Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/2d782e-01e2-4b73-bf80-b979e65bc0d6/1/Sz1GYT0gKWKWebKwSi-chsq8dNU.mft
File:                     Sz1GYT0gKWKWebKwSi-chsq8dNU.mft (raw, json)
Hash identifier:          VSlkLMQiVe1X1IBibdktFxzEGTl80EDk8E2TQ82MehI=
Subject key identifier:   91:C4:B2:20:66:49:69:27:50:CF:DF:83:CF:7E:43:48:0A:95:F9:45
Authority key identifier: 4B:3D:46:61:3D:20:29:62:96:79:B2:B0:4A:2F:9C:86:CA:BC:74:D5
Certificate issuer:       /CN=4b3d46613d2029629679b2b04a2f9c86cabc74d5
Certificate serial:       01984966E6940070764645248C3F4C2D4C73
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sz1GYT0gKWKWebKwSi-chsq8dNU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7c/2d782e-01e2-4b73-bf80-b979e65bc0d6/1/Sz1GYT0gKWKWebKwSi-chsq8dNU.mft
Manifest number:          15FD
Signing time:             Sun 27 Jul 2025 01:02:17 +0000
Manifest this update:     Sun 27 Jul 2025 01:02:17 +0000
Manifest next update:     Mon 28 Jul 2025 01:02:17 +0000
Files and hashes:         1: Sz1GYT0gKWKWebKwSi-chsq8dNU.crl (hash: V9ie6l/GWBonwl4i35ZNWnhQDyoTet0sE0u7wTff544=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7c/2d782e-01e2-4b73-bf80-b979e65bc0d6/1/Sz1GYT0gKWKWebKwSi-chsq8dNU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7c/2d782e-01e2-4b73-bf80-b979e65bc0d6/1/Sz1GYT0gKWKWebKwSi-chsq8dNU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sz1GYT0gKWKWebKwSi-chsq8dNU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Jul 2025 00:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:49:66:e6:94:00:70:76:46:45:24:8c:3f:4c:2d:4c:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b3d46613d2029629679b2b04a2f9c86cabc74d5
        Validity
            Not Before: Jul 27 01:02:17 2025 GMT
            Not After : Jul 28 01:02:17 2025 GMT
        Subject: CN=91c4b2206649692750cfdf83cf7e43480a95f945
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:09:b9:ab:da:59:8a:72:3c:8a:2f:b0:db:c8:
                    93:6b:1a:44:f6:72:33:60:91:0f:ff:0b:45:ee:10:
                    d1:25:82:0d:aa:f8:09:2c:10:a8:d4:46:b6:be:fb:
                    20:72:b7:96:57:2a:f8:24:fa:16:63:2f:11:69:34:
                    04:a2:1f:d7:94:de:bc:4e:3b:15:81:e5:fe:f7:00:
                    88:39:b9:dd:e3:27:10:42:56:2e:53:dd:cf:36:06:
                    3f:58:d1:48:44:a5:1e:33:8f:2f:c3:e8:45:86:f8:
                    a8:02:cf:3d:4a:64:d1:f0:83:7f:1a:46:16:d1:e9:
                    bf:2c:70:49:66:5b:46:43:94:b5:36:c2:91:45:8d:
                    85:f9:e2:dc:8f:19:a0:4e:3a:52:e4:78:b5:ff:65:
                    78:8c:33:79:ed:ba:f1:4f:fe:28:b4:b9:26:ae:13:
                    e2:b8:b7:78:55:d3:3b:df:83:c3:6b:f7:36:c1:0a:
                    18:a2:8e:01:16:55:81:1a:68:fe:81:1e:a8:f5:28:
                    c4:b9:bf:7d:ad:27:8d:34:a7:9d:3a:30:7d:69:78:
                    de:dc:d9:93:5b:f0:92:a7:e3:03:b0:f6:6b:6c:3a:
                    36:47:2e:76:b9:7a:64:18:97:56:f2:c7:4a:86:b8:
                    bb:74:ff:48:39:ba:5a:12:34:7a:94:c1:94:6b:dc:
                    b6:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:C4:B2:20:66:49:69:27:50:CF:DF:83:CF:7E:43:48:0A:95:F9:45
            X509v3 Authority Key Identifier:
                keyid:4B:3D:46:61:3D:20:29:62:96:79:B2:B0:4A:2F:9C:86:CA:BC:74:D5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sz1GYT0gKWKWebKwSi-chsq8dNU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2d782e-01e2-4b73-bf80-b979e65bc0d6/1/Sz1GYT0gKWKWebKwSi-chsq8dNU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/2d782e-01e2-4b73-bf80-b979e65bc0d6/1/Sz1GYT0gKWKWebKwSi-chsq8dNU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:f2:34:34:df:c6:14:a7:dd:0c:47:d7:f6:24:ab:f3:5c:23:
         d2:fb:02:63:48:47:d9:33:bf:83:65:89:d9:2d:b4:97:56:6b:
         59:30:a5:3e:41:ac:3a:5b:b9:bd:63:f9:f7:92:01:4a:33:95:
         79:72:94:17:b3:8b:6b:f4:3e:f4:df:cc:10:a3:58:27:93:09:
         f6:c9:b3:41:d8:21:4b:ad:83:86:7c:d5:4d:4d:62:6c:4a:55:
         61:36:ba:f9:9f:42:cb:84:d0:c2:52:0b:47:b8:7a:f0:7f:e0:
         b5:f3:57:91:74:7e:29:83:be:df:57:e3:7a:7b:db:66:55:54:
         7b:1c:31:f0:33:4c:d0:b3:10:75:4a:dd:bc:ab:07:8f:4f:74:
         c4:ac:73:b9:7c:b7:1c:26:d3:11:b6:36:04:b5:c4:0a:67:06:
         ad:f8:7c:e6:e5:37:d4:7e:61:28:60:aa:8a:64:a4:01:35:c8:
         21:de:d4:28:6a:e7:36:4b:b3:e7:be:98:2d:3f:88:97:72:09:
         1d:ad:7e:01:ac:a5:ea:c6:90:24:47:75:c0:29:38:40:63:4b:
         12:99:6d:ee:58:64:6d:e5:ea:86:bd:33:4e:25:4c:78:9c:31:
         b6:f5:81:7b:6f:b8:cc:e4:9d:69:fb:76:37:bf:00:db:29:1f:
         c0:d4:17:93
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhJZuaUAHB2RkUkjD9MLUxzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiM2Q0NjYxM2QyMDI5NjI5Njc5YjJiMDRhMmY5Yzg2Y2Fi
Yzc0ZDUwHhcNMjUwNzI3MDEwMjE3WhcNMjUwNzI4MDEwMjE3WjAzMTEwLwYDVQQD
Eyg5MWM0YjIyMDY2NDk2OTI3NTBjZmRmODNjZjdlNDM0ODBhOTVmOTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwQm5q9pZinI8ii+w28iTaxpE9nIz
YJEP/wtF7hDRJYINqvgJLBCo1Ea2vvsgcreWVyr4JPoWYy8RaTQEoh/XlN68TjsV
geX+9wCIObnd4ycQQlYuU93PNgY/WNFIRKUeM48vw+hFhvioAs89SmTR8IN/GkYW
0em/LHBJZltGQ5S1NsKRRY2F+eLcjxmgTjpS5Hi1/2V4jDN57brxT/4otLkmrhPi
uLd4VdM734PDa/c2wQoYoo4BFlWBGmj+gR6o9SjEub99rSeNNKedOjB9aXje3NmT
W/CSp+MDsPZrbDo2Ry52uXpkGJdW8sdKhri7dP9IObpaEjR6lMGUa9y2xwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJHEsiBmSWknUM/fg89+Q0gKlflFMB8GA1UdIwQY
MBaAFEs9RmE9IClilnmysEovnIbKvHTVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3oxR1lUMGdLV0tXZWJLd1NpLWNoc3E4ZE5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy8yZDc4MmUtMDFlMi00YjczLWJmODAt
Yjk3OWU2NWJjMGQ2LzEvU3oxR1lUMGdLV0tXZWJLd1NpLWNoc3E4ZE5VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy8yZDc4MmUtMDFlMi00YjczLWJmODAtYjk3OWU2NWJjMGQ2
LzEvU3oxR1lUMGdLV0tXZWJLd1NpLWNoc3E4ZE5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdvI0NN/G
FKfdDEfX9iSr81wj0vsCY0hH2TO/g2WJ2S20l1ZrWTClPkGsOlu5vWP595IBSjOV
eXKUF7OLa/Q+9N/MEKNYJ5MJ9smzQdghS62DhnzVTU1ibEpVYTa6+Z9Cy4TQwlIL
R7h68H/gtfNXkXR+KYO+31fjenvbZlVUexwx8DNM0LMQdUrdvKsHj090xKxzuXy3
HCbTEbY2BLXECmcGrfh85uU31H5hKGCqimSkATXIId7UKGrnNkuz576YLT+Il3IJ
Ha1+Aayl6saQJEd1wCk4QGNLEplt7lhkbeXqhr0zTiVMeJwxtvWBe2+4zOSdaft2
N78A2ykfwNQXkw==
-----END CERTIFICATE-----