Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
File:                     5qi5LUxZf2wET3clKFSPnJEpoNM.mft (raw, json)
Hash identifier:          bM9/EJDQZ4KRJxsB+x2/dpvWY2bITJIvo/ao+Tt1Y9w=
Subject key identifier:   1B:82:CD:E1:20:43:8B:95:2A:C7:26:0D:33:2A:8D:35:81:77:E6:DF
Authority key identifier: E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3
Certificate issuer:       /CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
Certificate serial:       0198D4E0463CC3739F707B9A91C117994064
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
Manifest number:          1327
Signing time:             Sat 23 Aug 2025 03:02:04 +0000
Manifest this update:     Sat 23 Aug 2025 03:02:04 +0000
Manifest next update:     Sun 24 Aug 2025 03:02:04 +0000
Files and hashes:         1: 5qi5LUxZf2wET3clKFSPnJEpoNM.crl (hash: FjfCioVFKMrqjF8Wx+cNa16GoNk7g+YUqux3EMg/5Ho=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:02:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:46:3c:c3:73:9f:70:7b:9a:91:c1:17:99:40:64
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3
        Validity
            Not Before: Aug 23 03:02:04 2025 GMT
            Not After : Aug 24 03:02:04 2025 GMT
        Subject: CN=1b82cde120438b952ac7260d332a8d358177e6df
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:74:63:a2:41:70:33:13:c9:3f:2f:5c:cf:1e:
                    55:5a:10:c1:ed:5b:96:1c:7f:9c:61:5d:61:bf:4b:
                    1e:d1:c7:8e:aa:15:64:b7:06:b8:10:a9:f7:e4:17:
                    1b:f8:ee:78:7f:f4:84:9e:e1:d8:f6:d7:ab:7c:a7:
                    ff:01:71:bf:58:37:dd:39:60:9e:7c:35:98:4c:fd:
                    8f:c7:fa:a5:02:6e:6b:79:2f:b5:ff:36:27:f4:13:
                    36:63:ff:ef:eb:ea:27:79:07:f6:45:da:e4:8d:e7:
                    f2:e1:26:77:09:90:61:29:e2:8d:b1:56:ef:0a:d6:
                    ba:a9:d9:29:4f:e3:6c:b1:fb:fa:f2:c5:0c:fe:80:
                    f3:a7:7b:df:b8:09:48:9c:a7:4e:45:f1:07:21:39:
                    3f:ea:83:17:01:4f:01:f7:8e:39:da:cf:2e:f9:81:
                    b4:10:1d:e6:13:b8:31:75:83:2b:7a:6e:8c:35:8e:
                    77:72:37:af:c0:08:59:ca:f7:78:1d:70:bf:26:99:
                    97:30:14:87:50:31:56:35:d4:81:c1:bc:e6:de:ba:
                    88:c0:a0:57:94:6f:97:36:61:e8:da:cb:4c:6f:b2:
                    67:7a:d4:05:ed:ce:65:22:11:fa:54:45:9f:a2:5e:
                    1c:57:ae:c4:53:99:33:6f:64:af:be:6c:30:ab:c8:
                    2e:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:82:CD:E1:20:43:8B:95:2A:C7:26:0D:33:2A:8D:35:81:77:E6:DF
            X509v3 Authority Key Identifier:
                keyid:E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:14:75:50:dc:23:c3:85:24:8d:cd:5b:2b:79:bf:a1:0e:20:
         ca:ee:71:df:35:bd:b5:d9:67:f7:1f:c5:8e:1f:bc:62:be:27:
         98:30:7b:ce:9f:30:79:0f:19:e1:b3:e3:44:17:7b:47:3b:d4:
         da:cf:58:ab:2d:9b:8d:56:f5:69:ec:55:c8:43:06:d0:a7:5a:
         d4:68:69:91:b4:88:da:b6:c4:75:90:12:f5:99:20:ef:93:ef:
         9d:dd:4e:8b:a2:48:f2:49:e5:e9:89:e9:28:a2:0d:d5:9c:83:
         81:dd:31:05:6a:b8:a5:40:ca:be:63:eb:97:fb:0c:9e:1f:50:
         c7:de:df:72:fb:26:c3:72:b4:dd:93:13:d2:0d:12:f4:9f:84:
         a6:e3:29:d6:72:32:7a:99:4f:cc:cb:a6:8d:5f:aa:46:d0:4d:
         6f:fe:b7:07:19:b3:ee:44:06:89:4a:87:9a:fd:c5:f4:5b:eb:
         06:27:9a:4e:b1:38:64:77:31:d2:14:dd:f1:27:14:a2:7f:84:
         e6:72:aa:e4:78:15:aa:3e:76:7d:be:a8:4f:93:d7:6b:42:89:
         eb:9d:f6:3f:e4:f6:11:42:42:54:3b:a4:d1:04:3d:0e:3c:07:
         86:8c:52:be:9e:6e:58:9d:4b:e2:56:ab:65:4f:82:1c:72:8b:
         a8:63:f7:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4EY8w3OfcHuakcEXmUBkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU2YThiOTJkNGM1OTdmNmMwNDRmNzcyNTI4NTQ4ZjljOTEy
OWEwZDMwHhcNMjUwODIzMDMwMjA0WhcNMjUwODI0MDMwMjA0WjAzMTEwLwYDVQQD
EygxYjgyY2RlMTIwNDM4Yjk1MmFjNzI2MGQzMzJhOGQzNTgxNzdlNmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqHRjokFwMxPJPy9czx5VWhDB7VuW
HH+cYV1hv0se0ceOqhVktwa4EKn35Bcb+O54f/SEnuHY9terfKf/AXG/WDfdOWCe
fDWYTP2Px/qlAm5reS+1/zYn9BM2Y//v6+oneQf2Rdrkjefy4SZ3CZBhKeKNsVbv
Cta6qdkpT+Nssfv68sUM/oDzp3vfuAlInKdORfEHITk/6oMXAU8B94452s8u+YG0
EB3mE7gxdYMrem6MNY53cjevwAhZyvd4HXC/JpmXMBSHUDFWNdSBwbzm3rqIwKBX
lG+XNmHo2stMb7JnetQF7c5lIhH6VEWfol4cV67EU5kzb2Svvmwwq8guwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBuCzeEgQ4uVKscmDTMqjTWBd+bfMB8GA1UdIwQY
MBaAFOaouS1MWX9sBE93JShUj5yRKaDTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9mOWFmYzItOTE2OS00YThjLTg4MTYt
ZGViN2ZmMWI1ZTZkLzEvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi9mOWFmYzItOTE2OS00YThjLTg4MTYtZGViN2ZmMWI1ZTZk
LzEvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkhR1UNwj
w4Ukjc1bK3m/oQ4gyu5x3zW9tdln9x/Fjh+8Yr4nmDB7zp8weQ8Z4bPjRBd7RzvU
2s9Yqy2bjVb1aexVyEMG0Kda1GhpkbSI2rbEdZAS9Zkg75Pvnd1Oi6JI8knl6Ynp
KKIN1ZyDgd0xBWq4pUDKvmPrl/sMnh9Qx97fcvsmw3K03ZMT0g0S9J+EpuMp1nIy
eplPzMumjV+qRtBNb/63Bxmz7kQGiUqHmv3F9FvrBieaTrE4ZHcx0hTd8ScUon+E
5nKq5HgVqj52fb6oT5PXa0KJ6532P+T2EUJCVDuk0QQ9DjwHhoxSvp5uWJ1L4lar
ZU+CHHKLqGP3qg==
-----END CERTIFICATE-----