Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
File:                     tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft (raw, json)
Hash identifier:          do66hcLm8nIS1wMm0pj9Pnm+/HNaHgbk3OyY9FKfBWs=
Subject key identifier:   2D:4A:AC:BB:E9:BC:D5:5E:55:18:E9:15:6E:90:23:AD:6B:05:0B:87
Authority key identifier: B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6
Certificate issuer:       /CN=b69aaef1cea19f2f926f570961545cfe4ed69af6
Certificate serial:       019892C8276BA069F2CAD8D6D72BC7D255C3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
Manifest number:          05C6
Signing time:             Sun 10 Aug 2025 07:00:47 +0000
Manifest this update:     Sun 10 Aug 2025 07:00:47 +0000
Manifest next update:     Mon 11 Aug 2025 07:00:47 +0000
Files and hashes:         1: tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl (hash: tRUK2euEgXLky2oBdlOWpTYNVM0FnNoHjqUN/B7Z2Ag=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 07:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:92:c8:27:6b:a0:69:f2:ca:d8:d6:d7:2b:c7:d2:55:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b69aaef1cea19f2f926f570961545cfe4ed69af6
        Validity
            Not Before: Aug 10 07:00:47 2025 GMT
            Not After : Aug 11 07:00:47 2025 GMT
        Subject: CN=2d4aacbbe9bcd55e5518e9156e9023ad6b050b87
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:84:ee:60:2a:89:3b:27:a0:85:05:9a:3b:12:
                    5f:9d:68:ab:de:a5:6e:7b:cc:40:d9:c4:bc:d3:98:
                    b1:fc:de:54:5e:e9:81:e8:b9:4f:0d:6a:52:c1:7c:
                    e9:5e:96:3f:bb:4e:50:46:64:66:ce:eb:d7:e6:e0:
                    de:df:f4:31:28:fa:38:a7:7b:2e:f8:3a:e0:af:f5:
                    33:2b:17:12:42:7e:1e:8c:80:b9:49:85:19:d5:85:
                    29:af:30:b0:85:49:92:53:d7:58:df:a4:45:41:b8:
                    c9:24:87:15:8b:83:9d:a6:69:02:8d:02:94:fa:18:
                    a8:ce:1d:9a:9e:4d:cb:4f:7d:dc:6c:f8:e7:ce:aa:
                    46:00:38:97:0a:43:e4:57:12:d1:b9:31:9a:71:1c:
                    6b:f4:6e:4e:85:33:50:4f:5e:43:19:5e:01:c7:a4:
                    85:9d:a0:3e:dd:ff:79:4c:35:04:eb:d9:8f:17:14:
                    53:c9:16:9b:3e:62:5f:82:06:e2:76:b9:c0:af:23:
                    b3:f5:a4:0e:09:18:60:20:67:8f:3c:90:94:45:cd:
                    68:f9:63:4c:f6:db:1c:60:a4:36:16:6b:97:4e:c3:
                    c0:61:16:e1:f1:3b:06:0a:c6:88:e8:55:94:ec:64:
                    97:95:6a:17:08:33:31:f7:a6:51:26:58:74:28:dc:
                    e8:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2D:4A:AC:BB:E9:BC:D5:5E:55:18:E9:15:6E:90:23:AD:6B:05:0B:87
            X509v3 Authority Key Identifier:
                keyid:B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:67:c6:f5:bc:34:d0:41:0c:a1:73:d5:1f:41:47:be:cc:b0:
         0b:51:9a:c5:57:c4:fb:62:c4:5f:fa:88:4c:d6:0b:86:33:12:
         1b:96:98:5f:b6:2f:43:97:ba:7e:8a:21:fe:49:05:c7:59:e5:
         08:a5:e5:4a:5b:5f:78:08:95:fb:b0:2d:3d:fc:72:4d:e2:91:
         99:17:a9:13:7f:69:b0:17:ca:ab:88:a4:54:6c:e6:1a:5d:0b:
         a1:d4:43:3d:94:08:37:98:24:d2:0f:2a:d2:8b:50:75:40:58:
         f4:6e:70:9d:7d:08:45:4e:2c:3e:ac:b1:41:7e:1d:82:ba:c9:
         10:a3:96:00:f5:59:13:26:96:be:04:e5:a3:64:19:2b:30:8f:
         99:f5:6c:71:1a:60:41:d0:df:26:c0:d2:ea:48:8a:f4:4d:0e:
         f0:97:7e:1f:53:a9:dc:6d:74:7c:52:2c:50:16:2c:32:9b:17:
         dd:65:7d:b5:1f:fc:fa:d2:81:c3:4c:69:98:73:23:24:d8:c5:
         cf:99:bf:88:e1:13:5f:be:f4:6b:d3:ae:0f:94:32:e6:b2:49:
         eb:85:c0:d0:4e:d2:77:52:5e:ff:6a:d2:c0:d2:c0:d3:8d:32:
         bc:e2:ab:47:9d:4f:c5:23:95:4d:fb:be:fb:2c:12:a7:4d:5e:
         1f:a7:ea:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiSyCdroGnyytjW1yvH0lXDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2OWFhZWYxY2VhMTlmMmY5MjZmNTcwOTYxNTQ1Y2ZlNGVk
NjlhZjYwHhcNMjUwODEwMDcwMDQ3WhcNMjUwODExMDcwMDQ3WjAzMTEwLwYDVQQD
EygyZDRhYWNiYmU5YmNkNTVlNTUxOGU5MTU2ZTkwMjNhZDZiMDUwYjg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4TuYCqJOyeghQWaOxJfnWir3qVu
e8xA2cS805ix/N5UXumB6LlPDWpSwXzpXpY/u05QRmRmzuvX5uDe3/QxKPo4p3su
+Drgr/UzKxcSQn4ejIC5SYUZ1YUprzCwhUmSU9dY36RFQbjJJIcVi4OdpmkCjQKU
+hiozh2ank3LT33cbPjnzqpGADiXCkPkVxLRuTGacRxr9G5OhTNQT15DGV4Bx6SF
naA+3f95TDUE69mPFxRTyRabPmJfggbidrnAryOz9aQOCRhgIGePPJCURc1o+WNM
9tscYKQ2FmuXTsPAYRbh8TsGCsaI6FWU7GSXlWoXCDMx96ZRJlh0KNzoVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC1KrLvpvNVeVRjpFW6QI61rBQuHMB8GA1UdIwQY
MBaAFLaarvHOoZ8vkm9XCWFUXP5O1pr2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHBxdThjNmhueS1TYjFjSllWUmNfazdXbXZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mMDE3MTItNzJiYi00MDg4LThiNjEt
N2ZlMjBmMmVmZWQ0LzEvdHBxdThjNmhueS1TYjFjSllWUmNfazdXbXZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9mMDE3MTItNzJiYi00MDg4LThiNjEtN2ZlMjBmMmVmZWQ0
LzEvdHBxdThjNmhueS1TYjFjSllWUmNfazdXbXZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnmfG9bw0
0EEMoXPVH0FHvsywC1GaxVfE+2LEX/qITNYLhjMSG5aYX7YvQ5e6fooh/kkFx1nl
CKXlSltfeAiV+7AtPfxyTeKRmRepE39psBfKq4ikVGzmGl0LodRDPZQIN5gk0g8q
0otQdUBY9G5wnX0IRU4sPqyxQX4dgrrJEKOWAPVZEyaWvgTlo2QZKzCPmfVscRpg
QdDfJsDS6kiK9E0O8Jd+H1Op3G10fFIsUBYsMpsX3WV9tR/8+tKBw0xpmHMjJNjF
z5m/iOETX770a9OuD5Qy5rJJ64XA0E7Sd1Je/2rSwNLA040yvOKrR51PxSOVTfu+
+ywSp01eH6fqrA==
-----END CERTIFICATE-----
Generated at Sun Aug 10 16:05:55 2025 by rpki-client