Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
File:                     KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft (raw, json)
Hash identifier:          7xZgsl0wF+FcDpwQTRnCOuSAv22LE4jSHXuLe7U2jGc=
Subject key identifier:   B3:5B:F6:69:6F:F2:07:01:D6:5F:B2:96:01:69:BC:19:24:4A:4A:31
Authority key identifier: 29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
Certificate issuer:       /CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Certificate serial:       0198A04E366E71687568A156E4E8FB3670C6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
Manifest number:          162B
Signing time:             Tue 12 Aug 2025 22:02:16 +0000
Manifest this update:     Tue 12 Aug 2025 22:02:16 +0000
Manifest next update:     Wed 13 Aug 2025 22:02:16 +0000
Files and hashes:         1: KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl (hash: OgHRLcRp7gxSvD5K969G8yPgy3Wag6mEgjNO6M56y5A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 22:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a0:4e:36:6e:71:68:75:68:a1:56:e4:e8:fb:36:70:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=293bc3a5749733104f7b9cc0512dade136d70ad0
        Validity
            Not Before: Aug 12 22:02:16 2025 GMT
            Not After : Aug 13 22:02:16 2025 GMT
        Subject: CN=b35bf6696ff20701d65fb2960169bc19244a4a31
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8a:f9:c8:7b:40:c7:2e:2d:0a:42:41:92:f8:01:
                    de:00:52:16:cb:60:e6:ca:23:ec:85:d4:63:94:34:
                    27:83:f2:e7:30:4a:a0:4f:44:3e:96:92:0c:0e:e6:
                    4f:ea:fd:11:31:11:8d:78:9f:ff:99:1d:42:73:e3:
                    15:13:63:24:1f:1e:be:2c:2b:3a:80:cc:02:09:bf:
                    fa:c6:36:e5:fd:76:77:f6:52:b4:e0:3c:9f:dc:ca:
                    52:36:cb:28:3f:fe:d3:10:53:d8:4f:98:b7:f1:69:
                    c3:cc:c0:2a:8d:e5:06:ec:c1:8b:99:86:ab:48:d4:
                    1b:50:41:fe:26:78:ba:d1:50:3b:58:77:86:54:eb:
                    68:99:bd:6a:21:07:a4:5f:8f:41:6d:61:b2:46:d1:
                    04:6f:7e:8d:10:3c:ff:01:78:79:4f:bd:19:60:de:
                    4a:14:1c:70:88:8e:51:61:73:c4:13:ce:8d:55:b3:
                    b6:1c:46:47:39:85:24:3c:1e:5c:00:58:52:9c:77:
                    ac:ad:4a:f4:6b:c2:f6:6f:51:c9:16:da:3b:18:85:
                    24:c2:b3:23:d3:4a:9d:78:37:c5:ee:59:60:b8:87:
                    b5:3e:cb:db:8b:69:79:c0:0b:85:4f:8c:ed:df:9a:
                    b6:7e:33:8c:b3:cd:06:a7:9a:30:e5:a1:7c:2d:c7:
                    00:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:5B:F6:69:6F:F2:07:01:D6:5F:B2:96:01:69:BC:19:24:4A:4A:31
            X509v3 Authority Key Identifier:
                keyid:29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         75:f7:7f:74:31:25:52:02:db:e9:51:72:41:ac:6f:1d:cb:e2:
         64:26:77:c3:ef:54:2f:3d:69:e5:f9:8a:fc:83:28:11:f2:81:
         83:45:c8:ab:8f:7d:25:cb:70:a1:59:87:97:50:a8:2e:cd:48:
         57:f7:35:8d:48:b5:c4:a6:13:f5:95:f7:ec:41:a8:1f:a4:0a:
         f9:c7:d9:d8:d2:8d:ed:05:da:ff:88:01:f6:c3:9a:d6:c7:a7:
         ed:63:57:d8:fc:63:95:2f:09:4c:ac:d6:4b:3c:da:17:1f:6a:
         e9:67:4e:da:93:c9:12:60:07:f1:6a:f1:8c:d0:8a:3f:49:32:
         d9:d0:42:6d:c1:cf:35:a3:5b:1d:2b:a9:05:89:00:99:d2:fa:
         0e:37:e4:1d:9a:2e:e7:27:cc:f5:69:7c:19:e1:d2:55:85:b1:
         87:f4:ea:69:ab:f0:6f:6c:0f:22:46:0b:f1:10:4f:f8:3c:92:
         2f:17:4c:3b:56:f9:b3:8c:01:4d:55:7f:38:f7:16:75:b4:e6:
         73:ee:7d:03:c0:9c:42:5f:75:17:91:7c:72:8c:42:e6:1b:63:
         a6:8b:93:ca:20:c6:05:72:03:d8:12:78:61:ac:54:61:75:3b:
         ad:aa:aa:23:c3:b3:a6:1d:72:68:05:ea:df:21:c0:df:ef:96:
         ce:ae:74:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZigTjZucWh1aKFW5Oj7NnDGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5M2JjM2E1NzQ5NzMzMTA0ZjdiOWNjMDUxMmRhZGUxMzZk
NzBhZDAwHhcNMjUwODEyMjIwMjE2WhcNMjUwODEzMjIwMjE2WjAzMTEwLwYDVQQD
EyhiMzViZjY2OTZmZjIwNzAxZDY1ZmIyOTYwMTY5YmMxOTI0NGE0YTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAivnIe0DHLi0KQkGS+AHeAFIWy2Dm
yiPshdRjlDQng/LnMEqgT0Q+lpIMDuZP6v0RMRGNeJ//mR1Cc+MVE2MkHx6+LCs6
gMwCCb/6xjbl/XZ39lK04Dyf3MpSNssoP/7TEFPYT5i38WnDzMAqjeUG7MGLmYar
SNQbUEH+Jni60VA7WHeGVOtomb1qIQekX49BbWGyRtEEb36NEDz/AXh5T70ZYN5K
FBxwiI5RYXPEE86NVbO2HEZHOYUkPB5cAFhSnHesrUr0a8L2b1HJFto7GIUkwrMj
00qdeDfF7llguIe1Psvbi2l5wAuFT4zt35q2fjOMs80Gp5ow5aF8LccABQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLNb9mlv8gcB1l+ylgFpvBkkSkoxMB8GA1UdIwQY
MBaAFCk7w6V0lzMQT3ucwFEtreE21wrQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1R2RHBYU1hNeEJQZTV6QVVTMnQ0VGJYQ3RBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9iYjdmOWUtMTVjMC00ZDU1LTgyMmIt
NjA5YTFlODYyN2ZkLzEvS1R2RHBYU1hNeEJQZTV6QVVTMnQ0VGJYQ3RBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC9iYjdmOWUtMTVjMC00ZDU1LTgyMmItNjA5YTFlODYyN2Zk
LzEvS1R2RHBYU1hNeEJQZTV6QVVTMnQ0VGJYQ3RBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdfd/dDEl
UgLb6VFyQaxvHcviZCZ3w+9ULz1p5fmK/IMoEfKBg0XIq499JctwoVmHl1CoLs1I
V/c1jUi1xKYT9ZX37EGoH6QK+cfZ2NKN7QXa/4gB9sOa1sen7WNX2PxjlS8JTKzW
SzzaFx9q6WdO2pPJEmAH8WrxjNCKP0ky2dBCbcHPNaNbHSupBYkAmdL6DjfkHZou
5yfM9Wl8GeHSVYWxh/Tqaavwb2wPIkYL8RBP+DySLxdMO1b5s4wBTVV/OPcWdbTm
c+59A8CcQl91F5F8coxC5htjpouTyiDGBXID2BJ4YaxUYXU7raqqI8Ozph1yaAXq
3yHA3++Wzq50rg==
-----END CERTIFICATE-----