Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
File:                     dbh4BinZITNXwHDBwBBgU0dIg8E.mft (raw, json)
Hash identifier:          X4Yl+DL33A8fEZUBV+22FBMOvBEijF4JHfdLiyGaFlo=
Subject key identifier:   3D:25:F1:9D:50:3D:53:A5:0E:D0:E3:9C:B6:6D:73:77:08:2E:AC:96
Authority key identifier: 75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1
Certificate issuer:       /CN=75b8780629d9213357c070c1c0106053474883c1
Certificate serial:       0198D4740C9457752108B52B7D7182EA0C35
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
Manifest number:          0C6D
Signing time:             Sat 23 Aug 2025 01:03:51 +0000
Manifest this update:     Sat 23 Aug 2025 01:03:51 +0000
Manifest next update:     Sun 24 Aug 2025 01:03:51 +0000
Files and hashes:         1: dbh4BinZITNXwHDBwBBgU0dIg8E.crl (hash: gdM/7C4YtqYYrxbEj8kMpKZlwOE0DJQMbHEudAd20Eg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 00:37:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:74:0c:94:57:75:21:08:b5:2b:7d:71:82:ea:0c:35
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75b8780629d9213357c070c1c0106053474883c1
        Validity
            Not Before: Aug 23 01:03:51 2025 GMT
            Not After : Aug 24 01:03:51 2025 GMT
        Subject: CN=3d25f19d503d53a50ed0e39cb66d7377082eac96
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:df:6d:59:0b:f3:b1:13:cf:39:78:50:b3:72:
                    f8:09:bb:46:42:58:db:10:79:3d:2f:cf:de:d5:74:
                    0c:e1:70:d1:21:78:41:ca:42:aa:85:cc:76:49:58:
                    56:e5:8f:ea:54:42:bb:a0:4d:39:7f:7a:8b:33:1a:
                    2d:a6:61:0b:9c:db:1e:14:cc:75:9e:12:eb:4e:d9:
                    63:c1:1a:a8:37:00:17:fc:be:1b:d2:81:74:72:ec:
                    3d:a8:ea:6b:0a:91:73:1e:bc:a7:22:92:1d:0c:74:
                    e4:81:3c:3d:7f:55:8a:b6:05:ba:04:0f:e5:d1:0c:
                    79:41:fa:4b:22:c4:9f:f0:70:7d:00:33:d8:d1:7e:
                    76:21:e7:31:23:dc:f4:5a:6e:de:a9:69:01:1c:69:
                    e9:ac:50:5c:1c:ea:6c:c3:05:a6:50:eb:f1:e1:64:
                    3f:df:97:13:77:e5:a5:51:1c:83:2e:09:0b:e1:65:
                    bc:b0:b9:d0:4b:35:23:25:14:b1:72:b4:dc:1b:a2:
                    0a:f7:84:26:c3:74:ce:a1:fe:8d:a0:63:6f:ef:f0:
                    00:0f:eb:4e:92:f5:3f:88:40:a2:98:08:eb:62:6f:
                    33:61:13:7a:2f:b6:c5:69:1e:21:07:e0:a1:90:1e:
                    23:76:a8:63:11:1b:d3:2e:98:5f:e7:91:8a:9b:09:
                    44:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:25:F1:9D:50:3D:53:A5:0E:D0:E3:9C:B6:6D:73:77:08:2E:AC:96
            X509v3 Authority Key Identifier:
                keyid:75:B8:78:06:29:D9:21:33:57:C0:70:C1:C0:10:60:53:47:48:83:C1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dbh4BinZITNXwHDBwBBgU0dIg8E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/96fb9d-ff9f-4d5d-b6c1-d910b7721d20/1/dbh4BinZITNXwHDBwBBgU0dIg8E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:f1:6d:ff:c6:6e:75:8b:f4:45:fe:17:8e:08:09:30:0f:f6:
         70:3d:ca:53:fa:87:33:73:68:c4:79:39:99:47:21:22:71:f0:
         27:8e:e2:14:2b:b2:ae:5f:a4:3d:3a:42:0e:7f:d6:12:ff:a5:
         20:74:e2:e7:51:fb:4e:05:ee:23:1e:e1:1c:9d:4f:b0:6b:b5:
         c7:2e:c4:9a:a9:65:16:0e:0c:95:5b:9e:5e:70:d6:aa:66:81:
         aa:ce:65:ae:21:3e:78:c9:9a:13:df:68:15:d5:d8:79:02:5c:
         c5:6c:3d:9f:86:c2:35:9f:77:3d:1c:cb:31:f1:65:66:d7:b2:
         78:18:f2:df:6b:c2:41:05:09:eb:90:21:8e:2a:77:a0:87:57:
         7c:a7:e1:c5:9b:fc:1b:00:46:9c:cd:70:fd:2c:21:d2:cf:2e:
         16:b2:c3:26:4c:6b:9f:b1:01:f2:8c:6c:09:54:af:fa:c0:86:
         4a:29:85:ba:1b:1e:f8:2c:86:fb:0c:81:7c:a9:66:47:b6:29:
         86:ac:5c:1f:95:59:c3:06:74:7e:9b:5d:7d:e4:37:91:7f:d3:
         4b:77:66:ef:7b:fc:9c:cf:29:c6:00:68:6d:80:46:93:b8:09:
         70:6a:2a:10:61:13:27:1a:dd:cf:34:c6:6f:67:30:2d:4a:75:
         32:51:bd:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjUdAyUV3UhCLUrfXGC6gw1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1Yjg3ODA2MjlkOTIxMzM1N2MwNzBjMWMwMTA2MDUzNDc0
ODgzYzEwHhcNMjUwODIzMDEwMzUxWhcNMjUwODI0MDEwMzUxWjAzMTEwLwYDVQQD
EygzZDI1ZjE5ZDUwM2Q1M2E1MGVkMGUzOWNiNjZkNzM3NzA4MmVhYzk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsN9tWQvzsRPPOXhQs3L4CbtGQljb
EHk9L8/e1XQM4XDRIXhBykKqhcx2SVhW5Y/qVEK7oE05f3qLMxotpmELnNseFMx1
nhLrTtljwRqoNwAX/L4b0oF0cuw9qOprCpFzHrynIpIdDHTkgTw9f1WKtgW6BA/l
0Qx5QfpLIsSf8HB9ADPY0X52IecxI9z0Wm7eqWkBHGnprFBcHOpswwWmUOvx4WQ/
35cTd+WlURyDLgkL4WW8sLnQSzUjJRSxcrTcG6IK94Qmw3TOof6NoGNv7/AAD+tO
kvU/iECimAjrYm8zYRN6L7bFaR4hB+ChkB4jdqhjERvTLphf55GKmwlEHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD0l8Z1QPVOlDtDjnLZtc3cILqyWMB8GA1UdIwQY
MBaAFHW4eAYp2SEzV8BwwcAQYFNHSIPBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS85NmZiOWQtZmY5Zi00ZDVkLWI2YzEt
ZDkxMGI3NzIxZDIwLzEvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS85NmZiOWQtZmY5Zi00ZDVkLWI2YzEtZDkxMGI3NzIxZDIw
LzEvZGJoNEJpblpJVE5Yd0hEQndCQmdVMGRJZzhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATvFt/8Zu
dYv0Rf4XjggJMA/2cD3KU/qHM3NoxHk5mUchInHwJ47iFCuyrl+kPTpCDn/WEv+l
IHTi51H7TgXuIx7hHJ1PsGu1xy7EmqllFg4MlVueXnDWqmaBqs5lriE+eMmaE99o
FdXYeQJcxWw9n4bCNZ93PRzLMfFlZteyeBjy32vCQQUJ65Ahjip3oIdXfKfhxZv8
GwBGnM1w/Swh0s8uFrLDJkxrn7EB8oxsCVSv+sCGSimFuhse+CyG+wyBfKlmR7Yp
hqxcH5VZwwZ0fptdfeQ3kX/TS3dm73v8nM8pxgBobYBGk7gJcGoqEGETJxrdzzTG
b2cwLUp1MlG9nQ==
-----END CERTIFICATE-----