Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/6bfe53-80c3-4a35-9ecb-d241f9ec5041/1/nXZQ5FO5j29N0zNjOv-ruiwMj4o.mft
File:                     nXZQ5FO5j29N0zNjOv-ruiwMj4o.mft (raw, json)
Hash identifier:          IYr/wcOv1eQvfssZzeJueh6b+yoxk5XWMZpjxac3EC4=
Subject key identifier:   C5:58:5A:55:36:57:A5:AB:5B:87:7B:68:91:E4:55:C8:26:45:88:A9
Authority key identifier: 9D:76:50:E4:53:B9:8F:6F:4D:D3:33:63:3A:FF:AB:BA:2C:0C:8F:8A
Certificate issuer:       /CN=9d7650e453b98f6f4dd333633affabba2c0c8f8a
Certificate serial:       0198D65F380C49D321B4BE07F9DE8ECA6D82
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/nXZQ5FO5j29N0zNjOv-ruiwMj4o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/88/6bfe53-80c3-4a35-9ecb-d241f9ec5041/1/nXZQ5FO5j29N0zNjOv-ruiwMj4o.mft
Manifest number:          011B
Signing time:             Sat 23 Aug 2025 10:00:21 +0000
Manifest this update:     Sat 23 Aug 2025 10:00:21 +0000
Manifest next update:     Sun 24 Aug 2025 10:00:21 +0000
Files and hashes:         1: nXZQ5FO5j29N0zNjOv-ruiwMj4o.crl (hash: 8DhtxZCsTvkFnQvNkOPJXTfQH8wNYgg1B/uGgHqXsRk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/88/6bfe53-80c3-4a35-9ecb-d241f9ec5041/1/nXZQ5FO5j29N0zNjOv-ruiwMj4o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/88/6bfe53-80c3-4a35-9ecb-d241f9ec5041/1/nXZQ5FO5j29N0zNjOv-ruiwMj4o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nXZQ5FO5j29N0zNjOv-ruiwMj4o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:00:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:5f:38:0c:49:d3:21:b4:be:07:f9:de:8e:ca:6d:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9d7650e453b98f6f4dd333633affabba2c0c8f8a
        Validity
            Not Before: Aug 23 10:00:21 2025 GMT
            Not After : Aug 24 10:00:21 2025 GMT
        Subject: CN=c5585a553657a5ab5b877b6891e455c8264588a9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:7d:a3:2d:78:9f:e5:bc:42:8a:57:e1:88:66:
                    f7:31:6f:39:d3:7f:b2:d9:00:0d:d5:6e:3f:8f:4f:
                    e3:f9:88:6b:67:e5:b1:c2:f6:54:aa:0a:56:58:92:
                    3f:67:1f:22:aa:d3:d6:fa:25:18:ea:24:76:a7:e2:
                    ef:59:29:85:0e:4d:ec:94:d4:89:0e:1a:14:c5:93:
                    5b:48:70:40:78:06:71:77:f5:3f:51:42:6a:3c:79:
                    00:af:06:06:10:e9:b0:c4:d3:88:9d:0b:38:8a:00:
                    6e:ae:63:b8:83:a9:f2:db:0a:de:62:f9:82:02:48:
                    30:cd:ad:a7:48:ec:be:1c:8d:f3:69:3e:9f:24:d8:
                    2e:4d:b4:b8:00:84:97:23:33:26:f8:6e:25:9e:45:
                    e3:b5:01:4a:fb:d3:41:a8:7a:c0:32:f9:e6:79:07:
                    03:04:43:c7:e6:83:31:c9:30:ba:b5:bc:49:8f:75:
                    97:9c:7c:fc:ca:42:1e:89:97:b6:86:d9:db:d9:4e:
                    62:a6:a5:31:a8:69:90:2f:3f:7a:01:42:54:36:94:
                    5a:e3:86:33:7a:2d:c4:57:d1:53:72:c4:0a:4d:00:
                    b9:80:d5:7f:33:75:66:37:8d:fa:fb:65:6d:9c:bc:
                    81:1e:f6:81:75:2b:04:06:bc:4d:bd:d8:28:26:ea:
                    26:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:58:5A:55:36:57:A5:AB:5B:87:7B:68:91:E4:55:C8:26:45:88:A9
            X509v3 Authority Key Identifier:
                keyid:9D:76:50:E4:53:B9:8F:6F:4D:D3:33:63:3A:FF:AB:BA:2C:0C:8F:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nXZQ5FO5j29N0zNjOv-ruiwMj4o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6bfe53-80c3-4a35-9ecb-d241f9ec5041/1/nXZQ5FO5j29N0zNjOv-ruiwMj4o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6bfe53-80c3-4a35-9ecb-d241f9ec5041/1/nXZQ5FO5j29N0zNjOv-ruiwMj4o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:b3:b6:a4:87:05:8e:bb:ef:5a:de:08:31:b8:37:40:7b:55:
         32:e3:cf:7f:52:eb:61:3f:33:fb:c7:d5:8c:f5:4b:95:d8:66:
         e5:27:6d:2d:de:40:2a:c2:76:32:3f:a4:16:2c:63:bf:f7:8e:
         50:a4:7e:86:7f:e1:5d:70:d9:51:4f:8e:36:2c:70:4b:80:4c:
         0b:07:d8:60:f1:fe:8d:09:ee:d5:be:10:1f:80:0c:3b:8c:af:
         93:62:e9:17:40:dd:97:fb:68:af:05:fb:c5:f6:60:e6:d1:fc:
         d0:96:56:c9:bd:17:cd:2d:7d:e8:25:64:87:14:1a:29:36:f0:
         2c:cb:2a:59:de:cc:07:c4:99:7e:1e:0f:07:9b:9c:9f:36:8b:
         5e:46:dc:42:76:d4:56:81:73:44:e7:00:fb:6c:04:5b:db:b0:
         a6:f5:e4:f9:11:8a:a4:f7:35:d9:33:b4:82:8b:5f:78:27:a9:
         b8:02:eb:11:07:1b:fd:d1:65:77:c1:cb:d3:f6:54:2c:e0:67:
         30:93:7a:ac:ba:db:02:52:75:b5:b5:39:e8:12:cf:66:85:48:
         1f:ae:ae:f8:41:48:fa:2c:6b:b0:6a:0d:18:8c:9f:86:07:90:
         ed:58:c9:bd:2a:f4:88:4e:f3:53:e1:d8:47:d1:27:5b:70:52:
         42:ad:1f:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWXzgMSdMhtL4H+d6Oym2CMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkNzY1MGU0NTNiOThmNmY0ZGQzMzM2MzNhZmZhYmJhMmMw
YzhmOGEwHhcNMjUwODIzMTAwMDIxWhcNMjUwODI0MTAwMDIxWjAzMTEwLwYDVQQD
EyhjNTU4NWE1NTM2NTdhNWFiNWI4NzdiNjg5MWU0NTVjODI2NDU4OGE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1H2jLXif5bxCilfhiGb3MW8503+y
2QAN1W4/j0/j+YhrZ+WxwvZUqgpWWJI/Zx8iqtPW+iUY6iR2p+LvWSmFDk3slNSJ
DhoUxZNbSHBAeAZxd/U/UUJqPHkArwYGEOmwxNOInQs4igBurmO4g6ny2wreYvmC
Akgwza2nSOy+HI3zaT6fJNguTbS4AISXIzMm+G4lnkXjtQFK+9NBqHrAMvnmeQcD
BEPH5oMxyTC6tbxJj3WXnHz8ykIeiZe2htnb2U5ipqUxqGmQLz96AUJUNpRa44Yz
ei3EV9FTcsQKTQC5gNV/M3VmN436+2VtnLyBHvaBdSsEBrxNvdgoJuommQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMVYWlU2V6WrW4d7aJHkVcgmRYipMB8GA1UdIwQY
MBaAFJ12UORTuY9vTdMzYzr/q7osDI+KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblhaUTVGTzVqMjlOMHpOak92LXJ1aXdNajRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC82YmZlNTMtODBjMy00YTM1LTllY2It
ZDI0MWY5ZWM1MDQxLzEvblhaUTVGTzVqMjlOMHpOak92LXJ1aXdNajRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC82YmZlNTMtODBjMy00YTM1LTllY2ItZDI0MWY5ZWM1MDQx
LzEvblhaUTVGTzVqMjlOMHpOak92LXJ1aXdNajRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR7O2pIcF
jrvvWt4IMbg3QHtVMuPPf1LrYT8z+8fVjPVLldhm5SdtLd5AKsJ2Mj+kFixjv/eO
UKR+hn/hXXDZUU+ONixwS4BMCwfYYPH+jQnu1b4QH4AMO4yvk2LpF0Ddl/torwX7
xfZg5tH80JZWyb0XzS196CVkhxQaKTbwLMsqWd7MB8SZfh4PB5ucnzaLXkbcQnbU
VoFzROcA+2wEW9uwpvXk+RGKpPc12TO0gotfeCepuALrEQcb/dFld8HL0/ZULOBn
MJN6rLrbAlJ1tbU56BLPZoVIH66u+EFI+ixrsGoNGIyfhgeQ7VjJvSr0iE7zU+HY
R9EnW3BSQq0fkA==
-----END CERTIFICATE-----