Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
File:                     2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft (raw, json)
Hash identifier:          tgjLlrObDfvvb8klA4CPYy/UDaLf/nbQ91psiKr+HUg=
Subject key identifier:   60:3A:34:F3:31:D6:1F:81:54:35:0D:F0:54:4E:1A:18:F3:98:92:6D
Authority key identifier: D9:FE:0C:C3:14:3F:99:C5:E5:58:36:A3:FF:6C:0B:66:FC:20:C4:D5
Certificate issuer:       /CN=d9fe0cc3143f99c5e55836a3ff6c0b66fc20c4d5
Certificate serial:       0198D4723E9900708019AA4C16CA846FD8F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
Manifest number:          0AE7
Signing time:             Sat 23 Aug 2025 01:01:53 +0000
Manifest this update:     Sat 23 Aug 2025 01:01:53 +0000
Manifest next update:     Sun 24 Aug 2025 01:01:53 +0000
Files and hashes:         1: 2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl (hash: E6Cogau7dD172ds/bsgRykph0Q6APw7SzQVXFjDilKw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 01:01:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:72:3e:99:00:70:80:19:aa:4c:16:ca:84:6f:d8:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9fe0cc3143f99c5e55836a3ff6c0b66fc20c4d5
        Validity
            Not Before: Aug 23 01:01:53 2025 GMT
            Not After : Aug 24 01:01:53 2025 GMT
        Subject: CN=603a34f331d61f8154350df0544e1a18f398926d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:21:f0:ef:b4:7d:37:d8:b9:82:15:5f:09:9f:
                    89:99:a6:a0:27:42:34:be:b3:60:bf:2a:f7:07:af:
                    85:64:a7:9c:f6:3c:f2:5f:34:07:bc:d8:50:db:f5:
                    49:cc:39:68:df:58:99:4e:ea:5f:fb:ea:e1:0a:8c:
                    25:c0:52:1b:16:96:bf:57:30:bf:ef:e2:9a:ea:d7:
                    b9:d8:90:89:5a:78:e3:c1:f5:81:b4:6f:e3:3a:9b:
                    18:d1:a8:37:0d:ba:d2:ff:c0:37:f4:b6:de:66:15:
                    51:15:3c:c2:9d:3b:1f:d6:7a:76:9a:2c:34:17:04:
                    2f:c8:26:b5:a5:30:f8:3c:c5:8a:72:cf:22:a2:66:
                    8a:36:a2:71:f4:44:96:0b:c4:0a:83:23:49:57:9b:
                    fd:66:d1:51:bc:f2:ff:07:f2:2f:dc:6a:62:83:a8:
                    6c:7f:24:5a:0f:23:a2:bb:24:06:c8:a7:45:d3:ac:
                    00:a4:5b:ef:08:c1:51:3e:a8:a9:2f:04:8e:e0:a7:
                    91:ed:90:cd:26:b5:74:97:a5:1c:35:94:1f:5d:ae:
                    aa:0b:ec:7b:a3:8f:42:96:30:a4:9a:34:f0:79:31:
                    ec:4c:36:89:e6:d2:bd:58:91:6f:2c:80:85:c3:17:
                    25:05:c0:f8:19:49:96:76:87:f5:6a:c1:38:c2:bc:
                    85:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:3A:34:F3:31:D6:1F:81:54:35:0D:F0:54:4E:1A:18:F3:98:92:6D
            X509v3 Authority Key Identifier:
                keyid:D9:FE:0C:C3:14:3F:99:C5:E5:58:36:A3:FF:6C:0B:66:FC:20:C4:D5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/c40db5-8c7b-40b2-b140-26319496d7de/1/2f4MwxQ_mcXlWDaj_2wLZvwgxNU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:20:ed:dc:32:af:a1:fd:b7:a0:6f:d2:8f:a4:5f:7d:70:60:
         91:00:85:84:68:c3:51:d7:8b:f6:43:48:43:15:8e:e9:8b:59:
         d3:a4:90:ba:eb:32:5e:05:14:4d:ac:1f:f1:58:ad:f6:a7:74:
         b8:ed:5a:ab:38:14:ac:13:19:43:83:3c:cf:72:98:d2:1c:37:
         f4:1b:3d:cd:68:82:da:2c:51:c0:95:82:64:a8:22:b6:c4:d2:
         8f:dd:6e:36:b7:9c:69:4c:54:1e:f5:e3:86:c3:11:3f:ff:9d:
         0e:82:8d:a0:dd:a5:50:89:07:22:bc:55:84:33:96:6b:50:cc:
         c1:14:9d:2b:fe:ca:43:e1:d6:a8:a6:a6:11:24:44:5b:5d:de:
         37:e7:34:ac:4e:c4:27:0b:e1:41:a8:15:c1:8b:c3:25:eb:d6:
         c0:4a:23:89:5c:13:e6:41:6d:b0:01:0b:47:27:f6:95:cb:17:
         db:98:1c:09:f6:26:3b:d7:cd:f8:54:e3:a5:45:eb:d8:a5:fc:
         a6:f9:aa:d4:2b:e5:fa:b9:98:92:15:10:ba:79:ab:f2:e5:75:
         2e:7c:e5:a8:db:da:6b:17:69:0f:27:77:61:80:e6:d2:d8:b3:
         4d:4d:37:17:8e:5c:66:4c:d3:62:c9:61:e1:9e:74:12:ee:00:
         0e:0d:9e:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUcj6ZAHCAGapMFsqEb9jxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5ZmUwY2MzMTQzZjk5YzVlNTU4MzZhM2ZmNmMwYjY2ZmMy
MGM0ZDUwHhcNMjUwODIzMDEwMTUzWhcNMjUwODI0MDEwMTUzWjAzMTEwLwYDVQQD
Eyg2MDNhMzRmMzMxZDYxZjgxNTQzNTBkZjA1NDRlMWExOGYzOTg5MjZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2CHw77R9N9i5ghVfCZ+JmaagJ0I0
vrNgvyr3B6+FZKec9jzyXzQHvNhQ2/VJzDlo31iZTupf++rhCowlwFIbFpa/VzC/
7+Ka6te52JCJWnjjwfWBtG/jOpsY0ag3DbrS/8A39LbeZhVRFTzCnTsf1np2miw0
FwQvyCa1pTD4PMWKcs8iomaKNqJx9ESWC8QKgyNJV5v9ZtFRvPL/B/Iv3Gpig6hs
fyRaDyOiuyQGyKdF06wApFvvCMFRPqipLwSO4KeR7ZDNJrV0l6UcNZQfXa6qC+x7
o49CljCkmjTweTHsTDaJ5tK9WJFvLICFwxclBcD4GUmWdof1asE4wryFRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGA6NPMx1h+BVDUN8FROGhjzmJJtMB8GA1UdIwQY
MBaAFNn+DMMUP5nF5Vg2o/9sC2b8IMTVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMmY0TXd4UV9tY1hsV0Rhal8yd0xadndneE5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9jNDBkYjUtOGM3Yi00MGIyLWIxNDAt
MjYzMTk0OTZkN2RlLzEvMmY0TXd4UV9tY1hsV0Rhal8yd0xadndneE5VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNi9jNDBkYjUtOGM3Yi00MGIyLWIxNDAtMjYzMTk0OTZkN2Rl
LzEvMmY0TXd4UV9tY1hsV0Rhal8yd0xadndneE5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACyDt3DKv
of23oG/Sj6RffXBgkQCFhGjDUdeL9kNIQxWO6YtZ06SQuusyXgUUTawf8Vit9qd0
uO1aqzgUrBMZQ4M8z3KY0hw39Bs9zWiC2ixRwJWCZKgitsTSj91uNrecaUxUHvXj
hsMRP/+dDoKNoN2lUIkHIrxVhDOWa1DMwRSdK/7KQ+HWqKamESREW13eN+c0rE7E
JwvhQagVwYvDJevWwEojiVwT5kFtsAELRyf2lcsX25gcCfYmO9fN+FTjpUXr2KX8
pvmq1Cvl+rmYkhUQunmr8uV1LnzlqNvaaxdpDyd3YYDm0tizTU03F45cZkzTYslh
4Z50Eu4ADg2ewg==
-----END CERTIFICATE-----