Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
File:                     kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft (raw, json)
Hash identifier:          cIKLBq34YR2GCRCEkDyPVf1B+vSH+NzzkstQStekpzQ=
Subject key identifier:   BD:CD:C2:2D:19:FD:DB:47:F8:B7:D3:0A:64:44:7E:0D:8D:F9:C5:7E
Authority key identifier: 91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
Certificate issuer:       /CN=91d338370e10627a4cd631e3fde186e194898c81
Certificate serial:       019873E2A1CD79E081CD219B88FFC422F1A6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
Manifest number:          0C02
Signing time:             Mon 04 Aug 2025 07:01:28 +0000
Manifest this update:     Mon 04 Aug 2025 07:01:28 +0000
Manifest next update:     Tue 05 Aug 2025 07:01:28 +0000
Files and hashes:         1: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl (hash: Ld5OkvHNNYzU3JWLxdmMQ1Nj7YNOO3QV6Ygr14/5Nig=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 07:01:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:73:e2:a1:cd:79:e0:81:cd:21:9b:88:ff:c4:22:f1:a6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=91d338370e10627a4cd631e3fde186e194898c81
        Validity
            Not Before: Aug  4 07:01:28 2025 GMT
            Not After : Aug  5 07:01:28 2025 GMT
        Subject: CN=bdcdc22d19fddb47f8b7d30a64447e0d8df9c57e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:cf:8c:a3:e1:b5:60:d2:ee:07:1a:ce:a7:92:
                    c4:24:80:d0:4d:40:8d:8c:a4:d0:f3:ed:0a:d1:18:
                    2e:66:98:f4:9e:27:fa:9e:50:95:5c:86:b7:c7:7e:
                    a1:15:06:73:ff:e8:0f:8a:1c:a3:7c:2c:58:6a:82:
                    38:93:66:ec:59:75:b2:c8:01:33:cb:d5:c4:e5:27:
                    25:d8:0f:64:45:99:40:d9:de:ae:50:a5:02:7f:f7:
                    84:9e:0a:0e:b1:cf:5a:ca:5b:ac:8f:b7:06:81:0a:
                    a1:ac:ed:8b:96:6c:12:00:89:04:da:ed:ba:35:2e:
                    7f:f2:4f:0d:f8:2e:84:39:98:85:5c:d9:d3:59:b9:
                    ef:ca:3e:75:c9:14:6d:6e:4f:d8:4d:18:bb:c8:b0:
                    c0:3a:93:0f:35:52:8e:4a:11:77:af:ce:eb:df:19:
                    9d:fd:32:76:fe:c8:b5:e8:cc:82:6b:e7:97:51:be:
                    ef:01:36:b5:b5:d3:b6:3e:19:46:62:0a:4e:89:77:
                    82:a8:8a:de:65:e5:7a:81:9d:18:27:8d:60:97:fd:
                    9d:11:0f:9b:e8:4b:10:ab:b7:9c:fb:5c:4b:49:e0:
                    45:80:a9:6d:88:bb:64:48:d7:d3:e1:bf:42:58:52:
                    70:6d:c8:da:f9:08:3f:8c:b9:cc:12:21:e6:e4:90:
                    99:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:CD:C2:2D:19:FD:DB:47:F8:B7:D3:0A:64:44:7E:0D:8D:F9:C5:7E
            X509v3 Authority Key Identifier:
                keyid:91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:75:cd:24:76:5a:65:25:91:4f:a5:38:d6:cd:b5:19:5b:8d:
         a3:fa:54:9c:56:68:2e:9e:ec:3d:ce:91:6d:1a:85:9e:9b:10:
         6d:22:0a:2e:98:db:07:7f:19:13:47:16:7b:a3:d5:f0:b9:97:
         2f:4f:b7:39:e7:34:86:47:53:65:1b:d3:e0:cf:92:0d:c1:ba:
         57:02:88:2e:38:3f:e2:8b:f4:52:69:00:7a:9a:83:8b:d1:14:
         93:2c:a0:d8:02:00:e3:3b:52:c5:35:57:62:06:77:e6:8f:0a:
         75:11:5f:fd:ff:82:93:a1:7c:2b:70:53:af:f6:ca:ce:35:82:
         8f:2c:86:6f:f4:05:68:73:6d:37:18:c8:8d:13:a6:c9:5e:d1:
         58:87:c1:86:17:bf:b0:3a:ed:2c:2b:12:6a:93:fd:8d:a1:2e:
         a7:4c:6d:a1:97:c2:c8:2f:ed:f2:8e:37:0e:45:58:5a:45:db:
         ce:4c:fd:42:5c:eb:5f:df:26:07:a3:a5:de:f8:03:49:4c:3e:
         34:a6:45:ca:50:75:07:0d:b4:16:f9:d9:88:98:c1:a4:ea:18:
         8a:db:04:70:eb:5d:d5:6d:2b:c1:47:82:1f:43:57:fc:26:7e:
         18:48:9a:65:46:8d:c2:4e:05:d3:42:74:c7:25:df:3b:eb:ca:
         c4:8b:84:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhz4qHNeeCBzSGbiP/EIvGmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxZDMzODM3MGUxMDYyN2E0Y2Q2MzFlM2ZkZTE4NmUxOTQ4
OThjODEwHhcNMjUwODA0MDcwMTI4WhcNMjUwODA1MDcwMTI4WjAzMTEwLwYDVQQD
EyhiZGNkYzIyZDE5ZmRkYjQ3ZjhiN2QzMGE2NDQ0N2UwZDhkZjljNTdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoc+Mo+G1YNLuBxrOp5LEJIDQTUCN
jKTQ8+0K0RguZpj0nif6nlCVXIa3x36hFQZz/+gPihyjfCxYaoI4k2bsWXWyyAEz
y9XE5Scl2A9kRZlA2d6uUKUCf/eEngoOsc9aylusj7cGgQqhrO2LlmwSAIkE2u26
NS5/8k8N+C6EOZiFXNnTWbnvyj51yRRtbk/YTRi7yLDAOpMPNVKOShF3r87r3xmd
/TJ2/si16MyCa+eXUb7vATa1tdO2PhlGYgpOiXeCqIreZeV6gZ0YJ41gl/2dEQ+b
6EsQq7ec+1xLSeBFgKltiLtkSNfT4b9CWFJwbcja+Qg/jLnMEiHm5JCZ+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL3Nwi0Z/dtH+LfTCmREfg2N+cV+MB8GA1UdIwQY
MBaAFJHTODcOEGJ6TNYx4/3hhuGUiYyBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2RNNE53NFFZbnBNMWpIal9lR0c0WlNKaklFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni85OTBmZGEtNTkwNS00ZTQ5LWE2MzAt
MTUzNTdjZDVlY2U0LzEva2RNNE53NFFZbnBNMWpIal9lR0c0WlNKaklFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni85OTBmZGEtNTkwNS00ZTQ5LWE2MzAtMTUzNTdjZDVlY2U0
LzEva2RNNE53NFFZbnBNMWpIal9lR0c0WlNKaklFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMHXNJHZa
ZSWRT6U41s21GVuNo/pUnFZoLp7sPc6RbRqFnpsQbSIKLpjbB38ZE0cWe6PV8LmX
L0+3Oec0hkdTZRvT4M+SDcG6VwKILjg/4ov0UmkAepqDi9EUkyyg2AIA4ztSxTVX
YgZ35o8KdRFf/f+Ck6F8K3BTr/bKzjWCjyyGb/QFaHNtNxjIjROmyV7RWIfBhhe/
sDrtLCsSapP9jaEup0xtoZfCyC/t8o43DkVYWkXbzkz9QlzrX98mB6Ol3vgDSUw+
NKZFylB1Bw20FvnZiJjBpOoYitsEcOtd1W0rwUeCH0NX/CZ+GEiaZUaNwk4F00J0
xyXfO+vKxIuEjA==
-----END CERTIFICATE-----