Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft
File:                     ySqWHIeskFGOp1LxhbtlEoq6KGY.mft (raw, json)
Hash identifier:          q7YcwzArm4NTSCucKQd84KVF1fX/BrtggAUWlOKRxp4=
Subject key identifier:   16:2A:1C:F4:EC:87:D5:E2:1D:39:82:C4:23:5C:F3:C3:7F:C8:FE:CB
Authority key identifier: C9:2A:96:1C:87:AC:90:51:8E:A7:52:F1:85:BB:65:12:8A:BA:28:66
Certificate issuer:       /CN=c92a961c87ac90518ea752f185bb65128aba2866
Certificate serial:       019921B0BCDC8F2487C5B93489B7F7186BCC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ySqWHIeskFGOp1LxhbtlEoq6KGY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft
Manifest number:          0315
Signing time:             Sun 07 Sep 2025 01:00:54 +0000
Manifest this update:     Sun 07 Sep 2025 01:00:54 +0000
Manifest next update:     Mon 08 Sep 2025 01:00:54 +0000
Files and hashes:         1: ySqWHIeskFGOp1LxhbtlEoq6KGY.crl (hash: MkB/nSe4hTcNqMFgZdXnz4suBGODLamHRbL8Z4MFr20=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ySqWHIeskFGOp1LxhbtlEoq6KGY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 01:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:b0:bc:dc:8f:24:87:c5:b9:34:89:b7:f7:18:6b:cc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c92a961c87ac90518ea752f185bb65128aba2866
        Validity
            Not Before: Sep  7 01:00:54 2025 GMT
            Not After : Sep  8 01:00:54 2025 GMT
        Subject: CN=162a1cf4ec87d5e21d3982c4235cf3c37fc8fecb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:68:f7:11:af:f4:08:d7:2c:b2:79:f8:52:45:
                    35:9f:1e:3b:02:fc:68:f6:22:c6:8b:e0:15:ab:22:
                    74:fc:a1:52:32:39:78:1c:9a:74:91:ae:2c:86:1f:
                    f1:f4:48:d7:9f:29:a0:d5:cf:de:61:13:56:21:47:
                    ef:38:02:44:d4:68:a5:dd:78:7f:6e:e3:37:fb:f3:
                    1a:c7:c7:88:eb:e4:7f:0a:a5:67:d8:e9:5f:fb:64:
                    75:9c:22:14:d3:4d:41:76:5a:b8:62:73:ad:3f:af:
                    fb:9b:f1:97:56:b1:89:ca:d8:54:71:7a:43:ad:f5:
                    0f:d2:08:ea:7d:de:a8:41:a7:66:43:03:05:c0:dc:
                    11:f3:81:32:30:b6:a8:a2:c6:4c:48:78:06:13:85:
                    00:f2:d9:85:5d:14:a8:06:65:1c:8b:f4:85:99:0f:
                    f2:23:c5:ca:22:57:55:62:7c:0f:6a:14:79:83:7c:
                    5c:54:c8:d4:8b:4e:0f:bd:2e:62:2f:ad:53:2e:63:
                    5c:cb:ae:8d:e1:ba:e1:ae:4f:9c:b6:fa:6e:50:8d:
                    b7:45:4b:9e:27:6f:8b:47:bb:69:8d:80:c8:b6:f3:
                    e0:92:69:8f:7b:8e:f5:ca:03:0b:93:d3:a0:4b:ac:
                    26:1e:dc:ad:3c:be:ee:78:53:3b:91:01:2b:1e:cf:
                    21:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:2A:1C:F4:EC:87:D5:E2:1D:39:82:C4:23:5C:F3:C3:7F:C8:FE:CB
            X509v3 Authority Key Identifier:
                keyid:C9:2A:96:1C:87:AC:90:51:8E:A7:52:F1:85:BB:65:12:8A:BA:28:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ySqWHIeskFGOp1LxhbtlEoq6KGY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/31/e5055f-dd77-4e66-b76e-f1e18b31292c/1/ySqWHIeskFGOp1LxhbtlEoq6KGY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:3e:0f:2d:09:6a:81:3f:9e:28:e6:9c:c7:1f:cc:35:d7:74:
         d8:0b:92:3e:8f:9f:f7:87:0c:27:52:d6:fb:7f:9e:8c:70:0c:
         60:7c:2d:df:26:c3:63:bb:ee:5d:bf:07:2d:99:85:73:af:db:
         dc:f0:a8:88:11:d7:5f:8f:32:ae:c4:c3:a4:13:58:69:0a:ec:
         e2:61:2a:63:75:0b:d2:5e:38:64:ec:71:e9:09:50:a2:02:0a:
         a6:76:c9:93:c6:75:cc:37:40:da:25:c7:50:00:ab:d1:65:6e:
         35:d4:6f:fe:2f:79:ac:4d:54:3e:6d:49:ad:1b:9c:73:c9:71:
         c9:25:2b:17:ef:e2:bc:56:d7:41:d5:95:39:e3:2d:9f:4e:74:
         b6:4a:61:35:f6:6b:25:45:f1:39:14:7b:f8:d3:25:92:bb:4e:
         76:8f:0b:21:42:5d:06:15:24:2d:dd:66:34:71:2c:d9:c0:32:
         73:d2:55:e0:b6:eb:8f:c4:c3:6b:76:43:39:76:8b:64:5d:61:
         b1:f5:1b:ad:23:5a:88:62:cb:72:d3:72:10:10:c6:74:6c:ac:
         57:47:9a:be:87:5f:d3:d4:74:a7:19:99:fa:07:42:b3:89:bd:
         b1:57:6f:87:c9:12:88:9f:74:19:b5:f6:81:43:ea:92:f7:d4:
         fd:06:e7:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsLzcjySHxbk0ibf3GGvMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5MmE5NjFjODdhYzkwNTE4ZWE3NTJmMTg1YmI2NTEyOGFi
YTI4NjYwHhcNMjUwOTA3MDEwMDU0WhcNMjUwOTA4MDEwMDU0WjAzMTEwLwYDVQQD
EygxNjJhMWNmNGVjODdkNWUyMWQzOTgyYzQyMzVjZjNjMzdmYzhmZWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmj3Ea/0CNcssnn4UkU1nx47Avxo
9iLGi+AVqyJ0/KFSMjl4HJp0ka4shh/x9EjXnymg1c/eYRNWIUfvOAJE1Gil3Xh/
buM3+/Max8eI6+R/CqVn2Olf+2R1nCIU001Bdlq4YnOtP6/7m/GXVrGJythUcXpD
rfUP0gjqfd6oQadmQwMFwNwR84EyMLaoosZMSHgGE4UA8tmFXRSoBmUci/SFmQ/y
I8XKIldVYnwPahR5g3xcVMjUi04PvS5iL61TLmNcy66N4brhrk+ctvpuUI23RUue
J2+LR7tpjYDItvPgkmmPe471ygMLk9OgS6wmHtytPL7ueFM7kQErHs8hBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBYqHPTsh9XiHTmCxCNc88N/yP7LMB8GA1UdIwQY
MBaAFMkqlhyHrJBRjqdS8YW7ZRKKuihmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveVNxV0hJZXNrRkdPcDFMeGhidGxFb3E2S0dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9lNTA1NWYtZGQ3Ny00ZTY2LWI3NmUt
ZjFlMThiMzEyOTJjLzEveVNxV0hJZXNrRkdPcDFMeGhidGxFb3E2S0dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS9lNTA1NWYtZGQ3Ny00ZTY2LWI3NmUtZjFlMThiMzEyOTJj
LzEveVNxV0hJZXNrRkdPcDFMeGhidGxFb3E2S0dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKz4PLQlq
gT+eKOacxx/MNdd02AuSPo+f94cMJ1LW+3+ejHAMYHwt3ybDY7vuXb8HLZmFc6/b
3PCoiBHXX48yrsTDpBNYaQrs4mEqY3UL0l44ZOxx6QlQogIKpnbJk8Z1zDdA2iXH
UACr0WVuNdRv/i95rE1UPm1JrRucc8lxySUrF+/ivFbXQdWVOeMtn050tkphNfZr
JUXxORR7+NMlkrtOdo8LIUJdBhUkLd1mNHEs2cAyc9JV4Lbrj8TDa3ZDOXaLZF1h
sfUbrSNaiGLLctNyEBDGdGysV0eavodf09R0pxmZ+gdCs4m9sVdvh8kSiJ90GbX2
gUPqkvfU/QbnqQ==
-----END CERTIFICATE-----