Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
File:                     Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft (raw, json)
Hash identifier:          ks5/NaFnklVjgZJVgek6CzJ3Q1i8/RxBJg+egENGuXE=
Subject key identifier:   43:4A:48:6F:4D:DA:37:04:E6:46:29:AD:A8:2E:9C:3B:CB:4B:0D:8F
Authority key identifier: 4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14
Certificate issuer:       /CN=4b177c450d2035067baa26920b8a4bd36c7b3314
Certificate serial:       0198D660FA134124F56C7F1A3CB966A9CE27
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
Manifest number:          0D5C
Signing time:             Sat 23 Aug 2025 10:02:16 +0000
Manifest this update:     Sat 23 Aug 2025 10:02:16 +0000
Manifest next update:     Sun 24 Aug 2025 10:02:16 +0000
Files and hashes:         1: Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl (hash: 1OvjnudY5eaomDCHghnuV2jYcuJgwatf5/OfGP0Ndro=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:60:fa:13:41:24:f5:6c:7f:1a:3c:b9:66:a9:ce:27
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b177c450d2035067baa26920b8a4bd36c7b3314
        Validity
            Not Before: Aug 23 10:02:16 2025 GMT
            Not After : Aug 24 10:02:16 2025 GMT
        Subject: CN=434a486f4dda3704e64629ada82e9c3bcb4b0d8f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:d1:29:07:f3:90:10:66:d7:d4:6b:7b:4c:f0:
                    3c:34:2b:b9:06:40:a3:3a:d9:7b:0a:2e:93:34:3c:
                    c1:da:5d:c5:02:fe:70:6f:3c:c3:9a:ba:a1:ef:f4:
                    15:a1:f4:83:8b:d5:62:33:4b:2a:8a:3b:78:a9:de:
                    2e:6f:19:18:5b:a2:89:2f:0d:b2:5d:0e:c8:99:9c:
                    2b:1b:6f:c4:6a:90:1c:bf:eb:af:3d:8b:74:3f:5a:
                    53:6a:80:4a:b8:80:5b:17:cd:19:d8:d1:84:46:fd:
                    1d:2b:be:bd:64:64:ca:d8:fd:3d:cb:ad:a1:bb:6c:
                    70:a0:3e:ba:78:8d:d7:c4:06:bb:5d:74:9c:c8:31:
                    c0:f6:3e:fd:eb:33:2f:d6:42:4d:25:e1:21:4f:7c:
                    fc:7b:74:3d:4f:c2:a9:18:da:69:e4:d8:b8:04:f0:
                    5f:c7:ce:5a:71:77:73:85:9e:b4:41:90:80:31:46:
                    5f:d6:5b:b6:66:86:d3:7a:ac:98:c6:bb:8b:04:27:
                    81:90:67:1f:70:40:62:ce:ce:09:e0:96:08:52:d2:
                    c6:34:65:09:23:10:ac:ff:55:b0:d4:b2:45:1f:15:
                    3b:f7:15:16:d1:cc:e5:55:56:fe:bf:10:7e:6a:78:
                    e5:68:24:50:d8:f0:04:ba:b3:d6:4c:fd:38:3f:d6:
                    95:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:4A:48:6F:4D:DA:37:04:E6:46:29:AD:A8:2E:9C:3B:CB:4B:0D:8F
            X509v3 Authority Key Identifier:
                keyid:4B:17:7C:45:0D:20:35:06:7B:AA:26:92:0B:8A:4B:D3:6C:7B:33:14

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5a6aad-a4c7-43b9-8a9e-8d7b736a695c/1/Sxd8RQ0gNQZ7qiaSC4pL02x7MxQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:d8:42:5d:80:25:b5:10:e5:1d:8f:80:c0:6f:4c:34:3e:be:
         e6:0d:ed:08:02:16:7d:0d:5c:fe:79:bd:1f:bc:13:f2:73:52:
         8e:c6:60:3a:57:46:8f:ab:d3:9a:a1:59:1d:4a:db:be:6d:c6:
         34:80:47:a4:d9:07:6a:72:55:bc:1e:34:64:10:8d:e2:28:ab:
         2e:69:b4:94:e3:a3:88:40:f0:1b:a6:ba:44:3d:2d:fc:6f:5c:
         d8:ba:42:69:70:f4:36:6f:d2:46:33:a5:da:c3:87:33:2c:8e:
         e5:63:63:51:07:35:20:3a:41:43:94:cb:3c:1c:5a:5b:62:ad:
         41:01:e2:0d:25:99:45:d5:f9:6d:d4:31:93:a7:c7:c3:2b:fb:
         69:91:2e:b8:f5:bb:8c:93:c6:4f:66:ee:1c:8e:62:bf:91:f8:
         25:a7:8b:50:a5:52:a7:e7:b3:63:c0:b2:f5:0f:1a:fc:26:fb:
         1d:15:10:0d:de:20:a2:97:ce:66:c8:58:1e:21:5c:e1:9b:01:
         31:dc:24:a4:06:5c:63:5e:74:cf:69:49:c4:f0:1d:db:ba:8d:
         0d:d2:35:86:57:ca:a3:d0:e7:a2:d0:1f:92:96:b0:81:ef:57:
         cd:40:82:1d:61:3c:a1:b9:42:92:0b:a5:53:a8:3f:9e:54:75:
         fd:be:52:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYPoTQST1bH8aPLlmqc4nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiMTc3YzQ1MGQyMDM1MDY3YmFhMjY5MjBiOGE0YmQzNmM3
YjMzMTQwHhcNMjUwODIzMTAwMjE2WhcNMjUwODI0MTAwMjE2WjAzMTEwLwYDVQQD
Eyg0MzRhNDg2ZjRkZGEzNzA0ZTY0NjI5YWRhODJlOWMzYmNiNGIwZDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAndEpB/OQEGbX1Gt7TPA8NCu5BkCj
Otl7Ci6TNDzB2l3FAv5wbzzDmrqh7/QVofSDi9ViM0sqijt4qd4ubxkYW6KJLw2y
XQ7ImZwrG2/EapAcv+uvPYt0P1pTaoBKuIBbF80Z2NGERv0dK769ZGTK2P09y62h
u2xwoD66eI3XxAa7XXScyDHA9j796zMv1kJNJeEhT3z8e3Q9T8KpGNpp5Ni4BPBf
x85acXdzhZ60QZCAMUZf1lu2ZobTeqyYxruLBCeBkGcfcEBizs4J4JYIUtLGNGUJ
IxCs/1Ww1LJFHxU79xUW0czlVVb+vxB+anjlaCRQ2PAEurPWTP04P9aVFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFENKSG9N2jcE5kYpragunDvLSw2PMB8GA1UdIwQY
MBaAFEsXfEUNIDUGe6omkguKS9NsezMUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS81YTZhYWQtYTRjNy00M2I5LThhOWUt
OGQ3YjczNmE2OTVjLzEvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS81YTZhYWQtYTRjNy00M2I5LThhOWUtOGQ3YjczNmE2OTVj
LzEvU3hkOFJRMGdOUVo3cWlhU0M0cEwwMng3TXhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKNhCXYAl
tRDlHY+AwG9MND6+5g3tCAIWfQ1c/nm9H7wT8nNSjsZgOldGj6vTmqFZHUrbvm3G
NIBHpNkHanJVvB40ZBCN4iirLmm0lOOjiEDwG6a6RD0t/G9c2LpCaXD0Nm/SRjOl
2sOHMyyO5WNjUQc1IDpBQ5TLPBxaW2KtQQHiDSWZRdX5bdQxk6fHwyv7aZEuuPW7
jJPGT2buHI5iv5H4JaeLUKVSp+ezY8Cy9Q8a/Cb7HRUQDd4gopfOZshYHiFc4ZsB
MdwkpAZcY150z2lJxPAd27qNDdI1hlfKo9DnotAfkpawge9XzUCCHWE8oblCkgul
U6g/nlR1/b5SeQ==
-----END CERTIFICATE-----