Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
File:                     T5mJlOtWGejymrO956sq0U6r_P0.mft (raw, json)
Hash identifier:          LqrO3sUhfsG4VTQfzDsTBh86iRgkyrmcVOIes+9rFJU=
Subject key identifier:   10:77:DD:A4:2A:10:02:10:18:BE:83:23:41:74:B1:AF:99:B0:BE:A5
Authority key identifier: 4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD
Certificate issuer:       /CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd
Certificate serial:       019922FA19A4A814515E61CA577CE6D89E48
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
Manifest number:          166D
Signing time:             Sun 07 Sep 2025 07:00:39 +0000
Manifest this update:     Sun 07 Sep 2025 07:00:39 +0000
Manifest next update:     Mon 08 Sep 2025 07:00:39 +0000
Files and hashes:         1: T5mJlOtWGejymrO956sq0U6r_P0.crl (hash: F9LgL4sGUfgWcEcJB9Y9OwiwskdG2CtPUhugDByEPd8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 08 Sep 2025 05:00:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:22:fa:19:a4:a8:14:51:5e:61:ca:57:7c:e6:d8:9e:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd
        Validity
            Not Before: Sep  7 07:00:39 2025 GMT
            Not After : Sep  8 07:00:39 2025 GMT
        Subject: CN=1077dda42a10021018be83234174b1af99b0bea5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:4c:31:5f:34:a0:39:67:6e:5a:23:0a:8b:a4:
                    8f:58:02:b9:76:94:c5:0c:99:bb:4b:c8:fe:14:6f:
                    71:ca:59:58:8b:fd:86:0a:3c:60:06:ca:5c:74:4f:
                    f3:4a:48:5e:20:9a:9b:bd:88:a2:91:3f:6d:42:7f:
                    d5:ef:dd:a5:d9:6c:8c:98:a7:ac:34:5c:f4:21:e0:
                    86:3f:49:d9:d0:93:91:e4:58:76:50:b1:06:e7:95:
                    13:f4:f4:9f:7d:40:fa:16:5e:4f:8a:a3:8d:8f:09:
                    d9:a9:fe:81:45:7b:e9:a7:4a:f5:84:ca:58:db:f2:
                    92:57:9f:01:bf:f8:65:07:5f:f1:a9:89:d4:90:17:
                    bd:7e:2e:37:f5:a0:b7:ff:05:d6:e1:49:c9:d0:db:
                    89:e3:15:83:34:4a:8c:3b:e2:c2:e3:a6:c6:8f:63:
                    f4:f6:b3:2a:b9:a8:53:e9:ff:40:3d:77:08:f2:94:
                    1a:90:03:e7:53:e7:83:e6:9d:06:b4:9e:63:3e:a2:
                    4f:72:ef:eb:92:2c:1f:7a:1f:36:9c:38:a3:74:c7:
                    d7:5a:51:ff:02:84:5f:73:7f:4e:10:fc:d4:ce:37:
                    d5:9c:80:fa:7f:c8:74:8a:ab:d0:a4:e3:19:ac:86:
                    36:94:5d:bd:5b:12:c8:0f:28:32:45:bf:14:bf:e9:
                    f5:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:77:DD:A4:2A:10:02:10:18:BE:83:23:41:74:B1:AF:99:B0:BE:A5
            X509v3 Authority Key Identifier:
                keyid:4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:f2:59:c9:33:6e:18:2a:c5:da:97:ff:59:db:a6:24:bc:f2:
         b3:9c:93:87:24:df:df:e4:43:95:67:c0:76:36:ce:9d:b7:3c:
         52:95:54:8b:5b:70:6f:24:36:9f:5b:b0:87:9c:2f:6f:d1:06:
         dd:39:cf:51:70:dd:2f:1b:4a:7f:68:22:e5:38:a7:81:b6:e3:
         8b:2e:39:df:fd:bf:3e:89:62:33:b0:18:9a:1d:2b:24:e4:03:
         d2:0d:51:9d:33:4e:e7:49:2e:d0:ed:64:09:35:92:6f:85:b9:
         95:6e:a6:b1:6c:8e:af:0d:6b:5e:9a:eb:cd:0a:fa:80:0e:a5:
         d4:d5:80:b7:1c:8f:df:c8:d0:56:9b:19:f0:cb:6b:2c:aa:03:
         3a:7c:23:9e:fc:77:64:6a:4e:5e:ed:e5:2e:6c:fe:3d:84:30:
         80:7f:c2:6a:33:ab:b3:b4:17:7b:6a:68:f5:a8:dd:0e:dd:a8:
         8d:bc:03:53:0f:04:fd:85:f4:88:1f:1a:50:bd:20:ed:88:c6:
         4b:c0:ed:29:36:49:73:93:0d:7a:9e:b6:cb:48:74:d6:d8:67:
         3e:34:9c:8d:5a:ef:a3:98:a0:77:82:1f:a9:56:03:80:89:ed:
         65:91:f6:17:a9:04:44:2b:dc:7c:74:83:e8:95:8b:2c:f3:62:
         27:cb:8e:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZki+hmkqBRRXmHKV3zm2J5IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmOTk4OTk0ZWI1NjE5ZThmMjlhYjNiZGU3YWIyYWQxNGVh
YmZjZmQwHhcNMjUwOTA3MDcwMDM5WhcNMjUwOTA4MDcwMDM5WjAzMTEwLwYDVQQD
EygxMDc3ZGRhNDJhMTAwMjEwMThiZTgzMjM0MTc0YjFhZjk5YjBiZWE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx0wxXzSgOWduWiMKi6SPWAK5dpTF
DJm7S8j+FG9xyllYi/2GCjxgBspcdE/zSkheIJqbvYiikT9tQn/V792l2WyMmKes
NFz0IeCGP0nZ0JOR5Fh2ULEG55UT9PSffUD6Fl5PiqONjwnZqf6BRXvpp0r1hMpY
2/KSV58Bv/hlB1/xqYnUkBe9fi439aC3/wXW4UnJ0NuJ4xWDNEqMO+LC46bGj2P0
9rMquahT6f9APXcI8pQakAPnU+eD5p0GtJ5jPqJPcu/rkiwfeh82nDijdMfXWlH/
AoRfc39OEPzUzjfVnID6f8h0iqvQpOMZrIY2lF29WxLIDygyRb8Uv+n1ywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBB33aQqEAIQGL6DI0F0sa+ZsL6lMB8GA1UdIwQY
MBaAFE+ZiZTrVhno8pqzveerKtFOq/z9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDVtSmxPdFdHZWp5bXJPOTU2c3EwVTZyX1AwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M0ODctZjhmYi00MDM1LTllMjgt
NDQ2OGQxMmYzMjJiLzEvVDVtSmxPdFdHZWp5bXJPOTU2c3EwVTZyX1AwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M0ODctZjhmYi00MDM1LTllMjgtNDQ2OGQxMmYzMjJi
LzEvVDVtSmxPdFdHZWp5bXJPOTU2c3EwVTZyX1AwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbPJZyTNu
GCrF2pf/WdumJLzys5yThyTf3+RDlWfAdjbOnbc8UpVUi1twbyQ2n1uwh5wvb9EG
3TnPUXDdLxtKf2gi5Tingbbjiy453/2/PoliM7AYmh0rJOQD0g1RnTNO50ku0O1k
CTWSb4W5lW6msWyOrw1rXprrzQr6gA6l1NWAtxyP38jQVpsZ8MtrLKoDOnwjnvx3
ZGpOXu3lLmz+PYQwgH/CajOrs7QXe2po9ajdDt2ojbwDUw8E/YX0iB8aUL0g7YjG
S8DtKTZJc5MNep62y0h01thnPjScjVrvo5igd4IfqVYDgIntZZH2F6kERCvcfHSD
6JWLLPNiJ8uOdg==
-----END CERTIFICATE-----