Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft
File:                     gAVnqlixEmbTjGRvpkc_VEk3fE0.mft (raw, json)
Hash identifier:          dpJNnk7YuY7DWxsjrmrVqCMHlicme9zEYTVO0RWd1uY=
Subject key identifier:   F9:7B:A0:49:D8:16:66:65:4E:BA:83:3E:9E:4B:28:79:E2:8A:D3:DD
Authority key identifier: 80:05:67:AA:58:B1:12:66:D3:8C:64:6F:A6:47:3F:54:49:37:7C:4D
Certificate issuer:       /CN=800567aa58b11266d38c646fa6473f5449377c4d
Certificate serial:       0198D5834F3D7EEF06166DF6FFD78B9B9522
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gAVnqlixEmbTjGRvpkc_VEk3fE0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft
Manifest number:          0101
Signing time:             Sat 23 Aug 2025 06:00:09 +0000
Manifest this update:     Sat 23 Aug 2025 06:00:09 +0000
Manifest next update:     Sun 24 Aug 2025 06:00:09 +0000
Files and hashes:         1: gAVnqlixEmbTjGRvpkc_VEk3fE0.crl (hash: gIeSzithBZ4b3gUOZLoQMm/8eH5rrYh5fnc/Xcpy3M8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gAVnqlixEmbTjGRvpkc_VEk3fE0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:83:4f:3d:7e:ef:06:16:6d:f6:ff:d7:8b:9b:95:22
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=800567aa58b11266d38c646fa6473f5449377c4d
        Validity
            Not Before: Aug 23 06:00:09 2025 GMT
            Not After : Aug 24 06:00:09 2025 GMT
        Subject: CN=f97ba049d81666654eba833e9e4b2879e28ad3dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:d0:4a:6a:ce:94:8d:44:2b:3c:19:53:9b:c7:
                    38:5a:f6:5c:47:98:2c:1a:11:0d:be:aa:d3:7b:59:
                    10:4e:aa:62:da:0a:d3:88:91:6f:64:9e:60:e2:51:
                    4d:4c:fc:66:71:61:04:4e:f1:51:1a:c9:d6:23:af:
                    5b:94:64:51:fd:f3:4c:67:ae:bc:4e:2b:93:c7:97:
                    04:c7:a2:78:f1:40:e2:94:d1:af:ac:6c:8c:7d:ca:
                    03:72:79:8f:61:69:d7:a5:6f:56:f7:13:b0:c6:95:
                    55:de:e6:7e:b9:b7:fd:bd:04:27:c7:26:0e:2d:ae:
                    be:5d:e9:0b:7e:02:7c:7d:75:a6:8d:08:e6:cc:d5:
                    66:d0:62:05:08:2b:b0:00:40:08:27:53:97:1a:95:
                    a4:4d:18:ee:43:77:90:83:e9:05:75:02:96:42:5e:
                    d2:b6:b6:8f:f1:b8:c5:a8:87:fc:9a:44:fc:99:28:
                    0b:15:9b:8b:80:e8:cc:20:2b:1c:57:cd:f0:31:db:
                    f2:b3:01:19:af:35:53:c3:d9:71:73:66:59:a2:23:
                    a0:28:54:aa:34:99:7b:9c:9a:e6:9a:44:64:30:e8:
                    64:c9:ff:ec:83:4d:02:2c:b0:f5:14:7b:73:1f:05:
                    3b:e9:e7:2f:dd:60:f8:f5:1a:01:e9:5e:fe:24:0c:
                    f3:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F9:7B:A0:49:D8:16:66:65:4E:BA:83:3E:9E:4B:28:79:E2:8A:D3:DD
            X509v3 Authority Key Identifier:
                keyid:80:05:67:AA:58:B1:12:66:D3:8C:64:6F:A6:47:3F:54:49:37:7C:4D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gAVnqlixEmbTjGRvpkc_VEk3fE0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/2c74d9-c3e0-496b-a4be-8dd45d2bca7a/1/gAVnqlixEmbTjGRvpkc_VEk3fE0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:c8:14:91:cd:6a:e5:98:30:4d:25:1c:dd:b1:21:09:8f:70:
         24:a9:6c:fa:b2:69:de:56:e0:5d:6b:1e:86:97:38:0e:db:0b:
         4b:37:90:c4:78:c0:a8:89:6c:22:38:6e:b0:71:fc:0c:89:57:
         84:db:a3:a4:e2:cb:e8:8b:77:48:9d:fe:a5:a3:84:fa:0c:d9:
         7e:57:e6:b5:d5:74:bd:f2:28:9f:ff:ab:58:be:df:22:81:9c:
         c9:ce:46:00:66:af:ae:27:c7:51:87:81:28:0f:e9:d2:95:00:
         ef:a6:97:8d:19:15:a7:79:1c:5d:11:8f:f1:ca:c2:a6:8f:2d:
         d3:21:68:3c:98:72:52:8b:04:fe:43:97:2e:31:8b:41:38:7e:
         fc:5b:01:b2:1f:d0:f0:67:b0:3f:00:6f:f2:af:bd:aa:27:b7:
         bc:0f:c3:e4:cd:60:00:06:b9:06:44:04:86:e0:1c:18:a5:59:
         69:65:a5:ac:6a:09:91:57:9a:c3:c8:6a:fa:5c:3c:8a:0a:fa:
         97:ae:68:49:8e:17:f6:d6:72:6f:37:e0:c5:c3:00:20:11:2f:
         52:4f:22:1f:aa:36:0e:b4:e7:77:7d:ca:be:b6:d8:36:28:4c:
         d1:3a:34:0f:4e:a3:bc:d1:9b:36:42:3a:79:2a:2d:58:15:37:
         22:7e:62:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg089fu8GFm32/9eLm5UiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwMDU2N2FhNThiMTEyNjZkMzhjNjQ2ZmE2NDczZjU0NDkz
NzdjNGQwHhcNMjUwODIzMDYwMDA5WhcNMjUwODI0MDYwMDA5WjAzMTEwLwYDVQQD
EyhmOTdiYTA0OWQ4MTY2NjY1NGViYTgzM2U5ZTRiMjg3OWUyOGFkM2RkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmtBKas6UjUQrPBlTm8c4WvZcR5gs
GhENvqrTe1kQTqpi2grTiJFvZJ5g4lFNTPxmcWEETvFRGsnWI69blGRR/fNMZ668
TiuTx5cEx6J48UDilNGvrGyMfcoDcnmPYWnXpW9W9xOwxpVV3uZ+ubf9vQQnxyYO
La6+XekLfgJ8fXWmjQjmzNVm0GIFCCuwAEAIJ1OXGpWkTRjuQ3eQg+kFdQKWQl7S
traP8bjFqIf8mkT8mSgLFZuLgOjMICscV83wMdvyswEZrzVTw9lxc2ZZoiOgKFSq
NJl7nJrmmkRkMOhkyf/sg00CLLD1FHtzHwU76ecv3WD49RoB6V7+JAzzFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPl7oEnYFmZlTrqDPp5LKHniitPdMB8GA1UdIwQY
MBaAFIAFZ6pYsRJm04xkb6ZHP1RJN3xNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0FWbnFsaXhFbWJUakdSdnBrY19WRWszZkUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS8yYzc0ZDktYzNlMC00OTZiLWE0YmUt
OGRkNDVkMmJjYTdhLzEvZ0FWbnFsaXhFbWJUakdSdnBrY19WRWszZkUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS8yYzc0ZDktYzNlMC00OTZiLWE0YmUtOGRkNDVkMmJjYTdh
LzEvZ0FWbnFsaXhFbWJUakdSdnBrY19WRWszZkUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlcgUkc1q
5ZgwTSUc3bEhCY9wJKls+rJp3lbgXWsehpc4DtsLSzeQxHjAqIlsIjhusHH8DIlX
hNujpOLL6It3SJ3+paOE+gzZflfmtdV0vfIon/+rWL7fIoGcyc5GAGavrifHUYeB
KA/p0pUA76aXjRkVp3kcXRGP8crCpo8t0yFoPJhyUosE/kOXLjGLQTh+/FsBsh/Q
8GewPwBv8q+9qie3vA/D5M1gAAa5BkQEhuAcGKVZaWWlrGoJkVeaw8hq+lw8igr6
l65oSY4X9tZybzfgxcMAIBEvUk8iH6o2DrTnd33KvrbYNihM0To0D06jvNGbNkI6
eSotWBU3In5iZg==
-----END CERTIFICATE-----