Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
File:                     tWpL1vXr8vf_2ajRzZparN5iKFw.mft (raw, json)
Hash identifier:          NmU5C+WnSOA+Aoh4gRWzCMF0FJQWFMe5SLnr5umMGVI=
Subject key identifier:   79:F3:DC:48:F2:3C:4A:DF:29:2C:11:AC:FF:E8:B3:D3:D1:F0:93:E2
Authority key identifier: B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C
Certificate issuer:       /CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
Certificate serial:       0198748736917DF3598C3ECF46335C4362CC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
Manifest number:          07D1
Signing time:             Mon 04 Aug 2025 10:01:14 +0000
Manifest this update:     Mon 04 Aug 2025 10:01:14 +0000
Manifest next update:     Tue 05 Aug 2025 10:01:14 +0000
Files and hashes:         1: tWpL1vXr8vf_2ajRzZparN5iKFw.crl (hash: Otuv1W+ciD5AYXNamBMUpRgcLAe0Elkj32lYEVI1iXU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 10:01:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:87:36:91:7d:f3:59:8c:3e:cf:46:33:5c:43:62:cc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
        Validity
            Not Before: Aug  4 10:01:14 2025 GMT
            Not After : Aug  5 10:01:14 2025 GMT
        Subject: CN=79f3dc48f23c4adf292c11acffe8b3d3d1f093e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:2d:f0:f3:e7:54:12:f5:46:c2:c3:3d:00:47:
                    dc:77:12:37:71:55:18:cb:99:5a:51:d3:88:80:25:
                    1c:e2:11:82:52:62:19:05:f7:0f:e1:bb:4a:cb:24:
                    c6:5e:11:9e:06:d9:73:67:23:c5:00:a5:13:d3:20:
                    f0:cb:b7:8f:24:c9:ef:40:e6:95:b6:47:81:31:14:
                    21:d2:ec:23:a3:9c:31:87:ba:98:3a:d3:66:66:b5:
                    a0:5b:98:5e:f8:f9:d0:0c:bb:56:3f:5f:64:74:32:
                    31:de:2f:b1:4a:e3:7a:5a:f1:1e:3a:ed:ac:e6:4b:
                    ef:e2:01:ab:7f:31:d7:26:16:fa:f2:2c:02:9b:9a:
                    b2:9b:a1:a6:07:eb:fa:9c:3e:84:ca:b2:96:38:b8:
                    f9:5b:34:12:76:90:82:3b:f8:13:57:3c:9f:53:93:
                    12:5c:38:4d:01:db:04:05:a7:7c:f1:c7:9f:42:30:
                    77:dc:f3:90:d8:f9:88:db:aa:b4:f3:63:ef:d8:14:
                    99:e6:db:0f:d8:42:70:cd:e9:58:c1:7f:b5:cb:b6:
                    d4:7d:7d:9a:e2:72:d8:c0:ec:3c:ba:8c:40:17:f5:
                    22:78:51:de:73:6c:4f:da:5b:56:54:2b:06:a6:70:
                    ee:eb:2c:fe:ca:97:66:02:78:1f:7d:a7:a3:49:d0:
                    68:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:F3:DC:48:F2:3C:4A:DF:29:2C:11:AC:FF:E8:B3:D3:D1:F0:93:E2
            X509v3 Authority Key Identifier:
                keyid:B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:59:55:f2:20:02:86:04:e8:7b:ec:ec:12:f5:9f:42:c5:43:
         1b:cb:83:6f:3f:2f:98:c6:9d:a7:37:16:db:fc:9e:f3:62:6a:
         3f:ec:c6:14:ba:5e:83:23:47:84:c1:cf:9a:bb:77:f7:f7:df:
         d7:b4:c0:60:c0:02:26:10:13:b1:fd:78:d3:a0:29:9e:2c:c3:
         e9:fb:ea:ea:ea:54:79:37:3f:88:67:00:d0:3c:d9:5b:ce:49:
         34:9d:f6:76:e2:60:b5:81:9b:20:b2:c0:20:bb:21:fd:4d:2a:
         2c:97:bc:e2:b8:0a:c6:a9:bc:3b:9d:5b:d3:43:bd:01:29:2e:
         0c:b4:50:1d:4d:8a:1b:ef:15:3d:73:1b:0b:17:d5:64:be:f3:
         c5:dc:a1:d4:4b:00:7b:12:e9:06:11:65:7e:98:a5:f1:d7:82:
         0d:1a:79:b8:d5:0b:1a:43:00:a3:53:ab:33:62:86:53:38:64:
         86:13:87:78:32:3f:05:5c:f7:c8:ce:69:99:1a:f3:85:e6:c8:
         65:7e:a2:05:0d:0c:bf:1f:d7:32:7c:02:8d:d9:e4:ae:df:26:
         f7:db:09:a6:40:e5:d2:ed:1b:0c:a3:fa:f0:24:3a:62:40:fa:
         92:0f:ee:c5:de:af:b2:26:4a:ab:ac:ec:20:47:ea:0f:8e:d0:
         6a:3a:c6:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh0hzaRffNZjD7PRjNcQ2LMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NmE0YmQ2ZjVlYmYyZjdmZmQ5YThkMWNkOWE1YWFjZGU2
MjI4NWMwHhcNMjUwODA0MTAwMTE0WhcNMjUwODA1MTAwMTE0WjAzMTEwLwYDVQQD
Eyg3OWYzZGM0OGYyM2M0YWRmMjkyYzExYWNmZmU4YjNkM2QxZjA5M2UyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuS3w8+dUEvVGwsM9AEfcdxI3cVUY
y5laUdOIgCUc4hGCUmIZBfcP4btKyyTGXhGeBtlzZyPFAKUT0yDwy7ePJMnvQOaV
tkeBMRQh0uwjo5wxh7qYOtNmZrWgW5he+PnQDLtWP19kdDIx3i+xSuN6WvEeOu2s
5kvv4gGrfzHXJhb68iwCm5qym6GmB+v6nD6EyrKWOLj5WzQSdpCCO/gTVzyfU5MS
XDhNAdsEBad88cefQjB33POQ2PmI26q082Pv2BSZ5tsP2EJwzelYwX+1y7bUfX2a
4nLYwOw8uoxAF/UieFHec2xP2ltWVCsGpnDu6yz+ypdmAngffaejSdBo+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHnz3EjyPErfKSwRrP/os9PR8JPiMB8GA1UdIwQY
MBaAFLVqS9b16/L3/9mo0c2aWqzeYihcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMt
MDgyZTExMzYzZjBhLzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMtMDgyZTExMzYzZjBh
LzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVVlV8iAC
hgToe+zsEvWfQsVDG8uDbz8vmMadpzcW2/ye82JqP+zGFLpegyNHhMHPmrt39/ff
17TAYMACJhATsf1406ApnizD6fvq6upUeTc/iGcA0DzZW85JNJ32duJgtYGbILLA
ILsh/U0qLJe84rgKxqm8O51b00O9ASkuDLRQHU2KG+8VPXMbCxfVZL7zxdyh1EsA
exLpBhFlfpil8deCDRp5uNULGkMAo1OrM2KGUzhkhhOHeDI/BVz3yM5pmRrzhebI
ZX6iBQ0Mvx/XMnwCjdnkrt8m99sJpkDl0u0bDKP68CQ6YkD6kg/uxd6vsiZKq6zs
IEfqD47QajrGiA==
-----END CERTIFICATE-----