Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft
File:                     g2elJH2fTpT3vVcc8T01q0iwHSQ.mft (raw, json)
Hash identifier:          u1PG+7QumgsBOIhV/lNSB+BlHlS/4LRbR5YV60cDCeA=
Subject key identifier:   0B:33:8D:FE:D6:B8:CB:29:AB:11:C2:B3:B5:77:81:A7:C3:7B:44:3F
Authority key identifier: 83:67:A5:24:7D:9F:4E:94:F7:BD:57:1C:F1:3D:35:AB:48:B0:1D:24
Certificate issuer:       /CN=8367a5247d9f4e94f7bd571cf13d35ab48b01d24
Certificate serial:       01988054E3812242C060ACA7ABACDDA924B4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/g2elJH2fTpT3vVcc8T01q0iwHSQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft
Manifest number:          05AC
Signing time:             Wed 06 Aug 2025 17:01:43 +0000
Manifest this update:     Wed 06 Aug 2025 17:01:43 +0000
Manifest next update:     Thu 07 Aug 2025 17:01:43 +0000
Files and hashes:         1: g2elJH2fTpT3vVcc8T01q0iwHSQ.crl (hash: ZRSEn1VD0GQ8giNELJxoYI2MhabRGN/aD3KyXZtYZiE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/g2elJH2fTpT3vVcc8T01q0iwHSQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 17:01:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:80:54:e3:81:22:42:c0:60:ac:a7:ab:ac:dd:a9:24:b4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8367a5247d9f4e94f7bd571cf13d35ab48b01d24
        Validity
            Not Before: Aug  6 17:01:43 2025 GMT
            Not After : Aug  7 17:01:43 2025 GMT
        Subject: CN=0b338dfed6b8cb29ab11c2b3b57781a7c37b443f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:ac:97:94:bc:53:61:2f:55:33:75:9f:6a:7f:
                    cb:f6:4d:ee:1a:d2:df:f7:7f:1a:fe:73:fb:56:e1:
                    b7:22:b1:62:88:64:b3:d0:6b:32:59:1e:c6:98:8b:
                    d1:cd:58:bf:e1:eb:c7:92:11:60:ba:ef:ef:f3:70:
                    59:f7:c5:c2:20:e1:82:39:93:5f:31:5a:82:18:84:
                    ec:78:e3:44:05:67:0d:07:06:8a:dd:ce:30:c8:48:
                    2b:cc:60:db:e1:20:8a:83:65:64:b3:31:c4:6d:ac:
                    d0:8c:14:81:d7:04:c5:ea:b0:62:ee:18:9d:d7:73:
                    43:30:24:5d:b1:6b:88:4a:59:e9:14:4f:76:85:fe:
                    be:06:47:2c:09:6e:a0:d0:83:5f:f3:b6:d6:0e:f6:
                    74:d0:4b:3a:ab:05:9e:8d:9f:df:b4:10:8a:3d:49:
                    1d:17:ec:a2:56:0c:47:f7:8a:0a:e1:a2:ae:6e:f8:
                    2c:8d:f6:56:9a:8f:f7:64:53:c0:12:30:b4:ba:ce:
                    d4:c5:45:8e:04:2a:04:29:7e:ff:aa:f9:e6:7b:5c:
                    ae:54:e9:32:87:d5:3b:eb:72:ba:03:12:e5:5d:8b:
                    16:6a:ed:dc:ba:31:6b:20:d0:04:55:95:da:d9:e9:
                    08:45:03:96:61:43:82:2b:e3:8d:25:9a:7c:b2:48:
                    25:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:33:8D:FE:D6:B8:CB:29:AB:11:C2:B3:B5:77:81:A7:C3:7B:44:3F
            X509v3 Authority Key Identifier:
                keyid:83:67:A5:24:7D:9F:4E:94:F7:BD:57:1C:F1:3D:35:AB:48:B0:1D:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2elJH2fTpT3vVcc8T01q0iwHSQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c0:d1:52:fd:f9:4a:89:2b:b9:d6:65:17:41:71:e6:ff:f1:94:
         05:60:01:02:62:af:fa:29:8f:93:50:88:a6:6b:de:5c:66:18:
         d2:0b:54:b3:07:e2:ea:40:09:2e:46:7f:0f:2a:25:8f:bd:ec:
         f5:0e:77:67:16:b5:bf:df:42:ef:39:51:f6:e0:db:36:31:4c:
         b4:2e:f4:4e:e9:d0:22:6d:25:8a:f0:1c:87:4e:6b:a8:a0:d9:
         19:33:6e:b2:2f:01:f4:db:fd:80:95:32:6b:a2:6f:3a:2e:46:
         ee:5d:e8:93:6b:cd:9c:8a:36:92:f4:c7:69:01:3b:64:36:a2:
         87:7a:c0:d8:23:af:db:d7:f9:2f:2a:14:8c:3a:45:13:bd:26:
         68:48:6d:7a:0a:d6:08:7c:8c:e0:89:db:4d:0a:8f:bc:be:25:
         26:86:cc:36:da:a3:2f:12:f9:7a:44:50:de:f5:2f:90:6d:88:
         88:6e:41:ba:bc:3d:77:e9:76:db:15:7a:17:8c:a1:8b:95:81:
         a0:c3:8e:90:bd:b2:94:86:ba:6f:14:40:a3:cb:29:d6:b8:10:
         e8:8e:80:20:29:9f:a9:95:e1:1c:16:d8:99:5f:3e:04:73:03:
         20:3f:af:98:6d:5a:3d:9a:bd:6a:a0:1d:e0:74:16:43:64:ca:
         b2:80:66:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAVOOBIkLAYKynq6zdqSS0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzNjdhNTI0N2Q5ZjRlOTRmN2JkNTcxY2YxM2QzNWFiNDhi
MDFkMjQwHhcNMjUwODA2MTcwMTQzWhcNMjUwODA3MTcwMTQzWjAzMTEwLwYDVQQD
EygwYjMzOGRmZWQ2YjhjYjI5YWIxMWMyYjNiNTc3ODFhN2MzN2I0NDNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwayXlLxTYS9VM3Wfan/L9k3uGtLf
938a/nP7VuG3IrFiiGSz0GsyWR7GmIvRzVi/4evHkhFguu/v83BZ98XCIOGCOZNf
MVqCGITseONEBWcNBwaK3c4wyEgrzGDb4SCKg2VkszHEbazQjBSB1wTF6rBi7hid
13NDMCRdsWuISlnpFE92hf6+BkcsCW6g0INf87bWDvZ00Es6qwWejZ/ftBCKPUkd
F+yiVgxH94oK4aKubvgsjfZWmo/3ZFPAEjC0us7UxUWOBCoEKX7/qvnme1yuVOky
h9U763K6AxLlXYsWau3cujFrINAEVZXa2ekIRQOWYUOCK+ONJZp8skglYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAszjf7WuMspqxHCs7V3gafDe0Q/MB8GA1UdIwQY
MBaAFINnpSR9n06U971XHPE9NatIsB0kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzJlbEpIMmZUcFQzdlZjYzhUMDFxMGl3SFNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9mOGJlOWItNThmMC00NTQ0LWIyM2Yt
NjM1NGVmMDc3MWM5LzEvZzJlbEpIMmZUcFQzdlZjYzhUMDFxMGl3SFNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9mOGJlOWItNThmMC00NTQ0LWIyM2YtNjM1NGVmMDc3MWM5
LzEvZzJlbEpIMmZUcFQzdlZjYzhUMDFxMGl3SFNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwNFS/flK
iSu51mUXQXHm//GUBWABAmKv+imPk1CIpmveXGYY0gtUswfi6kAJLkZ/Dyolj73s
9Q53Zxa1v99C7zlR9uDbNjFMtC70TunQIm0livAch05rqKDZGTNusi8B9Nv9gJUy
a6JvOi5G7l3ok2vNnIo2kvTHaQE7ZDaih3rA2COv29f5LyoUjDpFE70maEhtegrW
CHyM4InbTQqPvL4lJobMNtqjLxL5ekRQ3vUvkG2IiG5Burw9d+l22xV6F4yhi5WB
oMOOkL2ylIa6bxRAo8sp1rgQ6I6AICmfqZXhHBbYmV8+BHMDID+vmG1aPZq9aqAd
4HQWQ2TKsoBmZg==
-----END CERTIFICATE-----