Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.mft
File:                     MBHFvtv0MNvOQcazjxyxJVKrv-k.mft (raw, json)
Hash identifier:          WZIvEEsxEJnrPaya2F57UmhojQYCalaXABxAmkIlN28=
Subject key identifier:   53:76:32:A8:B4:C0:3A:F8:D6:BE:E9:86:F2:7E:DC:C9:A3:42:D2:73
Authority key identifier: 30:11:C5:BE:DB:F4:30:DB:CE:41:C6:B3:8F:1C:B1:25:52:AB:BF:E9
Certificate issuer:       /CN=3011c5bedbf430dbce41c6b38f1cb12552abbfe9
Certificate serial:       0198A0F1BE217EDA347987184581C6F00975
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MBHFvtv0MNvOQcazjxyxJVKrv-k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.mft
Manifest number:          01FC
Signing time:             Wed 13 Aug 2025 01:00:53 +0000
Manifest this update:     Wed 13 Aug 2025 01:00:53 +0000
Manifest next update:     Thu 14 Aug 2025 01:00:53 +0000
Files and hashes:         1: MBHFvtv0MNvOQcazjxyxJVKrv-k.crl (hash: 01GVuwTv8DL3i4Lll0Qi0oe5yRzp0FLrvRYF1g+jm6I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MBHFvtv0MNvOQcazjxyxJVKrv-k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 22:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a0:f1:be:21:7e:da:34:79:87:18:45:81:c6:f0:09:75
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3011c5bedbf430dbce41c6b38f1cb12552abbfe9
        Validity
            Not Before: Aug 13 01:00:53 2025 GMT
            Not After : Aug 14 01:00:53 2025 GMT
        Subject: CN=537632a8b4c03af8d6bee986f27edcc9a342d273
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:b0:87:af:2c:4a:d5:3d:d4:15:20:50:1d:9e:
                    0e:3d:d9:e2:06:f0:41:7a:40:ef:e1:32:4b:36:89:
                    3f:86:b3:d9:73:ea:d5:68:10:6b:19:13:70:4a:2a:
                    23:19:2c:0b:dc:4b:9a:e9:7f:6b:fb:16:66:4d:b5:
                    c5:ef:2f:76:30:9d:bf:8f:cd:26:a8:21:f8:a9:6e:
                    cb:ee:25:f4:2b:30:17:43:78:ee:60:33:04:5f:e8:
                    c1:dd:f0:8d:9c:c8:42:de:7d:bc:a9:6e:fe:27:b6:
                    e5:ce:d6:cf:97:71:73:e0:ea:f7:4a:61:a7:e9:cc:
                    c5:bd:eb:9e:d1:9a:e0:b4:ad:31:a0:dd:db:05:f8:
                    e1:39:e6:e4:5d:ee:73:4e:87:d4:ad:bc:34:a7:f2:
                    c4:80:24:c1:1f:3b:af:2f:14:4e:41:3f:c1:24:4d:
                    ce:54:66:30:88:2c:ce:fd:a7:b9:a5:a8:d4:9e:17:
                    b3:89:3f:18:06:95:0b:a4:17:45:da:a7:a5:8f:8d:
                    7b:ad:25:ce:9d:8f:80:fc:06:6b:d2:45:d6:70:bf:
                    c2:8e:4c:c1:90:c5:b4:57:cc:f7:75:ea:2c:d6:27:
                    c4:93:5d:e8:74:47:8e:4f:b1:57:3c:47:fa:a5:d2:
                    ba:01:aa:3d:5f:98:a4:95:4c:a5:58:94:ec:fd:b2:
                    a6:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:76:32:A8:B4:C0:3A:F8:D6:BE:E9:86:F2:7E:DC:C9:A3:42:D2:73
            X509v3 Authority Key Identifier:
                keyid:30:11:C5:BE:DB:F4:30:DB:CE:41:C6:B3:8F:1C:B1:25:52:AB:BF:E9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MBHFvtv0MNvOQcazjxyxJVKrv-k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/80c8cb-bb6f-4d26-aafe-2d83c0800c0b/1/MBHFvtv0MNvOQcazjxyxJVKrv-k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:63:d6:22:a8:c2:51:cc:65:08:c9:a7:9f:04:b1:c8:15:19:
         6a:54:53:97:d7:85:87:f4:0f:ef:28:f9:04:08:75:a4:1c:91:
         5f:ce:25:1d:d3:87:07:ee:3b:ff:e3:38:f2:6a:a4:7b:5d:3a:
         b6:dd:e6:9f:4c:a8:11:eb:9b:d7:59:bf:e9:5f:a3:c5:0b:ac:
         41:b1:4f:24:c0:cc:6a:93:91:0d:d1:2e:00:fa:83:0d:eb:82:
         17:32:43:cb:12:2b:7b:ba:88:b6:cb:a4:82:53:b8:2a:c0:34:
         54:c7:aa:2f:fe:5e:88:d5:df:c5:9f:04:56:27:06:91:0b:50:
         ac:89:70:05:47:ed:ee:6c:ea:28:cd:8d:11:b6:f1:ad:52:a7:
         95:6e:5d:8d:8b:bf:0b:97:3b:ff:ed:d1:d0:09:bd:02:43:bb:
         de:65:bd:58:92:c6:27:81:34:61:97:91:bb:3e:c6:c6:fd:e2:
         3f:2c:af:c6:9d:f3:c2:a5:40:56:96:43:cd:70:49:f3:ad:40:
         72:72:a1:29:42:c8:8c:e8:7b:af:bb:64:ee:2b:a3:18:44:54:
         68:ae:13:a1:69:26:8a:7d:c1:14:84:aa:64:e9:ce:3f:67:3e:
         d4:41:4c:29:70:74:a1:09:28:2a:07:c2:b0:61:0d:22:d0:47:
         77:b3:71:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZig8b4hfto0eYcYRYHG8Al1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwMTFjNWJlZGJmNDMwZGJjZTQxYzZiMzhmMWNiMTI1NTJh
YmJmZTkwHhcNMjUwODEzMDEwMDUzWhcNMjUwODE0MDEwMDUzWjAzMTEwLwYDVQQD
Eyg1Mzc2MzJhOGI0YzAzYWY4ZDZiZWU5ODZmMjdlZGNjOWEzNDJkMjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu7CHryxK1T3UFSBQHZ4OPdniBvBB
ekDv4TJLNok/hrPZc+rVaBBrGRNwSiojGSwL3Eua6X9r+xZmTbXF7y92MJ2/j80m
qCH4qW7L7iX0KzAXQ3juYDMEX+jB3fCNnMhC3n28qW7+J7blztbPl3Fz4Or3SmGn
6czFveue0ZrgtK0xoN3bBfjhOebkXe5zTofUrbw0p/LEgCTBHzuvLxROQT/BJE3O
VGYwiCzO/ae5pajUnheziT8YBpULpBdF2qelj417rSXOnY+A/AZr0kXWcL/CjkzB
kMW0V8z3deos1ifEk13odEeOT7FXPEf6pdK6Aao9X5iklUylWJTs/bKmvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFN2Mqi0wDr41r7phvJ+3MmjQtJzMB8GA1UdIwQY
MBaAFDARxb7b9DDbzkHGs48csSVSq7/pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUJIRnZ0djBNTnZPUWNhemp4eXhKVktydi1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi84MGM4Y2ItYmI2Zi00ZDI2LWFhZmUt
MmQ4M2MwODAwYzBiLzEvTUJIRnZ0djBNTnZPUWNhemp4eXhKVktydi1rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYi84MGM4Y2ItYmI2Zi00ZDI2LWFhZmUtMmQ4M2MwODAwYzBi
LzEvTUJIRnZ0djBNTnZPUWNhemp4eXhKVktydi1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAGPWIqjC
UcxlCMmnnwSxyBUZalRTl9eFh/QP7yj5BAh1pByRX84lHdOHB+47/+M48mqke106
tt3mn0yoEeub11m/6V+jxQusQbFPJMDMapORDdEuAPqDDeuCFzJDyxIre7qItsuk
glO4KsA0VMeqL/5eiNXfxZ8EVicGkQtQrIlwBUft7mzqKM2NEbbxrVKnlW5djYu/
C5c7/+3R0Am9AkO73mW9WJLGJ4E0YZeRuz7Gxv3iPyyvxp3zwqVAVpZDzXBJ861A
cnKhKULIjOh7r7tk7iujGERUaK4ToWkmin3BFISqZOnOP2c+1EFMKXB0oQkoKgfC
sGENItBHd7NxiA==
-----END CERTIFICATE-----