Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
File:                     hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft (raw, json)
Hash identifier:          ted5myGlRpnPOKNjlUhX7qVnzpPI+08BQYO9wSEDcWM=
Subject key identifier:   23:B4:CF:E9:AA:9A:DF:92:81:31:24:C0:D2:B9:26:15:EC:6B:AB:56
Authority key identifier: 85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04
Certificate issuer:       /CN=85512d19d37946cd4c236f890469635751f5d904
Certificate serial:       0198D4E0A31D00BB2CB90579DF022FFEC2F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
Manifest number:          1644
Signing time:             Sat 23 Aug 2025 03:02:28 +0000
Manifest this update:     Sat 23 Aug 2025 03:02:28 +0000
Manifest next update:     Sun 24 Aug 2025 03:02:28 +0000
Files and hashes:         1: hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl (hash: 0NS/wxmmVvAcY5scKjumCkLQ2JEFuSAkW2M/IyCDdac=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 03:02:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:e0:a3:1d:00:bb:2c:b9:05:79:df:02:2f:fe:c2:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85512d19d37946cd4c236f890469635751f5d904
        Validity
            Not Before: Aug 23 03:02:28 2025 GMT
            Not After : Aug 24 03:02:28 2025 GMT
        Subject: CN=23b4cfe9aa9adf92813124c0d2b92615ec6bab56
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:86:14:2c:37:e4:e3:39:48:f4:e6:0c:18:0b:
                    43:95:93:d0:a5:8c:42:34:d2:e2:7f:42:8f:2d:1f:
                    d9:cd:ed:a6:10:9b:63:b7:4d:68:b3:a3:b3:83:6a:
                    4b:51:68:e5:74:43:76:06:6b:e6:23:d8:7f:05:ec:
                    60:fb:b4:97:23:72:25:8a:d2:d9:9d:0c:11:fb:27:
                    e2:da:c4:1f:d5:8c:9d:3d:64:a4:44:39:98:81:58:
                    c2:f6:ba:f6:2b:7c:04:23:cc:17:90:fa:22:35:c6:
                    73:80:a7:c9:fe:28:06:f8:3f:00:0b:93:b9:61:70:
                    3d:a5:a8:1d:0a:d5:64:85:a6:cf:e7:b2:d9:d1:e1:
                    e5:e9:f4:14:10:c7:df:62:6f:52:54:a9:75:34:9e:
                    56:6d:d8:07:d4:3b:33:29:91:04:8a:ea:9d:fd:47:
                    8f:05:6e:19:ad:fe:12:bc:2f:b5:00:50:9e:1b:68:
                    6b:39:b6:a6:e5:13:fa:ae:2a:43:ae:1a:eb:08:be:
                    d2:dc:4b:18:d8:bc:d7:88:31:06:dd:3e:11:bf:51:
                    58:01:ce:66:ae:58:53:53:04:e4:41:09:56:de:d6:
                    66:38:92:92:23:4b:70:36:ee:19:30:04:26:14:d8:
                    fe:bd:0e:4c:8e:8a:c7:2f:a2:60:04:31:dd:a9:e9:
                    c0:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:B4:CF:E9:AA:9A:DF:92:81:31:24:C0:D2:B9:26:15:EC:6B:AB:56
            X509v3 Authority Key Identifier:
                keyid:85:51:2D:19:D3:79:46:CD:4C:23:6F:89:04:69:63:57:51:F5:D9:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hVEtGdN5Rs1MI2-JBGljV1H12QQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/e215ce-8de7-484b-baa3-8fffd8f5ebfb/1/hVEtGdN5Rs1MI2-JBGljV1H12QQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:ee:41:ed:3d:d6:bd:d5:58:79:6a:e5:c1:fb:c0:e5:a9:c2:
         40:0f:dc:d1:58:19:ec:70:c2:a7:a8:fb:f2:4a:58:07:de:f7:
         b5:c0:82:ef:2a:14:98:44:6d:16:53:f7:92:7c:b8:7a:a1:96:
         82:1a:25:03:9c:cc:f1:8d:5f:c3:d3:9f:b0:ee:e7:ad:df:f9:
         f9:f6:8f:aa:4b:d7:4c:03:6e:17:41:6e:60:bc:32:43:2b:7a:
         eb:9c:90:b1:57:7c:84:bc:18:bb:4a:f5:46:14:16:f2:bf:18:
         38:2b:96:67:93:7e:e2:92:86:7a:d1:7a:ec:b1:0e:9d:ec:9f:
         97:d9:94:98:c1:86:c7:bf:d4:7c:fb:24:e7:c5:8e:70:19:04:
         84:6e:49:53:77:7e:c4:d4:1d:75:64:a0:a0:b8:d4:e2:54:f1:
         b9:66:28:00:b7:6e:b5:6a:50:96:20:15:1a:b2:40:1f:78:97:
         d4:c3:fc:7b:44:de:7f:b0:a7:46:54:6e:14:97:ce:a8:b6:67:
         80:0e:47:b0:27:3a:a5:60:9e:6a:6a:44:20:d1:74:e7:2b:e7:
         11:83:31:7d:e8:86:cb:50:f7:bf:8a:af:e8:37:cf:da:8a:86:
         ba:8f:74:48:c2:3c:d0:59:75:77:e2:30:c8:29:8a:77:50:b0:
         10:d6:45:29
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4KMdALssuQV53wIv/sLxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1NTEyZDE5ZDM3OTQ2Y2Q0YzIzNmY4OTA0Njk2MzU3NTFm
NWQ5MDQwHhcNMjUwODIzMDMwMjI4WhcNMjUwODI0MDMwMjI4WjAzMTEwLwYDVQQD
EygyM2I0Y2ZlOWFhOWFkZjkyODEzMTI0YzBkMmI5MjYxNWVjNmJhYjU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1YYULDfk4zlI9OYMGAtDlZPQpYxC
NNLif0KPLR/Zze2mEJtjt01os6Ozg2pLUWjldEN2BmvmI9h/Bexg+7SXI3IlitLZ
nQwR+yfi2sQf1YydPWSkRDmYgVjC9rr2K3wEI8wXkPoiNcZzgKfJ/igG+D8AC5O5
YXA9pagdCtVkhabP57LZ0eHl6fQUEMffYm9SVKl1NJ5WbdgH1DszKZEEiuqd/UeP
BW4Zrf4SvC+1AFCeG2hrObam5RP6ripDrhrrCL7S3EsY2LzXiDEG3T4Rv1FYAc5m
rlhTUwTkQQlW3tZmOJKSI0twNu4ZMAQmFNj+vQ5MjorHL6JgBDHdqenAtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCO0z+mqmt+SgTEkwNK5JhXsa6tWMB8GA1UdIwQY
MBaAFIVRLRnTeUbNTCNviQRpY1dR9dkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFZFdEdkTjVSczFNSTItSkJHbGpWMUgxMlFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9lMjE1Y2UtOGRlNy00ODRiLWJhYTMt
OGZmZmQ4ZjVlYmZiLzEvaFZFdEdkTjVSczFNSTItSkJHbGpWMUgxMlFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYy9lMjE1Y2UtOGRlNy00ODRiLWJhYTMtOGZmZmQ4ZjVlYmZi
LzEvaFZFdEdkTjVSczFNSTItSkJHbGpWMUgxMlFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEu5B7T3W
vdVYeWrlwfvA5anCQA/c0VgZ7HDCp6j78kpYB973tcCC7yoUmERtFlP3kny4eqGW
gholA5zM8Y1fw9OfsO7nrd/5+faPqkvXTANuF0FuYLwyQyt665yQsVd8hLwYu0r1
RhQW8r8YOCuWZ5N+4pKGetF67LEOneyfl9mUmMGGx7/UfPsk58WOcBkEhG5JU3d+
xNQddWSgoLjU4lTxuWYoALdutWpQliAVGrJAH3iX1MP8e0Tef7CnRlRuFJfOqLZn
gA5HsCc6pWCeampEINF05yvnEYMxfeiGy1D3v4qv6DfP2oqGuo90SMI80Fl1d+Iw
yCmKd1CwENZFKQ==
-----END CERTIFICATE-----