Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
File:                     2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft (raw, json)
Hash identifier:          GaBZ0EHKi2TNJbNN7eBMImZr0g1gLVj5dpPZpKmtmXY=
Subject key identifier:   66:07:61:52:0D:F3:32:80:40:06:49:84:56:54:DA:D2:79:74:BC:E6
Authority key identifier: D9:93:66:35:D1:2D:6C:E2:32:E1:12:9C:8F:18:CE:DB:83:6E:CD:D7
Certificate issuer:       /CN=d9936635d12d6ce232e1129c8f18cedb836ecdd7
Certificate serial:       01958C2933D2AE7F9BFF672BD1585D8DECB0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
Manifest number:          0B77
Signing time:             Wed 12 Mar 2025 21:01:05 +0000
Manifest this update:     Wed 12 Mar 2025 21:01:05 +0000
Manifest next update:     Thu 13 Mar 2025 21:01:05 +0000
Files and hashes:         1: 2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl (hash: DOWTum+PVGh4yKuD2fiS7VrCg8jfKOJ6scJv9Si5kJY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 13 Mar 2025 19:14:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:8c:29:33:d2:ae:7f:9b:ff:67:2b:d1:58:5d:8d:ec:b0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d9936635d12d6ce232e1129c8f18cedb836ecdd7
        Validity
            Not Before: Mar 12 21:01:05 2025 GMT
            Not After : Mar 13 21:01:05 2025 GMT
        Subject: CN=660761520df33280400649845654dad27974bce6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:c8:ae:7f:0b:29:51:aa:32:ee:c6:52:60:4f:
                    d3:5a:c4:08:27:b4:97:4b:08:dd:2a:9b:b7:9f:2d:
                    04:91:07:4d:aa:33:e6:a3:4a:d1:4f:d8:c2:76:98:
                    f9:56:7f:09:12:6e:66:75:7b:e7:7f:33:44:99:9d:
                    2b:be:d6:ac:9e:76:12:a3:65:b4:bc:3d:88:2d:9e:
                    bb:4f:8b:60:52:3b:de:8d:c4:9a:77:c3:90:bf:eb:
                    60:49:b9:d2:23:50:b2:31:62:d9:7b:05:d7:d3:6e:
                    92:13:74:cc:11:86:51:51:1f:dd:7e:ff:51:ba:04:
                    2a:31:eb:13:bd:f2:d4:a1:5f:ce:c9:66:c7:4b:c8:
                    38:81:7f:bf:e5:79:c3:43:6c:d2:05:6a:9f:9e:09:
                    d8:74:60:a9:0c:f8:10:8b:2f:78:51:8f:db:2b:24:
                    d4:74:a9:65:ba:41:3f:60:ab:45:9a:a3:1a:b8:42:
                    ad:55:c9:fe:1e:8d:a5:74:b1:e6:d0:90:35:b5:6a:
                    b7:e1:27:17:54:ac:7f:75:81:a8:86:7c:47:41:3e:
                    e1:9d:c2:4c:b6:dc:9e:ff:6d:44:17:99:4f:b8:55:
                    e4:03:83:64:fe:8a:5d:f1:77:f9:8b:a3:e1:f9:24:
                    a3:bc:c4:07:76:f1:90:98:38:cc:14:d8:7e:d1:0b:
                    cb:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                66:07:61:52:0D:F3:32:80:40:06:49:84:56:54:DA:D2:79:74:BC:E6
            X509v3 Authority Key Identifier:
                keyid:D9:93:66:35:D1:2D:6C:E2:32:E1:12:9C:8F:18:CE:DB:83:6E:CD:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/50b5eb-6dd1-4078-a55f-488ec23dc804/1/2ZNmNdEtbOIy4RKcjxjO24Nuzdc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:d7:82:f0:8b:ac:71:5e:41:88:fc:9e:e6:c4:b0:ee:ef:54:
         7a:f9:6a:2a:12:1e:eb:44:36:b2:18:3d:4f:bc:48:b6:65:78:
         39:2c:9e:a2:df:5b:26:8f:23:a1:4d:22:5d:28:51:2a:52:aa:
         7f:6f:92:21:64:a2:48:ec:a8:ff:cf:23:11:87:bc:39:5b:00:
         8d:a9:ad:14:ff:57:33:1e:38:b9:4c:fa:a8:9b:7e:ca:bc:93:
         08:37:de:9b:05:75:76:02:7a:17:53:a4:df:b1:b2:9a:8d:af:
         b6:02:e2:2e:e5:4a:a8:36:6b:67:60:fb:a1:60:be:08:2f:2c:
         e5:9f:07:16:0e:f5:dc:67:b2:84:17:81:2d:61:d5:8b:30:2b:
         ba:7d:76:6f:2b:15:5a:de:03:b3:b0:7d:a5:d2:5e:f2:32:f5:
         72:69:d8:06:92:6d:e1:20:fc:a4:b6:a2:d0:96:26:c3:fa:18:
         9c:75:90:b7:2b:5a:99:dc:ff:6d:99:25:7d:2f:c1:dd:cd:4b:
         31:8a:6f:3c:39:04:e9:c1:ac:37:b7:e4:a8:28:91:45:81:63:
         20:a3:29:be:28:09:85:4e:d6:89:01:69:11:ed:53:0a:b1:40:
         1f:5a:53:c5:1d:a0:a9:e2:25:bb:b8:3c:87:ee:d3:26:ca:92:
         8e:d1:0f:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWMKTPSrn+b/2cr0VhdjeywMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5OTM2NjM1ZDEyZDZjZTIzMmUxMTI5YzhmMThjZWRiODM2
ZWNkZDcwHhcNMjUwMzEyMjEwMTA1WhcNMjUwMzEzMjEwMTA1WjAzMTEwLwYDVQQD
Eyg2NjA3NjE1MjBkZjMzMjgwNDAwNjQ5ODQ1NjU0ZGFkMjc5NzRiY2U2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8iufwspUaoy7sZSYE/TWsQIJ7SX
SwjdKpu3ny0EkQdNqjPmo0rRT9jCdpj5Vn8JEm5mdXvnfzNEmZ0rvtasnnYSo2W0
vD2ILZ67T4tgUjvejcSad8OQv+tgSbnSI1CyMWLZewXX026SE3TMEYZRUR/dfv9R
ugQqMesTvfLUoV/OyWbHS8g4gX+/5XnDQ2zSBWqfngnYdGCpDPgQiy94UY/bKyTU
dKllukE/YKtFmqMauEKtVcn+Ho2ldLHm0JA1tWq34ScXVKx/dYGohnxHQT7hncJM
ttye/21EF5lPuFXkA4Nk/opd8Xf5i6Ph+SSjvMQHdvGQmDjMFNh+0QvL5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGYHYVIN8zKAQAZJhFZU2tJ5dLzmMB8GA1UdIwQY
MBaAFNmTZjXRLWziMuESnI8YztuDbs3XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlpObU5kRXRiT0l5NFJLY2p4ak8yNE51emRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC81MGI1ZWItNmRkMS00MDc4LWE1NWYt
NDg4ZWMyM2RjODA0LzEvMlpObU5kRXRiT0l5NFJLY2p4ak8yNE51emRjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC81MGI1ZWItNmRkMS00MDc4LWE1NWYtNDg4ZWMyM2RjODA0
LzEvMlpObU5kRXRiT0l5NFJLY2p4ak8yNE51emRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMteC8Ius
cV5BiPye5sSw7u9UevlqKhIe60Q2shg9T7xItmV4OSyeot9bJo8joU0iXShRKlKq
f2+SIWSiSOyo/88jEYe8OVsAjamtFP9XMx44uUz6qJt+yryTCDfemwV1dgJ6F1Ok
37Gymo2vtgLiLuVKqDZrZ2D7oWC+CC8s5Z8HFg713GeyhBeBLWHVizArun12bysV
Wt4Ds7B9pdJe8jL1cmnYBpJt4SD8pLai0JYmw/oYnHWQtytamdz/bZklfS/B3c1L
MYpvPDkE6cGsN7fkqCiRRYFjIKMpvigJhU7WiQFpEe1TCrFAH1pTxR2gqeIlu7g8
h+7TJsqSjtEPUQ==
-----END CERTIFICATE-----