Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
File:                     r_yn9tponMVFu7uVA5i6xAeXmqM.mft (raw, json)
Hash identifier:          Gt93VU6Z9zYPTveGQy6ZgGzXOQXIE9qKffszbf75HJc=
Subject key identifier:   D8:A9:A3:D9:65:66:BB:8A:D7:B3:F1:36:9F:4B:4E:01:E1:A1:4E:F6
Authority key identifier: AF:FC:A7:F6:DA:68:9C:C5:45:BB:BB:95:03:98:BA:C4:07:97:9A:A3
Certificate issuer:       /CN=affca7f6da689cc545bbbb950398bac407979aa3
Certificate serial:       019916BED2D02A5973C8B73708FECD368050
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/r_yn9tponMVFu7uVA5i6xAeXmqM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
Manifest number:          03D5
Signing time:             Thu 04 Sep 2025 22:00:28 +0000
Manifest this update:     Thu 04 Sep 2025 22:00:28 +0000
Manifest next update:     Fri 05 Sep 2025 22:00:28 +0000
Files and hashes:         1: r_yn9tponMVFu7uVA5i6xAeXmqM.crl (hash: at4dkMifZl0HRxANbOjFmhgwEEs+8oFXT7HSFQDn/JM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/r_yn9tponMVFu7uVA5i6xAeXmqM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 05 Sep 2025 22:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:16:be:d2:d0:2a:59:73:c8:b7:37:08:fe:cd:36:80:50
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=affca7f6da689cc545bbbb950398bac407979aa3
        Validity
            Not Before: Sep  4 22:00:28 2025 GMT
            Not After : Sep  5 22:00:28 2025 GMT
        Subject: CN=d8a9a3d96566bb8ad7b3f1369f4b4e01e1a14ef6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:7f:f0:5a:44:0d:a6:84:69:8c:62:89:74:cb:
                    6c:f3:ea:0e:69:f2:2a:e9:75:25:5c:45:0a:91:e8:
                    c8:de:0e:c9:ce:52:d6:2a:b0:31:f8:b5:6a:61:ac:
                    7b:9e:8a:4f:07:09:f3:93:18:f5:35:cb:cc:54:f9:
                    72:05:4f:a4:4b:e9:01:a0:20:9e:b9:89:0f:01:5e:
                    e9:88:de:b9:42:ce:4a:05:78:8e:59:26:91:1a:8c:
                    13:1f:c9:3c:40:b6:1c:92:a7:2d:45:93:c7:83:06:
                    7b:08:40:ba:af:5e:71:2b:2d:b6:e3:fc:fe:bb:48:
                    d3:02:b1:a2:ea:ae:87:72:24:65:f8:09:27:7b:9c:
                    f7:3c:b1:c9:cf:c5:0d:3a:2f:d8:cb:c4:9b:e8:d2:
                    76:1e:c2:f4:43:43:90:62:82:af:59:6a:8f:a0:7b:
                    a0:73:8d:8a:3c:9f:9f:c9:e0:63:22:4b:f1:ec:4e:
                    d6:b2:2c:fa:3a:95:6c:2b:9a:0c:98:9f:82:d1:3e:
                    d1:c0:70:a8:23:eb:4e:5b:98:b3:d4:47:17:01:ea:
                    c8:90:75:64:b0:99:af:d8:71:e4:1a:ca:c6:c0:74:
                    56:32:cd:33:a2:66:fd:10:5a:9e:c3:44:26:59:6b:
                    ba:17:1c:26:4c:0d:77:d5:8b:25:bb:a4:6a:70:2f:
                    b0:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:A9:A3:D9:65:66:BB:8A:D7:B3:F1:36:9F:4B:4E:01:E1:A1:4E:F6
            X509v3 Authority Key Identifier:
                keyid:AF:FC:A7:F6:DA:68:9C:C5:45:BB:BB:95:03:98:BA:C4:07:97:9A:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_yn9tponMVFu7uVA5i6xAeXmqM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3a:30:09:0b:50:9e:51:25:94:26:b2:17:ed:02:c6:63:d2:c1:
         1a:41:65:50:f0:b5:3a:04:23:95:43:47:18:67:c2:55:6a:54:
         51:ab:bf:29:c8:0e:aa:27:8c:35:45:c2:73:6c:2e:40:64:c2:
         f5:98:de:d9:8c:10:6c:d7:2a:de:15:6a:96:39:17:b1:bb:51:
         bb:c8:5f:ec:b0:a0:da:ea:2b:a6:65:03:9c:91:12:a4:b4:ac:
         b3:1c:55:e0:81:e1:bc:60:60:2c:75:ca:c1:a4:97:49:e7:bb:
         de:2d:9e:8a:97:1a:73:9a:ca:56:8d:bf:78:55:71:98:a0:88:
         33:20:8d:7a:dc:fc:e3:33:f3:da:af:63:ed:a4:33:29:42:9e:
         c6:ac:70:b7:93:86:c2:9e:bc:b4:f3:dd:ae:7c:43:c5:45:4d:
         9d:dc:5a:33:e0:79:5e:fc:30:23:9a:e4:10:73:aa:2b:35:d4:
         c9:84:43:64:c7:8e:d1:3d:88:48:7d:c7:16:91:61:b8:a0:d5:
         2b:16:f9:93:0a:8f:c5:18:5c:82:af:b1:e1:c0:ae:0a:d0:aa:
         00:1e:20:01:18:8b:3a:37:c5:db:13:ac:7a:5e:d0:ec:d6:c5:
         d9:aa:f6:2c:94:ce:cd:02:87:27:39:4c:cc:14:9a:70:48:4d:
         07:6b:57:79
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkWvtLQKllzyLc3CP7NNoBQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmZmNhN2Y2ZGE2ODljYzU0NWJiYmI5NTAzOThiYWM0MDc5
NzlhYTMwHhcNMjUwOTA0MjIwMDI4WhcNMjUwOTA1MjIwMDI4WjAzMTEwLwYDVQQD
EyhkOGE5YTNkOTY1NjZiYjhhZDdiM2YxMzY5ZjRiNGUwMWUxYTE0ZWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3/wWkQNpoRpjGKJdMts8+oOafIq
6XUlXEUKkejI3g7JzlLWKrAx+LVqYax7nopPBwnzkxj1NcvMVPlyBU+kS+kBoCCe
uYkPAV7piN65Qs5KBXiOWSaRGowTH8k8QLYckqctRZPHgwZ7CEC6r15xKy224/z+
u0jTArGi6q6HciRl+Akne5z3PLHJz8UNOi/Yy8Sb6NJ2HsL0Q0OQYoKvWWqPoHug
c42KPJ+fyeBjIkvx7E7Wsiz6OpVsK5oMmJ+C0T7RwHCoI+tOW5iz1EcXAerIkHVk
sJmv2HHkGsrGwHRWMs0zomb9EFqew0QmWWu6FxwmTA131Yslu6RqcC+wgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNipo9llZruK17PxNp9LTgHhoU72MB8GA1UdIwQY
MBaAFK/8p/baaJzFRbu7lQOYusQHl5qjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcl95bjl0cG9uTVZGdTd1VkE1aTZ4QWVYbXFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC8xOWJhOTctMTlhZi00Zjg4LTk2YWEt
MTk4NWIwYjA4MjVlLzEvcl95bjl0cG9uTVZGdTd1VkE1aTZ4QWVYbXFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC8xOWJhOTctMTlhZi00Zjg4LTk2YWEtMTk4NWIwYjA4MjVl
LzEvcl95bjl0cG9uTVZGdTd1VkE1aTZ4QWVYbXFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOjAJC1Ce
USWUJrIX7QLGY9LBGkFlUPC1OgQjlUNHGGfCVWpUUau/KcgOqieMNUXCc2wuQGTC
9Zje2YwQbNcq3hVqljkXsbtRu8hf7LCg2uorpmUDnJESpLSssxxV4IHhvGBgLHXK
waSXSee73i2eipcac5rKVo2/eFVxmKCIMyCNetz84zPz2q9j7aQzKUKexqxwt5OG
wp68tPPdrnxDxUVNndxaM+B5XvwwI5rkEHOqKzXUyYRDZMeO0T2ISH3HFpFhuKDV
Kxb5kwqPxRhcgq+x4cCuCtCqAB4gARiLOjfF2xOsel7Q7NbF2ar2LJTOzQKHJzlM
zBSacEhNB2tXeQ==
-----END CERTIFICATE-----