Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft
File:                     Mnib05LhxcabdCDMA2gDrxJYzvk.mft (raw, json)
Hash identifier:          gY4yeQYFRThsswux4XSlZh81FOxB8HfhDbBe9XAUB9Y=
Subject key identifier:   97:02:B4:3D:21:3D:5C:2E:E3:15:16:63:F8:20:38:C5:9E:7B:2C:C2
Authority key identifier: 32:78:9B:D3:92:E1:C5:C6:9B:74:20:CC:03:68:03:AF:12:58:CE:F9
Certificate issuer:       /CN=32789bd392e1c5c69b7420cc036803af1258cef9
Certificate serial:       0198D4E087463FADEF16E28A465FEA006D81
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Mnib05LhxcabdCDMA2gDrxJYzvk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft
Manifest number:          079B
Signing time:             Sat 23 Aug 2025 03:02:21 +0000
Manifest this update:     Sat 23 Aug 2025 03:02:21 +0000
Manifest next update:     Sun 24 Aug 2025 03:02:21 +0000
Files and hashes:         1: Mnib05LhxcabdCDMA2gDrxJYzvk.crl (hash: J/omyl/j03KiCLFXpRefZvUmXuYB60C94Sz7Rzqt5co=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Mnib05LhxcabdCDMA2gDrxJYzvk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:02:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:87:46:3f:ad:ef:16:e2:8a:46:5f:ea:00:6d:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=32789bd392e1c5c69b7420cc036803af1258cef9
        Validity
            Not Before: Aug 23 03:02:21 2025 GMT
            Not After : Aug 24 03:02:21 2025 GMT
        Subject: CN=9702b43d213d5c2ee3151663f82038c59e7b2cc2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:62:48:d9:30:29:c9:8a:01:4b:bf:f3:81:35:
                    6c:3b:0b:09:fb:d1:b5:8b:0b:66:34:e1:a6:a5:5a:
                    f0:4d:2c:12:59:a6:04:bf:f3:d6:66:93:05:8d:b8:
                    38:05:38:05:f0:81:4b:3d:13:cb:6d:97:c3:18:f3:
                    ea:57:fc:42:f3:e6:c2:bb:12:04:2f:d6:c7:48:d5:
                    cd:5a:6d:a7:3b:33:6a:a7:f0:1a:81:4e:41:db:2d:
                    bb:28:71:6f:be:35:f2:d1:08:d7:65:ac:43:10:70:
                    10:39:cc:49:0f:0c:a2:24:65:a3:de:c3:95:a9:3a:
                    57:3d:b7:34:0c:e5:bc:2e:9b:54:5d:96:33:61:5b:
                    83:52:b8:78:be:2e:48:83:3d:ee:c9:85:ce:30:aa:
                    d0:45:70:1c:20:82:96:f5:80:a8:b1:da:c0:19:cf:
                    38:ad:ef:01:e5:77:12:6a:1a:aa:e6:15:e0:0f:8c:
                    64:94:5c:e2:18:79:91:51:7c:64:21:0e:94:60:ea:
                    92:32:71:12:d1:01:f4:d8:a5:7d:86:6b:f7:04:94:
                    f7:80:5a:a5:ad:af:76:b2:12:08:19:11:9a:da:7f:
                    ba:6a:71:d2:84:ac:98:a7:28:03:42:0d:e9:1d:3a:
                    79:a3:d3:fa:68:20:a5:ef:e2:6f:f3:ec:e5:93:2e:
                    23:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:02:B4:3D:21:3D:5C:2E:E3:15:16:63:F8:20:38:C5:9E:7B:2C:C2
            X509v3 Authority Key Identifier:
                keyid:32:78:9B:D3:92:E1:C5:C6:9B:74:20:CC:03:68:03:AF:12:58:CE:F9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mnib05LhxcabdCDMA2gDrxJYzvk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/1c17d6-3fd4-4ba1-be4c-3866d4412893/1/Mnib05LhxcabdCDMA2gDrxJYzvk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:34:5a:fd:6b:bf:ba:02:c6:bb:ed:cc:a5:1c:8f:0e:bb:32:
         6b:66:28:b9:d4:21:95:c2:20:db:07:9b:56:1c:cc:8f:01:cc:
         7b:93:0b:3f:bf:36:f4:ae:e9:c2:9b:f7:40:07:92:30:fc:8d:
         0b:7b:3f:9d:59:24:02:39:f4:01:5d:0d:14:bd:df:d1:c7:61:
         a7:c3:fa:b4:b2:fa:f2:a8:8d:db:83:e2:a9:ac:dc:9a:b1:7d:
         b8:d4:a8:90:1b:8d:a6:35:2c:b3:1b:6a:29:ec:70:ee:e6:2a:
         96:07:54:2a:2e:e1:92:20:18:53:a2:25:16:f8:f9:3f:5f:39:
         95:c9:18:9d:a0:74:b9:95:23:e1:c1:7e:46:0a:69:a3:96:67:
         f1:d3:60:1f:b8:ac:37:50:90:8d:e7:5d:68:ac:d8:b5:25:f3:
         6e:56:59:ad:55:fc:72:39:d4:87:d2:5a:61:af:98:5c:54:af:
         d3:4d:e8:28:db:ea:84:7c:ee:5a:9c:a0:dc:e0:9c:7b:d3:06:
         8d:bc:1a:4d:52:50:a9:f9:a9:03:23:a9:a8:b8:f9:ca:49:88:
         3c:cc:37:83:54:77:cb:c7:44:55:b8:3b:fd:d2:ed:1b:95:a2:
         8c:e1:dc:39:e4:1d:2e:41:f5:65:ed:55:13:e0:c9:87:b1:c6:
         ca:82:8b:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4IdGP63vFuKKRl/qAG2BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyNzg5YmQzOTJlMWM1YzY5Yjc0MjBjYzAzNjgwM2FmMTI1
OGNlZjkwHhcNMjUwODIzMDMwMjIxWhcNMjUwODI0MDMwMjIxWjAzMTEwLwYDVQQD
Eyg5NzAyYjQzZDIxM2Q1YzJlZTMxNTE2NjNmODIwMzhjNTllN2IyY2MyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWJI2TApyYoBS7/zgTVsOwsJ+9G1
iwtmNOGmpVrwTSwSWaYEv/PWZpMFjbg4BTgF8IFLPRPLbZfDGPPqV/xC8+bCuxIE
L9bHSNXNWm2nOzNqp/AagU5B2y27KHFvvjXy0QjXZaxDEHAQOcxJDwyiJGWj3sOV
qTpXPbc0DOW8LptUXZYzYVuDUrh4vi5Igz3uyYXOMKrQRXAcIIKW9YCosdrAGc84
re8B5XcSahqq5hXgD4xklFziGHmRUXxkIQ6UYOqSMnES0QH02KV9hmv3BJT3gFql
ra92shIIGRGa2n+6anHShKyYpygDQg3pHTp5o9P6aCCl7+Jv8+zlky4jAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJcCtD0hPVwu4xUWY/ggOMWeeyzCMB8GA1UdIwQY
MBaAFDJ4m9OS4cXGm3QgzANoA68SWM75MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTW5pYjA1TGh4Y2FiZENETUEyZ0RyeEpZenZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xYzE3ZDYtM2ZkNC00YmExLWJlNGMt
Mzg2NmQ0NDEyODkzLzEvTW5pYjA1TGh4Y2FiZENETUEyZ0RyeEpZenZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC8xYzE3ZDYtM2ZkNC00YmExLWJlNGMtMzg2NmQ0NDEyODkz
LzEvTW5pYjA1TGh4Y2FiZENETUEyZ0RyeEpZenZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANzRa/Wu/
ugLGu+3MpRyPDrsya2YoudQhlcIg2webVhzMjwHMe5MLP7829K7pwpv3QAeSMPyN
C3s/nVkkAjn0AV0NFL3f0cdhp8P6tLL68qiN24PiqazcmrF9uNSokBuNpjUssxtq
Kexw7uYqlgdUKi7hkiAYU6IlFvj5P185lckYnaB0uZUj4cF+Rgppo5Zn8dNgH7is
N1CQjeddaKzYtSXzblZZrVX8cjnUh9JaYa+YXFSv003oKNvqhHzuWpyg3OCce9MG
jbwaTVJQqfmpAyOpqLj5ykmIPMw3g1R3y8dEVbg7/dLtG5WijOHcOeQdLkH1Ze1V
E+DJh7HGyoKLDQ==
-----END CERTIFICATE-----