Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
File:                     5IKZWNgAyhrebhPKeygLIpzmYC4.mft (raw, json)
Hash identifier:          a6G9/1tV+DUcCRIlRyq4ubqEoumfOCraU+gGKjSStB0=
Subject key identifier:   8B:2F:08:73:EF:B8:13:58:65:16:5E:EA:43:7A:B7:8B:BC:6E:81:60
Authority key identifier: E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E
Certificate issuer:       /CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
Certificate serial:       0197B6A21C860226F96CD68BE08139CFA7EC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
Manifest number:          15B2
Signing time:             Sat 28 Jun 2025 13:02:46 +0000
Manifest this update:     Sat 28 Jun 2025 13:02:46 +0000
Manifest next update:     Sun 29 Jun 2025 13:02:46 +0000
Files and hashes:         1: 5IKZWNgAyhrebhPKeygLIpzmYC4.crl (hash: F37uFlwpBRcZFWq9Ce24d7aJ/GQtR35ybGkaqOLJ3Dw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 10:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:a2:1c:86:02:26:f9:6c:d6:8b:e0:81:39:cf:a7:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4829958d800ca1ade6e13ca7b280b229ce6602e
        Validity
            Not Before: Jun 28 13:02:46 2025 GMT
            Not After : Jun 29 13:02:46 2025 GMT
        Subject: CN=8b2f0873efb8135865165eea437ab78bbc6e8160
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:88:12:55:30:9a:f9:f9:fb:8e:c4:e0:8c:28:
                    e8:55:00:fc:34:05:83:20:b2:25:06:b0:dd:f8:4c:
                    d4:c9:5b:77:93:cf:b9:c3:ba:98:cf:af:df:08:b2:
                    06:4a:e6:39:71:1f:eb:6f:68:3c:72:bf:b5:21:39:
                    27:98:d7:f1:e7:45:ba:a7:9a:b5:d5:c9:79:45:34:
                    1d:b9:7d:27:dd:c0:0a:0d:86:90:8f:60:c7:f2:8d:
                    e1:f2:70:d2:96:fc:db:72:65:d2:64:9d:26:b5:c9:
                    58:b6:b9:c4:29:21:ca:f4:c6:13:d3:5a:1a:bf:b1:
                    95:f9:58:c9:15:2f:49:47:38:df:22:1f:e1:c7:98:
                    96:da:dd:c8:ad:7e:15:c6:ec:c8:d4:31:6c:30:31:
                    73:1b:1f:5b:23:3f:05:9b:07:da:9b:93:7d:c1:f2:
                    c5:54:fe:32:ea:f8:ea:d5:72:9a:15:2c:27:43:64:
                    b7:7d:a8:61:e4:2d:0e:0e:f1:c8:d2:04:c6:d4:c7:
                    6b:56:28:b1:77:3f:de:ec:6c:5c:6e:77:b4:1a:b8:
                    60:af:b6:cb:dd:5e:27:12:9a:99:59:05:06:6c:ef:
                    8c:db:eb:ae:e6:48:76:14:fc:07:0c:47:fd:a3:06:
                    28:d3:a5:d5:2c:ba:ec:f2:cf:1f:35:45:e5:6a:30:
                    a8:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8B:2F:08:73:EF:B8:13:58:65:16:5E:EA:43:7A:B7:8B:BC:6E:81:60
            X509v3 Authority Key Identifier:
                keyid:E4:82:99:58:D8:00:CA:1A:DE:6E:13:CA:7B:28:0B:22:9C:E6:60:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5IKZWNgAyhrebhPKeygLIpzmYC4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/73af7c-5647-42d7-aa1d-1d5bc001a1de/1/5IKZWNgAyhrebhPKeygLIpzmYC4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         59:63:64:d3:a1:95:ea:c4:6f:5f:94:db:60:7e:db:35:f7:44:
         9f:63:e4:90:58:43:75:62:d2:92:c9:82:57:95:ea:54:de:f1:
         5e:b4:a9:6d:68:d6:c3:3f:12:3a:05:ae:a8:37:77:cc:81:da:
         67:86:76:6d:ca:2a:a9:ad:35:04:14:b3:12:1e:c2:54:73:bc:
         56:47:37:ee:28:58:e8:a0:2d:25:18:d4:1c:9f:c4:9a:2b:2d:
         4b:05:fd:d1:21:a2:f4:25:df:69:e2:84:98:52:45:02:09:e7:
         27:ae:2a:32:58:97:b2:d3:4a:37:72:a3:66:99:fe:ff:1a:8b:
         17:e1:ff:88:67:b8:1f:cc:58:cf:b1:9a:8a:5c:c5:40:af:74:
         0b:f3:47:5d:66:4b:47:6f:7a:ea:c3:70:e0:e4:4d:7e:ee:f9:
         9e:c8:f5:3c:25:50:9e:e0:29:6e:57:46:f2:76:b7:36:f9:63:
         af:2e:1f:bc:cc:b0:2c:ed:b4:f7:60:f1:e2:1e:1f:08:1e:41:
         ef:94:3a:81:a7:bb:21:0c:f9:de:51:ed:44:1e:d2:94:ef:69:
         e9:c8:90:c0:0b:5e:89:b9:74:f5:2e:be:12:70:05:59:77:50:
         d7:29:cc:2a:5c:9e:88:96:a8:ff:d4:34:f2:8e:9d:c4:3f:34:
         e2:a5:e4:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2ohyGAib5bNaL4IE5z6fsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ODI5OTU4ZDgwMGNhMWFkZTZlMTNjYTdiMjgwYjIyOWNl
NjYwMmUwHhcNMjUwNjI4MTMwMjQ2WhcNMjUwNjI5MTMwMjQ2WjAzMTEwLwYDVQQD
Eyg4YjJmMDg3M2VmYjgxMzU4NjUxNjVlZWE0MzdhYjc4YmJjNmU4MTYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxogSVTCa+fn7jsTgjCjoVQD8NAWD
ILIlBrDd+EzUyVt3k8+5w7qYz6/fCLIGSuY5cR/rb2g8cr+1ITknmNfx50W6p5q1
1cl5RTQduX0n3cAKDYaQj2DH8o3h8nDSlvzbcmXSZJ0mtclYtrnEKSHK9MYT01oa
v7GV+VjJFS9JRzjfIh/hx5iW2t3IrX4VxuzI1DFsMDFzGx9bIz8Fmwfam5N9wfLF
VP4y6vjq1XKaFSwnQ2S3fahh5C0ODvHI0gTG1MdrViixdz/e7Gxcbne0Grhgr7bL
3V4nEpqZWQUGbO+M2+uu5kh2FPwHDEf9owYo06XVLLrs8s8fNUXlajCoGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIsvCHPvuBNYZRZe6kN6t4u8boFgMB8GA1UdIwQY
MBaAFOSCmVjYAMoa3m4TynsoCyKc5mAuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQt
MWQ1YmMwMDFhMWRlLzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS83M2FmN2MtNTY0Ny00MmQ3LWFhMWQtMWQ1YmMwMDFhMWRl
LzEvNUlLWldOZ0F5aHJlYmhQS2V5Z0xJcHptWUM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWWNk06GV
6sRvX5TbYH7bNfdEn2PkkFhDdWLSksmCV5XqVN7xXrSpbWjWwz8SOgWuqDd3zIHa
Z4Z2bcoqqa01BBSzEh7CVHO8Vkc37ihY6KAtJRjUHJ/EmistSwX90SGi9CXfaeKE
mFJFAgnnJ64qMliXstNKN3KjZpn+/xqLF+H/iGe4H8xYz7GailzFQK90C/NHXWZL
R2966sNw4ORNfu75nsj1PCVQnuApbldG8na3Nvljry4fvMywLO2092Dx4h4fCB5B
75Q6gae7IQz53lHtRB7SlO9p6ciQwAteibl09S6+EnAFWXdQ1ynMKlyeiJao/9Q0
8o6dxD804qXkUg==
-----END CERTIFICATE-----