Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft
File:                     uVZnsVy6fKp0FSdIRHOE--A7iTo.mft (raw, json)
Hash identifier:          dC6fQ9msmGLi2V3b70cAq2JWRqH6kIJjIZDCJSCQB0A=
Subject key identifier:   D4:B1:88:B3:25:18:5C:8D:A1:92:A6:90:30:DE:DC:FB:8B:70:6B:1A
Authority key identifier: B9:56:67:B1:5C:BA:7C:AA:74:15:27:48:44:73:84:FB:E0:3B:89:3A
Certificate issuer:       /CN=b95667b15cba7caa74152748447384fbe03b893a
Certificate serial:       01987B9D78BCE965CCD887BBF620BA326A43
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft
Manifest number:          08CC
Signing time:             Tue 05 Aug 2025 19:02:54 +0000
Manifest this update:     Tue 05 Aug 2025 19:02:54 +0000
Manifest next update:     Wed 06 Aug 2025 19:02:54 +0000
Files and hashes:         1: uVZnsVy6fKp0FSdIRHOE--A7iTo.crl (hash: g3VQAaPzTzLrkTDRaJyPoP56azt4ql+LNLJQ/i1klcY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 19:02:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7b:9d:78:bc:e9:65:cc:d8:87:bb:f6:20:ba:32:6a:43
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b95667b15cba7caa74152748447384fbe03b893a
        Validity
            Not Before: Aug  5 19:02:54 2025 GMT
            Not After : Aug  6 19:02:54 2025 GMT
        Subject: CN=d4b188b325185c8da192a69030dedcfb8b706b1a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:ab:37:1b:ab:d3:ba:e7:e7:00:25:3b:74:f5:
                    5d:b1:2a:32:85:b4:cf:cd:23:81:ed:76:28:5a:35:
                    08:d9:04:21:b0:c4:06:db:bf:6a:de:9b:f7:9a:a2:
                    74:95:1e:6c:ca:26:f3:f7:fd:5c:f8:96:54:67:dd:
                    41:92:c0:b0:ce:8d:a5:0e:28:f0:69:56:a8:3b:82:
                    78:c0:3e:a5:bc:e7:af:51:0e:42:44:c6:9d:59:d5:
                    33:03:ab:10:83:c9:ad:e6:2f:97:08:cf:08:f1:f8:
                    c8:2b:33:36:87:f3:97:c4:9f:d7:b4:2c:8c:9d:fe:
                    eb:47:8b:f6:43:b6:19:05:67:3a:30:fb:9e:54:be:
                    7f:89:54:6e:d0:5e:eb:17:41:65:1d:68:e9:03:bf:
                    c1:d0:a1:20:3b:bf:73:c3:d0:f6:3e:34:dc:f2:5c:
                    40:7c:c7:0c:2c:36:bb:b1:58:44:f4:44:cc:e5:97:
                    ea:c9:ba:6d:2b:7d:14:b2:21:e7:de:04:7b:d6:ad:
                    d1:13:3a:c4:eb:1a:36:e4:eb:9b:1a:e7:26:c7:2f:
                    2b:68:e0:03:df:61:c6:3a:08:c5:6c:10:f1:1a:5c:
                    cc:3e:98:93:78:d1:c5:1b:48:0f:2a:5a:22:37:6b:
                    ee:bf:d4:c5:c3:51:78:5e:9c:c7:a4:86:7d:a1:21:
                    1d:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D4:B1:88:B3:25:18:5C:8D:A1:92:A6:90:30:DE:DC:FB:8B:70:6B:1A
            X509v3 Authority Key Identifier:
                keyid:B9:56:67:B1:5C:BA:7C:AA:74:15:27:48:44:73:84:FB:E0:3B:89:3A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:56:52:e8:f3:6c:e4:d0:08:ac:11:25:65:ed:be:ce:ee:06:
         d5:52:6f:26:29:95:3c:f6:3b:f6:12:be:9a:b0:14:06:24:be:
         d6:f5:b1:e8:dd:75:b4:3c:ef:53:98:8c:b7:1c:95:ad:d3:1f:
         d1:c4:d6:37:c8:79:fd:2b:fd:15:ef:5e:85:9b:ac:b2:aa:84:
         0b:5b:97:46:b3:33:5a:fb:28:0d:63:b6:1b:1a:74:8d:3c:35:
         59:9d:d0:c2:98:d9:26:24:ed:50:5f:d6:1c:ff:b5:82:d1:78:
         69:f7:7d:61:54:09:76:5d:03:fc:e3:ea:74:77:f6:f3:b5:ed:
         a0:4c:41:55:17:5b:8b:ca:ca:6a:25:ec:65:29:e8:5a:73:02:
         13:c3:90:17:35:a6:16:b6:d5:f9:d2:bf:e8:40:f6:7e:b2:1d:
         d1:e0:fe:b1:b8:5e:16:a8:8d:0d:c5:77:b7:f9:7f:27:7d:cd:
         aa:b1:9d:46:2e:4c:84:50:c7:d0:2b:55:5b:a6:b3:d4:19:96:
         f0:55:b3:61:28:79:1c:e8:29:87:c5:33:88:e1:9a:b2:6d:03:
         49:d1:d7:47:85:3a:67:45:f6:03:b3:09:db:b8:b3:89:50:83:
         f8:8a:51:0e:ae:31:c1:22:46:4e:b0:94:26:28:94:b7:00:e6:
         20:e5:58:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh7nXi86WXM2Ie79iC6MmpDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NTY2N2IxNWNiYTdjYWE3NDE1Mjc0ODQ0NzM4NGZiZTAz
Yjg5M2EwHhcNMjUwODA1MTkwMjU0WhcNMjUwODA2MTkwMjU0WjAzMTEwLwYDVQQD
EyhkNGIxODhiMzI1MTg1YzhkYTE5MmE2OTAzMGRlZGNmYjhiNzA2YjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwqs3G6vTuufnACU7dPVdsSoyhbTP
zSOB7XYoWjUI2QQhsMQG279q3pv3mqJ0lR5syibz9/1c+JZUZ91BksCwzo2lDijw
aVaoO4J4wD6lvOevUQ5CRMadWdUzA6sQg8mt5i+XCM8I8fjIKzM2h/OXxJ/XtCyM
nf7rR4v2Q7YZBWc6MPueVL5/iVRu0F7rF0FlHWjpA7/B0KEgO79zw9D2PjTc8lxA
fMcMLDa7sVhE9ETM5ZfqybptK30UsiHn3gR71q3REzrE6xo25OubGucmxy8raOAD
32HGOgjFbBDxGlzMPpiTeNHFG0gPKloiN2vuv9TFw1F4XpzHpIZ9oSEd/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNSxiLMlGFyNoZKmkDDe3PuLcGsaMB8GA1UdIwQY
MBaAFLlWZ7FcunyqdBUnSERzhPvgO4k6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVZabnNWeTZmS3AwRlNkSVJIT0UtLUE3aVRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC81NDBjMDMtYmE4My00OTcxLTg5ODEt
NzQ0ZGNkMDE0ZmE0LzEvdVZabnNWeTZmS3AwRlNkSVJIT0UtLUE3aVRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC81NDBjMDMtYmE4My00OTcxLTg5ODEtNzQ0ZGNkMDE0ZmE0
LzEvdVZabnNWeTZmS3AwRlNkSVJIT0UtLUE3aVRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI1ZS6PNs
5NAIrBElZe2+zu4G1VJvJimVPPY79hK+mrAUBiS+1vWx6N11tDzvU5iMtxyVrdMf
0cTWN8h5/Sv9Fe9ehZussqqEC1uXRrMzWvsoDWO2Gxp0jTw1WZ3QwpjZJiTtUF/W
HP+1gtF4afd9YVQJdl0D/OPqdHf287XtoExBVRdbi8rKaiXsZSnoWnMCE8OQFzWm
FrbV+dK/6ED2frId0eD+sbheFqiNDcV3t/l/J33NqrGdRi5MhFDH0CtVW6az1BmW
8FWzYSh5HOgph8UziOGasm0DSdHXR4U6Z0X2A7MJ27iziVCD+IpRDq4xwSJGTrCU
JiiUtwDmIOVYBg==
-----END CERTIFICATE-----