Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/bd1b8f-d065-4cc7-9a1f-45ab3f520f00/1/DZxWoYyYei0aLnBEt-MbMhv3rBY.mft
File:                     DZxWoYyYei0aLnBEt-MbMhv3rBY.mft (raw, json)
Hash identifier:          jZnKb9X38wprWX+FvQu2xUaDB4dgDWaxfv18xYZFjH8=
Subject key identifier:   FE:3A:12:C3:D0:14:3C:25:FF:06:93:86:D9:DB:8F:CD:AF:02:38:EE
Authority key identifier: 0D:9C:56:A1:8C:98:7A:2D:1A:2E:70:44:B7:E3:1B:32:1B:F7:AC:16
Certificate issuer:       /CN=0d9c56a18c987a2d1a2e7044b7e31b321bf7ac16
Certificate serial:       01988EEB2D0435E5F7052016F764B689E985
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DZxWoYyYei0aLnBEt-MbMhv3rBY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ca/bd1b8f-d065-4cc7-9a1f-45ab3f520f00/1/DZxWoYyYei0aLnBEt-MbMhv3rBY.mft
Manifest number:          07B6
Signing time:             Sat 09 Aug 2025 13:00:33 +0000
Manifest this update:     Sat 09 Aug 2025 13:00:33 +0000
Manifest next update:     Sun 10 Aug 2025 13:00:33 +0000
Files and hashes:         1: DZxWoYyYei0aLnBEt-MbMhv3rBY.crl (hash: nU6dDCgtRH6EhVBJoeyQznrhgd8at2WxSywvZCLUn1k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ca/bd1b8f-d065-4cc7-9a1f-45ab3f520f00/1/DZxWoYyYei0aLnBEt-MbMhv3rBY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ca/bd1b8f-d065-4cc7-9a1f-45ab3f520f00/1/DZxWoYyYei0aLnBEt-MbMhv3rBY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DZxWoYyYei0aLnBEt-MbMhv3rBY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 13:00:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8e:eb:2d:04:35:e5:f7:05:20:16:f7:64:b6:89:e9:85
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0d9c56a18c987a2d1a2e7044b7e31b321bf7ac16
        Validity
            Not Before: Aug  9 13:00:33 2025 GMT
            Not After : Aug 10 13:00:33 2025 GMT
        Subject: CN=fe3a12c3d0143c25ff069386d9db8fcdaf0238ee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:12:7b:15:bb:38:d5:e5:d3:e0:05:1e:89:99:
                    16:3e:61:f0:ca:9b:7d:d9:8e:67:da:d3:b7:16:76:
                    55:f9:3f:01:aa:00:b0:73:de:6e:93:a9:83:91:4b:
                    63:b8:91:c1:62:28:c2:ec:df:2c:5b:35:ab:96:2d:
                    ec:ee:53:61:af:8a:57:6e:82:35:ce:f8:63:fc:54:
                    da:cc:37:90:6f:e2:33:62:2f:e0:48:28:54:83:6a:
                    bb:c3:68:4b:11:c3:1b:bc:cf:f2:e3:ec:55:21:73:
                    2e:5b:02:26:26:90:46:31:a6:dd:f7:25:4e:5b:d6:
                    72:45:e4:f9:ca:ab:8a:35:4f:c0:e2:0d:1b:15:b6:
                    bc:b0:32:d1:ec:a1:bf:78:d2:4a:e0:6d:77:5f:c7:
                    27:c3:f4:42:b8:08:79:c1:bd:33:94:d7:6d:29:88:
                    c0:28:c9:f2:dc:8b:15:76:60:bc:5f:55:45:95:26:
                    86:6b:26:66:37:db:e3:c7:fe:04:45:38:4b:2f:d6:
                    71:be:28:b9:e3:51:22:ce:ae:b3:22:0c:92:3e:d1:
                    38:2d:72:7b:10:2f:0b:66:80:71:79:f3:0a:0d:ea:
                    46:03:8c:e9:2e:54:a4:7f:e1:a2:7d:d7:3d:fc:e7:
                    82:f2:68:32:36:71:53:9b:93:75:89:9e:f9:b8:d5:
                    32:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:3A:12:C3:D0:14:3C:25:FF:06:93:86:D9:DB:8F:CD:AF:02:38:EE
            X509v3 Authority Key Identifier:
                keyid:0D:9C:56:A1:8C:98:7A:2D:1A:2E:70:44:B7:E3:1B:32:1B:F7:AC:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DZxWoYyYei0aLnBEt-MbMhv3rBY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/bd1b8f-d065-4cc7-9a1f-45ab3f520f00/1/DZxWoYyYei0aLnBEt-MbMhv3rBY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/bd1b8f-d065-4cc7-9a1f-45ab3f520f00/1/DZxWoYyYei0aLnBEt-MbMhv3rBY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:4b:cf:90:b9:cb:05:7d:03:51:b3:47:f5:5c:fc:eb:91:1d:
         85:7f:15:02:8d:7e:50:67:58:b0:c2:e7:bd:a1:88:e8:2b:0a:
         03:e9:e6:f1:fa:53:f3:db:3f:a3:9e:c9:45:8b:2f:31:3d:c6:
         4a:2f:ac:76:e8:ed:71:d7:b1:66:4f:6e:34:99:2b:91:10:69:
         e1:f2:ad:d0:18:43:b6:e6:2c:f2:1b:a9:00:d2:37:9f:af:9e:
         ee:da:b5:80:05:b5:bf:51:07:d1:68:fc:e0:a6:1d:20:f8:5d:
         c3:74:c4:77:18:93:6f:4c:b1:80:30:66:bd:5e:a8:7b:f8:fb:
         d5:4f:e1:b6:6f:a5:d4:5c:35:17:30:3d:df:57:d1:9a:0d:d0:
         d4:79:98:43:b0:1c:92:a6:19:de:54:2d:de:66:87:24:92:6e:
         52:6c:6d:18:15:21:86:66:03:76:76:b4:71:de:60:bd:4d:cd:
         2d:66:e1:11:7f:ce:2e:e3:fb:29:28:db:da:a7:a4:40:df:78:
         e9:92:bc:1c:7e:6c:40:17:3f:6e:c6:9e:e1:1e:e2:88:56:5a:
         f2:08:0d:a4:88:8f:fe:cb:70:29:46:91:dc:be:2d:eb:6a:db:
         87:c2:ec:3d:95:0e:8d:50:76:4c:87:ec:a4:14:1a:17:eb:9a:
         61:de:bf:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiO6y0ENeX3BSAW92S2iemFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkOWM1NmExOGM5ODdhMmQxYTJlNzA0NGI3ZTMxYjMyMWJm
N2FjMTYwHhcNMjUwODA5MTMwMDMzWhcNMjUwODEwMTMwMDMzWjAzMTEwLwYDVQQD
EyhmZTNhMTJjM2QwMTQzYzI1ZmYwNjkzODZkOWRiOGZjZGFmMDIzOGVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRJ7Fbs41eXT4AUeiZkWPmHwypt9
2Y5n2tO3FnZV+T8BqgCwc95uk6mDkUtjuJHBYijC7N8sWzWrli3s7lNhr4pXboI1
zvhj/FTazDeQb+IzYi/gSChUg2q7w2hLEcMbvM/y4+xVIXMuWwImJpBGMabd9yVO
W9ZyReT5yquKNU/A4g0bFba8sDLR7KG/eNJK4G13X8cnw/RCuAh5wb0zlNdtKYjA
KMny3IsVdmC8X1VFlSaGayZmN9vjx/4ERThLL9Zxvii541Eizq6zIgySPtE4LXJ7
EC8LZoBxefMKDepGA4zpLlSkf+Gifdc9/OeC8mgyNnFTm5N1iZ75uNUy7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP46EsPQFDwl/waThtnbj82vAjjuMB8GA1UdIwQY
MBaAFA2cVqGMmHotGi5wRLfjGzIb96wWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRFp4V29ZeVllaTBhTG5CRXQtTWJNaHYzckJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9iZDFiOGYtZDA2NS00Y2M3LTlhMWYt
NDVhYjNmNTIwZjAwLzEvRFp4V29ZeVllaTBhTG5CRXQtTWJNaHYzckJZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYS9iZDFiOGYtZDA2NS00Y2M3LTlhMWYtNDVhYjNmNTIwZjAw
LzEvRFp4V29ZeVllaTBhTG5CRXQtTWJNaHYzckJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMEvPkLnL
BX0DUbNH9Vz865EdhX8VAo1+UGdYsMLnvaGI6CsKA+nm8fpT89s/o57JRYsvMT3G
Si+sdujtcdexZk9uNJkrkRBp4fKt0BhDtuYs8hupANI3n6+e7tq1gAW1v1EH0Wj8
4KYdIPhdw3TEdxiTb0yxgDBmvV6oe/j71U/htm+l1Fw1FzA931fRmg3Q1HmYQ7Ac
kqYZ3lQt3maHJJJuUmxtGBUhhmYDdna0cd5gvU3NLWbhEX/OLuP7KSjb2qekQN94
6ZK8HH5sQBc/bsae4R7iiFZa8ggNpIiP/stwKUaR3L4t62rbh8LsPZUOjVB2TIfs
pBQaF+uaYd6/8w==
-----END CERTIFICATE-----