Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
File:                     4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft (raw, json)
Hash identifier:          nDwtb/4DncoZaPSYFIe4aEXuH46As9uQKf7TVn3XIKs=
Subject key identifier:   A3:C0:A3:19:B4:0B:5B:E7:CF:27:5C:89:14:F4:13:5B:AB:A2:7E:F6
Authority key identifier: E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4
Certificate issuer:       /CN=e0b867131100c15de890110063e638a5f02367c4
Certificate serial:       0198A128F5240135BE2D11BD1A2B86F945D7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
Manifest number:          162D
Signing time:             Wed 13 Aug 2025 02:01:12 +0000
Manifest this update:     Wed 13 Aug 2025 02:01:12 +0000
Manifest next update:     Thu 14 Aug 2025 02:01:12 +0000
Files and hashes:         1: 4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl (hash: 8ROOjL6ur2usjOgBSUbXw2s1RPA8I9oyAJrKWuKpfh0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 13 Aug 2025 22:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:a1:28:f5:24:01:35:be:2d:11:bd:1a:2b:86:f9:45:d7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e0b867131100c15de890110063e638a5f02367c4
        Validity
            Not Before: Aug 13 02:01:12 2025 GMT
            Not After : Aug 14 02:01:12 2025 GMT
        Subject: CN=a3c0a319b40b5be7cf275c8914f4135baba27ef6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:10:60:81:43:f1:b4:28:58:40:ce:b7:51:e9:
                    3f:ce:da:68:bb:3f:86:79:79:92:d5:b6:eb:c0:50:
                    c7:ad:96:51:7b:18:2c:3f:83:58:e2:90:0c:e9:ed:
                    ea:96:a6:70:40:df:b7:03:8b:9a:60:86:a3:bb:34:
                    cd:d5:1c:e4:a5:7e:28:a1:31:90:a0:3d:70:6d:e9:
                    94:eb:20:f5:6c:e5:29:93:10:da:5d:26:d0:5e:b8:
                    1f:13:9e:78:e1:dd:6c:2f:31:f4:ba:5b:d4:c2:03:
                    16:e5:70:67:19:d0:9d:78:e3:1a:98:dc:e9:22:aa:
                    69:b7:7c:aa:3c:5b:9a:f6:fb:e8:85:28:7a:db:ba:
                    3d:d9:10:91:31:7a:06:d0:ba:e7:30:a5:f2:21:26:
                    fb:4d:73:2a:6e:27:b2:22:db:0d:fd:34:07:1a:22:
                    93:53:47:04:3b:e7:29:35:f0:d9:2c:1f:fa:31:31:
                    eb:75:ce:cc:88:21:e8:2d:6b:80:05:6d:bc:72:76:
                    5c:c5:8d:99:7e:69:e3:17:15:f0:c9:22:83:6d:78:
                    45:ba:0d:f7:bf:5d:0f:38:31:8d:58:36:d2:4b:be:
                    c3:91:4a:02:16:5d:9c:d2:3a:ee:9d:bc:74:4e:f2:
                    23:82:3c:41:d1:39:a8:a9:ea:d7:95:f0:9d:f9:73:
                    b7:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:C0:A3:19:B4:0B:5B:E7:CF:27:5C:89:14:F4:13:5B:AB:A2:7E:F6
            X509v3 Authority Key Identifier:
                keyid:E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:83:94:36:19:c5:eb:c9:64:ed:22:3f:c7:4e:78:6e:5d:c9:
         36:2c:f9:ba:d1:5e:78:9f:20:36:64:b4:10:46:f7:41:06:dc:
         fb:2c:1a:19:83:3f:cf:3c:bf:24:bb:f8:41:ba:25:48:a1:2e:
         d7:59:b1:62:d1:91:10:0a:a5:fa:77:ce:95:89:3f:36:b7:08:
         52:a8:6e:9e:4e:87:fb:b0:13:0e:f3:ba:79:00:11:c8:bc:49:
         d1:a1:84:4a:c6:38:ab:6c:c0:6f:28:78:02:36:c1:4d:cb:72:
         52:6d:7a:e6:a0:ea:69:e5:14:7e:25:fd:df:45:dc:0a:02:51:
         73:68:ba:68:dc:f8:97:85:a5:8c:86:c0:ef:11:e0:59:13:a0:
         2e:8c:2c:10:c8:ad:28:1f:b8:7a:bc:97:93:d3:6c:0b:29:d9:
         1e:7a:c7:6d:db:3a:46:1e:f8:49:9a:8f:90:53:f7:48:bb:c3:
         c4:40:c4:b9:63:4e:e6:83:5e:72:b8:38:d8:ff:14:da:f3:72:
         f6:d4:c7:e9:56:7e:3c:f2:e7:ff:c5:64:2e:dd:24:00:c8:d0:
         25:75:f4:4b:6e:c2:dd:c7:2a:68:5a:c3:8d:5d:f1:39:da:55:
         50:f1:5f:7c:e0:3f:35:0f:67:c5:dc:07:5f:1f:df:10:b4:5e:
         8d:82:db:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZihKPUkATW+LRG9GiuG+UXXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwYjg2NzEzMTEwMGMxNWRlODkwMTEwMDYzZTYzOGE1ZjAy
MzY3YzQwHhcNMjUwODEzMDIwMTEyWhcNMjUwODE0MDIwMTEyWjAzMTEwLwYDVQQD
EyhhM2MwYTMxOWI0MGI1YmU3Y2YyNzVjODkxNGY0MTM1YmFiYTI3ZWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxBggUPxtChYQM63Uek/ztpouz+G
eXmS1bbrwFDHrZZRexgsP4NY4pAM6e3qlqZwQN+3A4uaYIajuzTN1RzkpX4ooTGQ
oD1wbemU6yD1bOUpkxDaXSbQXrgfE5544d1sLzH0ulvUwgMW5XBnGdCdeOMamNzp
Iqppt3yqPFua9vvohSh627o92RCRMXoG0LrnMKXyISb7TXMqbieyItsN/TQHGiKT
U0cEO+cpNfDZLB/6MTHrdc7MiCHoLWuABW28cnZcxY2ZfmnjFxXwySKDbXhFug33
v10PODGNWDbSS77DkUoCFl2c0jrunbx0TvIjgjxB0TmoqerXlfCd+XO3uQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKPAoxm0C1vnzydciRT0E1uron72MB8GA1UdIwQY
MBaAFOC4ZxMRAMFd6JARAGPmOKXwI2fEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNExobkV4RUF3VjNva0JFQVktWTRwZkFqWjhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9lZWU1MjEtMjVmYS00MDA2LTk1MzEt
MWUwNDQ4MTQ1MThmLzEvNExobkV4RUF3VjNva0JFQVktWTRwZkFqWjhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9lZWU1MjEtMjVmYS00MDA2LTk1MzEtMWUwNDQ4MTQ1MThm
LzEvNExobkV4RUF3VjNva0JFQVktWTRwZkFqWjhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGIOUNhnF
68lk7SI/x054bl3JNiz5utFeeJ8gNmS0EEb3QQbc+ywaGYM/zzy/JLv4QbolSKEu
11mxYtGREAql+nfOlYk/NrcIUqhunk6H+7ATDvO6eQARyLxJ0aGESsY4q2zAbyh4
AjbBTctyUm165qDqaeUUfiX930XcCgJRc2i6aNz4l4WljIbA7xHgWROgLowsEMit
KB+4eryXk9NsCynZHnrHbds6Rh74SZqPkFP3SLvDxEDEuWNO5oNecrg42P8U2vNy
9tTH6VZ+PPLn/8VkLt0kAMjQJXX0S27C3ccqaFrDjV3xOdpVUPFffOA/NQ9nxdwH
Xx/fELRejYLbRQ==
-----END CERTIFICATE-----