Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
File:                     KeieDArUFRV01m8rML0dpKqd8Fs.mft (raw, json)
Hash identifier:          sWNS+nm7Xm/VohPjdAUnHILJNuCBxrlYVE0MryQYQfM=
Subject key identifier:   73:BD:10:2F:65:E5:62:EC:6B:07:EF:AC:BC:DD:94:4F:72:BC:1C:D7
Authority key identifier: 29:E8:9E:0C:0A:D4:15:15:74:D6:6F:2B:30:BD:1D:A4:AA:9D:F0:5B
Certificate issuer:       /CN=29e89e0c0ad4151574d66f2b30bd1da4aa9df05b
Certificate serial:       01988EEB64B5B94C3E4E8627EFDC48397CD0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
Manifest number:          12F1
Signing time:             Sat 09 Aug 2025 13:00:48 +0000
Manifest this update:     Sat 09 Aug 2025 13:00:48 +0000
Manifest next update:     Sun 10 Aug 2025 13:00:48 +0000
Files and hashes:         1: KeieDArUFRV01m8rML0dpKqd8Fs.crl (hash: yQKGJLdqWKQe41LKhakiZ6OUPjoc4/W+rGJ98TrKr4U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 13:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8e:eb:64:b5:b9:4c:3e:4e:86:27:ef:dc:48:39:7c:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=29e89e0c0ad4151574d66f2b30bd1da4aa9df05b
        Validity
            Not Before: Aug  9 13:00:48 2025 GMT
            Not After : Aug 10 13:00:48 2025 GMT
        Subject: CN=73bd102f65e562ec6b07efacbcdd944f72bc1cd7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:93:dc:a1:01:ce:7c:7e:72:aa:60:e3:94:50:
                    ef:9f:31:b6:56:56:96:e6:c7:35:86:53:af:27:5f:
                    cc:7e:a6:e4:26:ed:5d:f8:d8:86:42:19:25:db:1b:
                    f9:0f:71:eb:0e:4e:70:cc:0e:16:9f:55:7a:3f:1d:
                    cf:91:69:04:31:a1:9a:f7:ce:2c:63:b2:5d:7e:c8:
                    48:69:41:cc:3c:45:5d:d3:bc:ce:f4:55:ea:65:28:
                    1f:43:f8:b2:e8:79:11:c7:c6:e5:e7:ef:cb:bd:a0:
                    a3:8e:dc:e0:c3:2e:fe:44:fb:0d:3e:d3:f3:30:95:
                    95:f6:05:c8:7e:eb:fe:a1:34:03:dd:61:2d:24:09:
                    2e:d3:05:75:bb:f3:5b:ee:0b:da:75:e1:5a:9f:04:
                    4d:1d:c1:e8:6f:95:60:90:3e:7c:b5:79:9b:2c:fc:
                    47:93:f3:0b:dd:99:a1:52:00:85:b2:ee:2e:ec:c3:
                    4b:5a:c4:9d:d1:51:6e:f6:ba:00:2c:b1:92:63:43:
                    98:b8:e4:a9:e7:df:b3:1c:76:24:5d:51:10:63:4f:
                    62:2e:41:45:f8:cf:b5:4e:d6:3c:00:1e:03:6d:45:
                    bc:66:74:3b:9a:e3:05:4c:f4:45:fb:b9:69:ff:b3:
                    93:e1:90:f2:63:7b:79:e1:a4:38:ba:a9:03:7c:71:
                    53:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:BD:10:2F:65:E5:62:EC:6B:07:EF:AC:BC:DD:94:4F:72:BC:1C:D7
            X509v3 Authority Key Identifier:
                keyid:29:E8:9E:0C:0A:D4:15:15:74:D6:6F:2B:30:BD:1D:A4:AA:9D:F0:5B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:d4:17:8c:dc:ff:e8:2b:40:50:eb:e7:56:3c:29:2b:60:03:
         b9:93:9a:80:06:79:2e:8a:02:56:ff:d4:bd:b9:1e:c3:b0:17:
         a6:af:76:9c:4c:78:f9:97:0a:f7:fc:be:fd:72:24:88:8f:89:
         b5:35:8d:94:87:14:14:d2:73:3a:ae:c2:6a:c3:73:8f:64:0c:
         e5:d3:4a:67:56:14:34:af:b1:2b:f6:ea:c5:c1:17:19:60:ba:
         35:f0:d1:d7:ca:5f:e8:c7:67:1c:5c:cb:0a:70:a1:7a:f6:c1:
         a4:6d:ce:49:09:b1:60:c3:f5:80:a6:a4:40:13:83:bb:c2:c8:
         45:41:e6:36:ad:6e:68:6a:d7:b6:0b:ba:f3:fd:cd:30:4f:44:
         46:7f:7d:73:6e:72:ce:3b:df:2b:4a:a7:bc:7c:82:10:58:5c:
         b5:9a:b6:0c:3e:0c:81:0e:76:30:68:68:1f:e4:da:35:0e:c0:
         02:0a:fb:b2:50:f3:65:b4:61:62:e3:87:71:a5:8f:7f:8b:47:
         37:35:2c:8d:66:45:ef:c9:4b:a7:41:d3:09:33:54:bb:b5:7a:
         73:a1:f7:f6:a5:99:22:5a:9d:d2:d8:d3:c0:d2:72:6c:67:90:
         00:18:cd:b2:bd:ff:2f:2a:48:50:76:0e:2d:4b:30:f9:84:7e:
         f4:0e:6e:17
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiO62S1uUw+ToYn79xIOXzQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZTg5ZTBjMGFkNDE1MTU3NGQ2NmYyYjMwYmQxZGE0YWE5
ZGYwNWIwHhcNMjUwODA5MTMwMDQ4WhcNMjUwODEwMTMwMDQ4WjAzMTEwLwYDVQQD
Eyg3M2JkMTAyZjY1ZTU2MmVjNmIwN2VmYWNiY2RkOTQ0ZjcyYmMxY2Q3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp5PcoQHOfH5yqmDjlFDvnzG2VlaW
5sc1hlOvJ1/MfqbkJu1d+NiGQhkl2xv5D3HrDk5wzA4Wn1V6Px3PkWkEMaGa984s
Y7JdfshIaUHMPEVd07zO9FXqZSgfQ/iy6HkRx8bl5+/LvaCjjtzgwy7+RPsNPtPz
MJWV9gXIfuv+oTQD3WEtJAku0wV1u/Nb7gvadeFanwRNHcHob5VgkD58tXmbLPxH
k/ML3ZmhUgCFsu4u7MNLWsSd0VFu9roALLGSY0OYuOSp59+zHHYkXVEQY09iLkFF
+M+1TtY8AB4DbUW8ZnQ7muMFTPRF+7lp/7OT4ZDyY3t54aQ4uqkDfHFTPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHO9EC9l5WLsawfvrLzdlE9yvBzXMB8GA1UdIwQY
MBaAFCnongwK1BUVdNZvKzC9HaSqnfBbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2VpZURBclVGUlYwMW04ck1MMGRwS3FkOEZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9iODdjMmEtY2QwMy00NTM4LTlkYzQt
OTkxZmFlNWM5YjA3LzEvS2VpZURBclVGUlYwMW04ck1MMGRwS3FkOEZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS9iODdjMmEtY2QwMy00NTM4LTlkYzQtOTkxZmFlNWM5YjA3
LzEvS2VpZURBclVGUlYwMW04ck1MMGRwS3FkOEZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATNQXjNz/
6CtAUOvnVjwpK2ADuZOagAZ5LooCVv/Uvbkew7AXpq92nEx4+ZcK9/y+/XIkiI+J
tTWNlIcUFNJzOq7CasNzj2QM5dNKZ1YUNK+xK/bqxcEXGWC6NfDR18pf6MdnHFzL
CnChevbBpG3OSQmxYMP1gKakQBODu8LIRUHmNq1uaGrXtgu68/3NME9ERn99c25y
zjvfK0qnvHyCEFhctZq2DD4MgQ52MGhoH+TaNQ7AAgr7slDzZbRhYuOHcaWPf4tH
NzUsjWZF78lLp0HTCTNUu7V6c6H39qWZIlqd0tjTwNJybGeQABjNsr3/LypIUHYO
LUsw+YR+9A5uFw==
-----END CERTIFICATE-----
Generated at Sat Aug 9 22:37:04 2025 by rpki-client