Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft
File:                     IYCTB4hvuv261Th2Eu_-dxOHowA.mft (raw, json)
Hash identifier:          PyJ8OVgyFXzHR1g+9w+szJHRKlcYAEWg9m+y89xGPKg=
Subject key identifier:   A6:CF:97:15:2D:C7:10:4B:62:AD:CC:25:EF:05:B1:7C:D3:63:4F:D4
Authority key identifier: 21:80:93:07:88:6F:BA:FD:BA:D5:38:76:12:EF:FE:77:13:87:A3:00
Certificate issuer:       /CN=21809307886fbafdbad5387612effe771387a300
Certificate serial:       01987D8A40B16BC68D243B10CEE46C8E3136
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft
Manifest number:          0760
Signing time:             Wed 06 Aug 2025 04:01:09 +0000
Manifest this update:     Wed 06 Aug 2025 04:01:09 +0000
Manifest next update:     Thu 07 Aug 2025 04:01:09 +0000
Files and hashes:         1: IYCTB4hvuv261Th2Eu_-dxOHowA.crl (hash: jp8Jr8zK2VXzeCGAhdADdS2f3MFtgl1O5E7TI0afoUA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 07 Aug 2025 04:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7d:8a:40:b1:6b:c6:8d:24:3b:10:ce:e4:6c:8e:31:36
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=21809307886fbafdbad5387612effe771387a300
        Validity
            Not Before: Aug  6 04:01:09 2025 GMT
            Not After : Aug  7 04:01:09 2025 GMT
        Subject: CN=a6cf97152dc7104b62adcc25ef05b17cd3634fd4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:54:93:53:fb:e1:54:90:17:2c:e2:67:47:bb:
                    20:02:ed:94:07:d6:48:c5:7c:cc:87:bb:57:e9:6c:
                    c5:56:8d:e3:41:d9:2c:50:7a:ac:b0:02:ce:a3:fb:
                    1d:bc:7b:86:cd:eb:e0:14:58:fe:48:d8:92:1c:84:
                    6a:9b:62:cc:8f:cc:8a:a2:ea:7b:34:35:8f:86:bc:
                    9b:30:39:b6:3f:89:f6:f7:3a:5d:1f:85:00:b2:32:
                    78:77:e0:3a:31:14:2a:5d:92:70:d0:e5:79:79:f1:
                    bd:30:17:ff:9d:02:94:f1:75:1d:04:32:e5:a1:d8:
                    c4:f6:ac:16:08:84:32:d8:26:3a:ce:3d:6e:57:54:
                    3f:fc:f1:3e:7b:c1:63:2e:9c:6f:1f:76:dc:ad:16:
                    52:90:14:27:c7:0d:5c:37:c8:bc:93:c7:f7:9a:49:
                    c5:40:29:13:d6:90:dd:6d:9d:5e:25:cd:34:1d:fd:
                    95:a3:c4:90:7b:7a:3a:28:12:74:aa:80:f9:a1:97:
                    69:46:76:2c:85:a3:f6:30:bc:68:6e:11:ab:af:a4:
                    6e:97:c4:b6:95:30:68:cf:44:50:4b:a4:6a:f5:13:
                    44:e8:be:e1:bb:f7:36:4e:b2:3e:b2:c1:03:3f:f4:
                    79:c4:b7:29:0e:5d:cd:93:be:0a:a0:db:e2:83:fe:
                    75:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:CF:97:15:2D:C7:10:4B:62:AD:CC:25:EF:05:B1:7C:D3:63:4F:D4
            X509v3 Authority Key Identifier:
                keyid:21:80:93:07:88:6F:BA:FD:BA:D5:38:76:12:EF:FE:77:13:87:A3:00

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYCTB4hvuv261Th2Eu_-dxOHowA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7cbaa-bb9d-47f5-922d-f708dad0eeca/1/IYCTB4hvuv261Th2Eu_-dxOHowA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:25:66:24:44:77:b2:69:fe:f3:c0:e4:94:50:b8:70:62:a4:
         5f:97:a5:44:8f:33:67:5a:e4:4d:50:95:7f:0a:d3:cf:f8:e3:
         35:08:10:7a:fd:48:b5:44:2d:b6:f5:8f:d4:ff:b0:e6:de:3b:
         75:e9:7c:b0:d5:aa:55:f3:28:eb:ea:d5:a2:9e:85:24:20:f2:
         06:a4:b3:59:fd:09:8c:e9:26:6e:d5:49:22:82:2b:7c:47:43:
         bd:cb:46:44:45:56:18:63:38:1f:e4:9c:2d:4d:d4:e5:19:b4:
         5f:f5:4e:ab:6b:be:1e:ff:80:c1:04:43:4b:2c:d9:6e:4a:06:
         c1:e8:5f:60:89:68:06:0a:1f:62:fa:f6:52:8f:85:9e:d2:ec:
         96:11:d9:f8:3c:53:bf:cc:fb:94:60:24:b7:76:8b:30:ff:6c:
         9d:42:d2:09:fa:88:37:97:d7:00:fa:fc:92:7a:7e:58:7b:c7:
         cb:12:ec:53:3c:61:cb:f7:48:14:fc:f4:dc:2e:e3:de:06:bf:
         aa:03:e5:0e:b3:18:47:73:95:6b:f3:45:d6:2b:67:69:14:df:
         b7:6f:c5:80:21:03:77:f3:be:83:5b:10:43:41:84:4e:f1:c4:
         87:66:67:f2:0a:09:6a:76:d5:59:30:4d:0f:94:01:43:12:02:
         b6:9b:e3:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh9ikCxa8aNJDsQzuRsjjE2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxODA5MzA3ODg2ZmJhZmRiYWQ1Mzg3NjEyZWZmZTc3MTM4
N2EzMDAwHhcNMjUwODA2MDQwMTA5WhcNMjUwODA3MDQwMTA5WjAzMTEwLwYDVQQD
EyhhNmNmOTcxNTJkYzcxMDRiNjJhZGNjMjVlZjA1YjE3Y2QzNjM0ZmQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzFSTU/vhVJAXLOJnR7sgAu2UB9ZI
xXzMh7tX6WzFVo3jQdksUHqssALOo/sdvHuGzevgFFj+SNiSHIRqm2LMj8yKoup7
NDWPhrybMDm2P4n29zpdH4UAsjJ4d+A6MRQqXZJw0OV5efG9MBf/nQKU8XUdBDLl
odjE9qwWCIQy2CY6zj1uV1Q//PE+e8FjLpxvH3bcrRZSkBQnxw1cN8i8k8f3mknF
QCkT1pDdbZ1eJc00Hf2Vo8SQe3o6KBJ0qoD5oZdpRnYshaP2MLxobhGrr6Rul8S2
lTBoz0RQS6Rq9RNE6L7hu/c2TrI+ssEDP/R5xLcpDl3Nk74KoNvig/513wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKbPlxUtxxBLYq3MJe8FsXzTY0/UMB8GA1UdIwQY
MBaAFCGAkweIb7r9utU4dhLv/ncTh6MAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVlDVEI0aHZ1djI2MVRoMkV1Xy1keE9Ib3dBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9hN2NiYWEtYmI5ZC00N2Y1LTkyMmQt
ZjcwOGRhZDBlZWNhLzEvSVlDVEI0aHZ1djI2MVRoMkV1Xy1keE9Ib3dBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9hN2NiYWEtYmI5ZC00N2Y1LTkyMmQtZjcwOGRhZDBlZWNh
LzEvSVlDVEI0aHZ1djI2MVRoMkV1Xy1keE9Ib3dBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKCVmJER3
smn+88DklFC4cGKkX5elRI8zZ1rkTVCVfwrTz/jjNQgQev1ItUQttvWP1P+w5t47
del8sNWqVfMo6+rVop6FJCDyBqSzWf0JjOkmbtVJIoIrfEdDvctGREVWGGM4H+Sc
LU3U5Rm0X/VOq2u+Hv+AwQRDSyzZbkoGwehfYIloBgofYvr2Uo+FntLslhHZ+DxT
v8z7lGAkt3aLMP9snULSCfqIN5fXAPr8knp+WHvHyxLsUzxhy/dIFPz03C7j3ga/
qgPlDrMYR3OVa/NF1itnaRTft2/FgCEDd/O+g1sQQ0GETvHEh2Zn8goJanbVWTBN
D5QBQxICtpvjPw==
-----END CERTIFICATE-----