Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.mft
File:                     mXZKyKibCft4hQ10xo4dqo8-KvE.mft (raw, json)
Hash identifier:          WzYTmPAyEVxq5t3ljRpSE4C8OSLZ4V/W7Cl65pASVeQ=
Subject key identifier:   6C:67:84:07:1A:30:DE:2E:11:B4:38:53:2D:D4:B4:92:D6:C5:D0:4B
Authority key identifier: 99:76:4A:C8:A8:9B:09:FB:78:85:0D:74:C6:8E:1D:AA:8F:3E:2A:F1
Certificate issuer:       /CN=99764ac8a89b09fb78850d74c68e1daa8f3e2af1
Certificate serial:       0198D4E0CCCDD90DC551DCC7F0635C07A345
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mXZKyKibCft4hQ10xo4dqo8-KvE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.mft
Manifest number:          085C
Signing time:             Sat 23 Aug 2025 03:02:38 +0000
Manifest this update:     Sat 23 Aug 2025 03:02:38 +0000
Manifest next update:     Sun 24 Aug 2025 03:02:38 +0000
Files and hashes:         1: mXZKyKibCft4hQ10xo4dqo8-KvE.crl (hash: UMJ78ro2IfOSmej7814hL7Y6nTOF8/X1AXAz314yuxM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mXZKyKibCft4hQ10xo4dqo8-KvE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:02:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:cc:cd:d9:0d:c5:51:dc:c7:f0:63:5c:07:a3:45
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=99764ac8a89b09fb78850d74c68e1daa8f3e2af1
        Validity
            Not Before: Aug 23 03:02:38 2025 GMT
            Not After : Aug 24 03:02:38 2025 GMT
        Subject: CN=6c6784071a30de2e11b438532dd4b492d6c5d04b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:29:56:e1:1a:9e:df:7e:17:fb:7b:d1:18:72:
                    c2:84:22:ea:42:39:4e:d2:0d:f8:0e:a6:18:73:a4:
                    23:4c:57:b4:07:b3:7e:66:d0:76:12:a9:e2:26:ec:
                    0c:99:02:00:5b:e2:4f:b9:f1:72:71:fb:cb:4b:47:
                    b8:d3:6f:65:9f:f9:fd:52:ed:37:e9:06:20:4d:9a:
                    20:3b:19:c5:b7:0e:0d:5a:85:ca:46:a2:da:5e:f7:
                    e3:b9:0a:61:2d:50:6d:53:35:29:dc:8c:8f:9b:c5:
                    f2:23:fc:87:00:ea:44:6b:c5:48:56:25:be:67:17:
                    81:7e:c7:3d:4b:91:ed:c7:94:79:33:e5:b5:8f:71:
                    6a:ae:5b:1e:7c:72:68:73:92:bc:82:0f:fc:6a:b8:
                    70:4e:6b:8d:d6:9b:75:eb:ce:c3:ed:0e:74:8a:97:
                    3b:c6:9c:30:ab:a9:c7:af:bb:6f:ba:00:bd:fe:d2:
                    20:5c:bf:d9:81:f6:7c:02:63:0b:4f:d0:18:7e:16:
                    bc:90:d9:67:6c:91:a5:fa:4f:d4:46:75:96:4a:80:
                    15:7a:49:61:90:a2:2b:98:31:cc:3e:ad:a8:d7:c0:
                    fd:0c:4d:4f:a9:7b:56:34:ce:3f:ef:b6:34:1c:05:
                    8f:30:9d:5e:41:97:9b:72:25:92:4d:46:95:63:b0:
                    e9:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:67:84:07:1A:30:DE:2E:11:B4:38:53:2D:D4:B4:92:D6:C5:D0:4B
            X509v3 Authority Key Identifier:
                keyid:99:76:4A:C8:A8:9B:09:FB:78:85:0D:74:C6:8E:1D:AA:8F:3E:2A:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXZKyKibCft4hQ10xo4dqo8-KvE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/cb58eb-7c04-4cb9-8f33-8168cf472962/1/mXZKyKibCft4hQ10xo4dqo8-KvE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:5d:ca:1b:11:96:3d:9b:c5:23:9c:c0:90:38:26:05:65:59:
         2d:c7:ac:c2:e1:ac:33:10:f1:2c:b3:75:62:a0:29:69:90:ac:
         5d:88:95:5a:31:cd:29:32:04:76:99:44:be:3b:1a:12:fc:c8:
         69:bd:22:6f:8e:4a:fb:9c:6c:41:d9:f5:26:7c:b3:b0:c9:de:
         91:26:d9:b4:f1:1e:31:09:be:76:0f:3e:4a:eb:23:37:ff:67:
         60:2b:55:e0:d1:3b:52:b4:c8:9c:81:22:85:c5:d8:47:62:09:
         32:62:9d:2b:75:f7:43:77:ed:49:6a:ec:0c:58:cf:38:bc:e6:
         bb:f1:da:dd:cd:5b:ae:eb:63:4f:01:d5:09:11:41:e4:48:68:
         b2:ad:29:f1:dd:83:ce:82:a1:10:ee:77:3e:77:12:da:0a:dd:
         81:b5:83:97:49:7b:e3:51:6e:07:74:b8:2d:dd:3c:9f:d7:fb:
         8b:a4:30:96:58:a5:9f:f5:81:8d:75:c3:f6:ba:38:03:c5:7d:
         16:e9:8a:f7:6f:17:84:d6:f1:5f:ba:ec:d0:ed:7a:78:98:38:
         3e:08:95:82:4a:91:64:67:01:b2:cb:cc:3a:eb:8a:a8:c1:68:
         6e:10:09:ca:c5:51:4b:47:e5:67:9c:8e:bf:1f:70:ea:04:2b:
         cf:fa:ab:0e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4MzN2Q3FUdzH8GNcB6NFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5NzY0YWM4YTg5YjA5ZmI3ODg1MGQ3NGM2OGUxZGFhOGYz
ZTJhZjEwHhcNMjUwODIzMDMwMjM4WhcNMjUwODI0MDMwMjM4WjAzMTEwLwYDVQQD
Eyg2YzY3ODQwNzFhMzBkZTJlMTFiNDM4NTMyZGQ0YjQ5MmQ2YzVkMDRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArylW4Rqe334X+3vRGHLChCLqQjlO
0g34DqYYc6QjTFe0B7N+ZtB2EqniJuwMmQIAW+JPufFycfvLS0e4029ln/n9Uu03
6QYgTZogOxnFtw4NWoXKRqLaXvfjuQphLVBtUzUp3IyPm8XyI/yHAOpEa8VIViW+
ZxeBfsc9S5Htx5R5M+W1j3FqrlsefHJoc5K8gg/8arhwTmuN1pt1687D7Q50ipc7
xpwwq6nHr7tvugC9/tIgXL/ZgfZ8AmMLT9AYfha8kNlnbJGl+k/URnWWSoAVeklh
kKIrmDHMPq2o18D9DE1PqXtWNM4/77Y0HAWPMJ1eQZebciWSTUaVY7DpkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGxnhAcaMN4uEbQ4Uy3UtJLWxdBLMB8GA1UdIwQY
MBaAFJl2Ssiomwn7eIUNdMaOHaqPPirxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbVhaS3lLaWJDZnQ0aFExMHhvNGRxbzgtS3ZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9jYjU4ZWItN2MwNC00Y2I5LThmMzMt
ODE2OGNmNDcyOTYyLzEvbVhaS3lLaWJDZnQ0aFExMHhvNGRxbzgtS3ZFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9jYjU4ZWItN2MwNC00Y2I5LThmMzMtODE2OGNmNDcyOTYy
LzEvbVhaS3lLaWJDZnQ0aFExMHhvNGRxbzgtS3ZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADl3KGxGW
PZvFI5zAkDgmBWVZLceswuGsMxDxLLN1YqApaZCsXYiVWjHNKTIEdplEvjsaEvzI
ab0ib45K+5xsQdn1JnyzsMnekSbZtPEeMQm+dg8+SusjN/9nYCtV4NE7UrTInIEi
hcXYR2IJMmKdK3X3Q3ftSWrsDFjPOLzmu/Ha3c1brutjTwHVCRFB5Ehosq0p8d2D
zoKhEO53PncS2grdgbWDl0l741FuB3S4Ld08n9f7i6Qwlliln/WBjXXD9ro4A8V9
FumK928XhNbxX7rs0O16eJg4PgiVgkqRZGcBssvMOuuKqMFobhAJysVRS0flZ5yO
vx9w6gQrz/qrDg==
-----END CERTIFICATE-----