Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File:                     iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier:          E3sofQHO1aeO4fcAuZnsrI6RK02PWkelzMaHCmJ3rvI=
Subject key identifier:   E0:33:39:46:43:27:5E:96:54:1B:5B:77:1E:0E:FF:D9:9A:B0:C8:F0
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer:       /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial:       0199179AF36BD578FDC0469AAE7E907FEF6C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number:          052D
Signing time:             Fri 05 Sep 2025 02:00:54 +0000
Manifest this update:     Fri 05 Sep 2025 02:00:54 +0000
Manifest next update:     Sat 06 Sep 2025 02:00:54 +0000
Files and hashes:         1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: JXSG+55cFBwWo55VPTkfOOljpylgzimezYPtHl84kEY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 06 Sep 2025 01:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:17:9a:f3:6b:d5:78:fd:c0:46:9a:ae:7e:90:7f:ef:6c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
        Validity
            Not Before: Sep  5 02:00:54 2025 GMT
            Not After : Sep  6 02:00:54 2025 GMT
        Subject: CN=e033394643275e96541b5b771e0effd99ab0c8f0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:4b:bc:84:63:78:92:65:64:0b:cd:9d:09:8b:
                    6c:e4:62:21:a2:21:cc:cc:e9:1d:ac:06:27:ba:24:
                    5e:cc:67:28:fc:96:b4:17:6d:f8:92:6e:d4:04:94:
                    69:13:fb:ae:f7:18:ab:06:9b:b8:a1:e9:7a:ef:7e:
                    10:de:54:2f:3c:3b:7d:47:77:26:c9:f2:7b:3d:4e:
                    e0:a0:d4:c2:57:12:12:80:07:b6:f5:6b:c7:87:80:
                    8b:01:3b:fb:c8:d0:c8:f6:ed:cf:38:c7:71:83:07:
                    b1:6f:ea:c0:35:1c:f5:e9:e1:f0:23:d7:c4:14:50:
                    ff:8b:cd:13:99:6f:37:f7:b6:7f:42:06:ba:36:1c:
                    a5:57:7c:62:65:69:3b:6d:f3:56:be:af:d0:67:87:
                    97:ec:0c:cd:e5:0f:b3:44:a6:0f:08:1c:95:cb:ce:
                    2b:a0:02:6d:3c:a4:38:f7:fe:d6:6b:9b:3f:b9:b6:
                    35:53:dc:64:f4:fc:2f:bf:e1:ad:b4:ff:c5:d9:21:
                    1f:bf:29:78:53:13:8e:c6:15:99:eb:19:13:1d:ec:
                    6c:c0:ac:ce:b9:a7:d8:67:0c:7c:0d:f6:8a:75:5d:
                    18:02:78:2e:c5:76:9f:d0:9c:26:44:85:39:da:7a:
                    2d:92:58:3d:f5:2f:e3:28:d5:e1:3e:91:b5:28:81:
                    ca:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:33:39:46:43:27:5E:96:54:1B:5B:77:1E:0E:FF:D9:9A:B0:C8:F0
            X509v3 Authority Key Identifier:
                keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:0e:cf:61:e0:68:2d:b3:94:bb:2e:3a:44:8c:9b:4a:b3:09:
         f5:f7:3d:05:30:86:34:e9:a9:91:b2:5d:b0:25:cd:7f:aa:c1:
         23:3d:e8:10:70:81:37:c9:12:1f:ac:77:06:19:1d:b2:f8:f2:
         48:40:94:92:24:9f:47:2e:95:15:d2:98:4e:6e:c6:d3:df:0b:
         cc:af:aa:ef:1b:a1:e4:f7:51:41:2a:16:cc:63:ff:1c:e4:6b:
         ee:e0:e3:d2:8b:40:8b:52:fd:40:27:92:07:3c:89:d3:f6:c0:
         85:c4:db:78:3a:e4:17:c2:15:eb:9d:da:da:b6:7f:1c:a2:c8:
         14:10:2c:f4:5e:c8:31:35:f3:27:a9:d5:d1:3a:32:28:32:89:
         ee:1b:e6:68:e8:48:3b:b7:c1:c7:df:34:e0:33:bd:c6:51:9f:
         2e:4b:94:38:f0:35:c9:34:d4:d4:e3:5b:7f:d4:a7:20:1a:20:
         f3:01:a6:73:ed:1e:22:9a:25:65:0d:12:5e:91:e8:6e:51:63:
         93:bc:aa:ca:31:ed:a4:ef:63:15:19:03:2c:f5:04:9d:ac:50:
         05:3d:2b:54:00:c7:e1:86:33:42:84:8d:cc:4e:92:b4:08:bd:
         56:20:75:00:da:c7:b4:8e:2f:d3:4b:61:9f:e8:96:9f:f1:b8:
         28:17:2b:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkXmvNr1Xj9wEaarn6Qf+9sMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5N2YzNWFjNDgyOGFlYTk1ZmE1ZDJkODA0ZDMzYTdiMGNm
ZjQ1OGEwHhcNMjUwOTA1MDIwMDU0WhcNMjUwOTA2MDIwMDU0WjAzMTEwLwYDVQQD
EyhlMDMzMzk0NjQzMjc1ZTk2NTQxYjViNzcxZTBlZmZkOTlhYjBjOGYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArku8hGN4kmVkC82dCYts5GIhoiHM
zOkdrAYnuiRezGco/Ja0F234km7UBJRpE/uu9xirBpu4oel6734Q3lQvPDt9R3cm
yfJ7PU7goNTCVxISgAe29WvHh4CLATv7yNDI9u3POMdxgwexb+rANRz16eHwI9fE
FFD/i80TmW8397Z/Qga6NhylV3xiZWk7bfNWvq/QZ4eX7AzN5Q+zRKYPCByVy84r
oAJtPKQ49/7Wa5s/ubY1U9xk9Pwvv+GttP/F2SEfvyl4UxOOxhWZ6xkTHexswKzO
uafYZwx8DfaKdV0YAnguxXaf0JwmRIU52notklg99S/jKNXhPpG1KIHKxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOAzOUZDJ16WVBtbdx4O/9masMjwMB8GA1UdIwQY
MBaAFIl/NaxIKK6pX6XS2ATTOnsM/0WKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYt
YjBlNDEwM2Y0OTYyLzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYtYjBlNDEwM2Y0OTYy
LzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhg7PYeBo
LbOUuy46RIybSrMJ9fc9BTCGNOmpkbJdsCXNf6rBIz3oEHCBN8kSH6x3Bhkdsvjy
SECUkiSfRy6VFdKYTm7G098LzK+q7xuh5PdRQSoWzGP/HORr7uDj0otAi1L9QCeS
BzyJ0/bAhcTbeDrkF8IV653a2rZ/HKLIFBAs9F7IMTXzJ6nV0ToyKDKJ7hvmaOhI
O7fBx9804DO9xlGfLkuUOPA1yTTU1ONbf9SnIBog8wGmc+0eIpolZQ0SXpHoblFj
k7yqyjHtpO9jFRkDLPUEnaxQBT0rVADH4YYzQoSNzE6StAi9ViB1ANrHtI4v00th
n+iWn/G4KBcrzA==
-----END CERTIFICATE-----