9bz7oJObTF2cPThs7NTOw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:26:f3:bb:b7:9d:98:f8:e2:47:a0:2a:87:fc:11:f9:3f:f0:
         35:b4:1a:04:a4:38:83:01:df:18:8d:fd:78:ef:b0:fd:d0:4f:
         2d:31:6d:7b:83:57:2d:a6:28:63:95:5e:03:1c:55:b1:7e:22:
         11:d1:53:8c:d5:7b:9a:ee:81:04:a6:56:44:5b:20:4f:c1:12:
         5f:1a:22:23:ae:db:e3:fc:c5:e1:b2:2c:3e:5c:b5:ee:1f:0f:
         b3:4f:76:0e:8f:65:52:d7:1b:33:2c:f6:86:f4:8e:76:c0:82:
         e4:b8:db:86:d8:e4:1b:56:29:95:eb:73:84:f3:a1:91:f7:13:
         4f:67:8a:3b:ab:94:0e:90:75:22:11:85:6c:b8:41:0d:3b:60:
         41:b6:42:e5:15:db:d3:a9:8b:30:53:1f:de:09:a5:1c:1c:de:
         c7:ea:cb:cf:2f:9a:8c:a5:1f:3d:c7:0c:5c:f9:bd:1d:5e:c1:
         65:85:59:81:7f:a6:45:26:5d:8b:0b:95:6e:63:f6:36:7a:15:
         28:b9:12:17:4a:85:af:d4:2e:74:5c:06:18:00:3b:aa:88:6b:
         d2:3b:e7:6e:29:08:82:d4:ea:5b:1f:b8:88:25:ca:0e:d5:73:
         77:ff:dd:72:31:d7:0e:cd:3b:08:76:77:1d:ba:32:fb:52:75:
         b6:2f:82:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUqABk/iDOlknbMnKITwBUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAzNDA1OWNmM2Y1YmNmYmEwOTM5YjRjNWQ5YzNkMzg2Y2Vj
ZDRjZWMwHhcNMjUwODIzMDIwMDM2WhcNMjUwODI0MDIwMDM2WjAzMTEwLwYDVQQD
Eyg0YzQ3MjYzN2M3MmQzZDNlNDAyMjY5MGY3NzlmMzFkNjcwNzBkMWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfl8F2GZhpmtH67zY6uaw+JsSjAa
0HsQT7KBH+rovTEI9wOEmF4Ee0d4YMuAa3Cis/VpoYREA0yqE+YB51bUlSGIvTMS
E+WvoMnQiUkqrwvTj8n48iUXTn8f+8jDMuvqtUuUCf7qmzjeBH1QopwCU/xvj18J
s+WhEXb6uITK+bnFp/txDEyMuhs3yg6o81ls+VSYd0nkz6b2OK5ByQxahd3DMtI0
ZojkocHpUFgIDqK+uTmMogzDvsInzYWXNg7ck6yzjH+sZDwjUJfElup3NdzGJ0dV
fBvFMTR41t54R0vcKA1tpX1D94ekvkm+gdK3n7RHSLgrWoITqZDogUBK/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFExHJjfHLT0+QCJpD3efMdZwcNHVMB8GA1UdIwQY
MBaAFANAWc8/W8+6CTm0xdnD04bOzUzsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQTBCWnp6OWJ6N29KT2JURjJjUFRoczdOVE93LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9jNDUxZjYtODY2YS00MDkxLWFhODgt
ZjBhYmI5NTU4ZDQ1LzEvQTBCWnp6OWJ6N29KT2JURjJjUFRoczdOVE93Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9jNDUxZjYtODY2YS00MDkxLWFhODgtZjBhYmI5NTU4ZDQ1
LzEvQTBCWnp6OWJ6N29KT2JURjJjUFRoczdOVE93LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbSbzu7ed
mPjiR6Aqh/wR+T/wNbQaBKQ4gwHfGI39eO+w/dBPLTFte4NXLaYoY5VeAxxVsX4i
EdFTjNV7mu6BBKZWRFsgT8ESXxoiI67b4/zF4bIsPly17h8Ps092Do9lUtcbMyz2
hvSOdsCC5LjbhtjkG1YpletzhPOhkfcTT2eKO6uUDpB1IhGFbLhBDTtgQbZC5RXb
06mLMFMf3gmlHBzex+rLzy+ajKUfPccMXPm9HV7BZYVZgX+mRSZdiwuVbmP2NnoV
KLkSF0qFr9QudFwGGAA7qohr0jvnbikIgtTqWx+4iCXKDtVzd//dcjHXDs07CHZ3
Hboy+1J1ti+CrA==
-----END CERTIFICATE-----