Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft
File:                     G7Qd9-pn1O3-D60S99XOzYPhjZo.mft (raw, json)
Hash identifier:          QvMXmHKrvFZtxfQJ1oUgAuKCCIFrazAKjj1O3TgAMpk=
Subject key identifier:   C2:9F:06:18:9B:E8:F5:C1:99:17:AA:F0:E5:84:01:81:97:3D:2E:43
Authority key identifier: 1B:B4:1D:F7:EA:67:D4:ED:FE:0F:AD:12:F7:D5:CE:CD:83:E1:8D:9A
Certificate issuer:       /CN=1bb41df7ea67d4edfe0fad12f7d5cecd83e18d9a
Certificate serial:       0198D4A84921120A8F259A6B2267F5AFBF07
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/G7Qd9-pn1O3-D60S99XOzYPhjZo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft
Manifest number:          0426
Signing time:             Sat 23 Aug 2025 02:00:55 +0000
Manifest this update:     Sat 23 Aug 2025 02:00:55 +0000
Manifest next update:     Sun 24 Aug 2025 02:00:55 +0000
Files and hashes:         1: G7Qd9-pn1O3-D60S99XOzYPhjZo.crl (hash: 5nw+EBstFWszYZAGGvJsqg44OLT6TMZlIkIMiQqs4hg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/G7Qd9-pn1O3-D60S99XOzYPhjZo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 02:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:a8:49:21:12:0a:8f:25:9a:6b:22:67:f5:af:bf:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1bb41df7ea67d4edfe0fad12f7d5cecd83e18d9a
        Validity
            Not Before: Aug 23 02:00:55 2025 GMT
            Not After : Aug 24 02:00:55 2025 GMT
        Subject: CN=c29f06189be8f5c19917aaf0e5840181973d2e43
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:45:45:68:68:71:e0:56:de:75:b5:11:33:af:
                    41:77:6a:d4:a8:4b:62:9b:1a:88:62:1e:ed:2b:ef:
                    0f:76:c0:53:e2:77:af:fd:c6:7f:ff:75:dc:6a:d7:
                    62:34:37:1e:fb:ed:20:b5:ed:b5:a3:8b:0b:99:40:
                    08:c1:0e:9f:e4:8d:c8:3a:11:f5:3a:71:4d:6a:eb:
                    03:28:8a:92:33:16:80:33:41:6b:44:47:16:e4:6d:
                    ae:11:74:f0:b4:49:f0:dc:ee:dd:c7:41:c6:1e:83:
                    26:e4:c8:d7:7a:b6:a5:fc:f4:97:c0:d9:2c:c8:70:
                    89:1f:8c:0a:e4:5a:a8:b5:d3:0c:60:4d:df:7c:f0:
                    4c:f5:cf:eb:45:6f:09:8f:b9:36:9c:07:1a:d7:25:
                    90:02:4e:1c:d4:61:58:25:46:6b:2c:34:0f:3c:6b:
                    01:e4:7b:8d:8c:22:64:e3:99:db:f1:ce:60:56:22:
                    fa:18:4e:1c:67:4a:2b:c6:f5:f3:66:ec:10:2f:93:
                    b4:d8:81:71:6f:c5:33:21:94:51:00:14:29:7a:ec:
                    53:94:eb:fa:16:05:7d:f0:ae:ad:d7:ba:db:7c:56:
                    e9:9d:58:ac:1a:cb:d1:0f:8d:2b:92:65:1c:a5:93:
                    5b:30:d7:09:17:12:03:c1:c1:55:56:41:ec:f0:e3:
                    2f:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:9F:06:18:9B:E8:F5:C1:99:17:AA:F0:E5:84:01:81:97:3D:2E:43
            X509v3 Authority Key Identifier:
                keyid:1B:B4:1D:F7:EA:67:D4:ED:FE:0F:AD:12:F7:D5:CE:CD:83:E1:8D:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G7Qd9-pn1O3-D60S99XOzYPhjZo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5f:6d:b7:3d:98:53:d9:ff:2b:6c:72:6f:ed:d3:73:75:4e:bd:
         37:64:8b:66:ff:01:af:22:80:cc:eb:75:50:27:4f:d3:f0:7b:
         fb:50:5c:52:bd:3a:7f:38:a0:db:6e:19:a6:b4:fe:ba:22:49:
         5f:db:98:15:9e:2d:72:76:67:4a:9d:7d:b2:9a:ef:8c:8c:80:
         dc:1e:3b:d8:3e:2c:8d:db:f5:58:2b:b1:69:a8:12:4f:15:1c:
         c6:b3:64:08:ac:f5:6c:38:88:8d:72:4a:57:02:08:92:77:a1:
         21:3c:4e:90:61:2c:8a:61:ec:cd:5f:71:f0:a9:9a:7d:87:7c:
         0c:9a:e6:65:7d:0f:09:3f:4c:d3:33:d5:b4:6e:4d:44:75:b9:
         2b:cf:75:31:c7:87:60:43:15:ed:02:18:67:de:d9:09:54:c6:
         0f:ae:ab:50:ae:51:98:0c:aa:b2:d5:81:56:3a:49:f0:93:d0:
         51:3b:25:36:81:29:1b:85:2b:57:27:84:ba:19:4d:10:4b:f1:
         8c:00:a2:e2:e0:2f:47:c7:26:9e:be:71:a1:05:b3:62:e6:c7:
         5e:f3:12:e6:5a:74:80:07:1a:54:5b:52:88:5e:bd:d7:9e:48:
         15:cb:b5:4e:dd:4f:a8:3a:09:e9:34:74:3f:09:80:22:c1:97:
         e8:20:01:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUqEkhEgqPJZprImf1r78HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiYjQxZGY3ZWE2N2Q0ZWRmZTBmYWQxMmY3ZDVjZWNkODNl
MThkOWEwHhcNMjUwODIzMDIwMDU1WhcNMjUwODI0MDIwMDU1WjAzMTEwLwYDVQQD
EyhjMjlmMDYxODliZThmNWMxOTkxN2FhZjBlNTg0MDE4MTk3M2QyZTQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0VFaGhx4FbedbURM69Bd2rUqEti
mxqIYh7tK+8PdsBT4nev/cZ//3XcatdiNDce++0gte21o4sLmUAIwQ6f5I3IOhH1
OnFNausDKIqSMxaAM0FrREcW5G2uEXTwtEnw3O7dx0HGHoMm5MjXeral/PSXwNks
yHCJH4wK5FqotdMMYE3ffPBM9c/rRW8Jj7k2nAca1yWQAk4c1GFYJUZrLDQPPGsB
5HuNjCJk45nb8c5gViL6GE4cZ0orxvXzZuwQL5O02IFxb8UzIZRRABQpeuxTlOv6
FgV98K6t17rbfFbpnVisGsvRD40rkmUcpZNbMNcJFxIDwcFVVkHs8OMvWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMKfBhib6PXBmReq8OWEAYGXPS5DMB8GA1UdIwQY
MBaAFBu0HffqZ9Tt/g+tEvfVzs2D4Y2aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzdRZDktcG4xTzMtRDYwUzk5WE96WVBoalpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy80NTkzOTYtZGU5MC00Y2M4LWE1NDIt
M2U2ZTdjZGVmNzNlLzEvRzdRZDktcG4xTzMtRDYwUzk5WE96WVBoalpvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy80NTkzOTYtZGU5MC00Y2M4LWE1NDItM2U2ZTdjZGVmNzNl
LzEvRzdRZDktcG4xTzMtRDYwUzk5WE96WVBoalpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX223PZhT
2f8rbHJv7dNzdU69N2SLZv8BryKAzOt1UCdP0/B7+1BcUr06fzig224ZprT+uiJJ
X9uYFZ4tcnZnSp19sprvjIyA3B472D4sjdv1WCuxaagSTxUcxrNkCKz1bDiIjXJK
VwIIknehITxOkGEsimHszV9x8KmafYd8DJrmZX0PCT9M0zPVtG5NRHW5K891MceH
YEMV7QIYZ97ZCVTGD66rUK5RmAyqstWBVjpJ8JPQUTslNoEpG4UrVyeEuhlNEEvx
jACi4uAvR8cmnr5xoQWzYubHXvMS5lp0gAcaVFtSiF69155IFcu1Tt1PqDoJ6TR0
PwmAIsGX6CAB/A==
-----END CERTIFICATE-----