Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
File:                     tWpL1vXr8vf_2ajRzZparN5iKFw.mft (raw, json)
Hash identifier:          NOR0yQ30/FpvlfkRPl7tNPg/1ruet/On1lsntiTEcNk=
Subject key identifier:   44:A2:87:8F:49:16:14:13:92:A6:26:F1:BC:AD:9B:27:32:30:24:61
Authority key identifier: B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C
Certificate issuer:       /CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
Certificate serial:       01992255EF8B1D14CA67860A57C474056607
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
Manifest number:          082B
Signing time:             Sun 07 Sep 2025 04:01:21 +0000
Manifest this update:     Sun 07 Sep 2025 04:01:21 +0000
Manifest next update:     Mon 08 Sep 2025 04:01:21 +0000
Files and hashes:         1: tWpL1vXr8vf_2ajRzZparN5iKFw.crl (hash: AyBSK0WSDQ6CIbi3cXREdhRUCutkQn0jq9WOh4ZklPs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 04:01:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:55:ef:8b:1d:14:ca:67:86:0a:57:c4:74:05:66:07
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
        Validity
            Not Before: Sep  7 04:01:21 2025 GMT
            Not After : Sep  8 04:01:21 2025 GMT
        Subject: CN=44a2878f4916141392a626f1bcad9b2732302461
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:95:ad:72:cc:b0:f0:61:0a:7f:52:a7:d9:bc:
                    0f:40:77:1a:d2:da:ad:1f:cb:ce:18:bd:0d:98:54:
                    86:61:3c:b3:b5:93:bd:e7:60:6a:9e:54:e4:ff:de:
                    84:87:52:e4:8e:58:11:47:84:da:38:7a:e5:a2:9e:
                    9c:47:a2:24:61:80:6c:63:a6:63:ef:2a:6d:60:ff:
                    70:99:d3:3a:b8:37:ca:b7:4f:a1:0a:23:09:45:d6:
                    be:21:6d:1b:22:cf:60:34:40:8d:cf:cc:fe:c6:d7:
                    ac:76:72:79:98:f8:80:fb:6b:8c:95:83:02:92:01:
                    35:5b:00:18:3e:e7:d8:7b:9d:df:71:d1:61:0f:5a:
                    32:a6:9a:b1:ea:8b:1a:06:e6:88:7b:b6:76:1e:47:
                    b8:3b:ea:4f:c2:ff:aa:3c:aa:cb:e6:60:e3:5c:45:
                    6a:96:f4:e6:4e:74:7d:d6:ef:f0:66:41:2e:4e:22:
                    90:7e:94:19:31:3c:ac:85:ce:da:e9:43:81:41:50:
                    96:84:99:2b:07:ee:ea:06:32:9f:68:be:55:a2:10:
                    57:27:c6:84:82:33:9f:fa:38:c2:3e:94:76:b1:ee:
                    26:a5:1e:c2:8e:4e:02:fb:06:fe:d9:c7:45:1f:21:
                    d2:4e:d5:77:0b:15:29:96:e2:81:50:df:30:1c:d3:
                    03:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:A2:87:8F:49:16:14:13:92:A6:26:F1:BC:AD:9B:27:32:30:24:61
            X509v3 Authority Key Identifier:
                keyid:B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:7e:f2:77:29:58:1e:69:27:75:2f:e7:1d:ad:c7:3f:21:d2:
         54:40:cf:b6:bd:45:b6:9c:96:35:a8:1a:af:64:57:58:14:e4:
         52:79:4a:d4:80:2e:22:52:34:98:7b:23:ac:f4:76:29:e8:60:
         6c:ce:29:5f:6d:f8:3e:df:dd:28:5e:b7:97:18:b2:92:a0:e1:
         a5:90:98:7e:5f:3c:ff:ef:88:fb:89:34:9a:1c:04:5a:32:af:
         1a:59:3f:c5:b0:7d:06:22:aa:d1:59:78:37:d3:09:0b:40:26:
         2d:b3:25:85:b8:d5:ba:53:81:ef:bf:2c:c3:e5:54:05:2f:be:
         f9:48:d2:a0:8e:ca:c6:7c:b6:36:95:28:48:5a:f4:63:aa:74:
         f2:8b:77:62:0a:1d:4b:2b:2e:cd:c2:d4:9e:cc:8e:9e:e8:68:
         db:b5:9c:cf:22:57:03:c7:57:4b:b2:da:b5:f3:2b:71:8c:2c:
         d3:c1:83:bc:c8:13:9e:ff:fa:a3:86:62:2e:e6:e5:9e:d9:cd:
         ea:fa:aa:dc:bb:07:7f:9c:ca:0d:9f:eb:32:b2:27:93:c2:8e:
         10:3a:e6:c5:8a:a7:52:12:fd:67:ba:d8:cd:9e:3e:6f:f8:3f:
         b1:bf:2c:07:05:2a:5a:d9:db:8a:e0:93:a9:7a:59:f6:f0:eb:
         e4:e5:db:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiVe+LHRTKZ4YKV8R0BWYHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NmE0YmQ2ZjVlYmYyZjdmZmQ5YThkMWNkOWE1YWFjZGU2
MjI4NWMwHhcNMjUwOTA3MDQwMTIxWhcNMjUwOTA4MDQwMTIxWjAzMTEwLwYDVQQD
Eyg0NGEyODc4ZjQ5MTYxNDEzOTJhNjI2ZjFiY2FkOWIyNzMyMzAyNDYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ZWtcsyw8GEKf1Kn2bwPQHca0tqt
H8vOGL0NmFSGYTyztZO952BqnlTk/96Eh1LkjlgRR4TaOHrlop6cR6IkYYBsY6Zj
7yptYP9wmdM6uDfKt0+hCiMJRda+IW0bIs9gNECNz8z+xtesdnJ5mPiA+2uMlYMC
kgE1WwAYPufYe53fcdFhD1oyppqx6osaBuaIe7Z2Hke4O+pPwv+qPKrL5mDjXEVq
lvTmTnR91u/wZkEuTiKQfpQZMTyshc7a6UOBQVCWhJkrB+7qBjKfaL5VohBXJ8aE
gjOf+jjCPpR2se4mpR7Cjk4C+wb+2cdFHyHSTtV3CxUpluKBUN8wHNMDDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFESih49JFhQTkqYm8bytmycyMCRhMB8GA1UdIwQY
MBaAFLVqS9b16/L3/9mo0c2aWqzeYihcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMt
MDgyZTExMzYzZjBhLzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMtMDgyZTExMzYzZjBh
LzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVH7ydylY
HmkndS/nHa3HPyHSVEDPtr1FtpyWNagar2RXWBTkUnlK1IAuIlI0mHsjrPR2Kehg
bM4pX234Pt/dKF63lxiykqDhpZCYfl88/++I+4k0mhwEWjKvGlk/xbB9BiKq0Vl4
N9MJC0AmLbMlhbjVulOB778sw+VUBS+++UjSoI7Kxny2NpUoSFr0Y6p08ot3Ygod
SysuzcLUnsyOnuho27WczyJXA8dXS7LatfMrcYws08GDvMgTnv/6o4ZiLublntnN
6vqq3LsHf5zKDZ/rMrInk8KOEDrmxYqnUhL9Z7rYzZ4+b/g/sb8sBwUqWtnbiuCT
qXpZ9vDr5OXbcQ==
-----END CERTIFICATE-----