Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.mft
File:                     ykV-EXPE6FG5LTyO6ZZxUZSKmuk.mft (raw, json)
Hash identifier:          fdJax0JDhreCXqyXHAuME93ldUWGr6MP+sD+I03G1b8=
Subject key identifier:   E1:BF:F2:39:38:C9:31:67:75:17:1B:92:0A:8E:34:02:97:9B:94:23
Authority key identifier: CA:45:7E:11:73:C4:E8:51:B9:2D:3C:8E:E9:96:71:51:94:8A:9A:E9
Certificate issuer:       /CN=ca457e1173c4e851b92d3c8ee9967151948a9ae9
Certificate serial:       0198D54E835C0458CE33EF1EB1D532201E90
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.mft
Manifest number:          1646
Signing time:             Sat 23 Aug 2025 05:02:29 +0000
Manifest this update:     Sat 23 Aug 2025 05:02:29 +0000
Manifest next update:     Sun 24 Aug 2025 05:02:29 +0000
Files and hashes:         1: ykV-EXPE6FG5LTyO6ZZxUZSKmuk.crl (hash: vWySxsQYGq9q3VMqp1cbKfub20ox+BtRH8Fi3Ma0B8o=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:4e:83:5c:04:58:ce:33:ef:1e:b1:d5:32:20:1e:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ca457e1173c4e851b92d3c8ee9967151948a9ae9
        Validity
            Not Before: Aug 23 05:02:29 2025 GMT
            Not After : Aug 24 05:02:29 2025 GMT
        Subject: CN=e1bff23938c9316775171b920a8e3402979b9423
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:06:70:a4:98:5b:6b:e3:28:0b:d4:48:d3:51:
                    b0:92:48:29:23:14:89:94:ba:b8:d3:0a:fd:41:47:
                    5e:23:43:e1:e7:02:0d:da:bf:ae:df:48:ee:6d:2a:
                    35:07:f6:d5:bf:2e:65:00:96:1a:1e:98:92:e7:3f:
                    f3:f9:15:10:2b:42:06:77:96:9f:be:ca:5a:c0:67:
                    f9:94:9c:af:af:a9:94:5a:e6:24:50:eb:a2:96:eb:
                    df:a6:44:10:1b:37:39:9a:0b:ec:2e:c3:b5:1a:19:
                    a0:b0:16:bd:24:8f:99:c2:7a:4a:ac:09:a0:43:36:
                    9c:c9:30:5a:3e:ac:03:f8:6c:a0:91:9c:09:49:15:
                    c5:9e:87:dc:71:87:f3:a1:80:c7:13:03:61:c7:21:
                    77:5f:44:aa:51:bf:c6:4f:1a:74:fd:76:e5:af:dd:
                    db:ed:5c:f5:c4:31:8c:35:1c:14:b0:fb:bd:5d:72:
                    ee:03:72:50:a7:d7:36:ec:04:48:46:27:15:88:68:
                    19:84:53:49:0f:98:6d:2d:b1:72:22:df:5e:71:f8:
                    f0:e8:7a:1c:fe:3f:97:ea:13:fd:e0:f2:c2:89:36:
                    cf:6b:a0:cc:ba:17:0c:f1:1a:74:e6:62:ed:02:0e:
                    f3:a9:90:38:9a:d3:ac:8c:99:d5:c0:d8:b2:ee:b8:
                    e4:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:BF:F2:39:38:C9:31:67:75:17:1B:92:0A:8E:34:02:97:9B:94:23
            X509v3 Authority Key Identifier:
                keyid:CA:45:7E:11:73:C4:E8:51:B9:2D:3C:8E:E9:96:71:51:94:8A:9A:E9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/5fbb69-9b7e-43be-8904-19de2c183c05/1/ykV-EXPE6FG5LTyO6ZZxUZSKmuk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         34:54:9f:98:80:97:cc:f5:49:89:74:92:ed:f9:80:a1:ef:e2:
         32:3e:ee:aa:06:64:87:4a:64:74:5a:4e:b9:89:bc:9a:0d:aa:
         65:cf:ff:53:e5:9d:92:52:48:d9:bd:70:91:0d:c4:eb:10:4c:
         1b:d5:e2:24:f4:2a:4d:d4:c9:a0:28:24:4a:fb:c1:11:f1:64:
         0e:78:48:47:b3:6d:ea:be:25:e3:9b:c7:2f:cc:3d:83:0c:ac:
         c7:a8:c6:f8:15:e0:1d:ad:c7:1a:43:31:e3:16:47:d9:62:d0:
         82:b3:03:17:fa:a1:a8:1a:2d:5a:95:e0:59:d1:63:a7:09:02:
         0d:95:32:50:c1:77:3b:35:b5:8d:41:d8:80:26:37:ef:11:8b:
         b0:18:52:11:cb:e8:d2:84:97:c0:57:d1:69:42:72:04:f9:8f:
         02:94:af:f0:c9:eb:d0:16:89:df:0b:d7:33:bf:fc:26:53:02:
         2b:d4:1f:9f:00:78:63:62:b7:b0:f8:ab:4b:f2:52:44:ca:90:
         d9:ff:81:4f:7f:db:bd:52:c1:07:96:f8:d5:37:13:a3:15:43:
         dd:6b:23:26:82:20:ce:0b:f2:13:54:64:62:0a:53:0f:69:4b:
         07:b7:e6:17:01:2d:1e:b4:7c:6f:8e:bd:12:c9:e3:ce:2e:45:
         5b:13:d9:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVToNcBFjOM+8esdUyIB6QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNDU3ZTExNzNjNGU4NTFiOTJkM2M4ZWU5OTY3MTUxOTQ4
YTlhZTkwHhcNMjUwODIzMDUwMjI5WhcNMjUwODI0MDUwMjI5WjAzMTEwLwYDVQQD
EyhlMWJmZjIzOTM4YzkzMTY3NzUxNzFiOTIwYThlMzQwMjk3OWI5NDIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQZwpJhba+MoC9RI01GwkkgpIxSJ
lLq40wr9QUdeI0Ph5wIN2r+u30jubSo1B/bVvy5lAJYaHpiS5z/z+RUQK0IGd5af
vspawGf5lJyvr6mUWuYkUOuiluvfpkQQGzc5mgvsLsO1GhmgsBa9JI+ZwnpKrAmg
QzacyTBaPqwD+GygkZwJSRXFnofccYfzoYDHEwNhxyF3X0SqUb/GTxp0/Xblr93b
7Vz1xDGMNRwUsPu9XXLuA3JQp9c27ARIRicViGgZhFNJD5htLbFyIt9ecfjw6Hoc
/j+X6hP94PLCiTbPa6DMuhcM8Rp05mLtAg7zqZA4mtOsjJnVwNiy7rjkjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOG/8jk4yTFndRcbkgqONAKXm5QjMB8GA1UdIwQY
MBaAFMpFfhFzxOhRuS08jumWcVGUiprpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWtWLUVYUEU2Rkc1TFR5TzZaWnhVWlNLbXVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS81ZmJiNjktOWI3ZS00M2JlLTg5MDQt
MTlkZTJjMTgzYzA1LzEveWtWLUVYUEU2Rkc1TFR5TzZaWnhVWlNLbXVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS81ZmJiNjktOWI3ZS00M2JlLTg5MDQtMTlkZTJjMTgzYzA1
LzEveWtWLUVYUEU2Rkc1TFR5TzZaWnhVWlNLbXVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANFSfmICX
zPVJiXSS7fmAoe/iMj7uqgZkh0pkdFpOuYm8mg2qZc//U+WdklJI2b1wkQ3E6xBM
G9XiJPQqTdTJoCgkSvvBEfFkDnhIR7Nt6r4l45vHL8w9gwysx6jG+BXgHa3HGkMx
4xZH2WLQgrMDF/qhqBotWpXgWdFjpwkCDZUyUMF3OzW1jUHYgCY37xGLsBhSEcvo
0oSXwFfRaUJyBPmPApSv8Mnr0BaJ3wvXM7/8JlMCK9QfnwB4Y2K3sPirS/JSRMqQ
2f+BT3/bvVLBB5b41TcToxVD3WsjJoIgzgvyE1RkYgpTD2lLB7fmFwEtHrR8b469
Esnjzi5FWxPZvA==
-----END CERTIFICATE-----