Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/a88dca-290f-4656-afc5-339b4c36bfea/1/F1yfOANJZKGpKvgMdo-D0IVAeT4.mft
File:                     F1yfOANJZKGpKvgMdo-D0IVAeT4.mft (raw, json)
Hash identifier:          gMBA9LJIkSRZb1jqUiczKG4WeN6Djh6CP/Als8Mtal4=
Subject key identifier:   F2:74:99:F3:BD:56:AB:B3:7C:08:78:B5:C2:27:61:56:A4:19:38:56
Authority key identifier: 17:5C:9F:38:03:49:64:A1:A9:2A:F8:0C:76:8F:83:D0:85:40:79:3E
Certificate issuer:       /CN=175c9f38034964a1a92af80c768f83d08540793e
Certificate serial:       01988D6B8D93313A33405EE35BC1B9E3DC8E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/F1yfOANJZKGpKvgMdo-D0IVAeT4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/81/a88dca-290f-4656-afc5-339b4c36bfea/1/F1yfOANJZKGpKvgMdo-D0IVAeT4.mft
Manifest number:          15B3
Signing time:             Sat 09 Aug 2025 06:01:32 +0000
Manifest this update:     Sat 09 Aug 2025 06:01:32 +0000
Manifest next update:     Sun 10 Aug 2025 06:01:32 +0000
Files and hashes:         1: F1yfOANJZKGpKvgMdo-D0IVAeT4.crl (hash: EbxH1qpbF0NhSkRAzgMOc3ApCuGE6BBcYiONFZjFLvA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/81/a88dca-290f-4656-afc5-339b4c36bfea/1/F1yfOANJZKGpKvgMdo-D0IVAeT4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/81/a88dca-290f-4656-afc5-339b4c36bfea/1/F1yfOANJZKGpKvgMdo-D0IVAeT4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/F1yfOANJZKGpKvgMdo-D0IVAeT4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 05:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8d:6b:8d:93:31:3a:33:40:5e:e3:5b:c1:b9:e3:dc:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=175c9f38034964a1a92af80c768f83d08540793e
        Validity
            Not Before: Aug  9 06:01:32 2025 GMT
            Not After : Aug 10 06:01:32 2025 GMT
        Subject: CN=f27499f3bd56abb37c0878b5c2276156a4193856
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:55:49:2e:09:4c:61:16:e1:0b:d6:7d:6a:5a:
                    9e:d5:7d:e2:8b:d2:e5:2b:b1:45:7e:8d:43:d6:90:
                    10:fc:5c:8b:5a:e6:00:4a:fe:45:3b:29:58:a2:5c:
                    d3:5d:ac:a1:d3:20:c9:90:d9:88:13:d4:67:86:3e:
                    b6:87:0a:ea:12:88:0d:83:5c:66:53:57:a8:80:39:
                    d8:0b:a7:5d:40:c1:27:16:e3:99:30:a8:a5:fe:ec:
                    fe:4f:df:0a:bd:47:15:73:6f:ad:96:4e:cd:9b:69:
                    b9:2c:55:bc:58:da:4c:44:c8:08:27:4d:32:ef:80:
                    16:89:96:3a:48:d8:53:8d:7a:74:7a:ff:82:11:b0:
                    a3:00:a6:dd:f7:54:8e:26:f2:df:ea:07:38:1a:b1:
                    26:be:62:68:85:7d:18:4b:eb:10:d4:31:dc:37:94:
                    1e:2d:eb:70:03:69:90:e9:78:fc:9a:29:61:0a:fd:
                    e2:30:eb:a3:69:e9:74:bc:c4:52:74:98:36:46:49:
                    cf:25:fd:81:ff:72:f8:64:f3:1b:44:1a:4a:0d:68:
                    ca:f9:d4:de:d1:62:b6:15:a5:3f:cd:c1:f2:5a:ba:
                    38:8c:6a:5d:f0:88:1c:8a:83:bd:bf:2e:ba:04:b8:
                    33:b4:1a:67:9a:8e:f5:13:c8:f9:d1:14:03:57:64:
                    f7:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:74:99:F3:BD:56:AB:B3:7C:08:78:B5:C2:27:61:56:A4:19:38:56
            X509v3 Authority Key Identifier:
                keyid:17:5C:9F:38:03:49:64:A1:A9:2A:F8:0C:76:8F:83:D0:85:40:79:3E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1yfOANJZKGpKvgMdo-D0IVAeT4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a88dca-290f-4656-afc5-339b4c36bfea/1/F1yfOANJZKGpKvgMdo-D0IVAeT4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/81/a88dca-290f-4656-afc5-339b4c36bfea/1/F1yfOANJZKGpKvgMdo-D0IVAeT4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:e3:ab:cf:22:53:21:a2:85:8c:89:71:b3:f0:25:0c:84:e2:
         e6:e9:0f:1e:a4:fb:7b:84:41:5a:a6:dd:18:63:14:ed:e7:cc:
         ce:4d:c8:8d:e9:d0:6f:a6:70:52:23:c2:b6:64:d4:06:bb:bf:
         ca:bc:0a:ff:24:78:32:b6:0a:42:ef:2b:fe:d7:1b:b0:60:29:
         08:37:de:f1:0a:a0:de:f1:82:e3:e2:02:a7:c6:fb:28:74:a5:
         36:cc:9e:8f:d1:1f:18:50:fa:97:4c:73:e8:7a:6e:ba:67:78:
         75:ae:a6:ed:11:04:fc:c1:26:1d:12:ea:c0:fc:b7:56:fe:7e:
         6c:66:36:90:ac:d9:47:ec:ba:3d:e9:de:a6:ac:b9:d4:02:c8:
         9b:ae:c3:6b:88:50:f9:7e:cb:d8:ca:b9:ae:c7:42:da:c1:04:
         86:e7:96:64:1d:1e:e2:9e:97:f2:e4:d7:ca:be:1b:b9:9a:a8:
         70:80:f9:25:bb:5c:35:c6:cb:51:09:a2:bb:d2:45:38:ac:cd:
         ac:b4:9e:b9:58:74:04:63:d0:26:f7:6c:c3:02:2d:58:21:ca:
         03:2d:db:97:d6:43:3a:b8:70:fb:8d:97:ec:7d:37:24:cf:cb:
         f0:8a:e4:43:56:04:6b:bb:f4:be:ac:30:3f:8d:6e:94:59:d4:
         d8:aa:64:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiNa42TMTozQF7jW8G549yOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3NWM5ZjM4MDM0OTY0YTFhOTJhZjgwYzc2OGY4M2QwODU0
MDc5M2UwHhcNMjUwODA5MDYwMTMyWhcNMjUwODEwMDYwMTMyWjAzMTEwLwYDVQQD
EyhmMjc0OTlmM2JkNTZhYmIzN2MwODc4YjVjMjI3NjE1NmE0MTkzODU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzVVJLglMYRbhC9Z9alqe1X3ii9Ll
K7FFfo1D1pAQ/FyLWuYASv5FOylYolzTXayh0yDJkNmIE9Rnhj62hwrqEogNg1xm
U1eogDnYC6ddQMEnFuOZMKil/uz+T98KvUcVc2+tlk7Nm2m5LFW8WNpMRMgIJ00y
74AWiZY6SNhTjXp0ev+CEbCjAKbd91SOJvLf6gc4GrEmvmJohX0YS+sQ1DHcN5Qe
LetwA2mQ6Xj8milhCv3iMOujael0vMRSdJg2RknPJf2B/3L4ZPMbRBpKDWjK+dTe
0WK2FaU/zcHyWro4jGpd8IgcioO9vy66BLgztBpnmo71E8j50RQDV2T3PQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPJ0mfO9VquzfAh4tcInYVakGThWMB8GA1UdIwQY
MBaAFBdcnzgDSWShqSr4DHaPg9CFQHk+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjF5Zk9BTkpaS0dwS3ZnTWRvLUQwSVZBZVQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9hODhkY2EtMjkwZi00NjU2LWFmYzUt
MzM5YjRjMzZiZmVhLzEvRjF5Zk9BTkpaS0dwS3ZnTWRvLUQwSVZBZVQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS9hODhkY2EtMjkwZi00NjU2LWFmYzUtMzM5YjRjMzZiZmVh
LzEvRjF5Zk9BTkpaS0dwS3ZnTWRvLUQwSVZBZVQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAseOrzyJT
IaKFjIlxs/AlDITi5ukPHqT7e4RBWqbdGGMU7efMzk3IjenQb6ZwUiPCtmTUBru/
yrwK/yR4MrYKQu8r/tcbsGApCDfe8Qqg3vGC4+ICp8b7KHSlNsyej9EfGFD6l0xz
6Hpuumd4da6m7REE/MEmHRLqwPy3Vv5+bGY2kKzZR+y6Penepqy51ALIm67Da4hQ
+X7L2Mq5rsdC2sEEhueWZB0e4p6X8uTXyr4buZqocID5JbtcNcbLUQmiu9JFOKzN
rLSeuVh0BGPQJvdswwItWCHKAy3bl9ZDOrhw+42X7H03JM/L8IrkQ1YEa7v0vqww
P41ulFnU2Kpk2g==
-----END CERTIFICATE-----