Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
File:                     dy9i9-iZgXRBGAk19CuCo5mAotw.mft (raw, json)
Hash identifier:          0Gq05/NS+k7n3mYs+xx2K7jQtnEWla3ei9uJMBMkqY4=
Subject key identifier:   C7:F1:A9:2F:F0:4C:06:76:A2:25:CF:46:2E:62:41:15:78:AC:1B:66
Authority key identifier: 77:2F:62:F7:E8:99:81:74:41:18:09:35:F4:2B:82:A3:99:80:A2:DC
Certificate issuer:       /CN=772f62f7e899817441180935f42b82a39980a2dc
Certificate serial:       019892FF5B1FB93351D836B9931F68A95B25
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
Manifest number:          04D1
Signing time:             Sun 10 Aug 2025 08:01:05 +0000
Manifest this update:     Sun 10 Aug 2025 08:01:05 +0000
Manifest next update:     Mon 11 Aug 2025 08:01:05 +0000
Files and hashes:         1: dy9i9-iZgXRBGAk19CuCo5mAotw.crl (hash: 7XoDj13nsaVU9VyXFuR4IWAPOj5ykvPEEYapa3fOpwo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 08:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:92:ff:5b:1f:b9:33:51:d8:36:b9:93:1f:68:a9:5b:25
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=772f62f7e899817441180935f42b82a39980a2dc
        Validity
            Not Before: Aug 10 08:01:05 2025 GMT
            Not After : Aug 11 08:01:05 2025 GMT
        Subject: CN=c7f1a92ff04c0676a225cf462e62411578ac1b66
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:62:2a:3a:e1:2a:d0:d2:fc:06:6b:7e:9c:d1:
                    dc:2e:3c:2f:3e:04:63:0a:08:d1:58:56:7d:0a:59:
                    90:09:72:7d:49:da:2b:78:9e:d7:e6:eb:cd:93:9e:
                    56:82:05:06:7a:86:cb:72:75:c9:cf:c6:5b:ca:9f:
                    c6:a9:b5:a8:c0:f0:7b:6e:15:6a:ea:17:5b:35:35:
                    0a:6d:dd:1b:c7:2d:a8:ca:b4:05:86:0b:55:cc:f2:
                    77:54:a4:e4:7b:43:e9:b4:f2:f0:5e:53:81:6b:a2:
                    7f:af:0f:18:4e:82:4e:0a:1f:dc:36:a2:3b:ae:86:
                    dd:90:dc:80:5a:cb:14:0d:df:87:c5:a8:cb:3a:dd:
                    d1:13:e7:0d:4a:78:9e:a1:38:f9:42:45:12:b3:4d:
                    9e:5b:37:1c:79:2d:ed:95:cc:b1:66:71:e1:70:4c:
                    3a:df:4e:25:0c:a8:7f:30:96:d5:da:ce:7e:bf:da:
                    ac:81:b6:13:bc:28:a4:13:9e:f4:0a:90:47:c5:4d:
                    e0:99:ed:02:7e:83:7b:0c:22:0e:04:ae:40:ba:0d:
                    0e:9f:6b:ba:dc:f3:59:fe:a3:19:6a:0d:d1:a6:38:
                    8a:43:47:91:40:4f:15:6f:b3:1e:46:60:c1:d9:58:
                    e9:51:b3:d0:94:50:52:d4:04:fb:32:9c:eb:a7:39:
                    32:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:F1:A9:2F:F0:4C:06:76:A2:25:CF:46:2E:62:41:15:78:AC:1B:66
            X509v3 Authority Key Identifier:
                keyid:77:2F:62:F7:E8:99:81:74:41:18:09:35:F4:2B:82:A3:99:80:A2:DC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b9:a9:c5:1e:86:8b:0d:e4:2b:a0:d6:d3:2f:43:32:24:7d:db:
         e8:ff:cd:4b:f7:0d:69:f1:68:32:f2:5b:eb:64:7c:e1:c4:68:
         a7:9b:3b:73:74:c5:df:cc:c6:f0:dd:c8:4a:31:fb:62:dc:42:
         8b:24:01:a4:de:1c:e7:dd:e9:4e:13:e5:45:af:54:86:b3:d2:
         c7:0e:8c:bf:77:86:8d:18:45:cd:e1:c9:20:3e:62:3f:dc:47:
         85:7e:fc:2b:5d:9b:70:14:de:4e:96:e1:b9:cd:24:aa:0c:25:
         87:28:f2:9a:17:97:36:79:df:1f:d9:ce:ed:3a:af:01:0b:e8:
         0e:e6:5c:d5:3a:66:69:fc:d4:4f:2a:80:69:f2:8e:31:4f:34:
         a2:54:6a:d5:3f:b2:27:bf:54:03:2f:2c:30:6a:d1:8d:eb:7b:
         ce:c6:63:f9:2c:fb:b9:4d:98:21:c0:a7:34:a5:e2:07:67:9a:
         91:b8:ee:b9:ee:03:6b:f0:9c:38:34:03:70:87:05:7b:ff:38:
         bd:b1:89:0b:99:74:96:be:21:9c:7f:97:33:34:88:09:93:72:
         96:bc:e4:d6:d2:1e:cf:90:94:23:be:8d:d3:31:35:93:ed:b5:
         89:5a:85:24:e3:9c:ab:b0:26:a3:b9:ba:e6:0c:59:bd:33:50:
         b6:4e:70:d0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiS/1sfuTNR2Da5kx9oqVslMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3MmY2MmY3ZTg5OTgxNzQ0MTE4MDkzNWY0MmI4MmEzOTk4
MGEyZGMwHhcNMjUwODEwMDgwMTA1WhcNMjUwODExMDgwMTA1WjAzMTEwLwYDVQQD
EyhjN2YxYTkyZmYwNGMwNjc2YTIyNWNmNDYyZTYyNDExNTc4YWMxYjY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmIqOuEq0NL8Bmt+nNHcLjwvPgRj
CgjRWFZ9ClmQCXJ9SdoreJ7X5uvNk55WggUGeobLcnXJz8Zbyp/GqbWowPB7bhVq
6hdbNTUKbd0bxy2oyrQFhgtVzPJ3VKTke0PptPLwXlOBa6J/rw8YToJOCh/cNqI7
robdkNyAWssUDd+HxajLOt3RE+cNSnieoTj5QkUSs02eWzcceS3tlcyxZnHhcEw6
304lDKh/MJbV2s5+v9qsgbYTvCikE570CpBHxU3gme0CfoN7DCIOBK5Aug0On2u6
3PNZ/qMZag3RpjiKQ0eRQE8Vb7MeRmDB2VjpUbPQlFBS1AT7Mpzrpzky4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMfxqS/wTAZ2oiXPRi5iQRV4rBtmMB8GA1UdIwQY
MBaAFHcvYvfomYF0QRgJNfQrgqOZgKLcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHk5aTktaVpnWFJCR0FrMTlDdUNvNW1Bb3R3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8xNTBkMmItYTA4OC00MDFkLWI1NTkt
YTA2MWE4Yzc3ZjE2LzEvZHk5aTktaVpnWFJCR0FrMTlDdUNvNW1Bb3R3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy8xNTBkMmItYTA4OC00MDFkLWI1NTktYTA2MWE4Yzc3ZjE2
LzEvZHk5aTktaVpnWFJCR0FrMTlDdUNvNW1Bb3R3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuanFHoaL
DeQroNbTL0MyJH3b6P/NS/cNafFoMvJb62R84cRop5s7c3TF38zG8N3ISjH7YtxC
iyQBpN4c593pThPlRa9UhrPSxw6Mv3eGjRhFzeHJID5iP9xHhX78K12bcBTeTpbh
uc0kqgwlhyjymheXNnnfH9nO7TqvAQvoDuZc1TpmafzUTyqAafKOMU80olRq1T+y
J79UAy8sMGrRjet7zsZj+Sz7uU2YIcCnNKXiB2eakbjuue4Da/CcODQDcIcFe/84
vbGJC5l0lr4hnH+XMzSICZNylrzk1tIez5CUI76N0zE1k+21iVqFJOOcq7Amo7m6
5gxZvTNQtk5w0A==
-----END CERTIFICATE-----