Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.mft
File:                     _Nq63VYraOxeFY4easdvfalucyM.mft (raw, json)
Hash identifier:          vgnMJb5xdFkgELWADIhMOnvcWEtOKViteLBzAIinuW4=
Subject key identifier:   7B:7C:B3:23:EA:21:B7:67:46:60:A5:A9:BB:09:C4:76:47:8C:03:92
Authority key identifier: FC:DA:BA:DD:56:2B:68:EC:5E:15:8E:1E:6A:C7:6F:7D:A9:6E:73:23
Certificate issuer:       /CN=fcdabadd562b68ec5e158e1e6ac76f7da96e7323
Certificate serial:       0198D4DFF0F0441579B96B586AA721A71E8E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_Nq63VYraOxeFY4easdvfalucyM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.mft
Manifest number:          1647
Signing time:             Sat 23 Aug 2025 03:01:42 +0000
Manifest this update:     Sat 23 Aug 2025 03:01:42 +0000
Manifest next update:     Sun 24 Aug 2025 03:01:42 +0000
Files and hashes:         1: _Nq63VYraOxeFY4easdvfalucyM.crl (hash: pRKZzVkYKbWLql6Tg9C9EfIG0VztDWZVphZTqFDtnBo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/_Nq63VYraOxeFY4easdvfalucyM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:01:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:df:f0:f0:44:15:79:b9:6b:58:6a:a7:21:a7:1e:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fcdabadd562b68ec5e158e1e6ac76f7da96e7323
        Validity
            Not Before: Aug 23 03:01:42 2025 GMT
            Not After : Aug 24 03:01:42 2025 GMT
        Subject: CN=7b7cb323ea21b7674660a5a9bb09c476478c0392
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:b5:ba:d8:c2:97:49:21:80:4f:9c:79:ea:9b:
                    2e:06:51:63:48:62:f9:7f:ba:45:1e:8c:85:75:b5:
                    20:f8:97:5c:dc:2f:37:2d:b5:a2:db:3f:8f:39:e1:
                    98:28:e1:0c:3b:15:5b:21:78:27:71:39:a9:1a:56:
                    d0:20:fb:88:45:fd:50:0a:a2:68:66:bf:a7:33:8a:
                    98:62:af:c5:4f:6f:99:52:06:c8:48:52:5d:53:f5:
                    62:58:f4:10:ba:fc:90:e0:6e:8f:01:a8:d2:29:03:
                    78:e9:eb:49:91:11:06:7b:30:6c:fa:11:b9:d1:d2:
                    d0:3d:6f:ca:30:4e:98:7a:a4:cf:76:cd:78:d3:f2:
                    7b:7e:17:09:b4:e4:69:1f:db:b3:82:fa:36:be:3b:
                    7d:3c:dc:f7:36:17:08:84:c7:35:74:b5:c4:d2:54:
                    2e:28:22:a5:e9:49:92:3b:48:c9:b6:61:e2:5c:75:
                    e2:e9:64:2f:e1:f1:22:06:a5:c0:e9:2e:4e:de:ba:
                    12:4a:df:e0:f1:ae:14:12:20:57:08:f9:d0:d2:db:
                    98:d8:7f:13:01:98:81:f3:f6:1a:47:11:5b:d4:9e:
                    34:9b:fa:a0:7d:15:20:65:4a:0a:8c:bb:ba:68:f1:
                    dc:ad:1a:4d:4a:b9:35:39:7f:19:dd:07:cb:03:42:
                    cb:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:7C:B3:23:EA:21:B7:67:46:60:A5:A9:BB:09:C4:76:47:8C:03:92
            X509v3 Authority Key Identifier:
                keyid:FC:DA:BA:DD:56:2B:68:EC:5E:15:8E:1E:6A:C7:6F:7D:A9:6E:73:23

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Nq63VYraOxeFY4easdvfalucyM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e8bb13-9f89-40ca-8a6b-a394e866b37c/1/_Nq63VYraOxeFY4easdvfalucyM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:aa:42:88:b2:3b:d2:9b:08:00:c3:02:46:64:30:85:b1:90:
         fc:9f:22:ff:a3:8b:9b:ac:9c:fd:05:ab:d6:18:b2:5d:3b:a7:
         44:35:d6:54:17:84:34:f3:62:6a:6e:52:f6:d5:64:ef:bd:42:
         42:d2:c2:84:ef:00:0f:f0:f3:dc:b6:8b:26:2a:9a:62:03:44:
         e4:6e:fa:32:a3:d0:ea:ae:2d:14:22:5c:15:57:4d:96:44:ff:
         07:ae:0f:5f:f8:ba:f0:52:d9:c5:98:82:74:a2:e7:9a:99:95:
         dd:e4:91:18:a9:22:e7:30:39:c8:01:ae:6d:0b:f9:91:7e:12:
         76:42:37:49:9f:7b:e1:db:98:9a:90:b9:52:fa:3e:29:14:78:
         75:f3:99:ed:23:d6:3e:f9:04:1c:a8:09:f5:9c:93:d4:b9:11:
         cc:ec:3c:ee:10:3d:0f:95:ca:ee:aa:ca:8e:e4:ee:97:94:f6:
         6e:59:2f:7f:cd:76:52:91:24:b4:d8:9d:53:66:e1:de:7a:57:
         1d:23:34:a4:cf:bd:21:cd:e6:77:fd:11:49:20:91:d1:0d:c5:
         39:28:bf:64:d8:0e:99:ab:f9:a8:c1:37:36:c6:a3:35:20:a3:
         20:b6:b5:19:70:9a:b1:c8:36:a7:32:72:34:97:0a:63:5b:82:
         a0:ee:6a:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU3/DwRBV5uWtYaqchpx6OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjZGFiYWRkNTYyYjY4ZWM1ZTE1OGUxZTZhYzc2ZjdkYTk2
ZTczMjMwHhcNMjUwODIzMDMwMTQyWhcNMjUwODI0MDMwMTQyWjAzMTEwLwYDVQQD
Eyg3YjdjYjMyM2VhMjFiNzY3NDY2MGE1YTliYjA5YzQ3NjQ3OGMwMzkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoLW62MKXSSGAT5x56psuBlFjSGL5
f7pFHoyFdbUg+Jdc3C83LbWi2z+POeGYKOEMOxVbIXgncTmpGlbQIPuIRf1QCqJo
Zr+nM4qYYq/FT2+ZUgbISFJdU/ViWPQQuvyQ4G6PAajSKQN46etJkREGezBs+hG5
0dLQPW/KME6YeqTPds140/J7fhcJtORpH9uzgvo2vjt9PNz3NhcIhMc1dLXE0lQu
KCKl6UmSO0jJtmHiXHXi6WQv4fEiBqXA6S5O3roSSt/g8a4UEiBXCPnQ0tuY2H8T
AZiB8/YaRxFb1J40m/qgfRUgZUoKjLu6aPHcrRpNSrk1OX8Z3QfLA0LLfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHt8syPqIbdnRmClqbsJxHZHjAOSMB8GA1UdIwQY
MBaAFPzaut1WK2jsXhWOHmrHb32pbnMjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX05xNjNWWXJhT3hlRlk0ZWFzZHZmYWx1Y3lNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni9lOGJiMTMtOWY4OS00MGNhLThhNmIt
YTM5NGU4NjZiMzdjLzEvX05xNjNWWXJhT3hlRlk0ZWFzZHZmYWx1Y3lNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni9lOGJiMTMtOWY4OS00MGNhLThhNmItYTM5NGU4NjZiMzdj
LzEvX05xNjNWWXJhT3hlRlk0ZWFzZHZmYWx1Y3lNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI6pCiLI7
0psIAMMCRmQwhbGQ/J8i/6OLm6yc/QWr1hiyXTunRDXWVBeENPNiam5S9tVk771C
QtLChO8AD/Dz3LaLJiqaYgNE5G76MqPQ6q4tFCJcFVdNlkT/B64PX/i68FLZxZiC
dKLnmpmV3eSRGKki5zA5yAGubQv5kX4SdkI3SZ974duYmpC5Uvo+KRR4dfOZ7SPW
PvkEHKgJ9ZyT1LkRzOw87hA9D5XK7qrKjuTul5T2blkvf812UpEktNidU2bh3npX
HSM0pM+9Ic3md/0RSSCR0Q3FOSi/ZNgOmav5qME3NsajNSCjILa1GXCascg2pzJy
NJcKY1uCoO5qKQ==
-----END CERTIFICATE-----