Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft
File:                     9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft (raw, json)
Hash identifier:          w93iWIXUzxcW9X0wBoD75lSQnZyvNTtoJVqjtioQrN8=
Subject key identifier:   DC:EA:AB:C7:7E:F0:14:36:FE:E9:1C:46:29:73:E2:12:AE:ED:89:29
Authority key identifier: F4:ED:5E:5D:BB:A1:EA:B6:D3:95:8E:59:41:82:9C:9D:A1:B2:C6:7F
Certificate issuer:       /CN=f4ed5e5dbba1eab6d3958e5941829c9da1b2c67f
Certificate serial:       0198D6608B05928077B3AD24F7AEBB9B62CD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft
Manifest number:          0A56
Signing time:             Sat 23 Aug 2025 10:01:47 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:47 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:47 +0000
Files and hashes:         1: 9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl (hash: EfAk/6aG2l6qF6DrUcGSLXVNCHrErV8aFxOYVOPSmo0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:8b:05:92:80:77:b3:ad:24:f7:ae:bb:9b:62:cd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f4ed5e5dbba1eab6d3958e5941829c9da1b2c67f
        Validity
            Not Before: Aug 23 10:01:47 2025 GMT
            Not After : Aug 24 10:01:47 2025 GMT
        Subject: CN=dceaabc77ef01436fee91c462973e212aeed8929
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:54:c2:06:ab:40:bc:ed:be:e4:a3:1b:be:3a:
                    54:ca:9d:8e:d7:12:06:09:a4:46:bd:46:dc:67:61:
                    95:91:85:cd:59:d9:65:b3:35:e8:1a:41:29:72:f1:
                    9b:65:25:12:a3:71:cd:c5:28:67:bb:b5:65:04:12:
                    30:35:88:f9:bb:6a:71:37:48:dc:89:76:f5:34:c7:
                    cd:f9:4d:ec:ec:2d:1b:5e:8d:0b:f6:3e:da:fb:37:
                    dd:f2:0a:3b:cb:29:0e:24:29:65:b4:7a:dd:20:5c:
                    ba:31:3b:71:ee:11:10:d2:f4:c3:99:11:c2:07:af:
                    71:d9:98:84:4b:71:29:d4:53:dc:04:76:a6:2e:7e:
                    74:f1:db:02:20:e1:2d:a0:e3:25:9c:ea:2b:1f:de:
                    c3:98:8a:2c:49:60:3b:c1:6e:b6:32:5a:f0:35:b5:
                    a8:cc:ab:d2:f8:86:2f:71:bb:c5:2e:9c:64:28:c1:
                    33:ba:e5:a4:8f:f4:2f:40:3d:e3:70:07:a3:cd:97:
                    68:d3:f7:c0:3b:b4:46:5a:01:09:fd:46:08:9a:fc:
                    d6:d9:0a:bc:01:8e:45:cd:85:86:a8:88:c3:0a:b9:
                    6e:54:00:13:7e:b7:ef:bf:f2:ae:fe:67:38:89:81:
                    aa:25:19:09:5e:9c:6b:fa:bf:4e:b4:6c:70:64:25:
                    68:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DC:EA:AB:C7:7E:F0:14:36:FE:E9:1C:46:29:73:E2:12:AE:ED:89:29
            X509v3 Authority Key Identifier:
                keyid:F4:ED:5E:5D:BB:A1:EA:B6:D3:95:8E:59:41:82:9C:9D:A1:B2:C6:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/afc86c-25b0-474c-a5c4-db1a6bbcbb72/1/9O1eXbuh6rbTlY5ZQYKcnaGyxn8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:d8:05:54:24:75:37:e2:be:bc:ab:48:68:df:17:c6:0c:82:
         89:eb:32:f2:46:89:4f:ce:25:bf:18:6b:5e:d4:66:2a:d1:46:
         d3:28:b2:23:9a:6d:a8:8e:c8:f1:ad:67:11:da:4f:58:2f:e4:
         09:09:88:55:1e:4b:ac:f4:7b:ae:f1:cf:c1:e9:4e:9d:bb:26:
         79:86:06:ca:82:28:54:e1:11:e1:8f:5a:59:66:eb:2c:6a:2a:
         a4:d4:b4:58:2b:ca:39:b5:c2:df:d8:dc:58:6f:09:d5:d0:8e:
         5d:02:af:31:91:6b:be:73:28:48:ad:77:ac:a9:54:a8:87:2a:
         8f:03:35:c6:34:6f:24:df:72:3f:f1:d0:8f:64:19:b5:87:af:
         d5:77:5c:4f:fa:f7:9a:52:5b:ae:c1:a1:a9:9b:65:c3:0a:b7:
         a5:d4:3b:7c:59:e3:a5:93:48:dd:3e:cb:ee:28:8c:36:b3:5f:
         df:48:74:47:18:ef:82:51:48:2c:f6:32:4d:60:40:cc:0c:f5:
         55:08:57:8e:8b:3e:b6:79:b9:bf:51:03:4a:1c:6d:c7:45:7e:
         90:31:e2:25:80:52:4a:e6:06:75:17:20:90:4b:37:4f:a2:f4:
         9f:c7:a1:3a:6f:c6:77:85:6c:8a:fb:0a:a8:90:f6:2c:15:3c:
         ab:aa:d3:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYIsFkoB3s60k9667m2LNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZWQ1ZTVkYmJhMWVhYjZkMzk1OGU1OTQxODI5YzlkYTFi
MmM2N2YwHhcNMjUwODIzMTAwMTQ3WhcNMjUwODI0MTAwMTQ3WjAzMTEwLwYDVQQD
EyhkY2VhYWJjNzdlZjAxNDM2ZmVlOTFjNDYyOTczZTIxMmFlZWQ4OTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5VTCBqtAvO2+5KMbvjpUyp2O1xIG
CaRGvUbcZ2GVkYXNWdllszXoGkEpcvGbZSUSo3HNxShnu7VlBBIwNYj5u2pxN0jc
iXb1NMfN+U3s7C0bXo0L9j7a+zfd8go7yykOJClltHrdIFy6MTtx7hEQ0vTDmRHC
B69x2ZiES3Ep1FPcBHamLn508dsCIOEtoOMlnOorH97DmIosSWA7wW62MlrwNbWo
zKvS+IYvcbvFLpxkKMEzuuWkj/QvQD3jcAejzZdo0/fAO7RGWgEJ/UYImvzW2Qq8
AY5FzYWGqIjDCrluVAATfrfvv/Ku/mc4iYGqJRkJXpxr+r9OtGxwZCVo9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNzqq8d+8BQ2/ukcRilz4hKu7YkpMB8GA1UdIwQY
MBaAFPTtXl27oeq205WOWUGCnJ2hssZ/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU8xZVhidWg2cmJUbFk1WlFZS2NuYUd5eG44LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy9hZmM4NmMtMjViMC00NzRjLWE1YzQt
ZGIxYTZiYmNiYjcyLzEvOU8xZVhidWg2cmJUbFk1WlFZS2NuYUd5eG44Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy9hZmM4NmMtMjViMC00NzRjLWE1YzQtZGIxYTZiYmNiYjcy
LzEvOU8xZVhidWg2cmJUbFk1WlFZS2NuYUd5eG44LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXNgFVCR1
N+K+vKtIaN8XxgyCiesy8kaJT84lvxhrXtRmKtFG0yiyI5ptqI7I8a1nEdpPWC/k
CQmIVR5LrPR7rvHPwelOnbsmeYYGyoIoVOER4Y9aWWbrLGoqpNS0WCvKObXC39jc
WG8J1dCOXQKvMZFrvnMoSK13rKlUqIcqjwM1xjRvJN9yP/HQj2QZtYev1XdcT/r3
mlJbrsGhqZtlwwq3pdQ7fFnjpZNI3T7L7iiMNrNf30h0RxjvglFILPYyTWBAzAz1
VQhXjos+tnm5v1EDShxtx0V+kDHiJYBSSuYGdRcgkEs3T6L0n8ehOm/Gd4VsivsK
qJD2LBU8q6rTdQ==
-----END CERTIFICATE-----