Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
File:                     9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft (raw, json)
Hash identifier:          le5bKs3gpQ2Dd+pSBLEYEjIKf1cO2X2oTXAnpg2k3Ck=
Subject key identifier:   E0:98:99:93:84:FE:61:CE:F2:F3:F9:FF:B4:17:13:A1:F6:83:FF:44
Authority key identifier: F4:FA:75:8E:E1:D3:2A:1C:BD:94:64:6F:AF:43:6D:7B:8D:80:9E:A4
Certificate issuer:       /CN=f4fa758ee1d32a1cbd94646faf436d7b8d809ea4
Certificate serial:       0198D850B5A307F81FA730462E1AC4BCB962
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9Pp1juHTKhy9lGRvr0Nte42AnqQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
Manifest number:          01F5
Signing time:             Sat 23 Aug 2025 19:03:44 +0000
Manifest this update:     Sat 23 Aug 2025 19:03:44 +0000
Manifest next update:     Sun 24 Aug 2025 19:03:44 +0000
Files and hashes:         1: 9Pp1juHTKhy9lGRvr0Nte42AnqQ.crl (hash: cXlYwHVkBTfJbbCJQoZzAatfikR6IwCJeev3rPD3Eho=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9Pp1juHTKhy9lGRvr0Nte42AnqQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 14:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d8:50:b5:a3:07:f8:1f:a7:30:46:2e:1a:c4:bc:b9:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f4fa758ee1d32a1cbd94646faf436d7b8d809ea4
        Validity
            Not Before: Aug 23 19:03:44 2025 GMT
            Not After : Aug 24 19:03:44 2025 GMT
        Subject: CN=e098999384fe61cef2f3f9ffb41713a1f683ff44
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:65:a1:78:31:c3:5b:8a:b4:28:f3:08:1a:f6:
                    17:62:22:da:8f:34:90:13:6d:9c:ae:03:1b:ee:9e:
                    77:c0:75:ab:6a:f2:6d:fe:1b:90:0f:51:5a:81:3c:
                    46:7a:04:53:d5:bc:0d:60:d5:a0:03:31:c5:96:ae:
                    89:79:65:ed:32:7d:63:93:89:67:12:af:34:b9:60:
                    e0:99:ac:8b:0e:5f:71:01:c3:cd:56:60:d6:34:a0:
                    a5:ea:c4:1f:f2:11:9c:bb:1b:c4:9e:64:16:e8:29:
                    93:09:42:24:0e:3f:f1:01:ed:6b:50:ea:87:d8:d0:
                    3a:f1:a6:02:6a:4d:06:5d:7d:ff:d6:31:17:e8:eb:
                    a5:dd:47:0c:5e:2b:e8:50:c4:67:f8:62:d5:92:e4:
                    1e:5a:75:13:b9:fb:cd:2b:f3:5f:27:67:3c:d6:e8:
                    05:c6:2b:ff:32:c1:91:6d:66:2d:53:2b:9f:6e:f0:
                    ef:aa:90:9b:29:c8:2d:cf:7f:a5:d8:85:f2:8b:fa:
                    b1:9d:fb:9a:62:4f:f0:43:14:61:90:62:40:d7:d9:
                    41:18:60:11:f8:84:f1:e3:80:a8:af:28:a2:7a:ef:
                    48:e7:84:80:5e:1e:be:b9:65:4f:19:15:ef:a8:26:
                    b0:53:2d:bb:61:ed:9e:33:27:64:ac:af:b4:7b:21:
                    2d:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:98:99:93:84:FE:61:CE:F2:F3:F9:FF:B4:17:13:A1:F6:83:FF:44
            X509v3 Authority Key Identifier:
                keyid:F4:FA:75:8E:E1:D3:2A:1C:BD:94:64:6F:AF:43:6D:7B:8D:80:9E:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Pp1juHTKhy9lGRvr0Nte42AnqQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/bf0c26-2277-4050-ac49-e79f8db313bf/1/9Pp1juHTKhy9lGRvr0Nte42AnqQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:72:21:67:3d:f7:ff:58:08:09:16:8b:58:ed:4b:96:5b:45:
         7c:56:7f:00:86:49:ad:0a:44:24:2f:04:eb:91:62:28:e2:d4:
         e2:f8:a2:45:85:f6:84:fd:fa:b8:2f:66:50:50:02:d8:d2:19:
         20:1a:83:5b:e9:1a:50:b6:6f:b9:c7:04:8a:03:e4:c8:1a:eb:
         02:c0:a3:65:8e:99:f5:67:f5:9d:b4:46:04:54:5f:09:e4:f2:
         67:45:8d:89:53:78:6d:e7:13:c4:be:eb:0a:77:b9:c6:47:7e:
         6e:db:7f:19:1c:51:32:a1:60:1f:ca:f1:3b:92:ad:68:0f:2a:
         ff:af:86:d4:ca:3d:e7:e7:07:fb:ac:75:b3:53:7a:f0:bf:32:
         8a:73:05:e9:a7:20:92:62:1a:de:ba:04:74:77:9a:66:e3:6c:
         35:1f:da:3f:18:92:02:ac:e6:35:2d:d8:35:25:29:0a:f0:74:
         9e:3f:12:78:8a:e0:6f:7b:d3:7b:b6:79:48:d2:c1:62:e9:a5:
         c5:f2:cb:9c:e4:94:11:77:18:4e:74:a4:d3:2a:86:b9:93:fe:
         4e:69:e8:7a:91:96:6d:6a:e2:84:db:cb:9e:20:98:a7:9f:54:
         a5:ed:72:ba:c5:01:05:01:27:41:0c:a2:a0:4f:69:16:0a:cd:
         90:43:e4:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYULWjB/gfpzBGLhrEvLliMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZmE3NThlZTFkMzJhMWNiZDk0NjQ2ZmFmNDM2ZDdiOGQ4
MDllYTQwHhcNMjUwODIzMTkwMzQ0WhcNMjUwODI0MTkwMzQ0WjAzMTEwLwYDVQQD
EyhlMDk4OTk5Mzg0ZmU2MWNlZjJmM2Y5ZmZiNDE3MTNhMWY2ODNmZjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGWheDHDW4q0KPMIGvYXYiLajzSQ
E22crgMb7p53wHWravJt/huQD1FagTxGegRT1bwNYNWgAzHFlq6JeWXtMn1jk4ln
Eq80uWDgmayLDl9xAcPNVmDWNKCl6sQf8hGcuxvEnmQW6CmTCUIkDj/xAe1rUOqH
2NA68aYCak0GXX3/1jEX6Oul3UcMXivoUMRn+GLVkuQeWnUTufvNK/NfJ2c81ugF
xiv/MsGRbWYtUyufbvDvqpCbKcgtz3+l2IXyi/qxnfuaYk/wQxRhkGJA19lBGGAR
+ITx44Coryiieu9I54SAXh6+uWVPGRXvqCawUy27Ye2eMydkrK+0eyEtBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOCYmZOE/mHO8vP5/7QXE6H2g/9EMB8GA1UdIwQY
MBaAFPT6dY7h0yocvZRkb69DbXuNgJ6kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOVBwMWp1SFRLaHk5bEdSdnIwTnRlNDJBbnFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9iZjBjMjYtMjI3Ny00MDUwLWFjNDkt
ZTc5ZjhkYjMxM2JmLzEvOVBwMWp1SFRLaHk5bEdSdnIwTnRlNDJBbnFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9iZjBjMjYtMjI3Ny00MDUwLWFjNDktZTc5ZjhkYjMxM2Jm
LzEvOVBwMWp1SFRLaHk5bEdSdnIwTnRlNDJBbnFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAinIhZz33
/1gICRaLWO1LlltFfFZ/AIZJrQpEJC8E65FiKOLU4viiRYX2hP36uC9mUFAC2NIZ
IBqDW+kaULZvuccEigPkyBrrAsCjZY6Z9Wf1nbRGBFRfCeTyZ0WNiVN4becTxL7r
Cne5xkd+btt/GRxRMqFgH8rxO5KtaA8q/6+G1Mo95+cH+6x1s1N68L8yinMF6acg
kmIa3roEdHeaZuNsNR/aPxiSAqzmNS3YNSUpCvB0nj8SeIrgb3vTe7Z5SNLBYuml
xfLLnOSUEXcYTnSk0yqGuZP+TmnoepGWbWrihNvLniCYp59Upe1yusUBBQEnQQyi
oE9pFgrNkEPk2g==
-----END CERTIFICATE-----