Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
File:                     sTI2xNBokx4LRMmLKQqPqlVKA7k.mft (raw, json)
Hash identifier:          xm+m1NRF9h1dG7hcRYZOlntEb3q4bbohhES8qkBL7ew=
Subject key identifier:   FC:1D:FE:2B:54:30:46:D4:B0:EC:AA:A7:8B:36:65:C2:34:4F:E4:4A
Authority key identifier: B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9
Certificate issuer:       /CN=b13236c4d068931e0b44c98b290a8faa554a03b9
Certificate serial:       01988B7C7913CFE6D7DDC626E64B4F800655
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
Manifest number:          03EA
Signing time:             Fri 08 Aug 2025 21:00:47 +0000
Manifest this update:     Fri 08 Aug 2025 21:00:47 +0000
Manifest next update:     Sat 09 Aug 2025 21:00:47 +0000
Files and hashes:         1: sTI2xNBokx4LRMmLKQqPqlVKA7k.crl (hash: V4a8jFqa1xtvDBWxZIsZcVa+k3LZTTJnwhAeHMmFICs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:7c:79:13:cf:e6:d7:dd:c6:26:e6:4b:4f:80:06:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b13236c4d068931e0b44c98b290a8faa554a03b9
        Validity
            Not Before: Aug  8 21:00:47 2025 GMT
            Not After : Aug  9 21:00:47 2025 GMT
        Subject: CN=fc1dfe2b543046d4b0ecaaa78b3665c2344fe44a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:72:81:e0:64:c8:d3:a9:e6:ff:d6:d0:a7:de:
                    db:f5:8e:de:b0:0d:fb:8b:5f:a2:52:1f:7d:a4:3a:
                    06:3a:a1:fd:28:0b:05:21:24:fe:1c:df:88:0d:a3:
                    f3:30:5c:db:9e:f4:9c:0b:98:3a:c4:6b:ac:fd:55:
                    39:9a:55:52:de:6a:0e:02:82:37:70:cc:64:38:fe:
                    07:15:d6:74:b9:64:24:8b:1c:6a:aa:09:7e:e2:21:
                    95:0d:8f:dd:34:13:b9:00:99:d3:93:83:d6:94:d2:
                    d1:ab:85:05:97:bc:0d:16:32:f6:3a:34:f2:8d:10:
                    0d:6b:7f:4a:29:d2:f0:86:3d:87:54:8d:3c:35:4a:
                    8b:8b:77:3f:81:c5:53:94:f9:f9:69:b2:bd:89:00:
                    fb:04:2d:3c:60:86:0f:2b:d9:2d:42:f4:38:35:89:
                    06:e4:a2:32:eb:0c:22:70:1e:f5:b6:fe:44:b9:f3:
                    e9:16:b3:7b:cf:02:2b:2e:c0:e3:89:de:5a:42:1f:
                    f8:2a:01:71:ab:1b:48:2e:86:9a:64:e0:f9:2b:9e:
                    94:e4:43:2b:72:d3:a4:7f:7c:d1:2d:6a:0e:a9:1c:
                    95:ee:f1:db:d0:fb:4c:16:33:34:38:e0:51:85:1b:
                    0e:1a:87:c4:fd:03:90:c8:ed:3a:20:3d:5a:f9:7a:
                    99:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:1D:FE:2B:54:30:46:D4:B0:EC:AA:A7:8B:36:65:C2:34:4F:E4:4A
            X509v3 Authority Key Identifier:
                keyid:B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:99:d5:61:c4:54:8e:9b:b7:8a:77:97:27:ee:cd:22:bb:46:
         31:dc:4f:c5:a0:69:13:c4:d3:8c:8b:4e:a4:95:c6:3f:e1:e9:
         14:1e:54:0a:b6:ad:f1:59:31:3f:71:70:2a:75:d1:c8:c7:48:
         46:a0:dd:ea:91:9f:af:2b:e3:76:1a:b3:12:87:60:47:bb:fe:
         e9:0a:34:ce:5e:99:56:2e:b4:3f:45:78:9a:39:44:f3:62:fc:
         9d:64:3a:9a:23:f4:3a:79:0c:12:ac:9e:5d:c4:25:6c:d5:b0:
         03:89:02:48:f1:8a:66:ad:84:cf:93:ce:d4:99:1d:1e:5d:21:
         73:2b:e3:7d:d3:b2:12:70:fc:af:46:8c:01:9d:77:12:f1:cf:
         5b:58:98:8a:09:d9:d0:3e:64:f8:2e:28:ae:aa:15:f0:72:96:
         00:1e:d3:02:af:14:a8:46:a0:2e:4c:f5:a7:6f:b3:5b:fe:6e:
         00:ef:38:4c:27:9b:52:19:db:68:97:06:82:64:d7:01:fe:b2:
         bd:22:75:9e:2a:07:68:dd:18:fb:81:92:59:6f:57:58:94:19:
         f8:83:6d:3d:29:b6:77:a7:9a:1b:43:e1:e6:fc:00:0b:0d:6f:
         6a:e2:19:cd:07:fc:c0:70:6a:73:07:94:76:c9:79:47:c4:e0:
         74:45:e6:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiLfHkTz+bX3cYm5ktPgAZVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxMzIzNmM0ZDA2ODkzMWUwYjQ0Yzk4YjI5MGE4ZmFhNTU0
YTAzYjkwHhcNMjUwODA4MjEwMDQ3WhcNMjUwODA5MjEwMDQ3WjAzMTEwLwYDVQQD
EyhmYzFkZmUyYjU0MzA0NmQ0YjBlY2FhYTc4YjM2NjVjMjM0NGZlNDRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxHKB4GTI06nm/9bQp97b9Y7esA37
i1+iUh99pDoGOqH9KAsFIST+HN+IDaPzMFzbnvScC5g6xGus/VU5mlVS3moOAoI3
cMxkOP4HFdZ0uWQkixxqqgl+4iGVDY/dNBO5AJnTk4PWlNLRq4UFl7wNFjL2OjTy
jRANa39KKdLwhj2HVI08NUqLi3c/gcVTlPn5abK9iQD7BC08YIYPK9ktQvQ4NYkG
5KIy6wwicB71tv5EufPpFrN7zwIrLsDjid5aQh/4KgFxqxtILoaaZOD5K56U5EMr
ctOkf3zRLWoOqRyV7vHb0PtMFjM0OOBRhRsOGofE/QOQyO06ID1a+XqZmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPwd/itUMEbUsOyqp4s2ZcI0T+RKMB8GA1UdIwQY
MBaAFLEyNsTQaJMeC0TJiykKj6pVSgO5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1RJMnhOQm9reDRMUk1tTEtRcVBxbFZLQTdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81NzI5ZmEtNTlkZC00MzQ2LThjMDAt
MmRkMTE5ODRiMzVmLzEvc1RJMnhOQm9reDRMUk1tTEtRcVBxbFZLQTdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS81NzI5ZmEtNTlkZC00MzQ2LThjMDAtMmRkMTE5ODRiMzVm
LzEvc1RJMnhOQm9reDRMUk1tTEtRcVBxbFZLQTdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn5nVYcRU
jpu3ineXJ+7NIrtGMdxPxaBpE8TTjItOpJXGP+HpFB5UCrat8VkxP3FwKnXRyMdI
RqDd6pGfryvjdhqzEodgR7v+6Qo0zl6ZVi60P0V4mjlE82L8nWQ6miP0OnkMEqye
XcQlbNWwA4kCSPGKZq2Ez5PO1JkdHl0hcyvjfdOyEnD8r0aMAZ13EvHPW1iYignZ
0D5k+C4orqoV8HKWAB7TAq8UqEagLkz1p2+zW/5uAO84TCebUhnbaJcGgmTXAf6y
vSJ1nioHaN0Y+4GSWW9XWJQZ+INtPSm2d6eaG0Ph5vwACw1vauIZzQf8wHBqcweU
dsl5R8TgdEXm3w==
-----END CERTIFICATE-----