Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft
File:                     k4EH0RRkaaEaY-X10tfbj28717M.mft (raw, json)
Hash identifier:          GNXd4umTsW7JK0FHnJfLPvl/ZbzYVRnM/dzHvJwpi+w=
Subject key identifier:   7C:68:84:8F:81:59:38:99:38:40:44:E7:E5:63:0D:BF:8B:04:4E:DC
Authority key identifier: 93:81:07:D1:14:64:69:A1:1A:63:E5:F5:D2:D7:DB:8F:6F:3B:D7:B3
Certificate issuer:       /CN=938107d1146469a11a63e5f5d2d7db8f6f3bd7b3
Certificate serial:       0198D65F51CD1778CD085B6E20B323F9A069
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/k4EH0RRkaaEaY-X10tfbj28717M.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft
Manifest number:          06AE
Signing time:             Sat 23 Aug 2025 10:00:27 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:27 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:27 +0000
Files and hashes:         1: k4EH0RRkaaEaY-X10tfbj28717M.crl (hash: FMeNlKEzV4a3x2/3ak829K4/iUM80CMx9ktah1JACuY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/k4EH0RRkaaEaY-X10tfbj28717M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:00:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:51:cd:17:78:cd:08:5b:6e:20:b3:23:f9:a0:69
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=938107d1146469a11a63e5f5d2d7db8f6f3bd7b3
        Validity
            Not Before: Aug 23 10:00:27 2025 GMT
            Not After : Aug 24 10:00:27 2025 GMT
        Subject: CN=7c68848f81593899384044e7e5630dbf8b044edc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:99:f0:02:54:d3:87:cc:e6:64:1f:c7:6f:0b:
                    8e:81:11:92:8a:e6:e0:e9:36:34:b5:ee:fc:95:e5:
                    a0:9a:9d:f3:be:a9:13:3f:13:f6:a1:7f:96:28:40:
                    b0:bf:6a:d7:8b:f5:47:80:3a:30:c7:a6:de:3b:b8:
                    82:45:d7:93:18:98:11:c1:fc:09:8e:52:49:29:47:
                    b0:5f:b3:f4:8f:1b:80:90:85:cd:a2:7f:1e:15:72:
                    e0:97:5d:00:ad:f0:1e:92:2b:f9:3f:58:f9:cf:14:
                    94:df:0e:c5:22:4b:82:53:bb:14:5a:5d:ea:dd:ff:
                    66:98:98:00:f0:66:0b:62:0c:06:b9:43:ab:5e:e7:
                    7c:a4:0f:63:43:9b:39:4f:45:12:f6:36:75:e1:77:
                    0a:c9:d8:d2:17:23:23:59:0f:79:b2:8a:3e:07:93:
                    e1:f9:e6:05:8a:47:df:73:91:f7:cf:66:1d:68:51:
                    df:1d:59:5c:28:c1:9d:71:0a:10:d9:43:b4:6a:2e:
                    dd:61:9f:60:e6:42:ce:bc:ed:bd:0b:75:06:c1:a3:
                    3b:bd:1e:5c:9a:8d:06:59:ad:a9:17:61:65:ac:2a:
                    65:3b:96:3b:2d:f1:0b:46:45:d6:5f:ec:59:42:16:
                    21:ae:62:49:ef:10:7f:8a:b2:d1:98:20:02:4e:53:
                    be:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:68:84:8F:81:59:38:99:38:40:44:E7:E5:63:0D:BF:8B:04:4E:DC
            X509v3 Authority Key Identifier:
                keyid:93:81:07:D1:14:64:69:A1:1A:63:E5:F5:D2:D7:DB:8F:6F:3B:D7:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k4EH0RRkaaEaY-X10tfbj28717M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/aff4a9-3c5e-4a71-b524-cbc6ccc08932/1/k4EH0RRkaaEaY-X10tfbj28717M.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         10:e9:4b:1f:b0:d2:2a:74:95:10:93:02:9a:98:f4:44:2f:ac:
         90:a0:2b:5b:fe:3d:ee:ca:19:58:05:22:b0:f9:f3:0c:63:b7:
         d2:c3:18:82:75:8a:d7:95:9e:fa:1d:f6:17:8d:d5:d1:82:89:
         42:f9:4e:f5:d3:b2:7b:fa:9e:e4:9c:e1:4d:1c:f4:95:1d:77:
         af:31:80:6c:f2:69:58:5f:c4:c9:a4:5a:ee:28:c6:ed:3c:5c:
         7d:66:9c:15:58:9f:fd:0d:c5:2e:a8:db:db:f5:63:23:9a:a2:
         f9:76:a5:f3:da:68:f8:e6:de:d5:40:b6:16:c4:e3:da:4b:98:
         31:fb:bf:16:c3:a4:4f:13:50:a0:9a:41:34:d7:9f:e9:39:6a:
         a5:e9:16:50:1d:8a:0c:fb:dc:8b:02:9a:d3:5a:b8:09:f3:b9:
         16:b4:9e:35:5a:01:65:5c:db:f6:44:12:89:c7:f8:5e:20:60:
         6b:2f:f9:9b:9b:94:8e:54:7d:08:bb:48:f0:a3:ee:ca:15:a2:
         be:a4:0d:55:1f:2c:33:c6:19:ad:71:ca:2b:5d:a2:5f:bf:03:
         ea:34:19:f8:e9:f5:eb:16:a5:7c:0e:b6:64:0e:65:4f:6a:06:
         a4:2c:65:94:2d:8e:8a:00:49:05:6e:c2:14:a7:b3:ea:f2:4c:
         c6:d5:d5:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWX1HNF3jNCFtuILMj+aBpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzODEwN2QxMTQ2NDY5YTExYTYzZTVmNWQyZDdkYjhmNmYz
YmQ3YjMwHhcNMjUwODIzMTAwMDI3WhcNMjUwODI0MTAwMDI3WjAzMTEwLwYDVQQD
Eyg3YzY4ODQ4ZjgxNTkzODk5Mzg0MDQ0ZTdlNTYzMGRiZjhiMDQ0ZWRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA65nwAlTTh8zmZB/HbwuOgRGSiubg
6TY0te78leWgmp3zvqkTPxP2oX+WKECwv2rXi/VHgDowx6beO7iCRdeTGJgRwfwJ
jlJJKUewX7P0jxuAkIXNon8eFXLgl10ArfAekiv5P1j5zxSU3w7FIkuCU7sUWl3q
3f9mmJgA8GYLYgwGuUOrXud8pA9jQ5s5T0US9jZ14XcKydjSFyMjWQ95soo+B5Ph
+eYFikffc5H3z2YdaFHfHVlcKMGdcQoQ2UO0ai7dYZ9g5kLOvO29C3UGwaM7vR5c
mo0GWa2pF2FlrCplO5Y7LfELRkXWX+xZQhYhrmJJ7xB/irLRmCACTlO+1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHxohI+BWTiZOEBE5+VjDb+LBE7cMB8GA1UdIwQY
MBaAFJOBB9EUZGmhGmPl9dLX249vO9ezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazRFSDBSUmthYUVhWS1YMTB0ZmJqMjg3MTdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9hZmY0YTktM2M1ZS00YTcxLWI1MjQt
Y2JjNmNjYzA4OTMyLzEvazRFSDBSUmthYUVhWS1YMTB0ZmJqMjg3MTdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9hZmY0YTktM2M1ZS00YTcxLWI1MjQtY2JjNmNjYzA4OTMy
LzEvazRFSDBSUmthYUVhWS1YMTB0ZmJqMjg3MTdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEOlLH7DS
KnSVEJMCmpj0RC+skKArW/497soZWAUisPnzDGO30sMYgnWK15We+h32F43V0YKJ
QvlO9dOye/qe5JzhTRz0lR13rzGAbPJpWF/EyaRa7ijG7TxcfWacFVif/Q3FLqjb
2/VjI5qi+Xal89po+Obe1UC2FsTj2kuYMfu/FsOkTxNQoJpBNNef6TlqpekWUB2K
DPvciwKa01q4CfO5FrSeNVoBZVzb9kQSicf4XiBgay/5m5uUjlR9CLtI8KPuyhWi
vqQNVR8sM8YZrXHKK12iX78D6jQZ+On16xalfA62ZA5lT2oGpCxllC2OigBJBW7C
FKez6vJMxtXVxQ==
-----END CERTIFICATE-----