Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.mft
File:                     V9wqO2671XpOSCmt0_KgKnbld4k.mft (raw, json)
Hash identifier:          uX9pLBQ/UDlGi5fZfIzqTGKItuizUS4W8CsTpUbbpME=
Subject key identifier:   05:40:AD:F5:D9:A9:DE:98:27:C3:29:D7:3A:BB:A6:11:E5:7B:E3:92
Authority key identifier: 57:DC:2A:3B:6E:BB:D5:7A:4E:48:29:AD:D3:F2:A0:2A:76:E5:77:89
Certificate issuer:       /CN=57dc2a3b6ebbd57a4e4829add3f2a02a76e57789
Certificate serial:       01988FFDF195E1B08FDD20651210814768AE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/V9wqO2671XpOSCmt0_KgKnbld4k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.mft
Manifest number:          031C
Signing time:             Sat 09 Aug 2025 18:00:40 +0000
Manifest this update:     Sat 09 Aug 2025 18:00:40 +0000
Manifest next update:     Sun 10 Aug 2025 18:00:40 +0000
Files and hashes:         1: V9wqO2671XpOSCmt0_KgKnbld4k.crl (hash: N2lAOAdMY9HHpwChHePJj3poMQqS3GhzhHqCr4Y67Ac=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/V9wqO2671XpOSCmt0_KgKnbld4k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 14:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8f:fd:f1:95:e1:b0:8f:dd:20:65:12:10:81:47:68:ae
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57dc2a3b6ebbd57a4e4829add3f2a02a76e57789
        Validity
            Not Before: Aug  9 18:00:40 2025 GMT
            Not After : Aug 10 18:00:40 2025 GMT
        Subject: CN=0540adf5d9a9de9827c329d73abba611e57be392
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:0b:18:2c:31:73:3b:9f:35:0e:e9:63:8f:0b:
                    06:72:8c:14:17:33:f4:ad:12:93:ec:4d:52:9a:88:
                    2b:bb:fe:c0:3a:28:26:3d:13:f3:08:f3:fc:20:6c:
                    83:79:dd:06:31:f5:77:37:03:e4:0b:95:e5:8e:24:
                    ee:23:e7:d2:3f:1b:47:86:06:1b:d3:2f:6b:42:b8:
                    c5:f0:e6:81:f2:5a:cf:30:55:4a:f6:84:e3:51:3b:
                    54:0e:29:55:a6:7e:e5:96:cc:0e:fa:cd:a5:a5:23:
                    c5:c8:67:d9:c4:24:b0:a7:a1:56:96:56:40:30:6e:
                    08:92:d4:ba:44:d0:37:2a:05:f1:7d:7b:48:79:ae:
                    8a:dc:8e:2f:ee:7e:5b:24:07:f2:77:46:61:60:a9:
                    ad:40:d2:f9:e5:38:e1:6c:07:86:73:51:3d:e1:b1:
                    84:51:10:23:ad:fc:3d:43:d8:98:c4:43:d9:ae:52:
                    73:f9:bc:ac:ca:65:f1:5f:04:8e:71:a6:c3:a8:e8:
                    6e:58:ef:b4:8b:99:47:1c:ed:80:94:a3:36:0d:f3:
                    cc:a3:49:2f:c4:60:19:d9:a0:51:f0:5e:5a:28:ca:
                    16:e9:a9:27:3b:d3:8f:d1:9a:19:c1:45:16:01:b1:
                    d4:f7:a9:11:4e:53:50:e8:97:48:94:58:c4:9f:fd:
                    df:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:40:AD:F5:D9:A9:DE:98:27:C3:29:D7:3A:BB:A6:11:E5:7B:E3:92
            X509v3 Authority Key Identifier:
                keyid:57:DC:2A:3B:6E:BB:D5:7A:4E:48:29:AD:D3:F2:A0:2A:76:E5:77:89

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V9wqO2671XpOSCmt0_KgKnbld4k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/654504-54e1-4502-ab22-40459d6934ae/1/V9wqO2671XpOSCmt0_KgKnbld4k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:14:d9:4b:38:bf:90:a0:5e:37:98:41:06:af:d2:bd:c4:6f:
         b6:7d:91:7e:fa:64:c1:08:36:2e:e0:a9:8c:2c:f2:80:eb:c5:
         98:d3:78:50:11:69:d1:2a:81:57:d5:10:da:c5:00:25:f7:e4:
         6c:d8:97:c9:b4:48:67:fc:71:b3:39:07:e1:1b:98:75:af:10:
         c6:d8:41:e0:cf:db:9e:15:c9:6b:dd:13:f3:97:b3:a6:7c:69:
         3b:25:95:58:d9:77:ef:3a:6f:18:45:78:ea:00:c4:56:aa:5b:
         95:72:d8:d8:6d:02:d4:c3:b6:90:5d:41:13:d7:be:16:a2:3f:
         b9:ee:d3:76:0e:82:d5:ce:f3:45:67:d5:97:4d:c9:10:a2:17:
         0e:f0:ac:62:31:dd:d3:a5:0b:eb:78:7e:b5:5a:9a:37:25:d4:
         d5:49:e6:1c:ef:8d:f1:02:21:dc:e3:0b:df:95:a3:b6:99:99:
         3b:0b:0f:5e:ac:87:11:b7:91:18:ab:90:1e:9d:47:a2:67:29:
         e1:01:80:0e:0b:ed:f4:0b:55:94:03:71:be:95:75:89:d3:8f:
         dd:ae:2c:92:a9:5e:eb:1f:90:05:db:a7:27:77:4b:d1:f9:1a:
         6e:3e:58:08:e9:b3:4f:fa:e7:f2:e0:3d:09:c8:06:cc:df:ea:
         a3:02:83:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiP/fGV4bCP3SBlEhCBR2iuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3ZGMyYTNiNmViYmQ1N2E0ZTQ4MjlhZGQzZjJhMDJhNzZl
NTc3ODkwHhcNMjUwODA5MTgwMDQwWhcNMjUwODEwMTgwMDQwWjAzMTEwLwYDVQQD
EygwNTQwYWRmNWQ5YTlkZTk4MjdjMzI5ZDczYWJiYTYxMWU1N2JlMzkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAygsYLDFzO581DuljjwsGcowUFzP0
rRKT7E1Smogru/7AOigmPRPzCPP8IGyDed0GMfV3NwPkC5XljiTuI+fSPxtHhgYb
0y9rQrjF8OaB8lrPMFVK9oTjUTtUDilVpn7llswO+s2lpSPFyGfZxCSwp6FWllZA
MG4IktS6RNA3KgXxfXtIea6K3I4v7n5bJAfyd0ZhYKmtQNL55TjhbAeGc1E94bGE
URAjrfw9Q9iYxEPZrlJz+bysymXxXwSOcabDqOhuWO+0i5lHHO2AlKM2DfPMo0kv
xGAZ2aBR8F5aKMoW6aknO9OP0ZoZwUUWAbHU96kRTlNQ6JdIlFjEn/3fyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAVArfXZqd6YJ8Mp1zq7phHle+OSMB8GA1UdIwQY
MBaAFFfcKjtuu9V6TkgprdPyoCp25XeJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjl3cU8yNjcxWHBPU0NtdDBfS2dLbmJsZDRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS82NTQ1MDQtNTRlMS00NTAyLWFiMjIt
NDA0NTlkNjkzNGFlLzEvVjl3cU8yNjcxWHBPU0NtdDBfS2dLbmJsZDRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS82NTQ1MDQtNTRlMS00NTAyLWFiMjItNDA0NTlkNjkzNGFl
LzEvVjl3cU8yNjcxWHBPU0NtdDBfS2dLbmJsZDRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeBTZSzi/
kKBeN5hBBq/SvcRvtn2RfvpkwQg2LuCpjCzygOvFmNN4UBFp0SqBV9UQ2sUAJffk
bNiXybRIZ/xxszkH4RuYda8QxthB4M/bnhXJa90T85ezpnxpOyWVWNl37zpvGEV4
6gDEVqpblXLY2G0C1MO2kF1BE9e+FqI/ue7Tdg6C1c7zRWfVl03JEKIXDvCsYjHd
06UL63h+tVqaNyXU1UnmHO+N8QIh3OML35WjtpmZOwsPXqyHEbeRGKuQHp1Homcp
4QGADgvt9AtVlANxvpV1idOP3a4skqle6x+QBdunJ3dL0fkabj5YCOmzT/rn8uA9
CcgGzN/qowKDcw==
-----END CERTIFICATE-----