Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
File:                     6kHoOY_3zvtSIWNusighJuv-O3g.mft (raw, json)
Hash identifier:          iRU0qXPiszp2WcngimLaXjAvGhRnb5al6L7Evo4RPzM=
Subject key identifier:   7E:6B:31:15:4B:CD:64:32:41:87:16:CA:E4:A5:9B:4C:00:38:0D:19
Authority key identifier: EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78
Certificate issuer:       /CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
Certificate serial:       0198D84FF25927A4E48745554F46F2A1D91E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
Manifest number:          029A
Signing time:             Sat 23 Aug 2025 19:02:54 +0000
Manifest this update:     Sat 23 Aug 2025 19:02:54 +0000
Manifest next update:     Sun 24 Aug 2025 19:02:54 +0000
Files and hashes:         1: 6kHoOY_3zvtSIWNusighJuv-O3g.crl (hash: DGdbCfOKnnduOybto4Tm7h6z18e5jA0mOexoBCZcaWk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 14:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d8:4f:f2:59:27:a4:e4:87:45:55:4f:46:f2:a1:d9:1e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
        Validity
            Not Before: Aug 23 19:02:54 2025 GMT
            Not After : Aug 24 19:02:54 2025 GMT
        Subject: CN=7e6b31154bcd6432418716cae4a59b4c00380d19
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:40:a6:b6:38:89:6d:d2:84:9e:6b:ed:69:31:
                    35:cf:df:60:3e:a8:85:4b:bc:12:1d:8b:dd:06:f2:
                    ae:67:f8:00:b5:dd:62:19:3c:ba:13:bf:46:d2:ab:
                    a4:5a:79:3b:8a:c7:f0:47:f3:19:cb:e3:a1:61:6d:
                    7b:82:fd:62:ef:f7:ae:5f:8f:57:2c:d1:62:29:16:
                    97:6f:ef:62:5b:49:fd:c8:b6:4f:81:2c:fb:d1:2a:
                    cf:f1:bd:6c:13:eb:8d:8d:4f:90:9d:ac:0f:5a:a9:
                    bb:18:4b:c3:27:4a:65:3f:33:ba:fd:f6:d7:84:12:
                    a6:2c:81:43:a1:ef:f0:be:9f:44:54:c4:3e:ee:80:
                    1b:df:15:6a:61:da:d5:e9:2b:8d:1a:3a:df:0b:5c:
                    5c:62:47:fb:07:2e:d7:d0:e0:5b:aa:91:61:27:cc:
                    13:1e:ee:9e:26:46:6d:22:a0:7d:aa:0b:86:b2:5c:
                    1f:35:68:22:a2:33:0f:bc:de:9c:9a:31:23:49:bf:
                    00:f7:ce:c7:33:b9:73:c7:e9:3c:6e:bb:06:5d:2d:
                    b5:4f:a6:71:93:d1:c1:6d:0f:99:40:78:ed:94:9c:
                    14:e7:06:9e:e2:cf:01:55:88:e0:2f:5a:96:83:28:
                    38:61:99:b0:90:b6:bd:f3:25:37:ef:f1:da:e9:82:
                    68:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:6B:31:15:4B:CD:64:32:41:87:16:CA:E4:A5:9B:4C:00:38:0D:19
            X509v3 Authority Key Identifier:
                keyid:EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5b:ff:0f:e0:f0:a1:e4:fd:9f:90:7f:e6:33:ca:6c:9f:8f:3e:
         1a:32:6c:3c:d8:af:a2:70:c9:d4:25:c0:56:ec:4a:12:8e:e4:
         43:b7:b2:e9:4d:39:b4:5b:02:fb:26:56:50:4a:09:78:c0:51:
         6f:5b:f3:45:58:8f:ea:04:ef:d5:2e:a1:29:49:20:bf:e4:cb:
         14:87:27:06:7b:3e:38:ae:b8:76:3c:a7:c5:51:ef:2e:2b:7e:
         c2:a7:a9:4a:b3:b9:1a:b5:65:18:20:7b:41:32:56:78:b7:2a:
         f4:1d:74:0a:fb:53:10:bd:15:d3:f2:54:39:00:57:e1:f7:ce:
         f0:bc:cd:5c:a4:f5:32:41:99:4c:56:52:20:89:fa:4e:08:27:
         88:ca:8e:0f:fd:15:fb:4e:d2:ac:10:bf:b9:f8:c6:60:be:99:
         9e:52:be:d3:22:50:93:e4:12:06:2d:db:7b:1b:2d:f1:30:ee:
         58:2e:a7:24:10:5f:77:1f:1d:2a:d3:9b:2b:77:8c:18:70:2d:
         5e:5c:73:67:b8:57:1c:3c:00:63:a3:87:c3:29:3c:98:73:ab:
         1b:f1:14:5e:6b:05:8b:d4:1f:a2:52:4c:33:3c:39:be:e2:26:
         c9:46:5f:c6:e9:86:4b:ec:34:bc:a4:c9:73:29:e9:0e:dc:81:
         3f:a5:c6:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjYT/JZJ6Tkh0VVT0byodkeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhNDFlODM5OGZmN2NlZmI1MjIxNjM2ZWIyMjgyMTI2ZWJm
ZTNiNzgwHhcNMjUwODIzMTkwMjU0WhcNMjUwODI0MTkwMjU0WjAzMTEwLwYDVQQD
Eyg3ZTZiMzExNTRiY2Q2NDMyNDE4NzE2Y2FlNGE1OWI0YzAwMzgwZDE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkCmtjiJbdKEnmvtaTE1z99gPqiF
S7wSHYvdBvKuZ/gAtd1iGTy6E79G0qukWnk7isfwR/MZy+OhYW17gv1i7/euX49X
LNFiKRaXb+9iW0n9yLZPgSz70SrP8b1sE+uNjU+QnawPWqm7GEvDJ0plPzO6/fbX
hBKmLIFDoe/wvp9EVMQ+7oAb3xVqYdrV6SuNGjrfC1xcYkf7By7X0OBbqpFhJ8wT
Hu6eJkZtIqB9qguGslwfNWgiojMPvN6cmjEjSb8A987HM7lzx+k8brsGXS21T6Zx
k9HBbQ+ZQHjtlJwU5wae4s8BVYjgL1qWgyg4YZmwkLa98yU37/Ha6YJoIQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH5rMRVLzWQyQYcWyuSlm0wAOA0ZMB8GA1UdIwQY
MBaAFOpB6DmP9877UiFjbrIoISbr/jt4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy81M2NiZTgtZjVhNy00MDdkLTg0Y2Ut
NjI4YjQzOTRiODIyLzEvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy81M2NiZTgtZjVhNy00MDdkLTg0Y2UtNjI4YjQzOTRiODIy
LzEvNmtIb09ZXzN6dnRTSVdOdXNpZ2hKdXYtTzNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW/8P4PCh
5P2fkH/mM8psn48+GjJsPNivonDJ1CXAVuxKEo7kQ7ey6U05tFsC+yZWUEoJeMBR
b1vzRViP6gTv1S6hKUkgv+TLFIcnBns+OK64djynxVHvLit+wqepSrO5GrVlGCB7
QTJWeLcq9B10CvtTEL0V0/JUOQBX4ffO8LzNXKT1MkGZTFZSIIn6TggniMqOD/0V
+07SrBC/ufjGYL6ZnlK+0yJQk+QSBi3bexst8TDuWC6nJBBfdx8dKtObK3eMGHAt
XlxzZ7hXHDwAY6OHwyk8mHOrG/EUXmsFi9QfolJMMzw5vuImyUZfxumGS+w0vKTJ
cynpDtyBP6XGJQ==
-----END CERTIFICATE-----