Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.mft
File:                     0_ULT8CViQuDHAPZliXA7lQZ01o.mft (raw, json)
Hash identifier:          8iVg/yTjZN/27f0fz+dkmuKdf8+LZpI09xy7XUGUlSY=
Subject key identifier:   2C:E6:B7:E3:8D:E2:29:C5:3F:E2:A1:45:5B:56:62:BC:03:03:93:C6
Authority key identifier: D3:F5:0B:4F:C0:95:89:0B:83:1C:03:D9:96:25:C0:EE:54:19:D3:5A
Certificate issuer:       /CN=d3f50b4fc095890b831c03d99625c0ee5419d35a
Certificate serial:       0198D54EC0EC35A9FCAA466C145BCD5E7B3D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0_ULT8CViQuDHAPZliXA7lQZ01o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.mft
Manifest number:          14FB
Signing time:             Sat 23 Aug 2025 05:02:44 +0000
Manifest this update:     Sat 23 Aug 2025 05:02:44 +0000
Manifest next update:     Sun 24 Aug 2025 05:02:44 +0000
Files and hashes:         1: 0_ULT8CViQuDHAPZliXA7lQZ01o.crl (hash: HMpsxhMOi5DZAjiwXYwwUrWgOwr8bCus9uTomprbFE0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0_ULT8CViQuDHAPZliXA7lQZ01o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:4e:c0:ec:35:a9:fc:aa:46:6c:14:5b:cd:5e:7b:3d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d3f50b4fc095890b831c03d99625c0ee5419d35a
        Validity
            Not Before: Aug 23 05:02:44 2025 GMT
            Not After : Aug 24 05:02:44 2025 GMT
        Subject: CN=2ce6b7e38de229c53fe2a1455b5662bc030393c6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:80:80:69:2c:dd:02:a6:17:1c:c4:1a:12:9c:
                    69:0b:4d:a3:4b:b4:8f:66:a7:a6:07:50:1a:4b:30:
                    1d:1b:e8:d4:7c:a8:1f:a9:ca:c3:40:92:85:36:2d:
                    12:b8:42:43:67:94:62:8d:bf:64:01:88:45:b1:1d:
                    46:70:02:14:64:13:bf:23:a3:b6:f4:69:96:89:28:
                    88:25:7a:3d:3f:18:33:e1:1e:73:68:b7:26:c5:b3:
                    94:96:da:af:41:b9:ee:e7:bd:e6:cc:64:96:65:93:
                    54:c0:6c:1f:67:f4:e3:51:01:56:9d:1c:79:a6:a4:
                    c3:53:36:89:b1:1f:dd:bf:16:c8:2e:78:c7:59:60:
                    d1:79:ea:6c:dc:fe:7b:d2:32:9e:32:f3:4b:2b:89:
                    52:d3:43:5c:e3:e8:9e:91:4b:13:59:d5:9a:5e:2e:
                    0b:6c:2e:ca:d5:ad:ae:fb:4c:b5:f7:a5:62:93:ff:
                    75:ba:33:42:96:0e:10:db:fe:9e:b9:11:2f:70:07:
                    d0:10:d4:63:e1:dd:0d:54:07:72:f4:5a:35:36:a5:
                    e4:97:64:6f:99:93:a6:04:be:55:9b:59:ba:a2:bb:
                    6f:37:57:17:dd:17:1a:da:fd:a6:ce:77:b0:ae:43:
                    27:fd:85:df:63:06:61:c3:46:bd:0d:22:31:26:4d:
                    02:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:E6:B7:E3:8D:E2:29:C5:3F:E2:A1:45:5B:56:62:BC:03:03:93:C6
            X509v3 Authority Key Identifier:
                keyid:D3:F5:0B:4F:C0:95:89:0B:83:1C:03:D9:96:25:C0:EE:54:19:D3:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0_ULT8CViQuDHAPZliXA7lQZ01o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3b3037-62bd-4b4d-af4d-77e3217cd39f/1/0_ULT8CViQuDHAPZliXA7lQZ01o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:1a:41:94:67:db:b6:b9:9c:4b:12:e0:e6:c3:b9:f6:7b:73:
         31:14:d0:42:e4:dd:72:51:f5:84:1a:99:3c:d6:13:71:d6:2c:
         14:5b:d4:c9:25:fc:17:9d:d9:e5:0c:74:c1:ec:e1:57:22:ec:
         1f:11:da:60:c9:76:5f:6a:56:c0:f3:5c:c0:0d:36:e5:db:34:
         d4:cf:3c:02:3b:5b:e8:e7:91:b6:eb:c6:fe:80:55:10:54:4a:
         61:06:2b:8c:18:a1:e8:89:b5:b6:4d:ae:07:ec:ff:22:d5:a2:
         12:60:87:09:e6:96:0d:06:70:de:6e:aa:26:48:77:10:5c:74:
         7b:2d:bd:9f:31:63:01:c0:9e:20:5a:7d:e3:8f:da:0b:d9:49:
         34:4d:5a:91:8b:36:9c:a5:c7:62:1e:69:f3:c4:14:95:46:a6:
         ae:fe:73:8c:76:69:ca:3b:6f:f0:9a:23:97:0e:db:14:b3:36:
         d4:47:32:ac:89:be:d3:b6:5f:35:85:ef:42:c9:ec:42:34:ef:
         0a:11:27:b0:9b:20:9f:bf:9d:0c:f8:d6:35:3f:68:ec:9a:7d:
         82:94:18:6c:ca:63:09:fa:8f:d1:37:0d:aa:31:d5:0b:f1:d3:
         68:ea:20:29:fa:5b:ae:5d:39:aa:3a:eb:1a:28:17:8b:bb:b5:
         eb:bf:ad:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVTsDsNan8qkZsFFvNXns9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzZjUwYjRmYzA5NTg5MGI4MzFjMDNkOTk2MjVjMGVlNTQx
OWQzNWEwHhcNMjUwODIzMDUwMjQ0WhcNMjUwODI0MDUwMjQ0WjAzMTEwLwYDVQQD
EygyY2U2YjdlMzhkZTIyOWM1M2ZlMmExNDU1YjU2NjJiYzAzMDM5M2M2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoICAaSzdAqYXHMQaEpxpC02jS7SP
ZqemB1AaSzAdG+jUfKgfqcrDQJKFNi0SuEJDZ5Rijb9kAYhFsR1GcAIUZBO/I6O2
9GmWiSiIJXo9Pxgz4R5zaLcmxbOUltqvQbnu573mzGSWZZNUwGwfZ/TjUQFWnRx5
pqTDUzaJsR/dvxbILnjHWWDReeps3P570jKeMvNLK4lS00Nc4+iekUsTWdWaXi4L
bC7K1a2u+0y196Vik/91ujNClg4Q2/6euREvcAfQENRj4d0NVAdy9Fo1NqXkl2Rv
mZOmBL5Vm1m6ortvN1cX3Rca2v2mznewrkMn/YXfYwZhw0a9DSIxJk0C3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCzmt+ON4inFP+KhRVtWYrwDA5PGMB8GA1UdIwQY
MBaAFNP1C0/AlYkLgxwD2ZYlwO5UGdNaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMF9VTFQ4Q1ZpUXVESEFQWmxpWEE3bFFaMDFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8zYjMwMzctNjJiZC00YjRkLWFmNGQt
NzdlMzIxN2NkMzlmLzEvMF9VTFQ4Q1ZpUXVESEFQWmxpWEE3bFFaMDFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8zYjMwMzctNjJiZC00YjRkLWFmNGQtNzdlMzIxN2NkMzlm
LzEvMF9VTFQ4Q1ZpUXVESEFQWmxpWEE3bFFaMDFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIBpBlGfb
trmcSxLg5sO59ntzMRTQQuTdclH1hBqZPNYTcdYsFFvUySX8F53Z5Qx0wezhVyLs
HxHaYMl2X2pWwPNcwA025ds01M88Ajtb6OeRtuvG/oBVEFRKYQYrjBih6Im1tk2u
B+z/ItWiEmCHCeaWDQZw3m6qJkh3EFx0ey29nzFjAcCeIFp944/aC9lJNE1akYs2
nKXHYh5p88QUlUamrv5zjHZpyjtv8Jojlw7bFLM21EcyrIm+07ZfNYXvQsnsQjTv
ChEnsJsgn7+dDPjWNT9o7Jp9gpQYbMpjCfqP0TcNqjHVC/HTaOogKfpbrl05qjrr
GigXi7u167+trQ==
-----END CERTIFICATE-----