Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft
File:                     RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft (raw, json)
Hash identifier:          LdhyfX0B25CZiTJw0G0wg9tQ1LPQymJ2RD92Ck1SuCk=
Subject key identifier:   75:91:90:7D:6D:88:DD:00:B7:1B:F4:73:24:F8:F6:BE:DE:38:CA:D6
Authority key identifier: 46:54:F3:E6:92:7E:C4:C7:C9:7D:0F:23:6A:8C:24:53:4A:7F:CD:D4
Certificate issuer:       /CN=4654f3e6927ec4c7c97d0f236a8c24534a7fcdd4
Certificate serial:       0199228C39B6D7E0EB6DBB002BD269768890
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft
Manifest number:          07B8
Signing time:             Sun 07 Sep 2025 05:00:39 +0000
Manifest this update:     Sun 07 Sep 2025 05:00:39 +0000
Manifest next update:     Mon 08 Sep 2025 05:00:39 +0000
Files and hashes:         1: RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl (hash: iArplXsaT7yuSmc3JZAyPOnT67fKzu1kfW704Sbc4RI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:8c:39:b6:d7:e0:eb:6d:bb:00:2b:d2:69:76:88:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4654f3e6927ec4c7c97d0f236a8c24534a7fcdd4
        Validity
            Not Before: Sep  7 05:00:39 2025 GMT
            Not After : Sep  8 05:00:39 2025 GMT
        Subject: CN=7591907d6d88dd00b71bf47324f8f6bede38cad6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:23:4d:73:77:fa:82:b7:70:0b:8a:e9:4a:4d:
                    17:50:80:5a:87:9c:ac:d9:1f:51:c9:77:b6:91:3a:
                    87:c7:6a:b2:b7:9b:17:12:6b:1d:81:ba:d0:e1:9b:
                    9c:75:32:39:cd:dd:6a:6a:94:ba:7a:02:46:f1:7a:
                    a6:a1:01:04:7b:5d:28:24:8e:2b:34:ba:10:7f:6a:
                    11:9b:ce:6a:b7:e5:4c:32:3a:c6:a0:74:31:6d:07:
                    1e:83:db:b2:4c:d4:de:21:0a:0a:af:d2:5c:7d:65:
                    59:cf:ba:74:15:12:d9:a8:90:8e:13:2e:e0:e5:e2:
                    9c:78:f0:ea:9d:1f:1a:c6:7e:16:95:52:8d:1b:74:
                    a9:95:00:9b:52:5c:66:96:37:be:47:af:0c:2b:eb:
                    5f:1a:41:56:3b:51:8d:9d:d0:4f:96:b0:ef:b1:ad:
                    c4:3e:7b:c8:d2:ef:1e:4b:a4:85:10:30:98:19:b0:
                    5d:cc:72:6c:3c:2f:9a:82:4d:1d:d0:5e:5f:20:e4:
                    73:73:e5:e9:c0:37:0c:fe:53:21:b8:1f:d5:23:73:
                    7c:5a:d8:d1:f2:e8:e1:73:c4:02:c0:96:ab:49:39:
                    e2:22:b0:e0:e6:8c:d2:f1:3d:5a:a2:c3:b2:70:1a:
                    67:ca:34:b7:ba:2b:87:f7:d3:d4:cc:b7:f1:0b:d8:
                    d0:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:91:90:7D:6D:88:DD:00:B7:1B:F4:73:24:F8:F6:BE:DE:38:CA:D6
            X509v3 Authority Key Identifier:
                keyid:46:54:F3:E6:92:7E:C4:C7:C9:7D:0F:23:6A:8C:24:53:4A:7F:CD:D4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/16/7ff4a3-d191-4c6b-835a-b8050622aa96/1/RlTz5pJ-xMfJfQ8jaowkU0p_zdQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:bd:4f:4c:3c:dc:10:d7:26:f6:c2:0d:b9:82:e8:76:23:c5:
         b5:c7:8d:64:3b:94:7e:99:22:3c:23:14:5d:24:13:b7:1f:ef:
         ec:e0:78:91:39:31:f4:e7:be:cb:82:52:98:b1:d7:0b:38:2b:
         29:dc:4a:b4:2f:56:00:8f:15:7d:a6:92:bd:7b:f3:40:0a:90:
         75:5c:1f:ca:69:e7:79:ae:42:a2:44:ad:ad:ec:37:7a:e3:0d:
         a9:2d:4f:b6:9e:ef:6d:41:fb:11:e4:81:ae:a4:1c:0b:d9:09:
         2d:ff:81:bf:43:e2:8c:10:7e:1a:ee:4d:87:0f:61:fd:dd:53:
         63:34:bc:e2:58:3f:74:9e:a7:dd:68:87:cf:c6:93:58:f5:6c:
         f4:fe:ab:db:82:00:f6:fa:7b:13:3c:3b:6f:01:3b:48:70:4b:
         79:50:ea:37:15:2b:cc:95:25:6e:a4:59:7a:86:0c:96:26:b0:
         db:03:00:00:24:31:74:55:60:a0:89:8f:b4:f3:76:c7:7e:52:
         ef:66:db:cf:4f:e3:e6:eb:4d:e8:11:68:93:c2:2f:82:d4:e9:
         9f:3c:1e:5a:80:39:25:70:1a:dc:0a:00:0a:53:23:7f:92:a3:
         73:dd:0f:fd:f3:61:c6:ff:1e:af:de:c6:d8:31:59:70:23:fd:
         1f:c3:f3:57
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkijDm21+DrbbsAK9JpdoiQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ2NTRmM2U2OTI3ZWM0YzdjOTdkMGYyMzZhOGMyNDUzNGE3
ZmNkZDQwHhcNMjUwOTA3MDUwMDM5WhcNMjUwOTA4MDUwMDM5WjAzMTEwLwYDVQQD
Eyg3NTkxOTA3ZDZkODhkZDAwYjcxYmY0NzMyNGY4ZjZiZWRlMzhjYWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CNNc3f6grdwC4rpSk0XUIBah5ys
2R9RyXe2kTqHx2qyt5sXEmsdgbrQ4ZucdTI5zd1qapS6egJG8XqmoQEEe10oJI4r
NLoQf2oRm85qt+VMMjrGoHQxbQceg9uyTNTeIQoKr9JcfWVZz7p0FRLZqJCOEy7g
5eKcePDqnR8axn4WlVKNG3SplQCbUlxmlje+R68MK+tfGkFWO1GNndBPlrDvsa3E
PnvI0u8eS6SFEDCYGbBdzHJsPC+agk0d0F5fIORzc+XpwDcM/lMhuB/VI3N8WtjR
8ujhc8QCwJarSTniIrDg5ozS8T1aosOycBpnyjS3uiuH99PUzLfxC9jQxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHWRkH1tiN0Atxv0cyT49r7eOMrWMB8GA1UdIwQY
MBaAFEZU8+aSfsTHyX0PI2qMJFNKf83UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUmxUejVwSi14TWZKZlE4amFvd2tVMHBfemRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi83ZmY0YTMtZDE5MS00YzZiLTgzNWEt
YjgwNTA2MjJhYTk2LzEvUmxUejVwSi14TWZKZlE4amFvd2tVMHBfemRRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi83ZmY0YTMtZDE5MS00YzZiLTgzNWEtYjgwNTA2MjJhYTk2
LzEvUmxUejVwSi14TWZKZlE4amFvd2tVMHBfemRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWr1PTDzc
ENcm9sINuYLodiPFtceNZDuUfpkiPCMUXSQTtx/v7OB4kTkx9Oe+y4JSmLHXCzgr
KdxKtC9WAI8VfaaSvXvzQAqQdVwfymnnea5CokStrew3euMNqS1Ptp7vbUH7EeSB
rqQcC9kJLf+Bv0PijBB+Gu5Nhw9h/d1TYzS84lg/dJ6n3WiHz8aTWPVs9P6r24IA
9vp7Ezw7bwE7SHBLeVDqNxUrzJUlbqRZeoYMliaw2wMAACQxdFVgoImPtPN2x35S
72bbz0/j5utN6BFok8IvgtTpnzweWoA5JXAa3AoAClMjf5Kjc90P/fNhxv8er97G
2DFZcCP9H8PzVw==
-----END CERTIFICATE-----