Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
File:                     oqodRGKTg8rfx1F9733ikpWuObQ.mft (raw, json)
Hash identifier:          AjKJ+sumY18J73pjxkL51T6QTvYw0f5T5ENEfhqs9EU=
Subject key identifier:   53:18:A9:89:7F:42:94:48:9C:4F:03:8E:F2:7E:CD:83:23:F7:C7:9E
Authority key identifier: A2:AA:1D:44:62:93:83:CA:DF:C7:51:7D:EF:7D:E2:92:95:AE:39:B4
Certificate issuer:       /CN=a2aa1d44629383cadfc7517def7de29295ae39b4
Certificate serial:       0198D515EBDB74E7B7AADD677ECB1280E862
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oqodRGKTg8rfx1F9733ikpWuObQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
Manifest number:          0DBF
Signing time:             Sat 23 Aug 2025 04:00:40 +0000
Manifest this update:     Sat 23 Aug 2025 04:00:40 +0000
Manifest next update:     Sun 24 Aug 2025 04:00:40 +0000
Files and hashes:         1: oqodRGKTg8rfx1F9733ikpWuObQ.crl (hash: a6On+GSt+4/g3WJfd3Ugr/gTuFcpxsEQbiwtrAU3+gU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oqodRGKTg8rfx1F9733ikpWuObQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 04:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:15:eb:db:74:e7:b7:aa:dd:67:7e:cb:12:80:e8:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a2aa1d44629383cadfc7517def7de29295ae39b4
        Validity
            Not Before: Aug 23 04:00:40 2025 GMT
            Not After : Aug 24 04:00:40 2025 GMT
        Subject: CN=5318a9897f4294489c4f038ef27ecd8323f7c79e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:c6:2d:22:fe:f1:7c:35:e8:8c:86:03:8c:62:
                    85:13:e8:ca:0e:ea:17:f3:57:e8:91:af:3a:7c:61:
                    c1:48:fb:d0:a4:8a:fb:58:5f:97:50:09:da:6b:35:
                    29:a5:ac:6c:08:c9:0b:b4:d1:00:cb:a0:2c:77:e9:
                    ca:df:00:34:b9:91:ad:b0:6c:27:1d:81:1e:91:8e:
                    62:12:dc:f6:3f:ac:de:22:82:e8:e7:1b:63:47:b3:
                    6d:dd:ef:5c:cf:4e:58:0c:96:c1:c5:be:ec:23:f3:
                    e3:0f:42:e0:b8:fe:dd:bf:a1:64:90:1c:34:59:ed:
                    67:07:d6:3f:b0:e2:51:69:3f:3a:d4:10:a2:9f:c9:
                    be:cc:e4:c5:0e:a7:27:66:11:ab:6a:d1:40:92:d2:
                    c5:24:f8:b0:9b:d8:6f:d3:9b:5b:0a:c0:f3:2e:0b:
                    75:38:97:7b:5b:92:9b:94:43:fa:2e:a6:fe:ef:59:
                    c1:c3:a7:e0:c6:0c:c5:b6:9f:ed:49:d5:f2:75:1f:
                    16:b6:3f:23:95:f1:1a:ea:00:e9:a5:3c:d0:37:cd:
                    6f:1c:eb:4d:9a:9d:16:f0:d2:e2:59:11:a0:1c:15:
                    af:24:74:e9:fd:3f:22:9f:e0:2d:44:b9:41:a1:17:
                    e7:06:d2:cd:f3:b6:b3:a9:b1:36:40:d1:cc:cd:92:
                    df:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:18:A9:89:7F:42:94:48:9C:4F:03:8E:F2:7E:CD:83:23:F7:C7:9E
            X509v3 Authority Key Identifier:
                keyid:A2:AA:1D:44:62:93:83:CA:DF:C7:51:7D:EF:7D:E2:92:95:AE:39:B4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oqodRGKTg8rfx1F9733ikpWuObQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/55/317824-f8f5-4b78-9b5e-749175b178f1/1/oqodRGKTg8rfx1F9733ikpWuObQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:aa:8e:a1:19:a1:7b:97:1f:05:0b:d6:61:82:41:13:93:8e:
         64:8b:f8:97:da:26:b8:f9:68:0f:65:d1:85:7f:1a:7b:8a:dd:
         36:ff:3c:e1:73:13:0a:a0:57:5e:aa:80:39:30:9f:07:11:fd:
         69:99:b1:a3:1e:b3:e4:38:ae:96:4f:ec:85:e8:93:25:98:50:
         77:f0:79:57:e9:94:dc:ca:df:94:92:66:1c:c7:e8:ba:00:c1:
         4e:18:4d:80:e6:3e:f7:7c:72:3e:8e:34:db:7d:18:56:68:3f:
         b9:c2:6c:f2:d0:db:30:ff:e6:1b:a0:38:83:eb:a3:d6:f3:e2:
         80:05:4c:78:b2:fd:63:63:20:76:e0:38:6d:48:ce:f3:61:55:
         cf:50:55:22:7c:04:8e:27:7c:a5:34:c5:98:b6:80:3b:94:21:
         79:28:c2:b6:2c:66:a8:b7:a0:6a:38:18:43:06:67:56:ae:57:
         ff:23:9c:97:cb:39:32:af:b8:7c:4f:b7:11:e0:9f:80:35:c4:
         82:91:85:fd:87:70:45:99:ea:2f:a7:34:17:42:cf:82:ce:4a:
         6e:71:55:18:da:ba:24:f4:f4:98:e8:d1:3b:28:fb:19:8f:41:
         d8:75:45:0f:9e:08:93:b1:47:58:d5:d2:14:62:bb:4d:e4:db:
         1b:42:22:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVFevbdOe3qt1nfssSgOhiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyYWExZDQ0NjI5MzgzY2FkZmM3NTE3ZGVmN2RlMjkyOTVh
ZTM5YjQwHhcNMjUwODIzMDQwMDQwWhcNMjUwODI0MDQwMDQwWjAzMTEwLwYDVQQD
Eyg1MzE4YTk4OTdmNDI5NDQ4OWM0ZjAzOGVmMjdlY2Q4MzIzZjdjNzllMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp8YtIv7xfDXojIYDjGKFE+jKDuoX
81foka86fGHBSPvQpIr7WF+XUAnaazUppaxsCMkLtNEAy6Asd+nK3wA0uZGtsGwn
HYEekY5iEtz2P6zeIoLo5xtjR7Nt3e9cz05YDJbBxb7sI/PjD0LguP7dv6FkkBw0
We1nB9Y/sOJRaT861BCin8m+zOTFDqcnZhGratFAktLFJPiwm9hv05tbCsDzLgt1
OJd7W5KblEP6Lqb+71nBw6fgxgzFtp/tSdXydR8Wtj8jlfEa6gDppTzQN81vHOtN
mp0W8NLiWRGgHBWvJHTp/T8in+AtRLlBoRfnBtLN87azqbE2QNHMzZLfRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFMYqYl/QpRInE8DjvJ+zYMj98eeMB8GA1UdIwQY
MBaAFKKqHURik4PK38dRfe994pKVrjm0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3FvZFJHS1RnOHJmeDFGOTczM2lrcFd1T2JRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8zMTc4MjQtZjhmNS00Yjc4LTliNWUt
NzQ5MTc1YjE3OGYxLzEvb3FvZFJHS1RnOHJmeDFGOTczM2lrcFd1T2JRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NS8zMTc4MjQtZjhmNS00Yjc4LTliNWUtNzQ5MTc1YjE3OGYx
LzEvb3FvZFJHS1RnOHJmeDFGOTczM2lrcFd1T2JRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV6qOoRmh
e5cfBQvWYYJBE5OOZIv4l9omuPloD2XRhX8ae4rdNv884XMTCqBXXqqAOTCfBxH9
aZmxox6z5Diulk/sheiTJZhQd/B5V+mU3MrflJJmHMfougDBThhNgOY+93xyPo40
230YVmg/ucJs8tDbMP/mG6A4g+uj1vPigAVMeLL9Y2MgduA4bUjO82FVz1BVInwE
jid8pTTFmLaAO5QheSjCtixmqLegajgYQwZnVq5X/yOcl8s5Mq+4fE+3EeCfgDXE
gpGF/YdwRZnqL6c0F0LPgs5KbnFVGNq6JPT0mOjROyj7GY9B2HVFD54Ik7FHWNXS
FGK7TeTbG0IiTw==
-----END CERTIFICATE-----