Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft
File:                     HRAqymzxNRE4UpTnfb4nN2jAoEs.mft (raw, json)
Hash identifier:          /LNX1kn82TXTiKh0VRjdai72Jb8qTYo2AjCnqEuFzmg=
Subject key identifier:   E0:3F:0F:EB:0C:79:AE:AB:20:5D:82:EF:8A:AF:74:17:DF:4B:29:CB
Authority key identifier: 1D:10:2A:CA:6C:F1:35:11:38:52:94:E7:7D:BE:27:37:68:C0:A0:4B
Certificate issuer:       /CN=1d102aca6cf13511385294e77dbe273768c0a04b
Certificate serial:       0199239FB991EE296015069C802BB3B44A90
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HRAqymzxNRE4UpTnfb4nN2jAoEs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft
Manifest number:          0B4F
Signing time:             Sun 07 Sep 2025 10:01:33 +0000
Manifest this update:     Sun 07 Sep 2025 10:01:33 +0000
Manifest next update:     Mon 08 Sep 2025 10:01:33 +0000
Files and hashes:         1: HRAqymzxNRE4UpTnfb4nN2jAoEs.crl (hash: YA5Tv3DW3y5bfpd873svmA/EYmi6eIMBjGNFZ0v7nyA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HRAqymzxNRE4UpTnfb4nN2jAoEs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:23:9f:b9:91:ee:29:60:15:06:9c:80:2b:b3:b4:4a:90
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1d102aca6cf13511385294e77dbe273768c0a04b
        Validity
            Not Before: Sep  7 10:01:33 2025 GMT
            Not After : Sep  8 10:01:33 2025 GMT
        Subject: CN=e03f0feb0c79aeab205d82ef8aaf7417df4b29cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:c5:0b:b6:ac:32:e1:98:3a:ad:d9:28:3d:cd:
                    3d:c9:a3:2e:66:dc:38:d8:f8:f7:92:12:19:f6:15:
                    96:bf:71:9d:f8:18:73:0d:bc:a1:81:98:e9:99:e0:
                    ee:51:5d:9f:1f:e6:8f:cf:20:b7:89:5e:95:07:64:
                    e1:38:0e:41:f6:f9:91:9c:3f:ed:fd:41:05:03:f7:
                    8a:53:ed:4f:63:0c:96:c9:e9:3e:fb:86:34:5c:67:
                    5a:63:ff:f7:a4:31:e9:ea:7c:c3:80:1a:51:c4:80:
                    a3:21:75:2d:16:c0:af:ac:61:8c:f1:4c:39:f3:b4:
                    cc:47:68:22:d1:49:1d:8d:91:4c:28:58:9c:d7:ca:
                    48:14:0a:94:c7:5d:d1:ee:72:cb:aa:8c:3c:59:15:
                    1b:55:0f:a7:78:7f:ef:94:8f:b7:ab:ea:34:4b:94:
                    6c:c2:e1:fb:be:c3:4d:af:9e:dc:05:81:34:59:b3:
                    bd:2c:cc:19:42:ca:c4:88:08:70:0e:80:af:ed:65:
                    56:04:bf:3d:d1:d7:22:56:56:39:50:70:23:93:7e:
                    fa:c5:f5:df:d1:79:e8:c1:d3:6f:86:94:f7:3f:e3:
                    ae:49:b3:f1:8f:48:d6:17:8c:37:51:37:5e:95:e0:
                    e7:59:66:18:53:32:a1:c9:24:24:00:44:79:c9:d1:
                    89:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:3F:0F:EB:0C:79:AE:AB:20:5D:82:EF:8A:AF:74:17:DF:4B:29:CB
            X509v3 Authority Key Identifier:
                keyid:1D:10:2A:CA:6C:F1:35:11:38:52:94:E7:7D:BE:27:37:68:C0:A0:4B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HRAqymzxNRE4UpTnfb4nN2jAoEs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/61b236-6f80-4422-84e5-e8666218a5c8/1/HRAqymzxNRE4UpTnfb4nN2jAoEs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:2b:0e:04:4d:f5:d3:cf:1c:bf:20:68:18:dd:60:67:f5:ea:
         96:68:d3:3b:fe:e4:b7:8e:62:5e:bb:b3:bc:38:f4:e4:27:82:
         c5:50:ed:62:a3:a9:b9:9d:7d:35:c1:de:e0:27:e9:9a:46:c5:
         7e:f1:bc:8e:65:04:92:49:b6:70:9d:de:56:96:90:df:4c:d4:
         55:4f:dc:ac:74:cf:34:53:d4:a5:8b:7e:35:95:d1:a3:2d:82:
         d5:be:b7:e0:91:35:8b:32:92:48:19:72:30:e9:46:0b:45:3c:
         a1:ed:f3:f4:00:b8:5f:89:1e:b9:4c:c7:16:fb:45:69:c8:1a:
         73:37:89:b8:b2:ab:d9:af:cc:7a:5d:1c:1e:e2:d5:b0:5e:7c:
         53:00:09:bf:7c:6f:d8:de:1e:3f:f3:6e:93:08:eb:1d:0f:63:
         82:e1:66:f4:ef:27:e0:37:aa:aa:c8:23:1c:51:bb:c9:45:1e:
         a9:e5:59:d4:ab:dd:8f:2e:b8:f4:3c:17:9b:65:6d:75:d5:f1:
         48:64:53:c1:85:40:07:4a:65:fd:51:24:92:43:f7:4a:7d:e3:
         43:32:09:fc:db:bc:1e:f5:f1:b9:27:24:8d:9f:14:16:39:ab:
         a1:70:80:72:04:45:1c:38:48:80:c8:76:f4:6e:65:a6:ac:5d:
         d4:44:7a:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkjn7mR7ilgFQacgCuztEqQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkMTAyYWNhNmNmMTM1MTEzODUyOTRlNzdkYmUyNzM3Njhj
MGEwNGIwHhcNMjUwOTA3MTAwMTMzWhcNMjUwOTA4MTAwMTMzWjAzMTEwLwYDVQQD
EyhlMDNmMGZlYjBjNzlhZWFiMjA1ZDgyZWY4YWFmNzQxN2RmNGIyOWNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA28ULtqwy4Zg6rdkoPc09yaMuZtw4
2Pj3khIZ9hWWv3Gd+BhzDbyhgZjpmeDuUV2fH+aPzyC3iV6VB2ThOA5B9vmRnD/t
/UEFA/eKU+1PYwyWyek++4Y0XGdaY//3pDHp6nzDgBpRxICjIXUtFsCvrGGM8Uw5
87TMR2gi0UkdjZFMKFic18pIFAqUx13R7nLLqow8WRUbVQ+neH/vlI+3q+o0S5Rs
wuH7vsNNr57cBYE0WbO9LMwZQsrEiAhwDoCv7WVWBL890dciVlY5UHAjk376xfXf
0XnowdNvhpT3P+OuSbPxj0jWF4w3UTdeleDnWWYYUzKhySQkAER5ydGJWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOA/D+sMea6rIF2C74qvdBffSynLMB8GA1UdIwQY
MBaAFB0QKsps8TUROFKU532+JzdowKBLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSFJBcXltenhOUkU0VXBUbmZiNG5OMmpBb0VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS82MWIyMzYtNmY4MC00NDIyLTg0ZTUt
ZTg2NjYyMThhNWM4LzEvSFJBcXltenhOUkU0VXBUbmZiNG5OMmpBb0VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS82MWIyMzYtNmY4MC00NDIyLTg0ZTUtZTg2NjYyMThhNWM4
LzEvSFJBcXltenhOUkU0VXBUbmZiNG5OMmpBb0VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoisOBE31
088cvyBoGN1gZ/XqlmjTO/7kt45iXruzvDj05CeCxVDtYqOpuZ19NcHe4CfpmkbF
fvG8jmUEkkm2cJ3eVpaQ30zUVU/crHTPNFPUpYt+NZXRoy2C1b634JE1izKSSBly
MOlGC0U8oe3z9AC4X4keuUzHFvtFacgaczeJuLKr2a/Mel0cHuLVsF58UwAJv3xv
2N4eP/NukwjrHQ9jguFm9O8n4DeqqsgjHFG7yUUeqeVZ1Kvdjy649DwXm2VtddXx
SGRTwYVAB0pl/VEkkkP3Sn3jQzIJ/Nu8HvXxuSckjZ8UFjmroXCAcgRFHDhIgMh2
9G5lpqxd1ER6aQ==
-----END CERTIFICATE-----