Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft
File:                     Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft (raw, json)
Hash identifier:          RF/sZHWClH9ICjHiKaL6nXUN1g9GN7vkvcklxFqrois=
Subject key identifier:   08:CA:AA:FA:B3:3E:13:BD:FC:39:2A:D9:CF:83:BB:5F:67:17:AE:16
Authority key identifier: 63:A8:CA:16:66:20:6D:2C:F1:2B:50:78:72:EA:D0:F5:A7:93:D0:E0
Certificate issuer:       /CN=63a8ca1666206d2cf12b507872ead0f5a793d0e0
Certificate serial:       0198A0F17A6938EDBC2613F94D5ACDB4D4AB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft
Manifest number:          07B9
Signing time:             Wed 13 Aug 2025 01:00:36 +0000
Manifest this update:     Wed 13 Aug 2025 01:00:36 +0000
Manifest next update:     Thu 14 Aug 2025 01:00:36 +0000
Files and hashes:         1: Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl (hash: /gNrk9joMWBxxie90rW57/laRzZwHaBI2zekIxJMIjg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 22:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a0:f1:7a:69:38:ed:bc:26:13:f9:4d:5a:cd:b4:d4:ab
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63a8ca1666206d2cf12b507872ead0f5a793d0e0
        Validity
            Not Before: Aug 13 01:00:36 2025 GMT
            Not After : Aug 14 01:00:36 2025 GMT
        Subject: CN=08caaafab33e13bdfc392ad9cf83bb5f6717ae16
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:d2:c0:62:b0:c7:95:45:e8:c4:74:a5:8b:60:
                    a6:4c:52:c8:58:8a:64:07:96:57:e4:f8:d6:36:55:
                    70:37:c4:79:9f:ae:47:51:9e:a3:43:be:92:99:b3:
                    91:25:f6:fc:c6:57:99:ba:6a:e7:e0:b0:71:5f:dd:
                    a7:38:48:80:40:2f:c4:88:80:ae:22:1f:ca:dd:f4:
                    c9:a2:6f:e2:28:d7:b0:6b:16:9b:55:1d:dd:72:3f:
                    7e:4c:d1:4c:ab:84:67:bb:cf:c0:a2:9e:dd:31:19:
                    26:e7:33:4a:b7:39:77:35:4a:0c:5d:fe:cd:c8:9e:
                    a1:49:5c:17:aa:18:f0:0b:89:f6:1f:11:73:1a:fc:
                    b1:58:78:a1:82:3b:3c:c6:88:7e:4b:c7:aa:94:0c:
                    a3:a5:ba:b8:33:58:a6:f2:35:e4:d6:c5:36:5c:7c:
                    4b:0e:03:33:e7:05:de:d2:59:74:d7:35:31:fa:08:
                    ba:49:04:30:19:e2:a4:59:f0:f6:2b:b8:0c:27:0c:
                    2e:1d:97:e5:e3:c3:b6:d9:9d:54:b5:60:44:da:18:
                    91:32:d9:d9:21:62:69:fb:e5:b2:c9:d3:b7:08:50:
                    86:cb:8b:7a:7c:1b:34:7e:01:cd:6b:35:2b:a9:3e:
                    79:7f:40:f6:66:92:ff:05:c4:c4:71:49:f8:8a:c1:
                    c3:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                08:CA:AA:FA:B3:3E:13:BD:FC:39:2A:D9:CF:83:BB:5F:67:17:AE:16
            X509v3 Authority Key Identifier:
                keyid:63:A8:CA:16:66:20:6D:2C:F1:2B:50:78:72:EA:D0:F5:A7:93:D0:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y6jKFmYgbSzxK1B4curQ9aeT0OA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/25/0446b1-df2f-4261-a1ba-75ab21f3b3d0/1/Y6jKFmYgbSzxK1B4curQ9aeT0OA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7a:b1:b9:b7:81:25:92:08:f3:74:96:bb:c4:cf:52:3d:cd:3a:
         1b:21:b8:62:69:90:86:df:3a:e2:5d:54:88:93:d2:0c:71:72:
         31:54:74:b1:52:70:c3:0b:da:05:45:93:e8:5c:db:8f:c6:84:
         ae:6d:94:63:9e:8a:d8:66:04:7c:b2:10:8f:71:07:6b:c4:cc:
         34:91:b5:26:73:aa:db:87:e9:66:9e:27:a3:00:d3:af:b2:31:
         d2:a1:2b:76:3d:93:f2:46:7a:ab:84:27:fc:73:ae:a5:c0:da:
         19:77:30:f3:b2:fe:5d:31:c9:f5:4e:38:11:4f:43:1f:e9:b5:
         9a:08:65:da:14:77:46:1f:1f:65:fa:0c:9e:da:70:a9:3a:89:
         2a:93:87:ca:30:69:a2:82:5d:b9:a1:27:02:2f:85:ec:7f:53:
         5e:95:1c:01:5e:da:cf:98:01:b0:b2:0b:c3:fa:df:a9:bf:b6:
         88:59:d5:40:de:06:1f:dc:ae:b7:14:19:a3:70:d9:3d:57:19:
         f1:07:1c:81:c1:65:f9:83:02:57:e0:ed:a9:e9:c3:e3:c7:0f:
         6d:3b:0e:ce:43:07:9c:2b:69:0a:a4:9b:da:22:da:1a:90:f8:
         1b:51:57:21:b2:3a:e4:8c:e9:92:b1:47:d7:48:61:9e:d0:20:
         91:53:50:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZig8XppOO28JhP5TVrNtNSrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzYThjYTE2NjYyMDZkMmNmMTJiNTA3ODcyZWFkMGY1YTc5
M2QwZTAwHhcNMjUwODEzMDEwMDM2WhcNMjUwODE0MDEwMDM2WjAzMTEwLwYDVQQD
EygwOGNhYWFmYWIzM2UxM2JkZmMzOTJhZDljZjgzYmI1ZjY3MTdhZTE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs9LAYrDHlUXoxHSli2CmTFLIWIpk
B5ZX5PjWNlVwN8R5n65HUZ6jQ76SmbORJfb8xleZumrn4LBxX92nOEiAQC/EiICu
Ih/K3fTJom/iKNewaxabVR3dcj9+TNFMq4Rnu8/Aop7dMRkm5zNKtzl3NUoMXf7N
yJ6hSVwXqhjwC4n2HxFzGvyxWHihgjs8xoh+S8eqlAyjpbq4M1im8jXk1sU2XHxL
DgMz5wXe0ll01zUx+gi6SQQwGeKkWfD2K7gMJwwuHZfl48O22Z1UtWBE2hiRMtnZ
IWJp++WyydO3CFCGy4t6fBs0fgHNazUrqT55f0D2ZpL/BcTEcUn4isHDOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAjKqvqzPhO9/Dkq2c+Du19nF64WMB8GA1UdIwQY
MBaAFGOoyhZmIG0s8StQeHLq0PWnk9DgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTZqS0ZtWWdiU3p4SzFCNGN1clE5YWVUME9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS8wNDQ2YjEtZGYyZi00MjYxLWExYmEt
NzVhYjIxZjNiM2QwLzEvWTZqS0ZtWWdiU3p4SzFCNGN1clE5YWVUME9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS8wNDQ2YjEtZGYyZi00MjYxLWExYmEtNzVhYjIxZjNiM2Qw
LzEvWTZqS0ZtWWdiU3p4SzFCNGN1clE5YWVUME9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAerG5t4El
kgjzdJa7xM9SPc06GyG4YmmQht864l1UiJPSDHFyMVR0sVJwwwvaBUWT6Fzbj8aE
rm2UY56K2GYEfLIQj3EHa8TMNJG1JnOq24fpZp4nowDTr7Ix0qErdj2T8kZ6q4Qn
/HOupcDaGXcw87L+XTHJ9U44EU9DH+m1mghl2hR3Rh8fZfoMntpwqTqJKpOHyjBp
ooJduaEnAi+F7H9TXpUcAV7az5gBsLILw/rfqb+2iFnVQN4GH9yutxQZo3DZPVcZ
8QccgcFl+YMCV+DtqenD48cPbTsOzkMHnCtpCqSb2iLaGpD4G1FXIbI65IzpkrFH
10hhntAgkVNQhg==
-----END CERTIFICATE-----