Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft
File:                     DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft (raw, json)
Hash identifier:          zh/PT4B1IBaI7lQIzXoFSMS5tgVz0004r6YTPk/qp/k=
Subject key identifier:   0E:DF:8E:5E:26:9A:5C:B0:F4:B9:43:12:4E:3D:23:04:A1:09:F4:51
Authority key identifier: 0E:56:C9:E5:8D:96:AF:1E:41:30:D7:22:42:21:19:2B:2C:13:2A:5C
Certificate issuer:       /CN=0e56c9e58d96af1e4130d7224221192b2c132a5c
Certificate serial:       0198D6611042B98955C26F4C7352BE8FDD32
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft
Manifest number:          15DB
Signing time:             Sat 23 Aug 2025 10:02:22 +0000
Manifest this update:     Sat 23 Aug 2025 10:02:22 +0000
Manifest next update:     Sun 24 Aug 2025 10:02:22 +0000
Files and hashes:         1: DlbJ5Y2Wrx5BMNciQiEZKywTKlw.crl (hash: F4qj+ZGPe9mhJ6Qzk5e5DHqJ4D7kvo9+S/sTt57gcls=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 10:02:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d6:61:10:42:b9:89:55:c2:6f:4c:73:52:be:8f:dd:32
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e56c9e58d96af1e4130d7224221192b2c132a5c
        Validity
            Not Before: Aug 23 10:02:22 2025 GMT
            Not After : Aug 24 10:02:22 2025 GMT
        Subject: CN=0edf8e5e269a5cb0f4b943124e3d2304a109f451
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:da:a9:7d:45:08:e8:35:6c:93:c6:53:e6:4a:
                    b8:2c:a0:38:38:ce:5e:2d:e6:f5:31:e4:50:27:6c:
                    7b:01:be:a8:cd:79:6e:3b:2e:cc:1d:4a:ec:23:ee:
                    2d:be:e8:75:d2:80:eb:c7:29:ee:5f:13:2c:cb:3e:
                    3b:dc:e5:fe:29:b9:66:9f:a4:9d:bb:ba:10:41:ce:
                    6e:2c:36:b8:5a:af:21:ca:9b:4b:4d:34:b1:8b:53:
                    53:4e:48:0b:aa:35:6c:4e:8b:ec:48:fb:bd:05:fb:
                    18:55:d2:5d:ed:bc:1a:c0:e2:73:b6:a5:71:25:c7:
                    0c:bc:fd:a1:1d:90:80:dd:0d:90:e0:4c:11:87:c0:
                    59:2c:17:3c:29:dc:15:30:85:a1:26:7a:a8:79:27:
                    f2:28:4b:da:92:63:75:84:bb:58:fd:98:68:91:32:
                    85:58:5a:4b:01:80:04:51:1c:72:d1:37:7d:7e:4d:
                    4f:70:d7:df:49:07:4a:7d:08:61:36:6e:67:b3:ac:
                    ee:85:e7:17:ca:ae:db:21:97:59:bb:c2:35:0a:b6:
                    df:78:5a:25:eb:9f:c5:21:19:77:aa:64:27:51:d6:
                    30:38:a0:c0:d2:6a:d4:21:1f:f0:0f:2a:d3:31:b9:
                    7b:44:db:53:ac:63:20:94:68:fb:1e:50:ba:c6:73:
                    0d:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:DF:8E:5E:26:9A:5C:B0:F4:B9:43:12:4E:3D:23:04:A1:09:F4:51
            X509v3 Authority Key Identifier:
                keyid:0E:56:C9:E5:8D:96:AF:1E:41:30:D7:22:42:21:19:2B:2C:13:2A:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/4c8208-ba30-4716-a6c8-84f3524626bd/1/DlbJ5Y2Wrx5BMNciQiEZKywTKlw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         05:18:57:de:a7:82:a2:78:f3:d2:21:e8:40:14:41:b2:80:31:
         a5:df:b4:b9:e2:3c:75:3b:25:34:1c:71:bd:c8:38:38:0c:f2:
         4b:dd:bd:5a:31:98:80:7a:e2:ca:41:93:33:81:ab:0a:66:1b:
         23:b4:cd:de:b9:23:ff:0c:c6:18:a4:8d:45:83:60:ad:0d:bf:
         be:6b:a8:63:c0:34:1b:ec:17:16:5e:ad:7b:ca:aa:05:26:15:
         2d:7f:30:ca:0f:77:22:21:49:76:24:dc:7d:a9:fe:31:47:43:
         72:07:09:43:e6:a2:87:c2:ba:a0:0f:00:88:be:a1:63:66:89:
         e1:2f:27:93:e9:f7:7e:7c:7c:a4:df:87:f2:b3:b9:ee:1e:50:
         f2:18:fb:ef:05:67:12:d6:25:53:5b:24:b5:79:9b:e4:c8:3a:
         a2:8b:cc:81:42:57:b3:c9:ff:ae:64:85:a9:1f:db:cb:4f:a0:
         2e:58:ec:03:22:7c:9a:0e:1c:4a:3f:30:5f:07:92:aa:39:2b:
         f3:68:b6:5b:08:05:6c:cb:d5:91:7c:53:58:0d:cd:e9:6d:88:
         65:ec:fa:9b:28:b9:af:cb:bd:43:72:90:78:d6:c0:9d:59:1c:
         54:a1:11:43:96:f7:5e:19:16:59:1b:66:1b:1b:b8:ba:f7:3a:
         b1:76:ef:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYRBCuYlVwm9Mc1K+j90yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlNTZjOWU1OGQ5NmFmMWU0MTMwZDcyMjQyMjExOTJiMmMx
MzJhNWMwHhcNMjUwODIzMTAwMjIyWhcNMjUwODI0MTAwMjIyWjAzMTEwLwYDVQQD
EygwZWRmOGU1ZTI2OWE1Y2IwZjRiOTQzMTI0ZTNkMjMwNGExMDlmNDUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAntqpfUUI6DVsk8ZT5kq4LKA4OM5e
Leb1MeRQJ2x7Ab6ozXluOy7MHUrsI+4tvuh10oDrxynuXxMsyz473OX+Kblmn6Sd
u7oQQc5uLDa4Wq8hyptLTTSxi1NTTkgLqjVsTovsSPu9BfsYVdJd7bwawOJztqVx
JccMvP2hHZCA3Q2Q4EwRh8BZLBc8KdwVMIWhJnqoeSfyKEvakmN1hLtY/ZhokTKF
WFpLAYAEURxy0Td9fk1PcNffSQdKfQhhNm5ns6zuhecXyq7bIZdZu8I1CrbfeFol
65/FIRl3qmQnUdYwOKDA0mrUIR/wDyrTMbl7RNtTrGMglGj7HlC6xnMN6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA7fjl4mmlyw9LlDEk49IwShCfRRMB8GA1UdIwQY
MBaAFA5WyeWNlq8eQTDXIkIhGSssEypcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGxiSjVZMldyeDVCTU5jaVFpRVpLeXdUS2x3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC80YzgyMDgtYmEzMC00NzE2LWE2Yzgt
ODRmMzUyNDYyNmJkLzEvRGxiSjVZMldyeDVCTU5jaVFpRVpLeXdUS2x3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC80YzgyMDgtYmEzMC00NzE2LWE2YzgtODRmMzUyNDYyNmJk
LzEvRGxiSjVZMldyeDVCTU5jaVFpRVpLeXdUS2x3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABRhX3qeC
onjz0iHoQBRBsoAxpd+0ueI8dTslNBxxvcg4OAzyS929WjGYgHriykGTM4GrCmYb
I7TN3rkj/wzGGKSNRYNgrQ2/vmuoY8A0G+wXFl6te8qqBSYVLX8wyg93IiFJdiTc
fan+MUdDcgcJQ+aih8K6oA8AiL6hY2aJ4S8nk+n3fnx8pN+H8rO57h5Q8hj77wVn
EtYlU1sktXmb5Mg6oovMgUJXs8n/rmSFqR/by0+gLljsAyJ8mg4cSj8wXweSqjkr
82i2WwgFbMvVkXxTWA3N6W2IZez6myi5r8u9Q3KQeNbAnVkcVKERQ5b3XhkWWRtm
Gxu4uvc6sXbv3Q==
-----END CERTIFICATE-----