Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft
File:                     i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft (raw, json)
Hash identifier:          SgTcyrqj9pCjqxka8Bxc9APJ2jRymuRjLcLc4o78lVk=
Subject key identifier:   A8:9F:AA:61:D1:63:DD:5A:6C:C4:9E:6E:83:8C:97:A3:DC:35:83:48
Authority key identifier: 8B:D8:93:1F:63:57:94:28:BF:08:CC:B1:99:A3:A9:8D:CB:A6:B8:24
Certificate issuer:       /CN=8bd8931f63579428bf08ccb199a3a98dcba6b824
Certificate serial:       019922FA0947644C99B60E2BF1B47AE38690
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/i9iTH2NXlCi_CMyxmaOpjcumuCQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft
Manifest number:          0B49
Signing time:             Sun 07 Sep 2025 07:00:35 +0000
Manifest this update:     Sun 07 Sep 2025 07:00:35 +0000
Manifest next update:     Mon 08 Sep 2025 07:00:35 +0000
Files and hashes:         1: i9iTH2NXlCi_CMyxmaOpjcumuCQ.crl (hash: seW09y3shUX7wuL0CeT2/mT+LcH17C6FtED5tzGcoWQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/i9iTH2NXlCi_CMyxmaOpjcumuCQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:09:47:64:4c:99:b6:0e:2b:f1:b4:7a:e3:86:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8bd8931f63579428bf08ccb199a3a98dcba6b824
        Validity
            Not Before: Sep  7 07:00:35 2025 GMT
            Not After : Sep  8 07:00:35 2025 GMT
        Subject: CN=a89faa61d163dd5a6cc49e6e838c97a3dc358348
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:d9:39:db:df:6d:52:3b:5a:c0:9b:63:f8:16:
                    38:84:7d:0f:d8:d1:6b:de:6d:a6:c7:9e:94:42:14:
                    4c:0b:b9:72:0a:e0:6c:8e:d0:08:6b:ef:e9:da:30:
                    a2:36:94:a0:7f:97:36:1a:e4:6f:d1:d0:8d:af:2c:
                    bc:59:ac:65:f9:65:21:f3:f2:ed:e4:15:82:35:c0:
                    1d:56:30:e1:9c:8b:49:4a:a7:56:cc:fe:48:c4:40:
                    c2:ac:1b:7d:bb:d4:b4:3f:d5:69:f1:57:0b:0c:b0:
                    11:21:f6:61:18:21:94:13:ec:00:db:48:ca:4f:17:
                    39:98:2f:77:de:82:76:58:69:92:7e:27:7f:a0:73:
                    07:74:f2:fe:c4:41:92:2b:d6:77:93:e3:3e:de:3c:
                    1d:5d:10:b6:0a:7a:1b:6d:6b:ad:20:dc:57:a1:16:
                    da:3b:64:7f:5e:b3:64:3f:21:cf:6f:88:cc:f8:f6:
                    56:bb:19:9e:40:a2:71:ec:b1:57:09:33:f9:f5:16:
                    69:27:ee:20:45:e7:05:9c:2a:ca:b5:b4:e8:aa:3c:
                    0d:60:6e:8f:56:1f:53:5e:a1:b1:86:f9:73:59:24:
                    19:2b:fd:d0:2e:4d:ac:4e:a4:31:46:e9:4b:ce:99:
                    70:94:2a:1e:ce:cd:c5:cc:3a:7d:e1:c1:3b:9c:db:
                    a5:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:9F:AA:61:D1:63:DD:5A:6C:C4:9E:6E:83:8C:97:A3:DC:35:83:48
            X509v3 Authority Key Identifier:
                keyid:8B:D8:93:1F:63:57:94:28:BF:08:CC:B1:99:A3:A9:8D:CB:A6:B8:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9iTH2NXlCi_CMyxmaOpjcumuCQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:16:1e:95:04:2d:2b:93:f4:42:c4:91:91:de:32:c6:a1:6e:
         db:6d:d2:d1:68:2f:35:c3:14:74:10:ef:e5:89:b2:54:cc:6b:
         d9:73:93:3f:10:cf:29:37:6f:e7:b2:2a:3e:09:b5:81:e0:47:
         eb:44:44:db:51:87:c9:38:83:61:bc:53:29:03:a6:da:88:54:
         29:70:f4:70:b8:38:83:eb:87:75:e0:48:a0:7b:83:79:75:ec:
         7d:a2:bd:dc:84:4a:86:cc:27:59:e0:76:48:c8:75:40:df:b0:
         a0:13:13:ee:72:f7:49:01:bb:27:d7:ef:e0:c2:d9:bf:55:e6:
         00:87:b1:d8:6b:4f:ae:04:79:fa:cf:cc:dd:1f:55:1f:a7:95:
         14:e8:8e:3d:cb:15:d6:78:d5:2e:de:01:55:a9:ed:78:76:ef:
         b3:fc:67:9e:30:70:83:fe:af:92:65:eb:ac:80:c4:fb:53:4d:
         65:65:c5:e3:a0:7e:9a:a7:ea:ec:c8:c5:33:d1:fb:a3:18:1e:
         09:eb:90:14:3c:77:45:3e:c3:24:ee:e8:10:d2:2d:37:ca:98:
         df:9a:63:22:de:f5:cd:26:da:ce:2b:91:01:d9:15:77:d4:a7:
         ec:de:5a:11:42:7b:9d:3a:c2:ab:af:da:6a:59:6c:6c:72:a4:
         6d:85:38:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+glHZEyZtg4r8bR644aQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiZDg5MzFmNjM1Nzk0MjhiZjA4Y2NiMTk5YTNhOThkY2Jh
NmI4MjQwHhcNMjUwOTA3MDcwMDM1WhcNMjUwOTA4MDcwMDM1WjAzMTEwLwYDVQQD
EyhhODlmYWE2MWQxNjNkZDVhNmNjNDllNmU4MzhjOTdhM2RjMzU4MzQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Nk5299tUjtawJtj+BY4hH0P2NFr
3m2mx56UQhRMC7lyCuBsjtAIa+/p2jCiNpSgf5c2GuRv0dCNryy8Waxl+WUh8/Lt
5BWCNcAdVjDhnItJSqdWzP5IxEDCrBt9u9S0P9Vp8VcLDLARIfZhGCGUE+wA20jK
Txc5mC933oJ2WGmSfid/oHMHdPL+xEGSK9Z3k+M+3jwdXRC2CnobbWutINxXoRba
O2R/XrNkPyHPb4jM+PZWuxmeQKJx7LFXCTP59RZpJ+4gRecFnCrKtbToqjwNYG6P
Vh9TXqGxhvlzWSQZK/3QLk2sTqQxRulLzplwlCoezs3FzDp94cE7nNul/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKifqmHRY91abMSeboOMl6PcNYNIMB8GA1UdIwQY
MBaAFIvYkx9jV5QovwjMsZmjqY3LprgkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaTlpVEgyTlhsQ2lfQ015eG1hT3BqY3VtdUNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC83YWM3YmItMjFkYy00YTExLTk3OTEt
NGVlMTZkNmM4MGE2LzEvaTlpVEgyTlhsQ2lfQ015eG1hT3BqY3VtdUNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC83YWM3YmItMjFkYy00YTExLTk3OTEtNGVlMTZkNmM4MGE2
LzEvaTlpVEgyTlhsQ2lfQ015eG1hT3BqY3VtdUNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADhYelQQt
K5P0QsSRkd4yxqFu223S0WgvNcMUdBDv5YmyVMxr2XOTPxDPKTdv57IqPgm1geBH
60RE21GHyTiDYbxTKQOm2ohUKXD0cLg4g+uHdeBIoHuDeXXsfaK93IRKhswnWeB2
SMh1QN+woBMT7nL3SQG7J9fv4MLZv1XmAIex2GtPrgR5+s/M3R9VH6eVFOiOPcsV
1njVLt4BVanteHbvs/xnnjBwg/6vkmXrrIDE+1NNZWXF46B+mqfq7MjFM9H7oxge
CeuQFDx3RT7DJO7oENItN8qY35pjIt71zSbaziuRAdkVd9Sn7N5aEUJ7nTrCq6/a
allsbHKkbYU4nQ==
-----END CERTIFICATE-----