Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.mft
File:                     tmxJhc1gZDIg4GSi4RTXj1sDnCs.mft (raw, json)
Hash identifier:          uFYhlUaef8+3Ho0QtKT0/+Xtv0WFFUu6xOK8bsvTZfg=
Subject key identifier:   4E:61:89:9D:24:C7:D7:E5:38:73:8E:80:09:81:41:03:5E:82:63:21
Authority key identifier: B6:6C:49:85:CD:60:64:32:20:E0:64:A2:E1:14:D7:8F:5B:03:9C:2B
Certificate issuer:       /CN=b66c4985cd60643220e064a2e114d78f5b039c2b
Certificate serial:       0198D660A1D0403B979177539C058A8F385C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tmxJhc1gZDIg4GSi4RTXj1sDnCs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.mft
Manifest number:          0897
Signing time:             Sat 23 Aug 2025 10:01:53 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:53 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:53 +0000
Files and hashes:         1: tmxJhc1gZDIg4GSi4RTXj1sDnCs.crl (hash: XYJT/holx1kV4g90AJ8OIRdF3Y7HCdk+1aRVYTKYEwg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tmxJhc1gZDIg4GSi4RTXj1sDnCs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:a1:d0:40:3b:97:91:77:53:9c:05:8a:8f:38:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b66c4985cd60643220e064a2e114d78f5b039c2b
        Validity
            Not Before: Aug 23 10:01:53 2025 GMT
            Not After : Aug 24 10:01:53 2025 GMT
        Subject: CN=4e61899d24c7d7e538738e80098141035e826321
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:8e:97:ae:ce:e3:36:f7:91:23:37:47:c7:f3:
                    c6:14:02:f0:ab:e3:d5:b9:54:18:a4:e4:90:1b:db:
                    1a:f4:f6:da:23:53:12:22:1a:4c:27:b5:6d:7c:7f:
                    2c:bb:e5:98:68:b8:53:f9:fd:6a:51:b7:a1:cd:aa:
                    8e:4c:d5:41:e5:bf:53:78:d8:5f:a3:e1:3c:c4:4e:
                    69:46:62:d6:f7:15:42:7c:99:8d:6c:65:a4:c1:74:
                    47:34:3d:8b:a9:23:d4:8f:2f:dc:19:a8:32:1e:07:
                    53:0d:27:28:47:cb:61:53:25:f1:93:a9:0d:7c:28:
                    26:b8:36:3a:3c:b0:4a:8a:00:8d:60:9d:8e:65:02:
                    d3:62:fa:56:78:32:cb:06:eb:a8:f4:c6:99:c2:4d:
                    69:51:72:4d:8b:61:51:28:ba:54:49:e9:52:52:88:
                    c1:55:db:c9:dd:08:ce:53:c0:6c:fa:d5:cd:47:73:
                    ae:8f:88:5a:06:a7:8a:33:e2:2c:dd:ca:1e:a1:b2:
                    6c:27:da:5b:ec:f1:18:aa:57:17:cc:66:1e:36:1e:
                    e4:4f:15:2b:77:10:d1:2c:76:a1:ad:71:5e:5a:d0:
                    78:cd:30:11:88:ba:ce:e7:cd:bd:d7:85:38:49:a3:
                    ec:b8:9f:47:62:3a:b7:b2:da:07:27:bb:d6:7e:d4:
                    33:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:61:89:9D:24:C7:D7:E5:38:73:8E:80:09:81:41:03:5E:82:63:21
            X509v3 Authority Key Identifier:
                keyid:B6:6C:49:85:CD:60:64:32:20:E0:64:A2:E1:14:D7:8F:5B:03:9C:2B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmxJhc1gZDIg4GSi4RTXj1sDnCs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/79/1d0c39-2555-468f-be66-ff9bab90af18/1/tmxJhc1gZDIg4GSi4RTXj1sDnCs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:82:70:ea:e4:33:48:46:82:79:08:d0:9d:4f:5d:34:3a:eb:
         7d:1e:23:c7:30:2f:08:30:04:34:74:23:24:a8:42:78:25:47:
         56:81:91:02:3d:2b:9b:a0:6d:34:56:a2:a3:19:68:f7:3f:cd:
         b7:0a:9a:d8:48:85:bb:c2:e9:26:70:8b:0b:d5:12:a2:de:7f:
         dc:d7:8f:6f:b7:39:dc:b5:a5:fa:d8:89:ae:1c:1e:7e:34:4d:
         20:6c:79:8b:42:da:fd:6b:db:a3:14:13:1c:80:3f:43:29:4b:
         15:df:8a:cd:eb:cf:0f:40:ad:4e:92:fd:38:b2:29:73:ec:6a:
         32:e8:39:7e:8d:45:20:34:ae:ca:77:1d:c4:20:7e:03:73:72:
         e6:cb:c7:b0:e2:88:60:7f:b3:20:b3:53:ff:73:87:2a:c4:c8:
         63:80:5c:3c:74:a3:9d:3e:06:ba:3c:f4:fb:c3:b7:f7:1c:72:
         7f:57:ac:46:0f:7d:13:6e:53:fe:04:a5:5f:46:bd:69:49:ff:
         13:8d:ed:a7:6d:0a:4b:11:02:6c:0d:fa:38:97:a0:49:da:53:
         ec:0e:db:ac:fd:dc:6f:bf:dd:de:99:a3:b1:4d:ab:9d:8d:44:
         c5:d7:21:c5:63:ee:1f:89:ee:b9:64:80:7e:0a:4c:ef:9a:c7:
         c7:c0:e2:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYKHQQDuXkXdTnAWKjzhcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2NmM0OTg1Y2Q2MDY0MzIyMGUwNjRhMmUxMTRkNzhmNWIw
MzljMmIwHhcNMjUwODIzMTAwMTUzWhcNMjUwODI0MTAwMTUzWjAzMTEwLwYDVQQD
Eyg0ZTYxODk5ZDI0YzdkN2U1Mzg3MzhlODAwOTgxNDEwMzVlODI2MzIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtI6Xrs7jNveRIzdHx/PGFALwq+PV
uVQYpOSQG9sa9PbaI1MSIhpMJ7VtfH8su+WYaLhT+f1qUbehzaqOTNVB5b9TeNhf
o+E8xE5pRmLW9xVCfJmNbGWkwXRHND2LqSPUjy/cGagyHgdTDScoR8thUyXxk6kN
fCgmuDY6PLBKigCNYJ2OZQLTYvpWeDLLBuuo9MaZwk1pUXJNi2FRKLpUSelSUojB
VdvJ3QjOU8Bs+tXNR3Ouj4haBqeKM+Is3coeobJsJ9pb7PEYqlcXzGYeNh7kTxUr
dxDRLHahrXFeWtB4zTARiLrO582914U4SaPsuJ9HYjq3stoHJ7vWftQzBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE5hiZ0kx9flOHOOgAmBQQNegmMhMB8GA1UdIwQY
MBaAFLZsSYXNYGQyIOBkouEU149bA5wrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdG14SmhjMWdaRElnNEdTaTRSVFhqMXNEbkNzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OS8xZDBjMzktMjU1NS00NjhmLWJlNjYt
ZmY5YmFiOTBhZjE4LzEvdG14SmhjMWdaRElnNEdTaTRSVFhqMXNEbkNzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OS8xZDBjMzktMjU1NS00NjhmLWJlNjYtZmY5YmFiOTBhZjE4
LzEvdG14SmhjMWdaRElnNEdTaTRSVFhqMXNEbkNzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMYJw6uQz
SEaCeQjQnU9dNDrrfR4jxzAvCDAENHQjJKhCeCVHVoGRAj0rm6BtNFaioxlo9z/N
twqa2EiFu8LpJnCLC9USot5/3NePb7c53LWl+tiJrhwefjRNIGx5i0La/WvboxQT
HIA/QylLFd+KzevPD0CtTpL9OLIpc+xqMug5fo1FIDSuyncdxCB+A3Ny5svHsOKI
YH+zILNT/3OHKsTIY4BcPHSjnT4Gujz0+8O39xxyf1esRg99E25T/gSlX0a9aUn/
E43tp20KSxECbA36OJegSdpT7A7brP3cb7/d3pmjsU2rnY1ExdchxWPuH4nuuWSA
fgpM75rHx8DiAg==
-----END CERTIFICATE-----