Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft
File:                     rrlJQmajhxkETYKaSgqPF6QHBOg.mft (raw, json)
Hash identifier:          BYw5QglFF+DjbDYa2SzFIaYhRr2UGYxXP1IRobIqLO0=
Subject key identifier:   B7:20:28:64:CB:E1:9D:16:9B:C9:7C:0E:E8:48:E7:FA:D1:3F:A8:5F
Authority key identifier: AE:B9:49:42:66:A3:87:19:04:4D:82:9A:4A:0A:8F:17:A4:07:04:E8
Certificate issuer:       /CN=aeb9494266a38719044d829a4a0a8f17a40704e8
Certificate serial:       01989E5F6CE74DDC274A38DAD60E34905D4C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rrlJQmajhxkETYKaSgqPF6QHBOg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft
Manifest number:          162A
Signing time:             Tue 12 Aug 2025 13:01:50 +0000
Manifest this update:     Tue 12 Aug 2025 13:01:50 +0000
Manifest next update:     Wed 13 Aug 2025 13:01:50 +0000
Files and hashes:         1: rrlJQmajhxkETYKaSgqPF6QHBOg.crl (hash: wVu35SR3a7dMfbjfvknxLImLNCyziNPJjL78krfdIfk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rrlJQmajhxkETYKaSgqPF6QHBOg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 13:01:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:9e:5f:6c:e7:4d:dc:27:4a:38:da:d6:0e:34:90:5d:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aeb9494266a38719044d829a4a0a8f17a40704e8
        Validity
            Not Before: Aug 12 13:01:50 2025 GMT
            Not After : Aug 13 13:01:50 2025 GMT
        Subject: CN=b7202864cbe19d169bc97c0ee848e7fad13fa85f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:82:61:37:b5:09:fa:3b:d6:bd:73:a3:6e:af:
                    37:59:d4:c2:1a:58:5e:29:0b:05:29:e3:f6:41:ad:
                    1b:5f:11:5a:b8:56:8d:06:39:03:da:4f:b0:f4:c9:
                    a1:13:52:91:50:bd:6b:f4:a5:fd:b9:7a:07:3e:b6:
                    88:55:73:f6:19:f7:89:cc:58:77:2c:ec:51:b7:6c:
                    0e:8f:cd:d6:ce:cb:80:e1:2c:d0:df:71:e3:05:36:
                    9b:a8:44:ac:65:60:4e:ff:f6:99:d0:bd:77:1f:0e:
                    57:5c:51:47:e0:6c:33:79:fe:f4:6c:25:e5:44:17:
                    92:83:bb:08:93:0e:40:f8:a9:44:2c:33:8d:a7:79:
                    37:16:3c:56:46:11:df:4f:9c:30:f5:f9:79:43:a3:
                    48:1e:af:68:67:e9:7a:c9:1f:2f:dd:b6:dc:bb:11:
                    9a:ba:24:10:b0:4d:26:53:04:d9:fd:d1:44:e0:ce:
                    45:a5:77:b8:2d:4c:5f:90:11:04:4a:ed:a4:82:1f:
                    57:a4:92:87:ed:c7:69:d3:21:9c:3f:1a:a8:0f:3f:
                    51:27:55:63:8a:02:92:6b:ba:cb:8e:62:05:5a:05:
                    ea:0c:b0:b7:bf:1a:c8:a3:26:9b:da:21:4c:77:c4:
                    00:cb:81:69:26:98:77:e4:c0:c5:c0:43:a2:20:5c:
                    7a:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:20:28:64:CB:E1:9D:16:9B:C9:7C:0E:E8:48:E7:FA:D1:3F:A8:5F
            X509v3 Authority Key Identifier:
                keyid:AE:B9:49:42:66:A3:87:19:04:4D:82:9A:4A:0A:8F:17:A4:07:04:E8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rrlJQmajhxkETYKaSgqPF6QHBOg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/e7adab-8055-4785-8df5-2a7b58bdf945/1/rrlJQmajhxkETYKaSgqPF6QHBOg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         92:4d:7a:38:27:d2:ca:f3:24:cf:d9:59:7e:f0:33:4e:bd:f8:
         9e:15:7d:a6:88:60:c6:58:7d:b8:8f:b5:0b:99:a3:e5:21:4e:
         f4:fc:15:51:d5:08:45:e3:13:7f:84:fe:8b:48:87:6b:fc:77:
         86:5b:2b:58:8e:33:16:da:0d:2f:bf:30:1a:1c:b4:e1:72:94:
         8c:a9:2c:66:2b:bd:ae:b4:d3:8a:86:fa:f1:b2:94:5d:58:a1:
         2e:1a:d7:b6:1c:47:eb:a7:be:2c:68:8c:48:05:ba:80:11:41:
         7b:e6:4d:ce:0d:e3:69:f8:29:98:08:59:c7:77:3f:56:5d:6c:
         cd:72:21:83:c9:9e:03:fd:be:bc:3d:84:80:97:00:d1:9c:36:
         d0:8e:ed:58:eb:af:c9:99:b5:43:57:f3:66:b9:9a:5a:be:ce:
         18:3f:d4:90:0a:68:b9:b8:47:ae:af:1d:3f:6f:9b:96:3e:04:
         f4:88:0c:12:a3:64:60:a4:be:11:85:f5:9a:a3:ab:41:98:5a:
         9a:9f:e3:72:01:bc:6e:25:11:cc:c3:b7:ba:25:b1:64:48:41:
         3f:2e:1b:49:fe:fb:02:65:5d:d8:8d:a4:f0:5a:55:7c:0f:82:
         9b:24:b6:99:54:4d:88:02:bc:b6:f0:37:ed:f0:97:2f:85:98:
         7c:e8:2b:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZieX2znTdwnSjja1g40kF1MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlYjk0OTQyNjZhMzg3MTkwNDRkODI5YTRhMGE4ZjE3YTQw
NzA0ZTgwHhcNMjUwODEyMTMwMTUwWhcNMjUwODEzMTMwMTUwWjAzMTEwLwYDVQQD
EyhiNzIwMjg2NGNiZTE5ZDE2OWJjOTdjMGVlODQ4ZTdmYWQxM2ZhODVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyYJhN7UJ+jvWvXOjbq83WdTCGlhe
KQsFKeP2Qa0bXxFauFaNBjkD2k+w9MmhE1KRUL1r9KX9uXoHPraIVXP2GfeJzFh3
LOxRt2wOj83WzsuA4SzQ33HjBTabqESsZWBO//aZ0L13Hw5XXFFH4Gwzef70bCXl
RBeSg7sIkw5A+KlELDONp3k3FjxWRhHfT5ww9fl5Q6NIHq9oZ+l6yR8v3bbcuxGa
uiQQsE0mUwTZ/dFE4M5FpXe4LUxfkBEESu2kgh9XpJKH7cdp0yGcPxqoDz9RJ1Vj
igKSa7rLjmIFWgXqDLC3vxrIoyab2iFMd8QAy4FpJph35MDFwEOiIFx6oQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLcgKGTL4Z0Wm8l8DuhI5/rRP6hfMB8GA1UdIwQY
MBaAFK65SUJmo4cZBE2CmkoKjxekBwToMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnJsSlFtYWpoeGtFVFlLYVNncVBGNlFIQk9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9lN2FkYWItODA1NS00Nzg1LThkZjUt
MmE3YjU4YmRmOTQ1LzEvcnJsSlFtYWpoeGtFVFlLYVNncVBGNlFIQk9nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9lN2FkYWItODA1NS00Nzg1LThkZjUtMmE3YjU4YmRmOTQ1
LzEvcnJsSlFtYWpoeGtFVFlLYVNncVBGNlFIQk9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkk16OCfS
yvMkz9lZfvAzTr34nhV9pohgxlh9uI+1C5mj5SFO9PwVUdUIReMTf4T+i0iHa/x3
hlsrWI4zFtoNL78wGhy04XKUjKksZiu9rrTTiob68bKUXVihLhrXthxH66e+LGiM
SAW6gBFBe+ZNzg3jafgpmAhZx3c/Vl1szXIhg8meA/2+vD2EgJcA0Zw20I7tWOuv
yZm1Q1fzZrmaWr7OGD/UkApoubhHrq8dP2+blj4E9IgMEqNkYKS+EYX1mqOrQZha
mp/jcgG8biURzMO3uiWxZEhBPy4bSf77AmVd2I2k8FpVfA+CmyS2mVRNiAK8tvA3
7fCXL4WYfOgrBQ==
-----END CERTIFICATE-----