Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft
File:                     Gvq72Ih6kieJRewu74JDoSlq33g.mft (raw, json)
Hash identifier:          1nlMJZcwShaEVk5f0c53qIaSWxHK8kn3JE+hPYvez2s=
Subject key identifier:   C3:F3:59:29:AF:84:BD:E5:84:17:C2:73:D8:52:F2:AF:00:CD:81:4F
Authority key identifier: 1A:FA:BB:D8:88:7A:92:27:89:45:EC:2E:EF:82:43:A1:29:6A:DF:78
Certificate issuer:       /CN=1afabbd8887a92278945ec2eef8243a1296adf78
Certificate serial:       01984966034A5B73602795B765BCF1037EA5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Gvq72Ih6kieJRewu74JDoSlq33g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft
Manifest number:          15FE
Signing time:             Sun 27 Jul 2025 01:01:18 +0000
Manifest this update:     Sun 27 Jul 2025 01:01:18 +0000
Manifest next update:     Mon 28 Jul 2025 01:01:18 +0000
Files and hashes:         1: Gvq72Ih6kieJRewu74JDoSlq33g.crl (hash: dJQNkbFwzhUyQwsXktGK7CtQV1dn8F4y9xu2mHPquEk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Gvq72Ih6kieJRewu74JDoSlq33g.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Jul 2025 00:00:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:49:66:03:4a:5b:73:60:27:95:b7:65:bc:f1:03:7e:a5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1afabbd8887a92278945ec2eef8243a1296adf78
        Validity
            Not Before: Jul 27 01:01:18 2025 GMT
            Not After : Jul 28 01:01:18 2025 GMT
        Subject: CN=c3f35929af84bde58417c273d852f2af00cd814f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:d4:8c:45:f9:50:95:32:88:ba:1c:db:ff:05:
                    5d:9e:57:7c:69:29:1c:6b:45:fa:b1:ca:9a:08:22:
                    4a:ae:95:f7:ca:84:84:cb:fc:e5:9b:86:bf:17:aa:
                    4c:80:a7:9c:a1:4c:8d:1d:e6:af:4d:19:7d:20:df:
                    cc:cb:d6:b8:21:fc:b6:47:fb:f1:51:dc:d9:27:63:
                    f3:4a:d9:3a:77:40:1f:32:90:a7:cf:45:8c:8c:7a:
                    f4:fe:5d:f8:45:13:0e:2c:9a:5c:7b:8b:86:35:29:
                    49:a3:a4:c2:50:c5:8e:61:fc:9a:78:ca:40:25:dd:
                    79:f9:6f:b9:c0:a1:88:77:cb:ba:71:29:e3:c1:5e:
                    a9:bc:aa:f0:e7:3f:92:5c:ce:a0:ae:3a:ef:dd:86:
                    6c:9c:87:5d:c7:6b:76:2b:d6:f2:87:32:e3:12:06:
                    f6:a4:5d:e7:e0:19:05:40:f3:58:79:5e:e9:77:2e:
                    1c:9b:d3:d6:c6:dd:a1:59:25:af:73:b5:ce:d6:86:
                    57:21:95:c0:df:0a:de:c3:8d:3c:e7:b9:f1:f3:4f:
                    4f:3c:a0:7f:6a:14:b9:4e:7e:de:8b:33:60:f5:08:
                    f0:53:f5:b2:4e:42:09:3e:9b:b3:55:50:02:ea:e5:
                    40:67:4f:96:5c:60:13:09:6f:40:98:9c:7f:cc:64:
                    63:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:F3:59:29:AF:84:BD:E5:84:17:C2:73:D8:52:F2:AF:00:CD:81:4F
            X509v3 Authority Key Identifier:
                keyid:1A:FA:BB:D8:88:7A:92:27:89:45:EC:2E:EF:82:43:A1:29:6A:DF:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gvq72Ih6kieJRewu74JDoSlq33g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:15:b1:e6:ef:c4:f8:a5:fe:b2:31:2c:24:f9:52:c1:e6:82:
         0c:7a:32:8c:7f:b6:d0:d1:03:72:cd:c1:a6:fd:18:a4:b2:91:
         b1:ad:43:fc:12:bd:9e:b9:46:6a:5d:b2:ad:a8:87:64:32:58:
         59:21:4b:21:33:70:1a:d9:4f:75:2a:24:42:24:75:7c:54:8c:
         3b:ba:ae:26:ec:d2:73:20:9c:25:94:e5:31:68:0d:cc:44:01:
         3f:c9:73:74:95:25:83:9c:b0:4b:74:fa:cb:6a:d3:4c:cd:cf:
         d4:29:5e:8a:8d:d8:de:09:00:b0:4c:9f:c4:0b:65:b4:0b:11:
         d0:68:9c:89:fe:ad:5b:34:98:81:4c:ee:7a:d3:73:82:c3:7c:
         e8:e9:0f:62:f8:4a:2a:af:dc:aa:7c:fe:cd:c4:35:93:3b:6b:
         b4:2c:90:dc:48:4b:9c:ec:c0:f0:b1:58:16:9f:9f:c0:66:75:
         13:b7:d7:a0:9f:8c:a3:c4:e6:65:06:84:df:ad:ff:a1:4e:11:
         e5:b3:da:43:f4:1f:88:6a:3b:12:f5:ca:1d:89:e2:5b:03:f1:
         c9:65:e0:0d:1b:b9:48:21:ab:9e:94:74:5f:79:51:a8:df:a5:
         c7:f8:92:44:8d:7f:60:f6:84:3b:79:98:90:d0:ad:7e:14:53:
         35:d6:e3:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhJZgNKW3NgJ5W3ZbzxA36lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhZmFiYmQ4ODg3YTkyMjc4OTQ1ZWMyZWVmODI0M2ExMjk2
YWRmNzgwHhcNMjUwNzI3MDEwMTE4WhcNMjUwNzI4MDEwMTE4WjAzMTEwLwYDVQQD
EyhjM2YzNTkyOWFmODRiZGU1ODQxN2MyNzNkODUyZjJhZjAwY2Q4MTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2NSMRflQlTKIuhzb/wVdnld8aSkc
a0X6scqaCCJKrpX3yoSEy/zlm4a/F6pMgKecoUyNHeavTRl9IN/My9a4Ify2R/vx
UdzZJ2PzStk6d0AfMpCnz0WMjHr0/l34RRMOLJpce4uGNSlJo6TCUMWOYfyaeMpA
Jd15+W+5wKGId8u6cSnjwV6pvKrw5z+SXM6grjrv3YZsnIddx2t2K9byhzLjEgb2
pF3n4BkFQPNYeV7pdy4cm9PWxt2hWSWvc7XO1oZXIZXA3wrew40857nx809PPKB/
ahS5Tn7eizNg9QjwU/WyTkIJPpuzVVAC6uVAZ0+WXGATCW9AmJx/zGRjyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMPzWSmvhL3lhBfCc9hS8q8AzYFPMB8GA1UdIwQY
MBaAFBr6u9iIepIniUXsLu+CQ6Epat94MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3ZxNzJJaDZraWVKUmV3dTc0SkRvU2xxMzNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9kZjdhNGMtMjU0OC00MGRkLTkwMGUt
NTE2MDY1YjZjZmE1LzEvR3ZxNzJJaDZraWVKUmV3dTc0SkRvU2xxMzNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9kZjdhNGMtMjU0OC00MGRkLTkwMGUtNTE2MDY1YjZjZmE1
LzEvR3ZxNzJJaDZraWVKUmV3dTc0SkRvU2xxMzNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAERWx5u/E
+KX+sjEsJPlSweaCDHoyjH+20NEDcs3Bpv0YpLKRsa1D/BK9nrlGal2yraiHZDJY
WSFLITNwGtlPdSokQiR1fFSMO7quJuzScyCcJZTlMWgNzEQBP8lzdJUlg5ywS3T6
y2rTTM3P1Cleio3Y3gkAsEyfxAtltAsR0Gicif6tWzSYgUzuetNzgsN86OkPYvhK
Kq/cqnz+zcQ1kztrtCyQ3EhLnOzA8LFYFp+fwGZ1E7fXoJ+Mo8TmZQaE363/oU4R
5bPaQ/QfiGo7EvXKHYniWwPxyWXgDRu5SCGrnpR0X3lRqN+lx/iSRI1/YPaEO3mY
kNCtfhRTNdbjww==
-----END CERTIFICATE-----