Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
File:                     yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft (raw, json)
Hash identifier:          xJtkR9hmOYbi/JwDoQhFkyCxDDi6+USXsYaaNm7ki0Q=
Subject key identifier:   0E:DC:29:98:E2:61:62:94:83:DA:DA:1F:79:00:57:3C:7D:80:FE:59
Authority key identifier: C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81
Certificate issuer:       /CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581
Certificate serial:       01988FC7883739F3EB4E65B452EDBAC2D559
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
Manifest number:          0DF3
Signing time:             Sat 09 Aug 2025 17:01:15 +0000
Manifest this update:     Sat 09 Aug 2025 17:01:15 +0000
Manifest next update:     Sun 10 Aug 2025 17:01:15 +0000
Files and hashes:         1: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl (hash: ZQmbfch4PZMQm/Fsgiaza0EKRR4NJB/c9edb91Z+FcQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 14:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8f:c7:88:37:39:f3:eb:4e:65:b4:52:ed:ba:c2:d5:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581
        Validity
            Not Before: Aug  9 17:01:15 2025 GMT
            Not After : Aug 10 17:01:15 2025 GMT
        Subject: CN=0edc2998e261629483dada1f7900573c7d80fe59
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:b7:d5:96:80:eb:6d:5a:df:4d:be:ce:36:36:
                    ff:7b:d6:12:89:e4:25:7e:c8:37:6e:bc:7e:ca:34:
                    a5:46:61:84:50:2d:5f:f6:c1:b8:54:7f:a3:5a:8a:
                    64:7d:73:32:a8:5a:9e:e0:a9:1e:1c:06:a7:94:41:
                    6e:2a:5b:63:8e:08:2d:6c:5e:f4:37:de:2f:70:87:
                    37:a2:d9:ca:1c:89:07:5a:ac:74:fa:6b:10:39:d8:
                    d8:8d:8c:e6:0b:ae:ab:aa:e3:22:87:a7:b5:c5:5a:
                    ad:a5:a7:f1:b8:df:04:c6:d7:2b:7a:38:6a:6b:ac:
                    aa:56:bd:8c:d6:ae:b8:a0:4c:31:18:5e:5a:b0:f2:
                    1b:82:62:1a:33:28:c8:0d:76:68:ba:0b:95:57:13:
                    d8:7e:b7:b5:d8:ae:84:88:7d:d7:05:75:3a:63:2e:
                    35:c6:8c:b5:7d:96:c6:b5:b3:77:c3:b6:c4:f5:0c:
                    17:e8:d2:bd:2d:af:b5:a5:e8:02:d9:9f:b2:f6:70:
                    7b:5e:06:29:5f:f0:aa:2a:e9:11:7c:1c:89:5d:94:
                    af:ee:3f:35:13:30:5c:a6:83:05:5f:72:ef:8a:95:
                    b5:c4:15:6e:62:a5:92:e7:6a:a3:c1:23:cb:4d:ff:
                    ba:77:e9:b1:f9:88:32:57:4b:4f:ea:d3:b4:6d:76:
                    aa:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:DC:29:98:E2:61:62:94:83:DA:DA:1F:79:00:57:3C:7D:80:FE:59
            X509v3 Authority Key Identifier:
                keyid:C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:de:8d:f5:48:89:71:f0:da:0b:6a:40:3b:9f:ac:ef:2b:17:
         31:23:25:43:b5:61:db:69:6b:1d:5d:e5:59:09:29:53:8c:c5:
         40:ba:10:82:cd:a7:3c:c0:67:87:d4:04:76:4e:f4:b8:f9:6f:
         ff:02:2d:0e:64:b6:b6:cc:fe:81:21:00:7a:7d:55:f8:2c:3e:
         07:47:65:30:c5:9b:20:a5:b1:d4:23:7c:c5:63:e7:d4:a4:e3:
         45:6b:de:80:9e:35:5c:6f:2a:c7:63:9e:52:d0:1d:a3:1a:41:
         0b:07:ff:5c:d3:21:41:57:81:cb:d9:48:72:e1:a8:82:ea:78:
         84:4a:2e:eb:0e:32:41:6d:23:c2:ec:03:83:55:5b:04:0b:26:
         59:31:56:dc:39:9e:ce:25:ba:62:a3:be:ef:ae:95:a0:f0:f5:
         e2:f1:12:40:88:e0:f2:80:73:23:c6:4a:62:71:a2:7e:4b:e1:
         d5:ee:25:fc:ec:8e:7f:15:6d:25:b4:93:61:3c:c2:69:20:6f:
         82:9c:12:f5:cd:6a:54:29:09:5e:e2:d2:2b:a7:c9:84:be:b2:
         05:1b:19:1c:e7:9c:d2:fb:a6:fb:0d:eb:dc:19:05:55:6e:00:
         c0:ec:b2:a6:86:dc:6e:bc:14:f8:47:8d:59:e4:01:dc:37:80:
         dc:73:2e:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiPx4g3OfPrTmW0Uu26wtVZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4ZGE4OWZiMTUyZDQzYzYzZTNkYTJmZDZhMGIwZGZiMjJh
MDY1ODEwHhcNMjUwODA5MTcwMTE1WhcNMjUwODEwMTcwMTE1WjAzMTEwLwYDVQQD
EygwZWRjMjk5OGUyNjE2Mjk0ODNkYWRhMWY3OTAwNTczYzdkODBmZTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2LfVloDrbVrfTb7ONjb/e9YSieQl
fsg3brx+yjSlRmGEUC1f9sG4VH+jWopkfXMyqFqe4KkeHAanlEFuKltjjggtbF70
N94vcIc3otnKHIkHWqx0+msQOdjYjYzmC66rquMih6e1xVqtpafxuN8Extcrejhq
a6yqVr2M1q64oEwxGF5asPIbgmIaMyjIDXZouguVVxPYfre12K6EiH3XBXU6Yy41
xoy1fZbGtbN3w7bE9QwX6NK9La+1pegC2Z+y9nB7XgYpX/CqKukRfByJXZSv7j81
EzBcpoMFX3LvipW1xBVuYqWS52qjwSPLTf+6d+mx+YgyV0tP6tO0bXaqQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA7cKZjiYWKUg9raH3kAVzx9gP5ZMB8GA1UdIwQY
MBaAFMjaifsVLUPGPj2i/WoLDfsioGWBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9iNTUwMDUtMDA1ZC00YTY0LWJlMWEt
ZGQyYjA2MWJkNGYyLzEveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9iNTUwMDUtMDA1ZC00YTY0LWJlMWEtZGQyYjA2MWJkNGYy
LzEveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZt6N9UiJ
cfDaC2pAO5+s7ysXMSMlQ7Vh22lrHV3lWQkpU4zFQLoQgs2nPMBnh9QEdk70uPlv
/wItDmS2tsz+gSEAen1V+Cw+B0dlMMWbIKWx1CN8xWPn1KTjRWvegJ41XG8qx2Oe
UtAdoxpBCwf/XNMhQVeBy9lIcuGogup4hEou6w4yQW0jwuwDg1VbBAsmWTFW3Dme
ziW6YqO+766VoPD14vESQIjg8oBzI8ZKYnGifkvh1e4l/OyOfxVtJbSTYTzCaSBv
gpwS9c1qVCkJXuLSK6fJhL6yBRsZHOec0vum+w3r3BkFVW4AwOyypobcbrwU+EeN
WeQB3DeA3HMu+Q==
-----END CERTIFICATE-----