Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
File:                     pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft (raw, json)
Hash identifier:          x++FGVR//PvE7+hSZuadPFyQKLc2ceZQ1YQKbsd4EJo=
Subject key identifier:   48:12:25:31:92:35:A8:10:CE:89:9E:F3:FB:A0:97:5E:AF:01:29:4E
Authority key identifier: A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92
Certificate issuer:       /CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
Certificate serial:       0198D660804AF896D4FDA9F7A2AC0DAF8BA6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
Manifest number:          1147
Signing time:             Sat 23 Aug 2025 10:01:45 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:45 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:45 +0000
Files and hashes:         1: pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl (hash: U5K9nhnG9T7a1gllINBywbB45FB8U5ZruzeY5j+ekTk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:80:4a:f8:96:d4:fd:a9:f7:a2:ac:0d:af:8b:a6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a58efd108d4c5b0f4f9a88ae53bb7fec9d594b92
        Validity
            Not Before: Aug 23 10:01:45 2025 GMT
            Not After : Aug 24 10:01:45 2025 GMT
        Subject: CN=481225319235a810ce899ef3fba0975eaf01294e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:f3:38:5d:ca:09:3c:a1:1c:58:0e:db:2c:2a:
                    67:55:fc:bf:9c:9b:79:20:65:1b:1f:df:b7:d5:be:
                    10:e3:75:cd:27:84:92:5f:0d:a2:09:74:4b:26:a1:
                    77:47:ed:0d:fb:df:25:a1:f2:11:d5:da:b9:b3:c4:
                    73:c7:11:94:33:61:3d:dd:58:3a:1e:1e:39:53:fd:
                    8e:6d:be:fe:eb:b0:52:99:03:0d:d3:5e:18:8f:6e:
                    12:dc:67:a8:0c:de:ce:ea:a4:6a:f7:b4:39:c0:ad:
                    8c:ee:d0:57:63:6f:c6:a4:8d:41:ba:fb:f5:b2:bc:
                    4c:2f:24:3c:9f:be:aa:5c:14:cc:18:41:61:6e:40:
                    b4:1a:69:4a:75:42:ca:ed:ec:a8:00:4b:73:35:93:
                    7b:e2:9a:cd:5c:b9:65:7a:6a:16:3e:3e:27:fb:5f:
                    b8:72:f9:24:23:aa:f5:76:b4:66:50:28:a6:d6:d2:
                    22:8f:72:0e:39:09:20:e5:90:26:6c:e2:ec:36:66:
                    36:c2:ce:c9:af:63:a5:30:68:19:49:42:53:dc:dd:
                    54:c3:fd:41:43:5b:f8:d5:84:74:25:45:da:80:ab:
                    38:8d:e9:0c:38:71:a8:de:e7:9d:1c:aa:b4:f5:be:
                    b4:39:20:1d:fc:07:4f:2d:0d:43:3b:0c:57:5e:ab:
                    2e:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:12:25:31:92:35:A8:10:CE:89:9E:F3:FB:A0:97:5E:AF:01:29:4E
            X509v3 Authority Key Identifier:
                keyid:A5:8E:FD:10:8D:4C:5B:0F:4F:9A:88:AE:53:BB:7F:EC:9D:59:4B:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pY79EI1MWw9PmoiuU7t_7J1ZS5I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/a3b5b2-6638-4a4b-9b85-15cc5da07826/1/pY79EI1MWw9PmoiuU7t_7J1ZS5I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:ff:2f:3b:f2:33:c0:38:36:68:17:ba:60:6c:be:ca:2f:64:
         1f:75:58:cb:a9:88:c0:bc:e3:c2:6b:da:a7:0f:06:89:14:19:
         a3:cc:18:8e:49:ac:2f:a6:09:c3:1d:3b:e7:be:15:b8:6c:16:
         f0:91:8f:52:41:c2:11:67:47:c5:50:0a:81:82:45:a3:43:59:
         fc:6b:a2:88:d8:40:f6:73:95:d4:5d:8d:02:01:d5:b9:11:2b:
         9c:90:4a:e3:84:32:eb:83:b6:4e:14:33:a9:db:ef:cf:78:9a:
         82:63:51:30:41:7a:31:6f:d8:e2:1b:68:c4:61:7a:ca:90:4c:
         06:62:ca:d7:d8:ca:5a:90:c6:d9:bc:d5:14:f2:64:7b:8b:42:
         ab:73:77:f4:93:bb:31:37:5a:ad:8a:1d:60:b5:35:e3:e7:95:
         f8:39:f6:dd:fa:aa:ef:44:4b:b4:2c:e9:90:4f:03:b4:19:ca:
         d1:5c:84:d8:1f:ec:e7:fb:88:53:d0:29:ac:81:e4:8f:54:8e:
         11:9f:7e:60:36:cd:d5:06:f9:6e:f2:3e:ce:43:c1:2b:cd:a6:
         66:8e:d6:53:14:85:4c:31:ec:bc:00:91:01:19:c9:f7:8e:06:
         58:c9:cb:c7:05:94:f1:4d:2b:da:a2:b2:85:40:68:43:61:49:
         84:6e:4b:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYIBK+JbU/an3oqwNr4umMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1OGVmZDEwOGQ0YzViMGY0ZjlhODhhZTUzYmI3ZmVjOWQ1
OTRiOTIwHhcNMjUwODIzMTAwMTQ1WhcNMjUwODI0MTAwMTQ1WjAzMTEwLwYDVQQD
Eyg0ODEyMjUzMTkyMzVhODEwY2U4OTllZjNmYmEwOTc1ZWFmMDEyOTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy/M4XcoJPKEcWA7bLCpnVfy/nJt5
IGUbH9+31b4Q43XNJ4SSXw2iCXRLJqF3R+0N+98lofIR1dq5s8RzxxGUM2E93Vg6
Hh45U/2Obb7+67BSmQMN014Yj24S3GeoDN7O6qRq97Q5wK2M7tBXY2/GpI1Buvv1
srxMLyQ8n76qXBTMGEFhbkC0GmlKdULK7eyoAEtzNZN74prNXLllemoWPj4n+1+4
cvkkI6r1drRmUCim1tIij3IOOQkg5ZAmbOLsNmY2ws7Jr2OlMGgZSUJT3N1Uw/1B
Q1v41YR0JUXagKs4jekMOHGo3uedHKq09b60OSAd/AdPLQ1DOwxXXqsulwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEgSJTGSNagQzome8/ugl16vASlOMB8GA1UdIwQY
MBaAFKWO/RCNTFsPT5qIrlO7f+ydWUuSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFk3OUVJMU1XdzlQbW9pdVU3dF83SjFaUzVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9hM2I1YjItNjYzOC00YTRiLTliODUt
MTVjYzVkYTA3ODI2LzEvcFk3OUVJMU1XdzlQbW9pdVU3dF83SjFaUzVJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9hM2I1YjItNjYzOC00YTRiLTliODUtMTVjYzVkYTA3ODI2
LzEvcFk3OUVJMU1XdzlQbW9pdVU3dF83SjFaUzVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANf8vO/Iz
wDg2aBe6YGy+yi9kH3VYy6mIwLzjwmvapw8GiRQZo8wYjkmsL6YJwx07574VuGwW
8JGPUkHCEWdHxVAKgYJFo0NZ/GuiiNhA9nOV1F2NAgHVuRErnJBK44Qy64O2ThQz
qdvvz3iagmNRMEF6MW/Y4htoxGF6ypBMBmLK19jKWpDG2bzVFPJke4tCq3N39JO7
MTdarYodYLU14+eV+Dn23fqq70RLtCzpkE8DtBnK0VyE2B/s5/uIU9AprIHkj1SO
EZ9+YDbN1Qb5bvI+zkPBK82mZo7WUxSFTDHsvACRARnJ944GWMnLxwWU8U0r2qKy
hUBoQ2FJhG5LIw==
-----END CERTIFICATE-----