Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4aa570-55fe-4b94-bc59-b4993b232e6c/1/uq9sCLyjCMHHiw7tjvMLSgRoEY4.mft
File:                     uq9sCLyjCMHHiw7tjvMLSgRoEY4.mft (raw, json)
Hash identifier:          QzgHpu+2gzHjDcVRYasbQQppcGtSOwTchad4YFAczys=
Subject key identifier:   99:E1:FA:E4:8A:E4:D3:2E:0D:A2:B7:3A:48:9C:66:8E:C2:73:2F:EE
Authority key identifier: BA:AF:6C:08:BC:A3:08:C1:C7:8B:0E:ED:8E:F3:0B:4A:04:68:11:8E
Certificate issuer:       /CN=baaf6c08bca308c1c78b0eed8ef30b4a0468118e
Certificate serial:       0198D583E4BDB30A45D7C9E0FFF1B1B97558
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uq9sCLyjCMHHiw7tjvMLSgRoEY4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ce/4aa570-55fe-4b94-bc59-b4993b232e6c/1/uq9sCLyjCMHHiw7tjvMLSgRoEY4.mft
Manifest number:          05CB
Signing time:             Sat 23 Aug 2025 06:00:47 +0000
Manifest this update:     Sat 23 Aug 2025 06:00:47 +0000
Manifest next update:     Sun 24 Aug 2025 06:00:47 +0000
Files and hashes:         1: uq9sCLyjCMHHiw7tjvMLSgRoEY4.crl (hash: 5umWHIVo4fM4LosssyJGv+ATjNBa7RO3IqUMnt9xo0c=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ce/4aa570-55fe-4b94-bc59-b4993b232e6c/1/uq9sCLyjCMHHiw7tjvMLSgRoEY4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ce/4aa570-55fe-4b94-bc59-b4993b232e6c/1/uq9sCLyjCMHHiw7tjvMLSgRoEY4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uq9sCLyjCMHHiw7tjvMLSgRoEY4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:83:e4:bd:b3:0a:45:d7:c9:e0:ff:f1:b1:b9:75:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=baaf6c08bca308c1c78b0eed8ef30b4a0468118e
        Validity
            Not Before: Aug 23 06:00:47 2025 GMT
            Not After : Aug 24 06:00:47 2025 GMT
        Subject: CN=99e1fae48ae4d32e0da2b73a489c668ec2732fee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:3c:6d:6f:6a:c9:a8:86:97:c7:6e:c5:45:76:
                    9f:77:37:07:75:e4:e6:59:43:08:46:18:bb:91:a6:
                    71:27:39:5e:87:06:04:b5:1a:ef:87:28:88:e2:bb:
                    0a:d6:f1:24:a2:c3:5e:1f:15:7f:60:fe:52:f7:5f:
                    51:c5:2d:52:11:3a:06:a3:ff:18:19:ac:99:85:32:
                    80:35:ee:e3:da:34:de:fd:df:8a:a9:5b:ba:a7:1d:
                    36:df:a1:e1:84:b2:4f:1b:9b:83:03:cc:68:3e:7f:
                    ae:1a:97:ba:b7:47:69:1a:96:27:e3:c6:0b:d5:e0:
                    d3:fd:3b:00:8b:6f:0a:a4:e7:22:3e:bd:4f:22:24:
                    86:92:12:60:c1:ae:b2:46:6d:d5:04:4e:f7:ce:20:
                    ed:1b:4d:73:a8:a7:4f:5e:65:80:42:ad:a8:c9:1f:
                    cd:e4:37:9f:e9:ae:63:78:57:11:f3:38:f6:c3:c6:
                    50:7d:10:88:8f:33:02:59:e4:97:51:e0:2a:14:1e:
                    d4:89:eb:0d:76:8d:34:0e:cf:f4:c8:de:26:82:be:
                    d5:36:8b:8c:99:43:2d:60:a5:69:72:20:20:34:f5:
                    dc:37:fe:0c:ab:69:f5:7d:e3:62:b9:02:f4:be:78:
                    88:68:2b:4d:b1:f9:8e:16:13:d4:56:51:b9:6b:53:
                    67:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:E1:FA:E4:8A:E4:D3:2E:0D:A2:B7:3A:48:9C:66:8E:C2:73:2F:EE
            X509v3 Authority Key Identifier:
                keyid:BA:AF:6C:08:BC:A3:08:C1:C7:8B:0E:ED:8E:F3:0B:4A:04:68:11:8E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uq9sCLyjCMHHiw7tjvMLSgRoEY4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4aa570-55fe-4b94-bc59-b4993b232e6c/1/uq9sCLyjCMHHiw7tjvMLSgRoEY4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4aa570-55fe-4b94-bc59-b4993b232e6c/1/uq9sCLyjCMHHiw7tjvMLSgRoEY4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:72:97:31:97:b8:51:a7:5b:53:87:d2:73:ca:02:73:3b:52:
         e5:73:42:46:79:3f:55:f3:9e:b8:bb:13:df:14:7c:d0:f1:9e:
         87:fa:fd:e0:ee:c7:d2:96:9a:d7:f2:f4:91:e0:ee:2d:14:33:
         3c:78:f9:47:03:00:db:38:6d:3e:9d:32:39:56:b3:9f:4d:d7:
         c1:c4:85:75:42:8e:e6:0c:d9:14:8b:35:ba:3f:68:28:62:e6:
         04:de:a4:b7:e8:84:09:28:d3:2d:6c:c5:0d:e6:8b:62:27:68:
         60:c3:5c:be:cf:f2:6e:35:38:d5:da:9e:f2:7a:92:30:97:96:
         07:7c:3e:9b:5e:de:ce:1f:f0:92:a3:c3:15:d3:a4:d5:0c:bd:
         78:22:7d:da:ca:a6:4a:45:2b:c5:ad:24:9e:2a:98:05:df:f4:
         72:3f:9c:f4:c7:69:9e:f0:dc:c6:99:a8:9b:8b:35:6c:38:5b:
         f8:b6:4f:92:31:fe:3f:46:27:7d:3c:60:95:af:bd:84:4d:62:
         ba:ce:93:19:39:18:30:8e:69:47:d2:73:1d:76:fe:82:a1:55:
         8c:58:66:e6:7b:00:60:98:e9:3e:18:8c:6f:d8:55:3d:24:78:
         a3:8c:ce:50:4e:af:97:01:e7:f3:3f:21:ba:2e:21:62:1a:aa:
         8c:da:a4:38
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg+S9swpF18ng//GxuXVYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhYWY2YzA4YmNhMzA4YzFjNzhiMGVlZDhlZjMwYjRhMDQ2
ODExOGUwHhcNMjUwODIzMDYwMDQ3WhcNMjUwODI0MDYwMDQ3WjAzMTEwLwYDVQQD
Eyg5OWUxZmFlNDhhZTRkMzJlMGRhMmI3M2E0ODljNjY4ZWMyNzMyZmVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2zxtb2rJqIaXx27FRXafdzcHdeTm
WUMIRhi7kaZxJzlehwYEtRrvhyiI4rsK1vEkosNeHxV/YP5S919RxS1SEToGo/8Y
GayZhTKANe7j2jTe/d+KqVu6px0236HhhLJPG5uDA8xoPn+uGpe6t0dpGpYn48YL
1eDT/TsAi28KpOciPr1PIiSGkhJgwa6yRm3VBE73ziDtG01zqKdPXmWAQq2oyR/N
5Def6a5jeFcR8zj2w8ZQfRCIjzMCWeSXUeAqFB7UiesNdo00Ds/0yN4mgr7VNouM
mUMtYKVpciAgNPXcN/4Mq2n1feNiuQL0vniIaCtNsfmOFhPUVlG5a1NnBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJnh+uSK5NMuDaK3OkicZo7Ccy/uMB8GA1UdIwQY
MBaAFLqvbAi8owjBx4sO7Y7zC0oEaBGOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXE5c0NMeWpDTUhIaXc3dGp2TUxTZ1JvRVk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS80YWE1NzAtNTVmZS00Yjk0LWJjNTkt
YjQ5OTNiMjMyZTZjLzEvdXE5c0NMeWpDTUhIaXc3dGp2TUxTZ1JvRVk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS80YWE1NzAtNTVmZS00Yjk0LWJjNTktYjQ5OTNiMjMyZTZj
LzEvdXE5c0NMeWpDTUhIaXc3dGp2TUxTZ1JvRVk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfHKXMZe4
UadbU4fSc8oCcztS5XNCRnk/VfOeuLsT3xR80PGeh/r94O7H0paa1/L0keDuLRQz
PHj5RwMA2zhtPp0yOVazn03XwcSFdUKO5gzZFIs1uj9oKGLmBN6kt+iECSjTLWzF
DeaLYidoYMNcvs/ybjU41dqe8nqSMJeWB3w+m17ezh/wkqPDFdOk1Qy9eCJ92sqm
SkUrxa0kniqYBd/0cj+c9MdpnvDcxpmom4s1bDhb+LZPkjH+P0YnfTxgla+9hE1i
us6TGTkYMI5pR9JzHXb+gqFVjFhm5nsAYJjpPhiMb9hVPSR4o4zOUE6vlwHn8z8h
ui4hYhqqjNqkOA==
-----END CERTIFICATE-----