Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.mft
File:                     MptRPmVwb8qlQ6EaDkLSixCd87Y.mft (raw, json)
Hash identifier:          oFYOuHDTjqtH1Z7ASEvfpuu3pdNmt/Y2F/FgCedFsBQ=
Subject key identifier:   FE:0A:4D:36:C9:23:89:83:64:8C:4B:88:00:CF:78:7D:59:69:5D:37
Authority key identifier: 32:9B:51:3E:65:70:6F:CA:A5:43:A1:1A:0E:42:D2:8B:10:9D:F3:B6
Certificate issuer:       /CN=329b513e65706fcaa543a11a0e42d28b109df3b6
Certificate serial:       0198819E2A133A231F1E4855A9ECD5EAE955
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MptRPmVwb8qlQ6EaDkLSixCd87Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.mft
Manifest number:          132C
Signing time:             Wed 06 Aug 2025 23:01:22 +0000
Manifest this update:     Wed 06 Aug 2025 23:01:22 +0000
Manifest next update:     Thu 07 Aug 2025 23:01:22 +0000
Files and hashes:         1: MptRPmVwb8qlQ6EaDkLSixCd87Y.crl (hash: 04uzkwxNP1EscwX0t5bCKf39M4veosqsVYuxy7aCtP4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MptRPmVwb8qlQ6EaDkLSixCd87Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 20:46:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:81:9e:2a:13:3a:23:1f:1e:48:55:a9:ec:d5:ea:e9:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=329b513e65706fcaa543a11a0e42d28b109df3b6
        Validity
            Not Before: Aug  6 23:01:22 2025 GMT
            Not After : Aug  7 23:01:22 2025 GMT
        Subject: CN=fe0a4d36c9238983648c4b8800cf787d59695d37
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:91:61:b2:d4:50:47:57:51:ec:fb:f4:a3:8d:
                    7c:3e:83:c4:74:4e:84:77:c1:e2:62:1d:62:c2:85:
                    ad:39:01:c6:1d:88:01:7d:9b:8d:b8:62:70:f4:4d:
                    e2:dd:b7:a2:3b:8b:16:00:80:40:cb:5d:e0:f8:1b:
                    53:c2:7e:f4:d4:0d:8b:2f:ac:ee:2d:41:90:ff:f2:
                    e1:96:39:e4:93:c9:62:75:a1:33:0f:52:f1:30:2f:
                    5c:26:f0:34:69:e3:e1:9e:c6:30:33:b4:f9:25:8e:
                    57:a3:0d:6c:c4:3c:24:9b:0d:4b:d0:80:a1:a2:19:
                    da:b3:0b:5f:a2:d0:03:db:a0:5d:56:1a:ea:69:42:
                    38:79:da:f8:47:79:29:dd:2b:d2:2a:03:29:ed:fa:
                    51:d3:30:a8:35:9d:fc:9d:e7:7f:24:4a:6a:8b:13:
                    6e:dd:c6:72:45:74:9e:08:db:d7:98:8f:37:a9:ee:
                    71:9e:3b:a2:4d:52:5f:a4:05:59:87:51:c6:00:9e:
                    f9:4d:13:b9:74:c6:33:7b:1e:b0:32:51:12:f2:d5:
                    7f:2d:a3:24:9e:ba:94:be:12:a2:35:f7:c4:ed:de:
                    d0:56:03:b7:36:bd:7f:1f:c6:e8:d6:72:eb:86:aa:
                    4a:e0:29:d5:f2:a6:bb:06:39:48:74:4d:32:69:b1:
                    96:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:0A:4D:36:C9:23:89:83:64:8C:4B:88:00:CF:78:7D:59:69:5D:37
            X509v3 Authority Key Identifier:
                keyid:32:9B:51:3E:65:70:6F:CA:A5:43:A1:1A:0E:42:D2:8B:10:9D:F3:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MptRPmVwb8qlQ6EaDkLSixCd87Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0adcd8-8a4b-4923-bf36-814a611eca60/1/MptRPmVwb8qlQ6EaDkLSixCd87Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:a3:d3:9f:20:6a:ed:30:86:21:9e:9e:83:c2:8e:06:ed:12:
         d9:a1:46:53:c5:f2:46:66:51:8b:a9:6e:19:6d:a9:66:e7:e1:
         77:17:be:6a:9a:10:83:ae:bb:a5:2e:20:63:7f:73:23:7c:c8:
         27:83:a1:eb:dd:66:e5:c3:66:47:ac:a9:39:9e:2a:33:11:bd:
         be:02:ed:18:1a:39:13:20:d2:da:b7:76:87:3c:f3:47:cb:ce:
         db:2a:b9:ed:af:56:2b:a5:59:0f:27:9b:8a:ae:ea:55:8f:41:
         f8:4b:b1:a1:38:15:6b:a1:c8:db:87:63:a2:1d:0b:80:37:66:
         6a:f9:ba:7f:1f:a7:0c:a8:f0:45:28:41:c2:89:86:79:cf:94:
         b5:58:2e:1d:b8:71:a3:9a:46:70:c5:a5:2f:60:29:32:2e:e1:
         0e:f9:22:43:c0:66:d0:02:84:dd:9f:0e:de:bd:1a:fa:e9:c1:
         8f:c8:c7:24:34:14:06:3b:27:de:e8:ea:d9:95:7f:b8:ef:92:
         f6:ee:a3:a8:a8:ba:f9:56:25:83:ac:e8:bc:82:a9:02:7a:00:
         0b:a2:33:db:24:21:26:80:62:86:e4:e8:54:17:d0:60:5e:98:
         29:a5:3f:2f:77:2d:ed:8e:4e:e5:4e:c7:bb:22:fd:16:12:15:
         9e:16:5c:f1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiBnioTOiMfHkhVqezV6ulVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyOWI1MTNlNjU3MDZmY2FhNTQzYTExYTBlNDJkMjhiMTA5
ZGYzYjYwHhcNMjUwODA2MjMwMTIyWhcNMjUwODA3MjMwMTIyWjAzMTEwLwYDVQQD
EyhmZTBhNGQzNmM5MjM4OTgzNjQ4YzRiODgwMGNmNzg3ZDU5Njk1ZDM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5FhstRQR1dR7Pv0o418PoPEdE6E
d8HiYh1iwoWtOQHGHYgBfZuNuGJw9E3i3beiO4sWAIBAy13g+BtTwn701A2LL6zu
LUGQ//Lhljnkk8lidaEzD1LxMC9cJvA0aePhnsYwM7T5JY5Xow1sxDwkmw1L0ICh
ohnaswtfotAD26BdVhrqaUI4edr4R3kp3SvSKgMp7fpR0zCoNZ38ned/JEpqixNu
3cZyRXSeCNvXmI83qe5xnjuiTVJfpAVZh1HGAJ75TRO5dMYzex6wMlES8tV/LaMk
nrqUvhKiNffE7d7QVgO3Nr1/H8bo1nLrhqpK4CnV8qa7BjlIdE0yabGW6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP4KTTbJI4mDZIxLiADPeH1ZaV03MB8GA1UdIwQY
MBaAFDKbUT5lcG/KpUOhGg5C0osQnfO2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXB0UlBtVndiOHFsUTZFYURrTFNpeENkODdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8wYWRjZDgtOGE0Yi00OTIzLWJmMzYt
ODE0YTYxMWVjYTYwLzEvTXB0UlBtVndiOHFsUTZFYURrTFNpeENkODdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8wYWRjZDgtOGE0Yi00OTIzLWJmMzYtODE0YTYxMWVjYTYw
LzEvTXB0UlBtVndiOHFsUTZFYURrTFNpeENkODdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgaPTnyBq
7TCGIZ6eg8KOBu0S2aFGU8XyRmZRi6luGW2pZufhdxe+apoQg667pS4gY39zI3zI
J4Oh691m5cNmR6ypOZ4qMxG9vgLtGBo5EyDS2rd2hzzzR8vO2yq57a9WK6VZDyeb
iq7qVY9B+EuxoTgVa6HI24djoh0LgDdmavm6fx+nDKjwRShBwomGec+UtVguHbhx
o5pGcMWlL2ApMi7hDvkiQ8Bm0AKE3Z8O3r0a+unBj8jHJDQUBjsn3ujq2ZV/uO+S
9u6jqKi6+VYlg6zovIKpAnoAC6Iz2yQhJoBihuToVBfQYF6YKaU/L3ct7Y5O5U7H
uyL9FhIVnhZc8Q==
-----END CERTIFICATE-----