Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
File:                     k4KIfhkEky8RhsLDHGqS_17GQ4c.mft (raw, json)
Hash identifier:          pPQra6GPiu+IN9YA9HeKpD5PFcncclWQFRD0nPsCtFs=
Subject key identifier:   E8:3C:CA:F6:37:98:7E:CF:F2:AB:34:C4:BD:3F:38:9E:ED:1E:A8:47
Authority key identifier: 93:82:88:7E:19:04:93:2F:11:86:C2:C3:1C:6A:92:FF:5E:C6:43:87
Certificate issuer:       /CN=9382887e1904932f1186c2c31c6a92ff5ec64387
Certificate serial:       0198D4723A97E67050126CE35CA2D8AA5BD4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
Manifest number:          0378
Signing time:             Sat 23 Aug 2025 01:01:52 +0000
Manifest this update:     Sat 23 Aug 2025 01:01:52 +0000
Manifest next update:     Sun 24 Aug 2025 01:01:52 +0000
Files and hashes:         1: k4KIfhkEky8RhsLDHGqS_17GQ4c.crl (hash: NtyMjAWlv+dTIBgY6qGWuDQ4W2muzy4UyCI4Sk54nZM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 01:01:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:72:3a:97:e6:70:50:12:6c:e3:5c:a2:d8:aa:5b:d4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9382887e1904932f1186c2c31c6a92ff5ec64387
        Validity
            Not Before: Aug 23 01:01:52 2025 GMT
            Not After : Aug 24 01:01:52 2025 GMT
        Subject: CN=e83ccaf637987ecff2ab34c4bd3f389eed1ea847
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:0d:4f:c8:fa:20:df:f2:7a:e6:d2:4a:22:d3:
                    30:e1:f1:de:09:f7:27:bc:79:c6:3d:44:a1:ce:00:
                    bb:a8:94:71:2e:7d:c9:59:cd:bf:e2:14:eb:64:50:
                    7b:56:c8:66:f0:87:df:19:87:be:58:92:09:f4:dc:
                    d2:5a:41:b5:6f:0b:12:25:ca:25:b5:b9:6d:54:54:
                    98:d5:b2:95:3d:64:e6:23:93:0c:42:9b:6b:7c:f3:
                    16:95:98:13:21:43:57:47:2b:74:89:32:69:95:be:
                    82:f8:cb:9b:bc:b2:24:87:11:a0:1b:43:3a:22:62:
                    80:c7:9e:3f:30:00:3c:9a:15:c1:df:1d:de:d4:38:
                    f2:e9:44:99:d8:73:72:93:c7:b5:c8:95:18:c0:1e:
                    b4:7a:a3:92:83:e8:b5:bb:0d:4b:42:e9:ee:f1:89:
                    4d:c7:d1:be:72:b6:62:a9:04:8f:df:20:f0:64:49:
                    2c:d3:ec:77:9d:b6:f5:4f:ef:ea:c4:13:92:b3:d7:
                    e6:92:5c:c6:94:34:d1:27:5b:9f:ec:2a:af:cc:24:
                    d1:eb:7e:fa:7a:65:3a:75:8f:a8:a2:90:c9:f5:cb:
                    ce:db:c2:10:5a:a7:3a:fd:6a:81:a4:3d:53:42:70:
                    e0:63:77:8f:60:cb:56:5c:93:2a:63:9b:b8:7b:9e:
                    83:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:3C:CA:F6:37:98:7E:CF:F2:AB:34:C4:BD:3F:38:9E:ED:1E:A8:47
            X509v3 Authority Key Identifier:
                keyid:93:82:88:7E:19:04:93:2F:11:86:C2:C3:1C:6A:92:FF:5E:C6:43:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k4KIfhkEky8RhsLDHGqS_17GQ4c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf90eb-15c8-40d8-a220-5c945468c475/1/k4KIfhkEky8RhsLDHGqS_17GQ4c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:85:4a:71:e4:73:3d:8b:50:dd:93:8b:60:c8:d5:a6:22:ed:
         d1:ae:b8:61:42:30:88:03:4e:fc:be:82:c2:fb:f1:d6:0f:bb:
         72:53:e7:0e:15:a9:8d:12:93:8d:c5:e8:82:74:f7:4e:9f:5c:
         1f:56:2c:9e:c1:7f:63:96:7c:c8:20:9d:07:29:6b:09:84:10:
         1a:c2:3c:ce:be:81:7b:44:b7:b7:8a:3d:06:94:ba:92:88:c4:
         30:87:d6:7b:9d:98:81:ad:5a:8b:e2:21:aa:91:e9:b4:35:82:
         c3:d5:74:70:43:83:60:5c:1c:a4:c3:7b:ce:64:30:bb:99:3c:
         e7:f2:22:8e:90:b4:c8:be:3d:d9:d5:04:b5:93:a3:7c:2a:bc:
         ec:57:83:5a:d4:1b:85:39:1f:7b:f0:8e:f7:bb:91:02:38:0d:
         55:cb:41:48:f3:1b:c6:22:df:9c:c7:49:6b:93:bc:ca:a3:1a:
         46:0a:da:e7:d5:d7:e3:b9:9f:d1:24:4b:e5:91:24:0d:6a:f0:
         26:c5:5d:97:84:7a:e1:b6:f5:16:90:57:b6:cf:cf:6c:b5:02:
         e3:a9:d0:61:f7:84:a6:2f:f8:0d:fe:ee:37:99:e0:d9:32:fd:
         30:e9:3d:1d:25:4b:a1:1d:bf:de:3d:4f:6a:53:68:5d:11:a7:
         64:5e:3c:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcjqX5nBQEmzjXKLYqlvUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzODI4ODdlMTkwNDkzMmYxMTg2YzJjMzFjNmE5MmZmNWVj
NjQzODcwHhcNMjUwODIzMDEwMTUyWhcNMjUwODI0MDEwMTUyWjAzMTEwLwYDVQQD
EyhlODNjY2FmNjM3OTg3ZWNmZjJhYjM0YzRiZDNmMzg5ZWVkMWVhODQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsw1PyPog3/J65tJKItMw4fHeCfcn
vHnGPUShzgC7qJRxLn3JWc2/4hTrZFB7Vshm8IffGYe+WJIJ9NzSWkG1bwsSJcol
tbltVFSY1bKVPWTmI5MMQptrfPMWlZgTIUNXRyt0iTJplb6C+MubvLIkhxGgG0M6
ImKAx54/MAA8mhXB3x3e1Djy6USZ2HNyk8e1yJUYwB60eqOSg+i1uw1LQunu8YlN
x9G+crZiqQSP3yDwZEks0+x3nbb1T+/qxBOSs9fmklzGlDTRJ1uf7CqvzCTR6376
emU6dY+oopDJ9cvO28IQWqc6/WqBpD1TQnDgY3ePYMtWXJMqY5u4e56DSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOg8yvY3mH7P8qs0xL0/OJ7tHqhHMB8GA1UdIwQY
MBaAFJOCiH4ZBJMvEYbCwxxqkv9exkOHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazRLSWZoa0VreThSaHNMREhHcVNfMTdHUTRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9iZjkwZWItMTVjOC00MGQ4LWEyMjAt
NWM5NDU0NjhjNDc1LzEvazRLSWZoa0VreThSaHNMREhHcVNfMTdHUTRjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9iZjkwZWItMTVjOC00MGQ4LWEyMjAtNWM5NDU0NjhjNDc1
LzEvazRLSWZoa0VreThSaHNMREhHcVNfMTdHUTRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGYVKceRz
PYtQ3ZOLYMjVpiLt0a64YUIwiANO/L6Cwvvx1g+7clPnDhWpjRKTjcXognT3Tp9c
H1YsnsF/Y5Z8yCCdBylrCYQQGsI8zr6Be0S3t4o9BpS6kojEMIfWe52Yga1ai+Ih
qpHptDWCw9V0cEODYFwcpMN7zmQwu5k85/IijpC0yL492dUEtZOjfCq87FeDWtQb
hTkfe/CO97uRAjgNVctBSPMbxiLfnMdJa5O8yqMaRgra59XX47mf0SRL5ZEkDWrw
JsVdl4R64bb1FpBXts/PbLUC46nQYfeEpi/4Df7uN5ng2TL9MOk9HSVLoR2/3j1P
alNoXRGnZF48Mw==
-----END CERTIFICATE-----