Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
File:                     sgzLpAbArQxb4AB22ZgLNIhWmoo.mft (raw, json)
Hash identifier:          kZhxzXCq6ewSvG5jvZq/Cbvxodbn1cata6xoMG+bnOQ=
Subject key identifier:   0B:F2:89:B5:45:14:91:A0:32:70:83:A7:82:98:62:9B:C2:B6:F2:78
Authority key identifier: B2:0C:CB:A4:06:C0:AD:0C:5B:E0:00:76:D9:98:0B:34:88:56:9A:8A
Certificate issuer:       /CN=b20ccba406c0ad0c5be00076d9980b3488569a8a
Certificate serial:       019896A553B913D5095EC4D463D55C383246
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
Manifest number:          110E
Signing time:             Mon 11 Aug 2025 01:01:13 +0000
Manifest this update:     Mon 11 Aug 2025 01:01:13 +0000
Manifest next update:     Tue 12 Aug 2025 01:01:13 +0000
Files and hashes:         1: sgzLpAbArQxb4AB22ZgLNIhWmoo.crl (hash: VK61o/Bb8sEiXbXAgYSBB5BKb07QxW5i2hhSn9gecGQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 12 Aug 2025 01:01:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:96:a5:53:b9:13:d5:09:5e:c4:d4:63:d5:5c:38:32:46
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b20ccba406c0ad0c5be00076d9980b3488569a8a
        Validity
            Not Before: Aug 11 01:01:13 2025 GMT
            Not After : Aug 12 01:01:13 2025 GMT
        Subject: CN=0bf289b5451491a0327083a78298629bc2b6f278
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:c4:2c:38:6e:35:ca:95:16:de:6a:32:f3:61:
                    18:80:ec:f5:5d:09:04:dc:1c:bb:6b:0f:36:47:7a:
                    4a:00:22:d5:26:c1:5c:48:1b:57:45:f0:95:ab:ef:
                    12:07:2b:cb:fb:13:7c:47:24:f8:f1:97:7f:c4:53:
                    51:02:80:4b:5e:be:d0:ad:a7:3b:15:be:3f:1a:d9:
                    4b:7c:ed:4a:49:13:77:6b:b1:fe:d1:d7:1d:e4:cd:
                    02:00:e1:31:e6:b5:4e:44:ca:66:45:44:bd:e1:af:
                    3a:99:72:91:7b:19:05:a9:18:10:7d:29:92:ca:86:
                    b5:95:fa:13:2f:a3:e5:92:fc:ed:ce:5c:ee:e5:8a:
                    81:f0:8d:77:42:eb:7b:1f:1f:f7:8c:7e:b3:9c:f4:
                    55:f8:eb:5b:71:d3:1c:ff:07:d2:c8:a9:61:9e:33:
                    b9:af:9b:7e:59:9e:d9:43:0a:f3:c6:1b:7e:42:9a:
                    ea:31:35:b0:8f:70:8f:44:20:9b:e9:c4:02:9c:24:
                    f3:c7:7f:39:bb:58:4c:83:73:4e:57:b0:11:7d:c8:
                    87:e1:60:05:db:07:db:36:bc:d3:06:ed:5e:68:34:
                    fe:ff:c2:ac:e9:3c:48:82:b4:f6:1e:79:51:b5:66:
                    b5:28:aa:1a:59:41:ce:32:2b:19:37:60:a1:a2:69:
                    38:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:F2:89:B5:45:14:91:A0:32:70:83:A7:82:98:62:9B:C2:B6:F2:78
            X509v3 Authority Key Identifier:
                keyid:B2:0C:CB:A4:06:C0:AD:0C:5B:E0:00:76:D9:98:0B:34:88:56:9A:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:e3:0c:dd:4a:d8:67:00:eb:db:a0:1c:21:74:fb:48:1a:ff:
         3c:21:5e:d3:bd:25:c1:d9:eb:35:d3:e1:4a:1b:f4:b2:b8:66:
         2b:91:71:aa:b5:82:8d:84:1c:f7:b8:f0:d1:62:88:6f:71:33:
         36:26:54:b8:10:96:26:d1:5a:20:d3:6a:c2:8c:15:14:39:f1:
         0b:3c:d6:47:31:da:e9:10:c7:b6:0f:7c:06:09:2c:c6:14:f2:
         c4:8b:d3:44:c5:dc:f0:ab:5f:97:b4:5d:b9:49:e2:a0:d9:c6:
         2d:c3:ec:ae:75:12:9d:86:42:58:aa:1b:82:bf:45:82:a1:4c:
         36:91:4f:92:3a:6f:f1:4c:6e:63:58:a6:71:e9:96:ac:ce:68:
         a5:6b:ce:0f:aa:d7:a1:fe:51:c1:91:75:0c:9a:fa:9d:9b:8f:
         ef:ab:08:34:5c:23:d0:ae:a9:0a:fb:6d:1c:3a:37:94:0b:15:
         9d:68:3d:00:49:a7:fb:55:d5:50:0f:6b:81:2b:63:24:cc:92:
         ab:8e:a9:cd:60:7b:81:5d:df:90:e2:42:4a:f8:b7:91:c2:7a:
         46:0b:3c:d7:b6:25:c2:f6:35:f9:3d:b3:1b:5a:6b:77:31:e5:
         6e:e5:3d:e9:4a:c8:e8:ec:36:77:83:c9:36:86:9c:86:36:58:
         27:a6:83:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiWpVO5E9UJXsTUY9VcODJGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMGNjYmE0MDZjMGFkMGM1YmUwMDA3NmQ5OTgwYjM0ODg1
NjlhOGEwHhcNMjUwODExMDEwMTEzWhcNMjUwODEyMDEwMTEzWjAzMTEwLwYDVQQD
EygwYmYyODliNTQ1MTQ5MWEwMzI3MDgzYTc4Mjk4NjI5YmMyYjZmMjc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8QsOG41ypUW3moy82EYgOz1XQkE
3By7aw82R3pKACLVJsFcSBtXRfCVq+8SByvL+xN8RyT48Zd/xFNRAoBLXr7Qrac7
Fb4/GtlLfO1KSRN3a7H+0dcd5M0CAOEx5rVORMpmRUS94a86mXKRexkFqRgQfSmS
yoa1lfoTL6Plkvztzlzu5YqB8I13Qut7Hx/3jH6znPRV+OtbcdMc/wfSyKlhnjO5
r5t+WZ7ZQwrzxht+QprqMTWwj3CPRCCb6cQCnCTzx385u1hMg3NOV7ARfciH4WAF
2wfbNrzTBu1eaDT+/8Ks6TxIgrT2HnlRtWa1KKoaWUHOMisZN2Chomk47wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAvyibVFFJGgMnCDp4KYYpvCtvJ4MB8GA1UdIwQY
MBaAFLIMy6QGwK0MW+AAdtmYCzSIVpqKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2d6THBBYkFyUXhiNEFCMjJaZ0xOSWhXbW9vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83NDNhNTAtZDdmNC00MmQxLWEwOWQt
N2NhOTNlY2IyMjM0LzEvc2d6THBBYkFyUXhiNEFCMjJaZ0xOSWhXbW9vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS83NDNhNTAtZDdmNC00MmQxLWEwOWQtN2NhOTNlY2IyMjM0
LzEvc2d6THBBYkFyUXhiNEFCMjJaZ0xOSWhXbW9vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEuMM3UrY
ZwDr26AcIXT7SBr/PCFe070lwdnrNdPhShv0srhmK5FxqrWCjYQc97jw0WKIb3Ez
NiZUuBCWJtFaINNqwowVFDnxCzzWRzHa6RDHtg98BgksxhTyxIvTRMXc8Ktfl7Rd
uUnioNnGLcPsrnUSnYZCWKobgr9FgqFMNpFPkjpv8UxuY1imcemWrM5opWvOD6rX
of5RwZF1DJr6nZuP76sINFwj0K6pCvttHDo3lAsVnWg9AEmn+1XVUA9rgStjJMyS
q46pzWB7gV3fkOJCSvi3kcJ6Rgs817YlwvY1+T2zG1prdzHlbuU96UrI6Ow2d4PJ
NoachjZYJ6aDdg==
-----END CERTIFICATE-----