Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
File:                     DAHrsNsEzE1pGCs47A30sIkiJ40.mft (raw, json)
Hash identifier:          vrr6zdTG92yL5QLdHq9Vomt8UgOAouBpTIiA4gCpDzo=
Subject key identifier:   BB:9A:D2:B1:F9:B9:3D:B9:A8:CE:BD:98:A8:75:4A:BE:D0:3B:6D:72
Authority key identifier: 0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D
Certificate issuer:       /CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
Certificate serial:       01974A7AE4801541CB833E55E987AF196FCE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
Manifest number:          1578
Signing time:             Sat 07 Jun 2025 13:00:57 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:57 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:57 +0000
Files and hashes:         1: DAHrsNsEzE1pGCs47A30sIkiJ40.crl (hash: Lob30EdSCk2nMzjHU3KgVAXSDdlLHNyuQFw39DJ8/W8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:e4:80:15:41:cb:83:3e:55:e9:87:af:19:6f:ce
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0c01ebb0db04cc4d69182b38ec0df4b08922278d
        Validity
            Not Before: Jun  7 13:00:57 2025 GMT
            Not After : Jun  8 13:00:57 2025 GMT
        Subject: CN=bb9ad2b1f9b93db9a8cebd98a8754abed03b6d72
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:2e:60:7a:fd:bd:89:1f:fc:36:4b:05:80:d2:
                    3e:0a:46:26:81:31:27:fa:6e:8c:2d:0b:0e:2b:20:
                    66:e3:16:30:38:58:04:8f:f8:02:fd:5e:d2:82:7e:
                    85:b1:d0:68:b4:43:7e:6a:62:af:99:92:09:f4:6a:
                    7a:42:b2:6c:fa:a4:74:51:d7:42:c0:ef:03:e9:e7:
                    22:43:c0:b1:7d:0b:ed:64:c2:f2:13:cf:3e:d1:e3:
                    15:cd:93:54:9e:a1:14:a6:31:c4:c5:e8:53:ac:ed:
                    5e:64:c2:51:03:31:c9:e0:25:db:c2:12:98:ed:eb:
                    98:ff:6c:d5:f4:7b:3a:30:2a:66:ec:45:89:2c:17:
                    a2:86:6b:a8:d7:e7:07:cd:c5:be:ac:bb:f1:a9:ec:
                    09:85:5b:7c:23:3d:6a:a1:37:59:0c:5f:b4:07:85:
                    8b:ed:3a:af:88:85:cd:5d:05:cb:6d:42:4c:80:62:
                    ef:d2:cf:8f:76:a4:e2:13:a5:d0:63:58:ea:a5:d8:
                    d4:7a:5e:74:8d:97:5b:a8:e2:6b:0d:bd:42:a5:34:
                    32:8f:a6:9d:a8:23:1b:66:20:61:eb:78:f9:6c:60:
                    6f:0a:06:23:21:90:30:a0:1a:38:0a:b7:00:7a:b7:
                    ee:d6:87:6d:6f:3a:59:18:b7:38:c4:1a:6a:4b:cb:
                    12:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:9A:D2:B1:F9:B9:3D:B9:A8:CE:BD:98:A8:75:4A:BE:D0:3B:6D:72
            X509v3 Authority Key Identifier:
                keyid:0C:01:EB:B0:DB:04:CC:4D:69:18:2B:38:EC:0D:F4:B0:89:22:27:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DAHrsNsEzE1pGCs47A30sIkiJ40.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/e98684-302c-4ba8-ab7f-a103874e7c4f/1/DAHrsNsEzE1pGCs47A30sIkiJ40.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:2c:ba:da:fa:15:de:fa:c4:28:87:5b:4d:b5:a5:de:c8:69:
         c7:b1:67:fd:92:89:e7:ce:9e:b8:07:6f:d6:7b:97:f3:60:c4:
         47:59:6a:fb:a7:61:44:8b:2c:07:94:dd:c2:4e:ff:a0:5e:ee:
         3e:81:23:02:29:20:18:ec:41:15:a0:b4:00:cd:cf:0d:2a:0a:
         2b:46:8d:9d:7a:75:62:b6:72:aa:34:24:1a:e5:8c:e7:d4:99:
         86:44:93:27:1b:71:11:a7:71:f3:e2:58:da:64:65:17:81:85:
         05:7f:0c:97:61:d4:47:94:1c:76:d2:88:0a:af:e8:b7:0c:35:
         46:64:3c:6d:64:61:d2:19:e1:21:58:c9:c6:09:80:ce:fa:a8:
         d4:0c:3c:0a:47:92:8e:16:72:3a:58:50:fc:58:d7:58:c8:c6:
         d6:a3:0d:fe:48:cb:7f:b8:aa:12:af:7a:72:c6:d1:a6:10:04:
         e5:df:72:19:a5:ab:fd:de:88:eb:8b:58:e5:76:93:a4:7b:77:
         c1:01:c2:0d:67:f3:62:70:be:19:46:9a:75:16:0b:15:2d:bc:
         93:df:b5:9c:37:83:e4:db:7d:a1:9f:69:26:31:4d:74:1b:91:
         8d:98:2a:f3:76:87:65:4d:de:bf:a6:8c:5b:da:fc:59:ca:6e:
         51:c3:b3:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKeuSAFUHLgz5V6YevGW/OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjMDFlYmIwZGIwNGNjNGQ2OTE4MmIzOGVjMGRmNGIwODky
MjI3OGQwHhcNMjUwNjA3MTMwMDU3WhcNMjUwNjA4MTMwMDU3WjAzMTEwLwYDVQQD
EyhiYjlhZDJiMWY5YjkzZGI5YThjZWJkOThhODc1NGFiZWQwM2I2ZDcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmi5gev29iR/8NksFgNI+CkYmgTEn
+m6MLQsOKyBm4xYwOFgEj/gC/V7Sgn6FsdBotEN+amKvmZIJ9Gp6QrJs+qR0UddC
wO8D6eciQ8CxfQvtZMLyE88+0eMVzZNUnqEUpjHExehTrO1eZMJRAzHJ4CXbwhKY
7euY/2zV9Hs6MCpm7EWJLBeihmuo1+cHzcW+rLvxqewJhVt8Iz1qoTdZDF+0B4WL
7TqviIXNXQXLbUJMgGLv0s+PdqTiE6XQY1jqpdjUel50jZdbqOJrDb1CpTQyj6ad
qCMbZiBh63j5bGBvCgYjIZAwoBo4CrcAerfu1odtbzpZGLc4xBpqS8sScwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLua0rH5uT25qM69mKh1Sr7QO21yMB8GA1UdIwQY
MBaAFAwB67DbBMxNaRgrOOwN9LCJIieNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvREFIcnNOc0V6RTFwR0NzNDdBMzBzSWtpSjQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi9lOTg2ODQtMzAyYy00YmE4LWFiN2Yt
YTEwMzg3NGU3YzRmLzEvREFIcnNOc0V6RTFwR0NzNDdBMzBzSWtpSjQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi9lOTg2ODQtMzAyYy00YmE4LWFiN2YtYTEwMzg3NGU3YzRm
LzEvREFIcnNOc0V6RTFwR0NzNDdBMzBzSWtpSjQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAniy62voV
3vrEKIdbTbWl3shpx7Fn/ZKJ586euAdv1nuX82DER1lq+6dhRIssB5Tdwk7/oF7u
PoEjAikgGOxBFaC0AM3PDSoKK0aNnXp1YrZyqjQkGuWM59SZhkSTJxtxEadx8+JY
2mRlF4GFBX8Ml2HUR5QcdtKICq/otww1RmQ8bWRh0hnhIVjJxgmAzvqo1Aw8CkeS
jhZyOlhQ/FjXWMjG1qMN/kjLf7iqEq96csbRphAE5d9yGaWr/d6I64tY5XaTpHt3
wQHCDWfzYnC+GUaadRYLFS28k9+1nDeD5Nt9oZ9pJjFNdBuRjZgq83aHZU3ev6aM
W9r8WcpuUcOz0g==
-----END CERTIFICATE-----