Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft
File:                     u-Sqx31jiC90NiBwTCTb7bGIDXo.mft (raw, json)
Hash identifier:          7aqxmJFo8506Rc7Vn5vdVkOCY2YwiV6VJs7/9Fms47o=
Subject key identifier:   E4:FD:D7:5C:5A:A0:3A:49:E0:9E:8A:63:04:16:C7:5D:A6:AE:87:26
Authority key identifier: BB:E4:AA:C7:7D:63:88:2F:74:36:20:70:4C:24:DB:ED:B1:88:0D:7A
Certificate issuer:       /CN=bbe4aac77d63882f743620704c24dbedb1880d7a
Certificate serial:       0197469EBBF662C6277FE9F2042FCE83F0FC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/u-Sqx31jiC90NiBwTCTb7bGIDXo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft
Manifest number:          04D5
Signing time:             Fri 06 Jun 2025 19:01:37 +0000
Manifest this update:     Fri 06 Jun 2025 19:01:37 +0000
Manifest next update:     Sat 07 Jun 2025 19:01:37 +0000
Files and hashes:         1: u-Sqx31jiC90NiBwTCTb7bGIDXo.crl (hash: goNNJ12BZvNNBtJAzAihBiBvOyRTrwhyjDZJVulUfFM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/u-Sqx31jiC90NiBwTCTb7bGIDXo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:46:9e:bb:f6:62:c6:27:7f:e9:f2:04:2f:ce:83:f0:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bbe4aac77d63882f743620704c24dbedb1880d7a
        Validity
            Not Before: Jun  6 19:01:37 2025 GMT
            Not After : Jun  7 19:01:37 2025 GMT
        Subject: CN=e4fdd75c5aa03a49e09e8a630416c75da6ae8726
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:b1:6a:48:41:34:15:76:cc:a6:26:b5:35:ce:
                    c1:56:95:6b:56:e2:a4:e9:2a:45:78:a2:f7:62:d9:
                    33:56:1a:c1:a4:8e:a1:01:3c:d0:b9:fa:bb:ba:a2:
                    fd:1f:d0:3e:ef:16:aa:34:5b:39:11:ae:c7:02:94:
                    a9:05:f3:1c:e6:36:f3:13:65:fe:91:51:6f:a0:f1:
                    e5:03:5f:5f:54:6d:98:8a:5d:64:cb:d1:d0:5f:6e:
                    e7:0a:0f:e2:00:fb:a5:a9:fc:7a:5d:7a:81:3d:a6:
                    22:ac:06:2d:8d:87:77:c2:c4:30:f7:e1:dc:a4:d8:
                    0a:f4:e1:d3:8d:dd:8f:46:a8:e8:7f:10:0e:5c:ae:
                    56:21:6d:2b:8d:ab:8c:1b:37:1a:9e:93:28:a0:ff:
                    62:57:56:72:29:2d:13:e1:c1:df:36:67:81:5e:99:
                    83:23:ac:9b:36:b4:0e:f1:ea:bb:47:d3:5e:5a:dd:
                    31:63:21:3e:0f:a4:07:23:b7:85:e3:84:53:e1:c6:
                    c7:ee:86:57:11:78:d6:c5:4d:6a:df:b3:2d:d4:dc:
                    88:3c:e0:cf:21:6d:5c:3d:4d:a9:d3:b7:6c:9b:e5:
                    e3:8d:88:d6:8c:5a:66:a3:93:a9:79:13:4e:74:fb:
                    a9:59:c9:09:e4:5d:0a:f9:c2:65:b7:48:f0:7f:ad:
                    c9:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:FD:D7:5C:5A:A0:3A:49:E0:9E:8A:63:04:16:C7:5D:A6:AE:87:26
            X509v3 Authority Key Identifier:
                keyid:BB:E4:AA:C7:7D:63:88:2F:74:36:20:70:4C:24:DB:ED:B1:88:0D:7A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-Sqx31jiC90NiBwTCTb7bGIDXo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         36:01:2c:4d:77:b2:bd:df:49:cc:52:ad:7f:ec:21:80:01:4b:
         98:83:37:8f:8d:6c:f3:d9:e5:03:52:57:e8:16:6f:dc:30:53:
         fa:54:18:d8:97:58:27:b3:07:b8:6d:41:12:fb:95:87:f3:9f:
         29:7b:c1:92:84:8c:a2:ca:eb:d4:d4:a8:cf:2a:fd:1a:65:cd:
         70:24:4b:5c:f6:9a:21:5c:0c:b7:b2:6b:3d:f2:bc:88:43:6f:
         d0:e9:a4:fe:03:57:9a:dd:bc:d5:23:2e:83:ee:75:7d:c6:52:
         b5:b9:d6:65:ab:ad:fc:25:88:72:df:69:66:91:04:16:ee:c4:
         8a:88:4a:ad:f1:54:d3:9c:de:45:6a:7a:b3:63:2d:11:83:94:
         db:3e:09:8f:43:e3:23:bf:3a:90:8e:b1:f9:12:bd:68:06:45:
         81:65:f0:c3:3c:2c:f9:27:24:8a:a0:cf:52:71:f7:b3:30:f9:
         c2:20:fe:d0:02:b8:05:c3:fc:20:78:76:22:51:90:6a:de:92:
         a6:90:fa:dc:5a:03:f9:52:a8:da:2e:72:69:79:23:49:1c:b6:
         a1:06:ac:be:03:7f:c4:b8:b4:41:82:86:5b:d1:f2:6d:84:d9:
         de:5d:3c:d7:ca:c5:bf:f9:37:2b:8f:c7:51:66:32:7f:98:62:
         93:c5:73:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGnrv2YsYnf+nyBC/Og/D8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJiZTRhYWM3N2Q2Mzg4MmY3NDM2MjA3MDRjMjRkYmVkYjE4
ODBkN2EwHhcNMjUwNjA2MTkwMTM3WhcNMjUwNjA3MTkwMTM3WjAzMTEwLwYDVQQD
EyhlNGZkZDc1YzVhYTAzYTQ5ZTA5ZThhNjMwNDE2Yzc1ZGE2YWU4NzI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArLFqSEE0FXbMpia1Nc7BVpVrVuKk
6SpFeKL3YtkzVhrBpI6hATzQufq7uqL9H9A+7xaqNFs5Ea7HApSpBfMc5jbzE2X+
kVFvoPHlA19fVG2Yil1ky9HQX27nCg/iAPulqfx6XXqBPaYirAYtjYd3wsQw9+Hc
pNgK9OHTjd2PRqjofxAOXK5WIW0rjauMGzcanpMooP9iV1ZyKS0T4cHfNmeBXpmD
I6ybNrQO8eq7R9NeWt0xYyE+D6QHI7eF44RT4cbH7oZXEXjWxU1q37Mt1NyIPODP
IW1cPU2p07dsm+XjjYjWjFpmo5OpeRNOdPupWckJ5F0K+cJlt0jwf63JQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOT911xaoDpJ4J6KYwQWx12mrocmMB8GA1UdIwQY
MBaAFLvkqsd9Y4gvdDYgcEwk2+2xiA16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdS1TcXgzMWppQzkwTmlCd1RDVGI3YkdJRFhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9kNGQ3ZDItOWNiMi00Y2UwLTg2NjUt
MWJhMjFiMGUyOTEzLzEvdS1TcXgzMWppQzkwTmlCd1RDVGI3YkdJRFhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9kNGQ3ZDItOWNiMi00Y2UwLTg2NjUtMWJhMjFiMGUyOTEz
LzEvdS1TcXgzMWppQzkwTmlCd1RDVGI3YkdJRFhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANgEsTXey
vd9JzFKtf+whgAFLmIM3j41s89nlA1JX6BZv3DBT+lQY2JdYJ7MHuG1BEvuVh/Of
KXvBkoSMosrr1NSozyr9GmXNcCRLXPaaIVwMt7JrPfK8iENv0Omk/gNXmt281SMu
g+51fcZStbnWZaut/CWIct9pZpEEFu7EiohKrfFU05zeRWp6s2MtEYOU2z4Jj0Pj
I786kI6x+RK9aAZFgWXwwzws+SckiqDPUnH3szD5wiD+0AK4BcP8IHh2IlGQat6S
ppD63FoD+VKo2i5yaXkjSRy2oQasvgN/xLi0QYKGW9HybYTZ3l0818rFv/k3K4/H
UWYyf5hik8VzTw==
-----END CERTIFICATE-----