Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
File:                     BpSFf1Ib4h4SZzna13O05qGKxps.mft (raw, json)
Hash identifier:          i1DnW7w+PEyHkNQIA+nZJCPkkTgvUeyhwe/YABHxSU4=
Subject key identifier:   91:DD:41:8B:90:DB:B0:52:9F:BE:F1:12:D9:99:D4:CF:F3:E7:08:03
Authority key identifier: 06:94:85:7F:52:1B:E2:1E:12:67:39:DA:D7:73:B4:E6:A1:8A:C6:9B
Certificate issuer:       /CN=0694857f521be21e126739dad773b4e6a18ac69b
Certificate serial:       019892C8B7C30152FA68A5182A2FCE87DCBE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
Manifest number:          0967
Signing time:             Sun 10 Aug 2025 07:01:24 +0000
Manifest this update:     Sun 10 Aug 2025 07:01:24 +0000
Manifest next update:     Mon 11 Aug 2025 07:01:24 +0000
Files and hashes:         1: BpSFf1Ib4h4SZzna13O05qGKxps.crl (hash: Rs4bBtOI9wEeqvzSal4kFRpOQQ1qRBifdc/Ufm3gf+g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 07:01:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:92:c8:b7:c3:01:52:fa:68:a5:18:2a:2f:ce:87:dc:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0694857f521be21e126739dad773b4e6a18ac69b
        Validity
            Not Before: Aug 10 07:01:24 2025 GMT
            Not After : Aug 11 07:01:24 2025 GMT
        Subject: CN=91dd418b90dbb0529fbef112d999d4cff3e70803
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:65:4b:a7:ba:b6:f8:39:fe:a2:8b:04:e4:2c:
                    ff:3a:7c:62:76:30:2d:d2:dd:a7:f3:ca:fc:43:9c:
                    4a:8e:b9:9c:d8:ce:97:38:47:c1:37:67:0c:31:c0:
                    fc:ee:be:a0:26:08:be:84:e7:9f:ae:5e:a9:93:ae:
                    59:3b:35:6e:8d:ab:95:8a:55:1b:dd:e3:30:11:54:
                    f6:0f:4f:de:51:63:89:b1:91:1a:bb:f9:04:33:0b:
                    90:bd:d1:b1:a6:c1:db:18:d2:75:cc:0c:1c:fc:ee:
                    ca:2d:ff:5b:af:fc:5a:5a:18:36:45:7d:25:58:16:
                    e2:e6:e6:39:64:66:fb:38:55:08:18:15:39:35:c7:
                    5e:fc:20:da:67:ed:c1:0e:19:f3:7a:89:e6:b0:f9:
                    4f:b5:76:0b:8d:91:6d:67:7e:a2:b0:6f:c8:fe:e0:
                    ce:d9:50:1c:23:f1:ff:bd:9d:d6:16:92:a6:62:66:
                    58:3b:c6:9f:50:6e:f4:66:03:89:6b:0f:7b:62:ed:
                    7c:d9:34:6a:0a:0a:4c:7e:f0:4f:e2:cb:7a:6e:9e:
                    da:25:84:73:ac:1c:0a:b9:17:19:30:c5:12:91:e3:
                    28:c7:59:29:84:50:53:d0:77:b2:61:dd:bf:8f:f9:
                    8c:2a:f5:71:84:6d:6f:c2:0b:9d:12:4a:91:c3:72:
                    ac:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:DD:41:8B:90:DB:B0:52:9F:BE:F1:12:D9:99:D4:CF:F3:E7:08:03
            X509v3 Authority Key Identifier:
                keyid:06:94:85:7F:52:1B:E2:1E:12:67:39:DA:D7:73:B4:E6:A1:8A:C6:9B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpSFf1Ib4h4SZzna13O05qGKxps.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/5eb14c-f03b-48e8-ae3f-88afbd4a3dd2/1/BpSFf1Ib4h4SZzna13O05qGKxps.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:e0:80:69:83:32:2f:06:4e:fd:56:70:f3:85:fa:18:35:80:
         40:ea:8d:23:2a:20:68:bd:cb:87:c5:07:be:92:79:ab:dc:4a:
         08:54:63:a8:ff:88:3c:97:90:f3:90:6a:3c:8e:4a:b6:af:4a:
         1f:8e:96:98:32:d9:59:af:bd:99:7f:16:8d:74:b4:7f:dc:54:
         9d:04:87:03:a1:d2:3f:6f:d1:24:e2:bb:72:91:0c:8b:ff:0c:
         f1:8f:d9:ef:3e:c5:7c:e7:6b:f2:c5:c3:d5:50:a5:9e:05:da:
         cd:2b:ac:eb:b9:81:f1:1d:cb:93:2e:60:bd:a9:f3:65:03:26:
         81:81:73:d0:a0:6c:64:b7:71:38:c3:7a:0e:b1:12:7c:3d:85:
         60:80:ad:e2:81:ee:f0:2b:49:b9:08:98:34:1f:cc:01:fc:eb:
         b2:25:79:89:11:16:a3:0b:92:cc:ec:f4:65:f1:2e:25:8c:ae:
         a7:05:a3:0d:32:17:11:9f:ed:75:86:2e:5a:63:f9:c2:be:94:
         22:1f:11:a7:97:44:c1:eb:09:0b:5d:5a:7b:b1:01:34:f6:34:
         63:7e:0e:b4:f2:03:09:95:ca:db:66:ff:76:54:48:c8:91:db:
         c6:52:c0:15:b5:9e:10:cc:0d:da:2f:ef:17:00:f2:a4:d5:21:
         9d:46:b1:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiSyLfDAVL6aKUYKi/Oh9y+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2OTQ4NTdmNTIxYmUyMWUxMjY3MzlkYWQ3NzNiNGU2YTE4
YWM2OWIwHhcNMjUwODEwMDcwMTI0WhcNMjUwODExMDcwMTI0WjAzMTEwLwYDVQQD
Eyg5MWRkNDE4YjkwZGJiMDUyOWZiZWYxMTJkOTk5ZDRjZmYzZTcwODAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh2VLp7q2+Dn+oosE5Cz/OnxidjAt
0t2n88r8Q5xKjrmc2M6XOEfBN2cMMcD87r6gJgi+hOefrl6pk65ZOzVujauVilUb
3eMwEVT2D0/eUWOJsZEau/kEMwuQvdGxpsHbGNJ1zAwc/O7KLf9br/xaWhg2RX0l
WBbi5uY5ZGb7OFUIGBU5Ncde/CDaZ+3BDhnzeonmsPlPtXYLjZFtZ36isG/I/uDO
2VAcI/H/vZ3WFpKmYmZYO8afUG70ZgOJaw97Yu182TRqCgpMfvBP4st6bp7aJYRz
rBwKuRcZMMUSkeMox1kphFBT0HeyYd2/j/mMKvVxhG1vwgudEkqRw3Ks8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJHdQYuQ27BSn77xEtmZ1M/z5wgDMB8GA1UdIwQY
MBaAFAaUhX9SG+IeEmc52tdztOahisabMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnBTRmYxSWI0aDRTWnpuYTEzTzA1cUdLeHBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy81ZWIxNGMtZjAzYi00OGU4LWFlM2Yt
ODhhZmJkNGEzZGQyLzEvQnBTRmYxSWI0aDRTWnpuYTEzTzA1cUdLeHBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy81ZWIxNGMtZjAzYi00OGU4LWFlM2YtODhhZmJkNGEzZGQy
LzEvQnBTRmYxSWI0aDRTWnpuYTEzTzA1cUdLeHBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEeCAaYMy
LwZO/VZw84X6GDWAQOqNIyogaL3Lh8UHvpJ5q9xKCFRjqP+IPJeQ85BqPI5Ktq9K
H46WmDLZWa+9mX8WjXS0f9xUnQSHA6HSP2/RJOK7cpEMi/8M8Y/Z7z7FfOdr8sXD
1VClngXazSus67mB8R3Lky5gvanzZQMmgYFz0KBsZLdxOMN6DrESfD2FYICt4oHu
8CtJuQiYNB/MAfzrsiV5iREWowuSzOz0ZfEuJYyupwWjDTIXEZ/tdYYuWmP5wr6U
Ih8Rp5dEwesJC11ae7EBNPY0Y34OtPIDCZXK22b/dlRIyJHbxlLAFbWeEMwN2i/v
FwDypNUhnUaxBA==
-----END CERTIFICATE-----