Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft
File:                     Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft (raw, json)
Hash identifier:          WOyH5u7feH4r/xLXkcjxSIVoIbdDG7LQ9kEl2ge4PHU=
Subject key identifier:   E0:36:32:34:CD:D7:EE:85:2B:66:A2:B8:E4:D5:F7:2B:58:C3:F8:50
Authority key identifier: 31:FD:40:17:41:E6:69:E9:20:B0:3C:6C:76:AA:3A:78:71:40:3F:54
Certificate issuer:       /CN=31fd401741e669e920b03c6c76aa3a7871403f54
Certificate serial:       0198854474FDFA34EC4ECBDA494EDFC06BF4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft
Manifest number:          0487
Signing time:             Thu 07 Aug 2025 16:01:52 +0000
Manifest this update:     Thu 07 Aug 2025 16:01:52 +0000
Manifest next update:     Fri 08 Aug 2025 16:01:52 +0000
Files and hashes:         1: Mf1AF0HmaekgsDxsdqo6eHFAP1Q.crl (hash: FIZi2lgHpMuCJBochQFPvKrR7bpD9lS6s8a5NhGONJk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 08 Aug 2025 16:01:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:85:44:74:fd:fa:34:ec:4e:cb:da:49:4e:df:c0:6b:f4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=31fd401741e669e920b03c6c76aa3a7871403f54
        Validity
            Not Before: Aug  7 16:01:52 2025 GMT
            Not After : Aug  8 16:01:52 2025 GMT
        Subject: CN=e0363234cdd7ee852b66a2b8e4d5f72b58c3f850
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:6f:89:d0:2c:52:fa:f3:ea:5a:7d:50:28:b4:
                    b7:25:b0:e5:20:06:f6:e3:f3:c9:b9:87:66:f9:47:
                    86:cb:ef:8f:9f:16:d2:ba:a7:e3:ad:f8:cb:ac:a3:
                    6e:67:56:dd:20:cb:97:57:cd:fc:a7:88:62:d4:10:
                    a8:4e:73:59:f1:07:e5:6f:10:1e:82:fc:3c:f0:b2:
                    56:c4:45:75:02:87:c5:1f:de:d7:b0:16:fb:c8:be:
                    8a:52:1c:6d:ad:c3:e8:b2:21:a8:1d:e3:ba:59:fa:
                    3d:eb:d3:ba:18:d6:11:a8:4b:04:36:4e:2b:37:c5:
                    51:a0:bb:2d:cd:3f:63:dc:4f:45:93:af:e3:46:e4:
                    d0:8d:68:48:a7:51:46:61:aa:fe:8a:e9:7f:c4:63:
                    7f:8d:a3:5e:45:d1:fa:cc:a7:87:a5:bb:b1:b3:2f:
                    a2:13:b6:db:06:fc:c8:77:2f:9b:db:d3:5f:ec:f1:
                    2d:19:b4:ee:42:9a:12:0f:34:8f:a2:12:cd:95:a3:
                    ca:96:40:f4:c6:d4:5d:0e:b3:15:56:d2:e3:9b:b6:
                    3b:5b:48:5f:85:cd:3c:95:52:e6:36:80:5a:ba:17:
                    bc:fe:ed:d9:5b:bc:fe:79:6f:4f:45:25:bd:2d:0d:
                    ed:a3:e5:96:d5:b8:88:c0:f5:41:00:df:40:b1:a5:
                    ab:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:36:32:34:CD:D7:EE:85:2B:66:A2:B8:E4:D5:F7:2B:58:C3:F8:50
            X509v3 Authority Key Identifier:
                keyid:31:FD:40:17:41:E6:69:E9:20:B0:3C:6C:76:AA:3A:78:71:40:3F:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ba365b-694b-4fba-8653-de36bf20ba4f/1/Mf1AF0HmaekgsDxsdqo6eHFAP1Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:89:05:bb:26:35:5b:60:3e:54:8c:78:64:87:c5:55:ae:a3:
         f8:66:de:f2:9d:21:62:67:2f:76:04:9b:84:9d:97:f5:88:38:
         1f:87:c7:eb:a7:6c:bb:67:8e:54:f2:f8:f6:34:3c:cf:d6:dd:
         ee:28:05:7f:a4:57:a9:10:fd:67:f7:ce:54:7f:c9:02:0b:9a:
         e8:bb:88:6c:ff:57:3b:57:18:e4:ea:7d:82:1f:09:4c:14:68:
         c6:5c:88:4a:46:9e:9c:98:0b:b9:ce:d0:ca:53:26:3d:a8:24:
         5e:19:b9:36:20:f5:19:50:3f:28:8c:8c:ba:2d:93:0b:16:e8:
         9a:83:9c:bf:c6:47:9b:21:ac:d2:70:84:7c:e2:bc:49:72:0f:
         a0:94:27:c9:00:5c:38:42:30:c5:b2:9b:cf:39:d7:23:1b:dd:
         5d:67:ed:14:44:dd:6d:17:df:c2:75:60:c2:bb:98:14:3e:46:
         f1:5f:82:55:02:6e:db:66:dc:12:cf:3f:c1:5e:3f:b0:e5:e9:
         f6:07:48:80:a5:9c:6c:d0:f8:92:44:cb:07:f8:d1:68:b7:55:
         3d:86:3b:e1:4d:f2:28:1e:d8:61:fd:42:ad:21:f6:84:47:bb:
         8d:cd:8b:71:fd:10:c1:c3:d8:47:08:67:8b:ac:c1:c7:ae:5c:
         90:0f:58:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiFRHT9+jTsTsvaSU7fwGv0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMxZmQ0MDE3NDFlNjY5ZTkyMGIwM2M2Yzc2YWEzYTc4NzE0
MDNmNTQwHhcNMjUwODA3MTYwMTUyWhcNMjUwODA4MTYwMTUyWjAzMTEwLwYDVQQD
EyhlMDM2MzIzNGNkZDdlZTg1MmI2NmEyYjhlNGQ1ZjcyYjU4YzNmODUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsG+J0CxS+vPqWn1QKLS3JbDlIAb2
4/PJuYdm+UeGy++PnxbSuqfjrfjLrKNuZ1bdIMuXV838p4hi1BCoTnNZ8QflbxAe
gvw88LJWxEV1AofFH97XsBb7yL6KUhxtrcPosiGoHeO6Wfo969O6GNYRqEsENk4r
N8VRoLstzT9j3E9Fk6/jRuTQjWhIp1FGYar+iul/xGN/jaNeRdH6zKeHpbuxsy+i
E7bbBvzIdy+b29Nf7PEtGbTuQpoSDzSPohLNlaPKlkD0xtRdDrMVVtLjm7Y7W0hf
hc08lVLmNoBauhe8/u3ZW7z+eW9PRSW9LQ3to+WW1biIwPVBAN9AsaWrEwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOA2MjTN1+6FK2aiuOTV9ytYw/hQMB8GA1UdIwQY
MBaAFDH9QBdB5mnpILA8bHaqOnhxQD9UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWYxQUYwSG1hZWtnc0R4c2RxbzZlSEZBUDFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9iYTM2NWItNjk0Yi00ZmJhLTg2NTMt
ZGUzNmJmMjBiYTRmLzEvTWYxQUYwSG1hZWtnc0R4c2RxbzZlSEZBUDFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9iYTM2NWItNjk0Yi00ZmJhLTg2NTMtZGUzNmJmMjBiYTRm
LzEvTWYxQUYwSG1hZWtnc0R4c2RxbzZlSEZBUDFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXYkFuyY1
W2A+VIx4ZIfFVa6j+Gbe8p0hYmcvdgSbhJ2X9Yg4H4fH66dsu2eOVPL49jQ8z9bd
7igFf6RXqRD9Z/fOVH/JAgua6LuIbP9XO1cY5Op9gh8JTBRoxlyISkaenJgLuc7Q
ylMmPagkXhm5NiD1GVA/KIyMui2TCxbomoOcv8ZHmyGs0nCEfOK8SXIPoJQnyQBc
OEIwxbKbzznXIxvdXWftFETdbRffwnVgwruYFD5G8V+CVQJu22bcEs8/wV4/sOXp
9gdIgKWcbND4kkTLB/jRaLdVPYY74U3yKB7YYf1CrSH2hEe7jc2Lcf0QwcPYRwhn
i6zBx65ckA9Y0g==
-----END CERTIFICATE-----