Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
File:                     4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft (raw, json)
Hash identifier:          UAyuxPkRZQ9ww5OYMXD6ei8w3r8o5ElVwoVy6uSWeys=
Subject key identifier:   99:75:E6:A3:9F:B8:8D:D0:19:FF:9C:6A:6B:45:7C:3A:21:67:56:3D
Authority key identifier: E2:AE:E5:A5:92:B3:A7:EC:73:B5:49:44:24:99:6F:7E:BE:C6:8F:BC
Certificate issuer:       /CN=e2aee5a592b3a7ec73b5494424996f7ebec68fbc
Certificate serial:       019921B2338695DE23D1B9A6408CDB8F2D1F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
Manifest number:          166E
Signing time:             Sun 07 Sep 2025 01:02:30 +0000
Manifest this update:     Sun 07 Sep 2025 01:02:30 +0000
Manifest next update:     Mon 08 Sep 2025 01:02:30 +0000
Files and hashes:         1: 4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl (hash: IU+Y5DuPyw0irI6a/KWKIaeUPx0IN+enwa8o/U2VoLk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 01:02:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:21:b2:33:86:95:de:23:d1:b9:a6:40:8c:db:8f:2d:1f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e2aee5a592b3a7ec73b5494424996f7ebec68fbc
        Validity
            Not Before: Sep  7 01:02:30 2025 GMT
            Not After : Sep  8 01:02:30 2025 GMT
        Subject: CN=9975e6a39fb88dd019ff9c6a6b457c3a2167563d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:c0:b9:8d:72:db:05:f9:ee:9f:62:9c:d9:ff:
                    4f:67:b0:3a:91:8d:0b:1b:d0:d7:41:f1:7c:82:cf:
                    43:0f:cd:7b:db:e0:19:70:28:a6:b8:bb:d9:b5:5b:
                    75:aa:d9:4b:44:b3:10:a7:68:c3:9c:10:01:27:4f:
                    0f:ed:dd:da:b9:7b:76:6c:96:56:a0:59:60:09:c5:
                    4d:bf:ac:0c:e9:97:0e:44:ac:21:92:1e:ae:94:2e:
                    0e:e4:40:a1:11:f6:32:9d:ea:d6:b0:b2:08:c9:f9:
                    12:1b:e0:fe:96:5e:23:86:bf:3a:04:e4:a8:29:26:
                    4c:7d:6a:47:08:ca:56:db:b3:5a:21:5f:f6:e2:d7:
                    fa:b6:13:1b:32:6d:88:c5:1b:ed:2e:34:94:44:dc:
                    e1:f7:70:f9:e5:99:c4:2d:6f:3a:dc:91:03:c0:80:
                    c6:05:de:27:62:7d:41:b1:18:70:c1:0d:f8:64:b1:
                    de:3d:fe:fe:1c:29:d5:8f:d0:38:bd:49:12:69:7f:
                    3b:db:88:99:ad:14:44:8c:f4:21:16:76:c1:fb:64:
                    33:d1:aa:a9:7d:71:65:2c:0f:99:8e:50:1c:9c:42:
                    59:46:d7:b5:ed:d6:95:f6:63:56:b0:6f:51:03:41:
                    af:9a:c0:81:56:ed:bc:b7:c5:af:25:0c:3b:27:e4:
                    b6:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                99:75:E6:A3:9F:B8:8D:D0:19:FF:9C:6A:6B:45:7C:3A:21:67:56:3D
            X509v3 Authority Key Identifier:
                keyid:E2:AE:E5:A5:92:B3:A7:EC:73:B5:49:44:24:99:6F:7E:BE:C6:8F:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4q7lpZKzp-xztUlEJJlvfr7Gj7w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/17e936-1630-4a85-a93b-3955e0786092/1/4q7lpZKzp-xztUlEJJlvfr7Gj7w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:8c:9c:7a:e8:fe:3b:22:5e:97:b6:6c:14:68:b3:6b:dd:82:
         13:2f:49:31:ba:a2:ab:29:29:5d:67:bc:26:7a:2e:fa:a5:72:
         95:0a:aa:1e:65:c9:ab:72:93:4c:6c:fe:a2:8d:80:3c:39:b2:
         a8:81:b3:39:48:1e:76:0a:fb:31:e3:14:01:4c:e9:1d:04:96:
         70:f2:9e:3a:8b:6c:cc:4f:e2:c7:2b:6d:6f:18:78:29:36:ec:
         50:fd:26:0f:d1:c1:0a:92:c9:82:f3:c7:53:13:bc:83:d3:0f:
         fa:1f:6b:21:8d:f3:19:66:39:2c:1b:d8:7c:ed:fd:39:42:e7:
         75:1e:84:a6:d8:5d:43:6d:a3:ff:6d:33:aa:68:9d:ae:39:5a:
         6a:e4:61:90:a0:20:df:0d:bb:ec:a9:4e:7b:e4:f6:c0:fd:0b:
         8b:1d:9a:6b:bc:8a:6f:17:67:ea:84:0e:b1:9d:45:51:c8:02:
         9b:ba:b1:22:28:da:24:ad:7d:58:cf:a9:28:3b:3b:f9:0e:db:
         50:c2:2b:53:d4:14:45:cc:36:63:59:25:a1:d2:96:04:bc:7b:
         c3:c1:86:6e:06:3a:34:59:83:15:2e:84:46:c6:fc:95:b3:88:
         52:85:0a:9d:eb:d6:a1:2a:42:e0:80:d2:44:03:2c:4b:b5:e4:
         44:a9:46:56
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkhsjOGld4j0bmmQIzbjy0fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyYWVlNWE1OTJiM2E3ZWM3M2I1NDk0NDI0OTk2ZjdlYmVj
NjhmYmMwHhcNMjUwOTA3MDEwMjMwWhcNMjUwOTA4MDEwMjMwWjAzMTEwLwYDVQQD
Eyg5OTc1ZTZhMzlmYjg4ZGQwMTlmZjljNmE2YjQ1N2MzYTIxNjc1NjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcC5jXLbBfnun2Kc2f9PZ7A6kY0L
G9DXQfF8gs9DD8172+AZcCimuLvZtVt1qtlLRLMQp2jDnBABJ08P7d3auXt2bJZW
oFlgCcVNv6wM6ZcORKwhkh6ulC4O5EChEfYynerWsLIIyfkSG+D+ll4jhr86BOSo
KSZMfWpHCMpW27NaIV/24tf6thMbMm2IxRvtLjSURNzh93D55ZnELW863JEDwIDG
Bd4nYn1BsRhwwQ34ZLHePf7+HCnVj9A4vUkSaX8724iZrRREjPQhFnbB+2Qz0aqp
fXFlLA+ZjlAcnEJZRte17daV9mNWsG9RA0GvmsCBVu28t8WvJQw7J+S2JQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJl15qOfuI3QGf+camtFfDohZ1Y9MB8GA1UdIwQY
MBaAFOKu5aWSs6fsc7VJRCSZb36+xo+8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHE3bHBaS3pwLXh6dFVsRUpKbHZmcjdHajd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xN2U5MzYtMTYzMC00YTg1LWE5M2It
Mzk1NWUwNzg2MDkyLzEvNHE3bHBaS3pwLXh6dFVsRUpKbHZmcjdHajd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8xN2U5MzYtMTYzMC00YTg1LWE5M2ItMzk1NWUwNzg2MDky
LzEvNHE3bHBaS3pwLXh6dFVsRUpKbHZmcjdHajd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACIyceuj+
OyJel7ZsFGiza92CEy9JMbqiqykpXWe8Jnou+qVylQqqHmXJq3KTTGz+oo2APDmy
qIGzOUgedgr7MeMUAUzpHQSWcPKeOotszE/ixyttbxh4KTbsUP0mD9HBCpLJgvPH
UxO8g9MP+h9rIY3zGWY5LBvYfO39OULndR6EpthdQ22j/20zqmidrjlaauRhkKAg
3w277KlOe+T2wP0Lix2aa7yKbxdn6oQOsZ1FUcgCm7qxIijaJK19WM+pKDs7+Q7b
UMIrU9QURcw2Y1klodKWBLx7w8GGbgY6NFmDFS6ERsb8lbOIUoUKnevWoSpC4IDS
RAMsS7XkRKlGVg==
-----END CERTIFICATE-----