Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
File:                     n34J7YuBilTMw-tCb2elWhOKuH0.mft (raw, json)
Hash identifier:          EHXZadkziURpv5R51OxHr05/xizns4YztGxEGOO8ifk=
Subject key identifier:   2B:BC:B2:6C:CA:35:39:62:2B:93:88:AF:46:63:C7:E0:73:1A:D8:A9
Authority key identifier: 9F:7E:09:ED:8B:81:8A:54:CC:C3:EB:42:6F:67:A5:5A:13:8A:B8:7D
Certificate issuer:       /CN=9f7e09ed8b818a54ccc3eb426f67a55a138ab87d
Certificate serial:       0198D6604439BD27766C8B253C2A96FAD96B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
Manifest number:          0A56
Signing time:             Sat 23 Aug 2025 10:01:29 +0000
Manifest this update:     Sat 23 Aug 2025 10:01:29 +0000
Manifest next update:     Sun 24 Aug 2025 10:01:29 +0000
Files and hashes:         1: n34J7YuBilTMw-tCb2elWhOKuH0.crl (hash: 5h1C9GOyBBjnJ+Va0VonhfL8ts7emDPxbUdYFo0Zgcc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:44:39:bd:27:76:6c:8b:25:3c:2a:96:fa:d9:6b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9f7e09ed8b818a54ccc3eb426f67a55a138ab87d
        Validity
            Not Before: Aug 23 10:01:29 2025 GMT
            Not After : Aug 24 10:01:29 2025 GMT
        Subject: CN=2bbcb26cca3539622b9388af4663c7e0731ad8a9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:2a:c3:e8:2e:50:f0:7a:b7:9c:29:3c:a6:79:
                    2f:a0:64:87:a6:ff:b2:8f:86:4f:8a:c8:91:c2:8d:
                    9b:f8:0b:7d:2f:e7:90:90:91:dd:f7:1f:80:66:a4:
                    76:ee:0d:af:eb:37:02:41:21:1a:10:53:96:a9:4c:
                    e3:dd:ff:51:84:6b:7f:a8:5d:be:0b:27:04:f7:dc:
                    d3:2c:c4:d2:a2:e1:f0:34:5f:55:f7:c2:8c:8b:be:
                    10:d7:b7:aa:53:52:a7:c9:62:9c:35:12:0a:6d:2d:
                    2a:8d:31:93:4a:77:1e:9c:ff:99:cd:c3:a2:e7:31:
                    47:7a:38:be:a9:39:c7:2a:f0:25:54:10:ce:d4:df:
                    e3:a2:e3:78:62:d8:08:52:1c:ec:cc:36:99:38:f9:
                    65:5b:63:33:fc:5d:7f:12:76:e7:9f:33:f0:bd:12:
                    46:84:c3:4e:05:51:64:43:5b:61:95:b3:e1:36:69:
                    d0:03:36:46:17:da:3f:0c:4f:dc:2c:f2:f8:f7:e0:
                    2a:e3:d0:42:79:a4:26:b3:b4:75:67:58:6f:21:d1:
                    97:d7:11:c2:de:cb:24:f9:5c:4b:34:b0:95:c2:70:
                    e5:d7:d4:22:57:d9:47:d2:53:ca:4d:39:59:3c:41:
                    c2:af:5b:37:db:0d:fa:f3:6f:7c:e2:27:e1:76:b4:
                    a3:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:BC:B2:6C:CA:35:39:62:2B:93:88:AF:46:63:C7:E0:73:1A:D8:A9
            X509v3 Authority Key Identifier:
                keyid:9F:7E:09:ED:8B:81:8A:54:CC:C3:EB:42:6F:67:A5:5A:13:8A:B8:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n34J7YuBilTMw-tCb2elWhOKuH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7f8cc1-94cc-4f7e-81a3-f19ad2bad7b9/1/n34J7YuBilTMw-tCb2elWhOKuH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:8a:2b:71:e5:17:99:6b:9a:d4:6f:29:82:04:43:78:b8:8c:
         02:1b:16:67:43:21:fe:6e:91:8d:55:4c:f1:a1:60:43:5e:7c:
         b5:20:6b:e9:1d:a8:8c:37:50:20:5a:41:f5:b3:18:b2:1e:f7:
         0e:24:1f:d2:99:4b:5d:61:8b:03:35:25:ec:ee:c4:c6:9a:63:
         63:fe:30:15:6a:da:11:38:41:8f:19:12:b9:be:2c:66:27:0c:
         55:4d:63:a0:1b:ed:42:eb:fb:88:f1:6b:1a:31:d5:d2:47:87:
         93:c9:5f:d0:b2:3e:b2:27:a4:d2:d0:8a:98:80:a1:8f:f5:70:
         0b:0b:15:f7:03:04:f7:a2:88:44:8a:e7:9e:ac:89:aa:62:60:
         0c:95:4c:1e:9d:b7:56:be:7e:b4:30:da:fb:7d:2b:3b:2a:0a:
         ab:b0:9d:c8:69:ed:d1:38:27:a5:d6:66:97:ef:0a:4d:c2:5a:
         d1:5f:e0:1c:c6:d3:32:cf:70:88:cd:63:e1:6d:40:34:b2:b2:
         19:a4:7a:c1:c6:e7:4b:29:7e:5e:2b:bd:bc:4c:2f:f3:5a:49:
         27:af:82:91:7d:d1:e4:c4:93:ce:16:51:62:6d:ec:6d:13:64:
         9e:1d:23:1f:35:e6:87:aa:15:e6:4d:ee:fd:d7:3c:cf:f2:0d:
         4e:b1:3c:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYEQ5vSd2bIslPCqW+tlrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlmN2UwOWVkOGI4MThhNTRjY2MzZWI0MjZmNjdhNTVhMTM4
YWI4N2QwHhcNMjUwODIzMTAwMTI5WhcNMjUwODI0MTAwMTI5WjAzMTEwLwYDVQQD
EygyYmJjYjI2Y2NhMzUzOTYyMmI5Mzg4YWY0NjYzYzdlMDczMWFkOGE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsirD6C5Q8Hq3nCk8pnkvoGSHpv+y
j4ZPisiRwo2b+At9L+eQkJHd9x+AZqR27g2v6zcCQSEaEFOWqUzj3f9RhGt/qF2+
CycE99zTLMTSouHwNF9V98KMi74Q17eqU1KnyWKcNRIKbS0qjTGTSncenP+ZzcOi
5zFHeji+qTnHKvAlVBDO1N/jouN4YtgIUhzszDaZOPllW2Mz/F1/EnbnnzPwvRJG
hMNOBVFkQ1thlbPhNmnQAzZGF9o/DE/cLPL49+Aq49BCeaQms7R1Z1hvIdGX1xHC
3ssk+VxLNLCVwnDl19QiV9lH0lPKTTlZPEHCr1s32w3682984ifhdrSjZQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCu8smzKNTliK5OIr0Zjx+BzGtipMB8GA1UdIwQY
MBaAFJ9+Ce2LgYpUzMPrQm9npVoTirh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZjhjYzEtOTRjYy00ZjdlLTgxYTMt
ZjE5YWQyYmFkN2I5LzEvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS83ZjhjYzEtOTRjYy00ZjdlLTgxYTMtZjE5YWQyYmFkN2I5
LzEvbjM0SjdZdUJpbFRNdy10Q2IyZWxXaE9LdUgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB4orceUX
mWua1G8pggRDeLiMAhsWZ0Mh/m6RjVVM8aFgQ158tSBr6R2ojDdQIFpB9bMYsh73
DiQf0plLXWGLAzUl7O7ExppjY/4wFWraEThBjxkSub4sZicMVU1joBvtQuv7iPFr
GjHV0keHk8lf0LI+siek0tCKmIChj/VwCwsV9wME96KIRIrnnqyJqmJgDJVMHp23
Vr5+tDDa+30rOyoKq7CdyGnt0TgnpdZml+8KTcJa0V/gHMbTMs9wiM1j4W1ANLKy
GaR6wcbnSyl+Xiu9vEwv81pJJ6+CkX3R5MSTzhZRYm3sbRNknh0jHzXmh6oV5k3u
/dc8z/INTrE8QA==
-----END CERTIFICATE-----