Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft
File:                     DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft (raw, json)
Hash identifier:          XolS5hhWVLoabdQQRoEZpQJ9odcbNMCIOZWnJTZ9tEE=
Subject key identifier:   50:F5:BF:3F:EB:DB:53:A3:56:E6:9B:9A:CA:D1:C1:61:E5:DF:15:D4
Authority key identifier: 0D:DC:50:9B:4D:B3:52:03:AB:61:6F:47:81:F8:5D:D5:86:04:43:D8
Certificate issuer:       /CN=0ddc509b4db35203ab616f4781f85dd5860443d8
Certificate serial:       0198D66072E5AF03D0FF14D167E2FFA9ECF0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft
Manifest number:          1382
Signing time:             Sat 23 Aug 2025 10:01:41 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:41 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:41 +0000
Files and hashes:         1: DdxQm02zUgOrYW9Hgfhd1YYEQ9g.crl (hash: Y8J+ea/haqclk0Dw6+dJbn+6XxCdWD41j2h7HUjx9KQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:72:e5:af:03:d0:ff:14:d1:67:e2:ff:a9:ec:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0ddc509b4db35203ab616f4781f85dd5860443d8
        Validity
            Not Before: Aug 23 10:01:41 2025 GMT
            Not After : Aug 24 10:01:41 2025 GMT
        Subject: CN=50f5bf3febdb53a356e69b9acad1c161e5df15d4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:cb:83:b5:36:1b:da:c6:4c:9d:7a:75:71:3f:
                    6e:48:ce:11:c0:15:76:90:6f:8a:c2:56:fb:51:a3:
                    3a:cb:fe:2a:92:ab:98:13:24:19:0e:80:5a:fd:f7:
                    9d:26:6a:6c:9c:c8:db:a3:fc:29:c7:ba:ea:0a:07:
                    64:2d:f9:b1:36:3a:ea:bd:31:db:3e:14:68:92:ac:
                    21:15:0e:99:f1:96:ed:98:35:d6:d4:01:a1:5f:7e:
                    59:0f:9c:83:8d:1d:be:f0:89:40:18:1f:81:8b:ca:
                    85:eb:a9:fc:18:4b:76:90:74:f2:00:f3:7c:40:e7:
                    31:ba:d3:3e:be:28:5f:d4:fb:e5:e9:59:84:b9:02:
                    49:36:c8:74:d8:52:6c:d0:50:84:d6:12:53:86:5b:
                    81:39:9b:d9:16:b9:8d:68:b1:32:14:00:22:e0:cb:
                    99:7d:ec:09:73:25:a6:75:f1:4a:b1:8c:a0:b1:2c:
                    58:7c:11:ca:e9:10:e8:6b:52:31:c2:97:7e:ec:53:
                    7a:3c:61:16:2b:ad:6e:d8:10:e7:48:d9:78:79:79:
                    bb:4c:ab:b0:0e:1b:5c:f4:6f:49:a2:4c:db:83:59:
                    2d:05:2b:0a:f1:34:59:32:ec:9f:0e:39:e6:e4:10:
                    5f:48:c2:a0:79:71:b9:ca:fd:26:d6:24:36:3d:eb:
                    08:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:F5:BF:3F:EB:DB:53:A3:56:E6:9B:9A:CA:D1:C1:61:E5:DF:15:D4
            X509v3 Authority Key Identifier:
                keyid:0D:DC:50:9B:4D:B3:52:03:AB:61:6F:47:81:F8:5D:D5:86:04:43:D8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/191481-dbb7-4032-9c4f-87e5757b97e3/1/DdxQm02zUgOrYW9Hgfhd1YYEQ9g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:25:49:b3:6b:8b:21:94:8e:92:03:5c:1b:82:af:c2:99:08:
         78:ae:c0:9a:db:51:7a:ba:45:fd:e3:06:c7:18:ab:3c:4b:fe:
         cb:d7:c8:74:59:92:5e:39:28:ae:3b:14:c7:47:7a:57:0f:72:
         30:e0:14:45:08:f1:f6:16:a1:27:5c:76:50:d0:82:08:38:f8:
         74:9d:42:ab:cf:3c:0b:f1:b4:2f:60:6d:6a:b4:f0:94:32:ac:
         96:78:f8:10:9b:77:b4:96:d2:66:04:6b:fa:a4:b7:ff:cc:3d:
         60:d4:4e:ef:00:ea:51:6c:01:7e:5b:3b:c6:cc:94:ea:ce:10:
         6f:2e:1c:2d:46:1c:b8:0a:ea:ef:ee:f9:43:f3:87:d8:66:17:
         81:f3:6b:c5:dd:18:51:84:ae:8a:c1:b7:ca:1f:bb:1d:bd:b1:
         91:f3:bc:66:e1:9f:3e:31:27:4e:be:76:c7:8f:7f:02:b0:12:
         ff:3c:0b:90:90:f1:f3:6f:15:45:80:59:bb:f5:8b:6c:88:b4:
         f2:fa:c1:61:bb:45:fa:b6:94:e3:fb:5a:e3:60:5e:f0:c2:a9:
         e1:2c:84:5b:4e:96:ae:f2:6c:56:2a:34:c2:09:6c:a8:5d:78:
         86:8e:f1:e5:f8:59:29:0a:f6:0a:64:09:60:b2:2a:27:38:fa:
         8e:bc:91:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYHLlrwPQ/xTRZ+L/qezwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkZGM1MDliNGRiMzUyMDNhYjYxNmY0NzgxZjg1ZGQ1ODYw
NDQzZDgwHhcNMjUwODIzMTAwMTQxWhcNMjUwODI0MTAwMTQxWjAzMTEwLwYDVQQD
Eyg1MGY1YmYzZmViZGI1M2EzNTZlNjliOWFjYWQxYzE2MWU1ZGYxNWQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MuDtTYb2sZMnXp1cT9uSM4RwBV2
kG+Kwlb7UaM6y/4qkquYEyQZDoBa/fedJmpsnMjbo/wpx7rqCgdkLfmxNjrqvTHb
PhRokqwhFQ6Z8ZbtmDXW1AGhX35ZD5yDjR2+8IlAGB+Bi8qF66n8GEt2kHTyAPN8
QOcxutM+vihf1Pvl6VmEuQJJNsh02FJs0FCE1hJThluBOZvZFrmNaLEyFAAi4MuZ
fewJcyWmdfFKsYygsSxYfBHK6RDoa1Ixwpd+7FN6PGEWK61u2BDnSNl4eXm7TKuw
Dhtc9G9Jokzbg1ktBSsK8TRZMuyfDjnm5BBfSMKgeXG5yv0m1iQ2PesIKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFD1vz/r21OjVuabmsrRwWHl3xXUMB8GA1UdIwQY
MBaAFA3cUJtNs1IDq2FvR4H4XdWGBEPYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGR4UW0wMnpVZ09yWVc5SGdmaGQxWVlFUTlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8xOTE0ODEtZGJiNy00MDMyLTljNGYt
ODdlNTc1N2I5N2UzLzEvRGR4UW0wMnpVZ09yWVc5SGdmaGQxWVlFUTlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMi8xOTE0ODEtZGJiNy00MDMyLTljNGYtODdlNTc1N2I5N2Uz
LzEvRGR4UW0wMnpVZ09yWVc5SGdmaGQxWVlFUTlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADiVJs2uL
IZSOkgNcG4KvwpkIeK7AmttRerpF/eMGxxirPEv+y9fIdFmSXjkorjsUx0d6Vw9y
MOAURQjx9hahJ1x2UNCCCDj4dJ1Cq888C/G0L2BtarTwlDKslnj4EJt3tJbSZgRr
+qS3/8w9YNRO7wDqUWwBfls7xsyU6s4Qby4cLUYcuArq7+75Q/OH2GYXgfNrxd0Y
UYSuisG3yh+7Hb2xkfO8ZuGfPjEnTr52x49/ArAS/zwLkJDx828VRYBZu/WLbIi0
8vrBYbtF+raU4/ta42Be8MKp4SyEW06WrvJsVio0wglsqF14ho7x5fhZKQr2CmQJ
YLIqJzj6jryRkQ==
-----END CERTIFICATE-----