Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
File:                     Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft (raw, json)
Hash identifier:          6e9ramMIWU5jCgF+5OuKntO0n5opOtrsg/nYsU3Jz/A=
Subject key identifier:   5C:8B:41:55:9A:BA:AA:BD:21:BE:F2:D1:01:11:95:50:64:8B:92:5F
Authority key identifier: 46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
Certificate issuer:       /CN=468ecba10e7599a030aa613088688a6c26d62d75
Certificate serial:       019922FA11DCF4AA39831B95958F1C5AD3A7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
Manifest number:          1302
Signing time:             Sun 07 Sep 2025 07:00:37 +0000
Manifest this update:     Sun 07 Sep 2025 07:00:37 +0000
Manifest next update:     Mon 08 Sep 2025 07:00:37 +0000
Files and hashes:         1: Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl (hash: EuIk0xM1qhQstqEml4Uzo4jTxRgDT3kKA/UtOD28+m8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:11:dc:f4:aa:39:83:1b:95:95:8f:1c:5a:d3:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=468ecba10e7599a030aa613088688a6c26d62d75
        Validity
            Not Before: Sep  7 07:00:37 2025 GMT
            Not After : Sep  8 07:00:37 2025 GMT
        Subject: CN=5c8b41559abaaabd21bef2d101119550648b925f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:50:74:8b:46:4e:72:01:45:20:13:59:4f:f5:
                    16:52:b6:f7:76:6a:ee:88:d2:d8:a0:65:8e:3a:18:
                    7e:b5:29:d7:b3:b3:8b:bb:7e:5d:58:0e:45:f2:89:
                    dd:4b:8e:ef:49:41:10:54:61:1f:5c:2c:af:1b:6b:
                    b3:0a:a1:fb:24:33:1a:72:ff:fd:9c:44:03:3c:b7:
                    20:57:a5:48:de:f1:6e:2a:a0:48:f9:b8:17:76:89:
                    8c:9d:37:aa:9f:fc:54:b0:8b:34:5c:9a:74:20:3f:
                    b3:2c:ad:2f:b9:c0:41:a8:a1:0c:b1:be:a3:a1:51:
                    7c:10:ea:d2:4d:90:60:13:f3:30:e8:35:a4:61:7e:
                    09:3c:1c:a8:ad:02:6e:2f:b2:1a:90:a1:50:b1:57:
                    74:5d:3d:59:dd:4e:3f:d2:b5:0d:63:cb:31:a8:51:
                    70:07:14:02:3d:22:86:76:78:0d:25:c5:e9:f9:de:
                    9e:f7:68:78:c6:92:93:ea:f2:3f:09:e3:8e:5f:31:
                    da:bc:70:2e:1e:2c:94:aa:5c:4a:c9:48:aa:66:e7:
                    ad:ab:ab:58:05:b0:ca:1a:9a:c5:28:26:1f:35:88:
                    87:bb:43:6e:85:0d:20:77:fe:69:6f:5a:3b:61:89:
                    70:53:d4:7a:fc:d6:fe:08:2d:7a:1a:fd:e0:3c:60:
                    88:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:8B:41:55:9A:BA:AA:BD:21:BE:F2:D1:01:11:95:50:64:8B:92:5F
            X509v3 Authority Key Identifier:
                keyid:46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:89:8e:54:38:b8:45:60:b5:fb:bd:a5:3b:55:a0:51:d1:da:
         c2:86:3b:37:6d:00:87:61:82:15:37:ed:37:25:65:c0:c6:9f:
         d6:9d:5c:bc:a2:33:e4:02:44:ae:f1:e3:c2:e6:e6:d9:1a:25:
         88:ba:b7:fc:ab:82:a0:21:e6:cb:ba:ce:4d:bf:e7:90:02:17:
         c6:8b:cc:3c:ba:2a:8a:41:5d:ed:eb:45:17:7a:9c:50:4e:d0:
         06:74:06:f0:35:12:fb:30:6e:af:13:df:0b:0e:2d:9f:af:38:
         6d:a3:d0:30:fe:66:6a:55:e8:3b:84:40:c5:b2:88:33:7e:f0:
         27:48:64:64:1d:7a:7f:8a:df:96:b4:bb:d3:01:95:1f:a6:63:
         15:88:51:e5:ef:65:9a:9e:2c:a1:bd:2d:32:fd:5b:01:f7:1d:
         4e:b2:40:08:7b:55:1b:a3:58:9d:1b:47:06:89:40:c4:d9:4f:
         cd:b9:15:97:f6:96:08:af:cd:15:65:ba:d0:37:cb:a4:06:b3:
         0a:84:0f:4f:52:da:45:07:03:7d:fb:5d:da:a1:5a:40:68:4d:
         3b:31:c6:7e:e9:86:63:16:da:36:7f:86:6b:e5:0d:af:11:94:
         88:2e:71:67:7a:d7:55:29:9a:03:ec:0b:b9:a7:07:fb:d4:d4:
         bf:9e:84:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+hHc9Ko5gxuVlY8cWtOnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2OGVjYmExMGU3NTk5YTAzMGFhNjEzMDg4Njg4YTZjMjZk
NjJkNzUwHhcNMjUwOTA3MDcwMDM3WhcNMjUwOTA4MDcwMDM3WjAzMTEwLwYDVQQD
Eyg1YzhiNDE1NTlhYmFhYWJkMjFiZWYyZDEwMTExOTU1MDY0OGI5MjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArVB0i0ZOcgFFIBNZT/UWUrb3dmru
iNLYoGWOOhh+tSnXs7OLu35dWA5F8ondS47vSUEQVGEfXCyvG2uzCqH7JDMacv/9
nEQDPLcgV6VI3vFuKqBI+bgXdomMnTeqn/xUsIs0XJp0ID+zLK0vucBBqKEMsb6j
oVF8EOrSTZBgE/Mw6DWkYX4JPByorQJuL7IakKFQsVd0XT1Z3U4/0rUNY8sxqFFw
BxQCPSKGdngNJcXp+d6e92h4xpKT6vI/CeOOXzHavHAuHiyUqlxKyUiqZuetq6tY
BbDKGprFKCYfNYiHu0NuhQ0gd/5pb1o7YYlwU9R6/Nb+CC16Gv3gPGCIaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFyLQVWauqq9Ib7y0QERlVBki5JfMB8GA1UdIwQY
MBaAFEaOy6EOdZmgMKphMIhoimwm1i11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9mMWVhNTAtNGUwNS00YWJkLTg5Mjct
ZGY3ZTBiZDZmODE2LzEvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi9mMWVhNTAtNGUwNS00YWJkLTg5MjctZGY3ZTBiZDZmODE2
LzEvUm83TG9RNTFtYUF3cW1Fd2lHaUtiQ2JXTFhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsImOVDi4
RWC1+72lO1WgUdHawoY7N20Ah2GCFTftNyVlwMaf1p1cvKIz5AJErvHjwubm2Rol
iLq3/KuCoCHmy7rOTb/nkAIXxovMPLoqikFd7etFF3qcUE7QBnQG8DUS+zBurxPf
Cw4tn684baPQMP5malXoO4RAxbKIM37wJ0hkZB16f4rflrS70wGVH6ZjFYhR5e9l
mp4sob0tMv1bAfcdTrJACHtVG6NYnRtHBolAxNlPzbkVl/aWCK/NFWW60DfLpAaz
CoQPT1LaRQcDfftd2qFaQGhNOzHGfumGYxbaNn+Ga+UNrxGUiC5xZ3rXVSmaA+wL
uacH+9TUv56Ebg==
-----END CERTIFICATE-----