Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft
File:                     X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft (raw, json)
Hash identifier:          PIoetJzDi4IyDB9B3PZyaaGLiwks1QjSiGmINXuz6jY=
Subject key identifier:   67:47:6B:57:10:CF:F1:40:47:9C:7C:2A:84:7F:F1:15:B9:2C:C6:A2
Authority key identifier: 5F:40:62:82:EC:14:FA:0B:C7:D6:51:1E:FC:BC:6A:E9:F1:E0:5B:3D
Certificate issuer:       /CN=5f406282ec14fa0bc7d6511efcbc6ae9f1e05b3d
Certificate serial:       0198D73BC8EB830B3F56F9C97317DBDDD06D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/X0BiguwU-gvH1lEe_Lxq6fHgWz0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft
Manifest number:          F8
Signing time:             Sat 23 Aug 2025 14:01:16 +0000
Manifest this update:     Sat 23 Aug 2025 14:01:16 +0000
Manifest next update:     Sun 24 Aug 2025 14:01:16 +0000
Files and hashes:         1: X0BiguwU-gvH1lEe_Lxq6fHgWz0.crl (hash: DWHleGl9TVKX8jMpy8FQYn0uMhGfuS9T3hc+qtds1V8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/X0BiguwU-gvH1lEe_Lxq6fHgWz0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 12:50:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d7:3b:c8:eb:83:0b:3f:56:f9:c9:73:17:db:dd:d0:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5f406282ec14fa0bc7d6511efcbc6ae9f1e05b3d
        Validity
            Not Before: Aug 23 14:01:16 2025 GMT
            Not After : Aug 24 14:01:16 2025 GMT
        Subject: CN=67476b5710cff140479c7c2a847ff115b92cc6a2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:fb:68:ed:d0:2a:00:36:22:22:d9:50:88:a3:
                    93:75:31:fc:e9:e3:64:85:2f:4f:b1:b3:87:a2:e8:
                    a1:90:75:a0:20:1c:65:5c:11:14:10:64:a7:ff:36:
                    0d:16:d4:10:2b:d3:2e:8d:5d:66:71:90:2a:b5:a3:
                    25:74:cc:1e:8f:c2:32:bf:71:b3:f5:43:ea:8d:cb:
                    93:80:b6:0b:42:af:7e:cc:a7:26:ca:86:38:d9:f8:
                    ab:60:0f:ac:60:45:4b:20:12:21:f1:94:6c:e3:d8:
                    bb:6a:8c:23:d4:51:73:fc:c3:60:ef:49:7e:9c:60:
                    ec:da:3b:b7:e1:a3:34:93:c9:48:4e:ed:c0:ae:59:
                    87:42:6b:03:3e:ab:89:76:9a:b1:12:7e:ef:26:f5:
                    9c:e7:8e:7a:a6:98:61:88:f5:86:23:af:73:dd:80:
                    bd:0c:68:8a:c8:0c:4a:5d:b1:52:a4:b1:5e:73:ee:
                    3a:9e:bf:d5:57:d7:6d:c2:fa:4f:51:db:b2:12:e2:
                    b2:1e:91:6e:76:b1:05:f8:84:ab:da:11:31:a6:65:
                    9f:b6:a0:ba:36:59:3d:0d:40:8a:2d:5f:ac:5b:46:
                    6d:c1:d3:c9:c7:84:4c:01:8d:d4:b0:cc:bf:c1:7c:
                    3d:bb:b3:3f:69:63:fc:75:42:2b:bc:20:61:7c:2c:
                    3e:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:47:6B:57:10:CF:F1:40:47:9C:7C:2A:84:7F:F1:15:B9:2C:C6:A2
            X509v3 Authority Key Identifier:
                keyid:5F:40:62:82:EC:14:FA:0B:C7:D6:51:1E:FC:BC:6A:E9:F1:E0:5B:3D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X0BiguwU-gvH1lEe_Lxq6fHgWz0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/395b1c-a7da-4469-a4c5-e304facd1f7a/1/X0BiguwU-gvH1lEe_Lxq6fHgWz0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:44:34:8b:f9:91:73:bd:66:c4:3a:74:44:c9:97:cc:0e:7b:
         f4:e0:e5:a8:9f:fd:a3:5b:e7:2b:1b:f6:64:2d:64:ee:62:e1:
         19:8b:77:38:97:f0:6b:e7:ec:db:d4:83:94:61:9b:8b:0a:86:
         55:5e:cf:6a:67:d3:ba:87:88:21:da:72:c6:91:ae:c3:3a:c5:
         db:75:56:13:5e:aa:5c:47:47:85:4d:f7:49:09:2f:67:35:50:
         35:20:f4:2f:b8:69:ef:62:f6:3d:2b:9e:2a:c1:30:f4:df:66:
         56:02:16:f2:ce:4d:b1:ba:28:8a:60:b1:29:78:ad:b7:7e:b5:
         4f:5b:e2:71:29:64:62:77:1a:be:17:e0:f7:26:08:aa:a2:4e:
         39:46:60:eb:da:eb:8e:07:2b:51:48:f3:f9:9b:68:94:69:4e:
         c6:bc:77:30:61:fd:44:da:63:6c:34:98:8f:62:47:08:17:2f:
         a7:96:c8:21:4c:9c:41:2d:c0:56:99:b5:d2:00:92:4c:3f:5a:
         75:3d:65:eb:99:e0:5c:f1:cd:52:47:ab:2f:d5:3b:fb:e3:55:
         33:43:0e:c5:c2:4a:7a:2e:61:4d:eb:d9:70:90:1a:0e:1a:75:
         a8:aa:46:ec:7f:e4:d2:22:84:c3:99:73:85:b4:a7:76:c6:9d:
         ae:8f:0a:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXO8jrgws/VvnJcxfb3dBtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmNDA2MjgyZWMxNGZhMGJjN2Q2NTExZWZjYmM2YWU5ZjFl
MDViM2QwHhcNMjUwODIzMTQwMTE2WhcNMjUwODI0MTQwMTE2WjAzMTEwLwYDVQQD
Eyg2NzQ3NmI1NzEwY2ZmMTQwNDc5YzdjMmE4NDdmZjExNWI5MmNjNmEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2vto7dAqADYiItlQiKOTdTH86eNk
hS9PsbOHouihkHWgIBxlXBEUEGSn/zYNFtQQK9MujV1mcZAqtaMldMwej8Iyv3Gz
9UPqjcuTgLYLQq9+zKcmyoY42firYA+sYEVLIBIh8ZRs49i7aowj1FFz/MNg70l+
nGDs2ju34aM0k8lITu3ArlmHQmsDPquJdpqxEn7vJvWc5456pphhiPWGI69z3YC9
DGiKyAxKXbFSpLFec+46nr/VV9dtwvpPUduyEuKyHpFudrEF+ISr2hExpmWftqC6
Nlk9DUCKLV+sW0ZtwdPJx4RMAY3UsMy/wXw9u7M/aWP8dUIrvCBhfCw+QwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGdHa1cQz/FAR5x8KoR/8RW5LMaiMB8GA1UdIwQY
MBaAFF9AYoLsFPoLx9ZRHvy8aunx4Fs9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDBCaWd1d1UtZ3ZIMWxFZV9MeHE2ZkhnV3owLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi8zOTViMWMtYTdkYS00NDY5LWE0YzUt
ZTMwNGZhY2QxZjdhLzEvWDBCaWd1d1UtZ3ZIMWxFZV9MeHE2ZkhnV3owLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi8zOTViMWMtYTdkYS00NDY5LWE0YzUtZTMwNGZhY2QxZjdh
LzEvWDBCaWd1d1UtZ3ZIMWxFZV9MeHE2ZkhnV3owLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjkQ0i/mR
c71mxDp0RMmXzA579ODlqJ/9o1vnKxv2ZC1k7mLhGYt3OJfwa+fs29SDlGGbiwqG
VV7PamfTuoeIIdpyxpGuwzrF23VWE16qXEdHhU33SQkvZzVQNSD0L7hp72L2PSue
KsEw9N9mVgIW8s5NsbooimCxKXitt361T1vicSlkYncavhfg9yYIqqJOOUZg69rr
jgcrUUjz+ZtolGlOxrx3MGH9RNpjbDSYj2JHCBcvp5bIIUycQS3AVpm10gCSTD9a
dT1l65ngXPHNUkerL9U7++NVM0MOxcJKei5hTevZcJAaDhp1qKpG7H/k0iKEw5lz
hbSndsadro8KcQ==
-----END CERTIFICATE-----