Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.mft
File:                     FSj8hxfpGa4HJhquKNjIRWTIpxI.mft (raw, json)
Hash identifier:          DnzWn1XZkeaQqDr+oCTw6lCRcol1gN3N0nEZSrUoPj4=
Subject key identifier:   12:49:62:E0:86:69:14:97:63:46:43:FF:A5:24:BE:4E:E8:86:F2:2C
Authority key identifier: 15:28:FC:87:17:E9:19:AE:07:26:1A:AE:28:D8:C8:45:64:C8:A7:12
Certificate issuer:       /CN=1528fc8717e919ae07261aae28d8c84564c8a712
Certificate serial:       019872984BECBF677234AD1062C4DCC5BF89
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FSj8hxfpGa4HJhquKNjIRWTIpxI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.mft
Manifest number:          0F76
Signing time:             Mon 04 Aug 2025 01:00:40 +0000
Manifest this update:     Mon 04 Aug 2025 01:00:40 +0000
Manifest next update:     Tue 05 Aug 2025 01:00:40 +0000
Files and hashes:         1: FSj8hxfpGa4HJhquKNjIRWTIpxI.crl (hash: E+XSIn2IroRpOsB8mB4PFsjJeDu/a04PZsRJHtbROS0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FSj8hxfpGa4HJhquKNjIRWTIpxI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 01:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:72:98:4b:ec:bf:67:72:34:ad:10:62:c4:dc:c5:bf:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1528fc8717e919ae07261aae28d8c84564c8a712
        Validity
            Not Before: Aug  4 01:00:40 2025 GMT
            Not After : Aug  5 01:00:40 2025 GMT
        Subject: CN=124962e086691497634643ffa524be4ee886f22c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:41:06:2a:db:25:ad:57:e2:55:2e:ae:73:94:
                    37:f8:a8:cc:63:a2:fc:af:95:30:e7:4e:cb:a6:c4:
                    2f:ce:4c:7b:8a:ac:99:ae:13:0a:63:aa:f8:c7:af:
                    55:b1:d0:7c:41:42:b2:15:ec:af:c8:0f:3a:1b:cb:
                    e9:cb:28:f9:7a:f2:fc:f9:8a:b3:4e:2d:ac:60:0b:
                    80:2c:8f:0d:c4:46:bd:0a:58:e0:5a:66:df:13:86:
                    a1:bc:f8:49:39:9f:e5:bc:72:da:8d:27:5a:3f:b0:
                    b9:6e:26:a3:05:59:c6:88:db:2d:0d:27:5e:62:89:
                    ce:f7:da:d8:f4:5a:60:c7:45:e9:31:61:f9:10:25:
                    31:2b:9e:5b:d6:54:56:05:af:24:03:aa:3c:68:9d:
                    08:92:0f:1b:a1:bd:e9:1e:a8:c8:6d:cd:04:c7:1e:
                    44:dd:45:6e:29:27:1b:f6:26:fd:72:c0:8e:a0:26:
                    23:86:3e:ea:42:b5:59:cd:bc:21:f5:de:f6:2c:4a:
                    fb:cd:83:67:ca:eb:90:3b:67:49:ff:0b:d4:a2:8c:
                    db:26:6e:b2:96:c4:a6:ef:87:11:c9:ea:20:a5:6a:
                    81:f4:42:38:78:5e:a3:0e:89:c5:51:05:bf:b8:21:
                    16:15:6c:63:c3:b0:bb:ba:6d:f0:4c:ee:12:8b:a3:
                    f6:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:49:62:E0:86:69:14:97:63:46:43:FF:A5:24:BE:4E:E8:86:F2:2C
            X509v3 Authority Key Identifier:
                keyid:15:28:FC:87:17:E9:19:AE:07:26:1A:AE:28:D8:C8:45:64:C8:A7:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FSj8hxfpGa4HJhquKNjIRWTIpxI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:7f:35:c0:c2:62:d8:20:8f:7b:e7:03:b1:ba:8e:87:9a:b0:
         df:e3:77:6d:d1:68:23:8f:8a:5a:69:3a:38:e5:ff:1b:bf:f8:
         b3:91:f3:54:64:13:0f:14:2a:ef:8b:83:19:ff:01:7e:b7:3a:
         09:59:8d:bc:31:a8:c9:86:2c:39:90:e9:5d:24:28:68:4c:6f:
         4a:33:eb:e7:b8:39:7c:e0:b0:a3:9f:74:e2:8b:96:70:81:00:
         fc:3a:dc:02:c1:21:f8:e4:80:f0:bf:24:59:85:81:8f:15:93:
         2a:e7:fc:ca:97:b1:72:11:fc:22:24:7a:98:4b:2c:8f:4f:bd:
         7a:07:78:c7:ee:66:27:fd:f4:ec:c7:55:92:79:cb:cd:9e:55:
         69:0e:cd:c5:2e:6e:8a:6b:22:82:92:5c:a4:91:39:7c:2a:b8:
         d3:9f:cb:a2:9a:80:0a:78:e3:ad:77:a3:57:4e:71:f9:cd:84:
         4e:54:56:4b:d5:f7:0a:71:91:a5:c4:b5:71:ca:a0:47:99:d9:
         bf:fc:54:17:f0:e5:1d:26:c1:74:8f:36:7b:86:2d:4c:40:a9:
         fe:e7:8a:6c:4c:96:9e:3a:b0:67:b6:c0:0c:c9:81:68:f2:a1:
         8f:a1:a5:2a:dc:f1:8f:12:ae:ba:bd:1b:4d:c7:9d:8c:83:40:
         8d:a2:5d:3a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhymEvsv2dyNK0QYsTcxb+JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE1MjhmYzg3MTdlOTE5YWUwNzI2MWFhZTI4ZDhjODQ1NjRj
OGE3MTIwHhcNMjUwODA0MDEwMDQwWhcNMjUwODA1MDEwMDQwWjAzMTEwLwYDVQQD
EygxMjQ5NjJlMDg2NjkxNDk3NjM0NjQzZmZhNTI0YmU0ZWU4ODZmMjJjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtkEGKtslrVfiVS6uc5Q3+KjMY6L8
r5Uw507LpsQvzkx7iqyZrhMKY6r4x69VsdB8QUKyFeyvyA86G8vpyyj5evL8+Yqz
Ti2sYAuALI8NxEa9CljgWmbfE4ahvPhJOZ/lvHLajSdaP7C5biajBVnGiNstDSde
YonO99rY9Fpgx0XpMWH5ECUxK55b1lRWBa8kA6o8aJ0Ikg8bob3pHqjIbc0Exx5E
3UVuKScb9ib9csCOoCYjhj7qQrVZzbwh9d72LEr7zYNnyuuQO2dJ/wvUoozbJm6y
lsSm74cRyeogpWqB9EI4eF6jDonFUQW/uCEWFWxjw7C7um3wTO4Si6P2LwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBJJYuCGaRSXY0ZD/6Ukvk7ohvIsMB8GA1UdIwQY
MBaAFBUo/IcX6RmuByYarijYyEVkyKcSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRlNqOGh4ZnBHYTRISmhxdUtOaklSV1RJcHhJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy82ZGZiYjYtNGFmYS00YmJjLTlkMTkt
NjcxMDcyZjkxYTEzLzEvRlNqOGh4ZnBHYTRISmhxdUtOaklSV1RJcHhJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy82ZGZiYjYtNGFmYS00YmJjLTlkMTktNjcxMDcyZjkxYTEz
LzEvRlNqOGh4ZnBHYTRISmhxdUtOaklSV1RJcHhJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjn81wMJi
2CCPe+cDsbqOh5qw3+N3bdFoI4+KWmk6OOX/G7/4s5HzVGQTDxQq74uDGf8Bfrc6
CVmNvDGoyYYsOZDpXSQoaExvSjPr57g5fOCwo5904ouWcIEA/DrcAsEh+OSA8L8k
WYWBjxWTKuf8ypexchH8IiR6mEssj0+9egd4x+5mJ/307MdVknnLzZ5VaQ7NxS5u
imsigpJcpJE5fCq405/LopqACnjjrXejV05x+c2ETlRWS9X3CnGRpcS1ccqgR5nZ
v/xUF/DlHSbBdI82e4YtTECp/ueKbEyWnjqwZ7bADMmBaPKhj6GlKtzxjxKuur0b
TcedjINAjaJdOg==
-----END CERTIFICATE-----