Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
File:                     APfVbNN-MeClJfW7GluvX0meQG0.mft (raw, json)
Hash identifier:          Vo6GUyUDA1zbGd5wuA0LVVzi4mjtvOZwMUxq+ooH7B0=
Subject key identifier:   05:3D:43:C4:D5:53:FB:67:0D:84:C0:11:B7:74:24:69:1F:17:7C:A3
Authority key identifier: 00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D
Certificate issuer:       /CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
Certificate serial:       0198D705DC10D3D5E1D6910D6DE93B41CD75
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
Manifest number:          159F
Signing time:             Sat 23 Aug 2025 13:02:22 +0000
Manifest this update:     Sat 23 Aug 2025 13:02:22 +0000
Manifest next update:     Sun 24 Aug 2025 13:02:22 +0000
Files and hashes:         1: APfVbNN-MeClJfW7GluvX0meQG0.crl (hash: YiAjYZVr/L5E/U/KIcsltQ2fUtkee7HJwVnFh+0BHGM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:50:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:05:dc:10:d3:d5:e1:d6:91:0d:6d:e9:3b:41:cd:75
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=00f7d56cd37e31e0a525f5bb1a5baf5f499e406d
        Validity
            Not Before: Aug 23 13:02:22 2025 GMT
            Not After : Aug 24 13:02:22 2025 GMT
        Subject: CN=053d43c4d553fb670d84c011b77424691f177ca3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:94:47:13:59:1a:16:48:b1:fc:9f:0a:70:49:
                    af:f7:02:03:a2:4c:fc:44:05:07:6d:31:92:5f:9f:
                    ff:f3:25:17:a2:50:e3:cd:f9:1b:6f:f8:c5:27:b4:
                    af:4a:ba:9c:79:f7:20:04:92:4a:8e:cd:3d:25:7d:
                    19:29:66:44:b4:66:a8:52:81:dc:c6:e8:4b:87:29:
                    6e:5f:62:04:3c:8e:b2:10:0c:53:5a:17:d3:91:8a:
                    50:72:fa:32:2d:b1:54:d3:45:29:97:7e:ee:4e:35:
                    c1:46:72:e9:5d:db:18:5c:b7:97:70:46:17:45:57:
                    e6:30:12:10:8a:60:32:b3:1d:c4:76:d2:ef:fd:4b:
                    98:0a:cc:48:d7:12:d0:66:3f:64:19:d3:44:25:54:
                    db:7c:d9:16:cb:4a:d8:51:23:c0:ce:79:54:a7:24:
                    9c:ff:be:3c:4a:2e:5a:a7:b5:a7:65:de:0a:7a:6b:
                    c6:a2:aa:8f:07:98:bf:c9:fa:aa:d3:93:26:5b:57:
                    02:7b:23:12:74:1e:0b:83:c7:53:37:ff:57:1f:d2:
                    7b:f7:15:38:2e:de:eb:cc:05:1b:e9:ed:65:88:45:
                    5a:75:e5:17:3e:d9:48:6b:62:55:0a:17:6b:9e:27:
                    81:3f:60:06:84:de:7c:31:ce:7f:14:a0:91:94:20:
                    17:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:3D:43:C4:D5:53:FB:67:0D:84:C0:11:B7:74:24:69:1F:17:7C:A3
            X509v3 Authority Key Identifier:
                keyid:00:F7:D5:6C:D3:7E:31:E0:A5:25:F5:BB:1A:5B:AF:5F:49:9E:40:6D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/APfVbNN-MeClJfW7GluvX0meQG0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/80/8cb7ea-d75d-46f6-a5c3-13b29eae19b3/1/APfVbNN-MeClJfW7GluvX0meQG0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:62:3f:fa:69:52:af:06:c9:83:61:30:bb:71:9e:67:d2:ee:
         2e:1e:e9:7b:34:d9:bb:d8:83:e9:aa:61:d2:e6:b0:64:ec:6f:
         c1:d5:f2:96:c4:30:84:7d:fc:b9:fc:2a:88:82:65:21:27:6e:
         01:07:7d:62:f1:05:07:ba:3d:e1:a5:da:3c:7e:2a:6f:28:c0:
         d0:5f:5d:79:67:f4:95:2a:be:7c:4e:8d:11:7a:c6:d2:68:d7:
         c7:a3:2c:d0:91:17:f0:88:8c:b4:17:87:7e:ad:0a:a6:9c:9c:
         a3:c4:7f:ad:13:52:f9:50:5c:a1:14:8a:98:cb:c8:43:6f:1a:
         a8:99:15:ab:90:87:89:07:bf:76:b8:ca:c6:49:7f:28:0f:e0:
         55:d0:f9:f0:db:97:20:ca:b4:fb:c8:08:3e:28:09:4b:2d:fa:
         f4:84:19:b0:dd:5b:8c:76:04:2b:2a:d4:33:39:77:90:b1:b3:
         f9:c8:f8:44:c3:5b:10:86:1d:a1:7e:5d:75:53:44:ed:d1:9e:
         c8:87:38:aa:e7:fb:e1:bd:b6:5d:66:0f:63:bc:cc:4f:db:07:
         ee:38:fd:84:a7:df:d4:50:40:f1:a1:c7:df:89:b7:9d:53:2f:
         69:2a:cd:3b:14:cf:b9:59:de:f6:f6:56:ab:56:79:ec:b2:c2:
         5c:ed:6c:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXBdwQ09Xh1pENbek7Qc11MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwZjdkNTZjZDM3ZTMxZTBhNTI1ZjViYjFhNWJhZjVmNDk5
ZTQwNmQwHhcNMjUwODIzMTMwMjIyWhcNMjUwODI0MTMwMjIyWjAzMTEwLwYDVQQD
EygwNTNkNDNjNGQ1NTNmYjY3MGQ4NGMwMTFiNzc0MjQ2OTFmMTc3Y2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZRHE1kaFkix/J8KcEmv9wIDokz8
RAUHbTGSX5//8yUXolDjzfkbb/jFJ7SvSrqcefcgBJJKjs09JX0ZKWZEtGaoUoHc
xuhLhyluX2IEPI6yEAxTWhfTkYpQcvoyLbFU00Upl37uTjXBRnLpXdsYXLeXcEYX
RVfmMBIQimAysx3EdtLv/UuYCsxI1xLQZj9kGdNEJVTbfNkWy0rYUSPAznlUpySc
/748Si5ap7WnZd4KemvGoqqPB5i/yfqq05MmW1cCeyMSdB4Lg8dTN/9XH9J79xU4
Lt7rzAUb6e1liEVadeUXPtlIa2JVChdrnieBP2AGhN58Mc5/FKCRlCAXjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAU9Q8TVU/tnDYTAEbd0JGkfF3yjMB8GA1UdIwQY
MBaAFAD31WzTfjHgpSX1uxpbr19JnkBtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC84Y2I3ZWEtZDc1ZC00NmY2LWE1YzMt
MTNiMjllYWUxOWIzLzEvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC84Y2I3ZWEtZDc1ZC00NmY2LWE1YzMtMTNiMjllYWUxOWIz
LzEvQVBmVmJOTi1NZUNsSmZXN0dsdXZYMG1lUUcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhGI/+mlS
rwbJg2Ewu3GeZ9LuLh7pezTZu9iD6aph0uawZOxvwdXylsQwhH38ufwqiIJlISdu
AQd9YvEFB7o94aXaPH4qbyjA0F9deWf0lSq+fE6NEXrG0mjXx6Ms0JEX8IiMtBeH
fq0Kppyco8R/rRNS+VBcoRSKmMvIQ28aqJkVq5CHiQe/drjKxkl/KA/gVdD58NuX
IMq0+8gIPigJSy369IQZsN1bjHYEKyrUMzl3kLGz+cj4RMNbEIYdoX5ddVNE7dGe
yIc4quf74b22XWYPY7zMT9sH7jj9hKff1FBA8aHH34m3nVMvaSrNOxTPuVne9vZW
q1Z57LLCXO1sGg==
-----END CERTIFICATE-----