Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft
File:                     Tle6dst9bSrsBSA89BuOZxbufqA.mft (raw, json)
Hash identifier:          GX1YMlKafSv+dArcLFStJLQInej0glnl0KHLnT+AjMI=
Subject key identifier:   FD:6A:6B:4A:26:99:C8:EC:DA:49:CE:8C:CD:45:41:48:EB:FF:32:75
Authority key identifier: 4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0
Certificate issuer:       /CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0
Certificate serial:       0198D473982DA563BA7781686653FC983C2D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft
Manifest number:          0F6E
Signing time:             Sat 23 Aug 2025 01:03:21 +0000
Manifest this update:     Sat 23 Aug 2025 01:03:21 +0000
Manifest next update:     Sun 24 Aug 2025 01:03:21 +0000
Files and hashes:         1: Tle6dst9bSrsBSA89BuOZxbufqA.crl (hash: TWkeja0OnC5UvBxJrT+JHDwOHg/ecytNp3th/3eTNNc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 01:03:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:73:98:2d:a5:63:ba:77:81:68:66:53:fc:98:3c:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e57ba76cb7d6d2aec05203cf41b8e6716ee7ea0
        Validity
            Not Before: Aug 23 01:03:21 2025 GMT
            Not After : Aug 24 01:03:21 2025 GMT
        Subject: CN=fd6a6b4a2699c8ecda49ce8ccd454148ebff3275
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:c0:64:70:32:1c:26:62:06:15:39:5e:cf:e7:
                    b2:bd:4a:f7:95:bf:b7:3d:aa:46:29:cd:9d:1e:01:
                    49:a7:7a:60:d1:91:18:34:79:27:0e:b3:6a:c7:df:
                    7a:9b:34:7e:39:6e:f6:4c:8d:43:89:2c:d0:5d:84:
                    85:79:7d:e9:3b:09:5e:d1:bd:a5:a4:bf:ae:75:b0:
                    71:86:c9:b4:42:48:85:30:d8:fb:c3:37:45:d8:44:
                    64:c0:cc:f6:88:02:03:71:03:f1:c0:fe:b9:a9:89:
                    43:fa:49:2c:b0:c3:dd:39:31:c2:2a:37:c7:d7:3d:
                    dc:1e:24:f3:f2:5d:85:e5:86:41:d7:28:5a:e2:ac:
                    79:fa:70:7f:28:71:e6:19:4c:ab:62:66:bc:a3:85:
                    a3:5c:07:b0:27:25:1f:24:c1:49:c6:a8:07:81:59:
                    aa:2b:d3:04:11:ee:97:e1:4d:89:fa:90:ad:86:3f:
                    e0:c2:11:61:5a:c5:9b:f0:70:01:d3:c9:9b:79:b5:
                    49:2a:46:af:0e:23:e3:b8:23:ea:49:64:2d:a9:81:
                    90:81:89:58:44:fe:60:7f:c9:5b:0b:c4:eb:81:b6:
                    63:f1:d0:6d:74:2c:5b:58:7e:37:21:87:07:86:0b:
                    ee:c4:4e:54:2a:c9:d6:ce:3d:60:8f:fd:a6:c6:0f:
                    15:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:6A:6B:4A:26:99:C8:EC:DA:49:CE:8C:CD:45:41:48:EB:FF:32:75
            X509v3 Authority Key Identifier:
                keyid:4E:57:BA:76:CB:7D:6D:2A:EC:05:20:3C:F4:1B:8E:67:16:EE:7E:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tle6dst9bSrsBSA89BuOZxbufqA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/77/69e7fe-40c0-45c2-b2b1-b72d7adbfb96/1/Tle6dst9bSrsBSA89BuOZxbufqA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:7e:27:1c:14:96:be:6e:74:b4:f6:0e:6b:9b:12:e0:3d:fc:
         23:b7:24:42:d9:5c:a6:57:b6:87:2c:d6:e6:b3:ba:4d:fb:26:
         07:10:89:0b:49:8f:e7:8b:68:b2:d6:cd:58:5f:d5:0d:3e:3d:
         2f:16:65:a6:cc:d3:52:10:9d:c0:76:44:94:21:0b:2b:5f:31:
         04:bf:30:90:09:97:45:a7:ae:d1:2c:28:f5:87:63:3e:95:3e:
         63:cc:55:af:19:60:99:5f:de:30:9c:1d:17:a1:76:94:37:d2:
         b0:b6:31:92:ff:7f:18:b4:c7:45:70:65:ea:cf:02:04:e6:76:
         91:c6:6f:b5:d3:9f:c9:0b:18:16:66:56:44:ac:2d:61:20:b9:
         cd:84:c9:74:e4:6e:8c:fb:05:9e:10:31:d5:4a:81:be:6d:ec:
         86:7c:e8:16:16:8d:28:dd:91:e5:37:15:91:7f:8c:24:ba:ce:
         6f:46:51:c5:f6:43:cf:31:6d:e0:da:ca:38:39:5f:b9:96:88:
         83:0f:29:ba:9f:3c:c9:12:8c:6f:ff:c7:84:f0:8b:ad:83:c6:
         3d:a6:ec:59:17:8c:31:d1:a4:86:70:17:15:7f:73:21:51:dd:
         24:f3:cb:61:7e:6b:f0:6b:c0:af:82:3e:98:32:8e:8e:14:4e:
         ae:ce:d9:bf
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUc5gtpWO6d4FoZlP8mDwtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlNTdiYTc2Y2I3ZDZkMmFlYzA1MjAzY2Y0MWI4ZTY3MTZl
ZTdlYTAwHhcNMjUwODIzMDEwMzIxWhcNMjUwODI0MDEwMzIxWjAzMTEwLwYDVQQD
EyhmZDZhNmI0YTI2OTljOGVjZGE0OWNlOGNjZDQ1NDE0OGViZmYzMjc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMBkcDIcJmIGFTlez+eyvUr3lb+3
PapGKc2dHgFJp3pg0ZEYNHknDrNqx996mzR+OW72TI1DiSzQXYSFeX3pOwle0b2l
pL+udbBxhsm0QkiFMNj7wzdF2ERkwMz2iAIDcQPxwP65qYlD+kkssMPdOTHCKjfH
1z3cHiTz8l2F5YZB1yha4qx5+nB/KHHmGUyrYma8o4WjXAewJyUfJMFJxqgHgVmq
K9MEEe6X4U2J+pCthj/gwhFhWsWb8HAB08mbebVJKkavDiPjuCPqSWQtqYGQgYlY
RP5gf8lbC8TrgbZj8dBtdCxbWH43IYcHhgvuxE5UKsnWzj1gj/2mxg8V4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP1qa0ommcjs2knOjM1FQUjr/zJ1MB8GA1UdIwQY
MBaAFE5XunbLfW0q7AUgPPQbjmcW7n6gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny82OWU3ZmUtNDBjMC00NWMyLWIyYjEt
YjcyZDdhZGJmYjk2LzEvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny82OWU3ZmUtNDBjMC00NWMyLWIyYjEtYjcyZDdhZGJmYjk2
LzEvVGxlNmRzdDliU3JzQlNBODlCdU9aeGJ1ZnFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeH4nHBSW
vm50tPYOa5sS4D38I7ckQtlcple2hyzW5rO6TfsmBxCJC0mP54tostbNWF/VDT49
LxZlpszTUhCdwHZElCELK18xBL8wkAmXRaeu0Swo9YdjPpU+Y8xVrxlgmV/eMJwd
F6F2lDfSsLYxkv9/GLTHRXBl6s8CBOZ2kcZvtdOfyQsYFmZWRKwtYSC5zYTJdORu
jPsFnhAx1UqBvm3shnzoFhaNKN2R5TcVkX+MJLrOb0ZRxfZDzzFt4NrKODlfuZaI
gw8pup88yRKMb//HhPCLrYPGPabsWReMMdGkhnAXFX9zIVHdJPPLYX5r8GvAr4I+
mDKOjhROrs7Zvw==
-----END CERTIFICATE-----