Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
File:                     hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json)
Hash identifier:          UDDU/oPSvRRSwJCE1oKFN2WdFLeEBScbJG1LkvSx63c=
Subject key identifier:   07:80:14:92:1D:11:61:5D:A3:56:E5:B9:3C:C5:EC:62:B2:45:52:F4
Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
Certificate issuer:       /CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Certificate serial:       019510C7F18B3ECB6474DB83EB4121317E56
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
Manifest number:          0EDE
Signing time:             Sun 16 Feb 2025 22:01:33 +0000
Manifest this update:     Sun 16 Feb 2025 22:01:33 +0000
Manifest next update:     Mon 17 Feb 2025 22:01:33 +0000
Files and hashes:         1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: ulG+nNprEJv7qP6LM1sEwVyzSN4XvQ+Bf2rph4zqG1s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 22:01:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:10:c7:f1:8b:3e:cb:64:74:db:83:eb:41:21:31:7e:56
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9
        Validity
            Not Before: Feb 16 22:01:33 2025 GMT
            Not After : Feb 17 22:01:33 2025 GMT
        Subject: CN=078014921d11615da356e5b93cc5ec62b24552f4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:4e:37:f6:3a:8c:70:ef:47:fd:cf:54:cb:e0:
                    a8:e7:21:40:6d:96:2e:f4:51:9e:2e:21:09:bd:b4:
                    57:82:d6:2f:8c:73:b1:8d:c9:de:9a:0c:8e:fb:e2:
                    e3:21:5c:38:d1:f5:07:f2:ac:25:17:7d:47:68:f6:
                    94:2e:68:b8:08:28:3f:85:8a:93:2e:97:ae:4e:6b:
                    9b:75:7b:b9:89:11:3a:99:29:e9:e5:90:f7:a0:56:
                    c4:f6:d6:83:95:81:03:8f:9c:ba:b7:34:7d:e7:d5:
                    4a:bb:f4:08:0f:ad:ab:4f:0a:1d:f1:6e:3f:0b:90:
                    18:df:81:d7:fa:11:39:1b:9f:4f:0d:11:23:f2:be:
                    62:24:db:84:c1:4b:78:ae:6d:0b:b9:87:22:08:ac:
                    b0:5c:bf:d8:7a:40:47:9e:93:4c:c1:0f:ba:2f:b8:
                    e6:9f:15:18:3a:3f:1b:fc:38:3e:7a:b6:61:b0:65:
                    45:cb:0a:e3:e3:b2:35:05:65:28:34:72:9d:cd:ba:
                    7f:16:6e:12:23:20:81:bd:12:70:99:bb:6f:74:a8:
                    b2:a9:15:23:f6:23:1c:34:43:22:09:3a:3c:f0:6a:
                    41:d1:94:6e:74:93:70:ed:76:a3:ae:28:e4:44:6d:
                    18:79:99:8e:cd:8a:e2:1f:02:b3:ac:fe:84:ef:01:
                    78:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:80:14:92:1D:11:61:5D:A3:56:E5:B9:3C:C5:EC:62:B2:45:52:F4
            X509v3 Authority Key Identifier:
                keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:61:d2:3f:7b:31:53:44:a1:40:81:36:84:6f:60:65:72:21:
         a5:55:d1:50:35:d4:1b:a0:03:95:2d:38:21:f5:ae:70:5a:81:
         91:5e:e5:b2:bf:a0:24:8e:67:ef:76:bc:ca:8b:a6:f7:30:97:
         37:b3:11:29:6f:f2:bc:8f:95:52:1b:14:d6:42:77:74:fe:60:
         a6:f0:e8:46:90:32:15:70:27:f3:63:18:b9:6a:0a:e4:fb:52:
         1c:83:14:18:c0:10:ca:3f:8c:8e:ca:da:98:ad:ed:a5:2c:12:
         cd:ad:00:f8:92:16:3a:ad:72:e0:d4:fa:07:b2:1b:2e:f1:47:
         2a:78:31:cd:2f:ae:11:a0:c1:9e:5d:79:15:59:a7:98:8d:80:
         8f:46:76:54:c5:a0:38:7d:bb:df:56:3a:2c:10:1a:57:c3:de:
         56:31:17:48:26:d0:ea:63:f1:64:ab:72:12:3d:fd:b8:7c:84:
         54:b9:01:10:12:99:fc:45:9c:f9:56:91:cd:6c:82:d8:ea:17:
         74:c7:4c:d7:9c:de:cf:52:a7:cf:f6:6f:1c:b4:5c:a4:bf:51:
         e3:ee:84:0d:e4:0e:7f:0b:3d:13:31:c2:b1:9e:06:53:91:35:
         02:52:63:83:46:55:e8:f0:9d:fd:8c:12:b0:a0:b0:e4:36:67:
         32:13:a7:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUQx/GLPstkdNuD60EhMX5WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg3MmNhYWU5ZjBmYjc5ZGVjNjg0NGJlYWNlOGMyMjFjZWY0
ZDMyYzkwHhcNMjUwMjE2MjIwMTMzWhcNMjUwMjE3MjIwMTMzWjAzMTEwLwYDVQQD
EygwNzgwMTQ5MjFkMTE2MTVkYTM1NmU1YjkzY2M1ZWM2MmIyNDU1MmY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqU439jqMcO9H/c9Uy+Co5yFAbZYu
9FGeLiEJvbRXgtYvjHOxjcnemgyO++LjIVw40fUH8qwlF31HaPaULmi4CCg/hYqT
LpeuTmubdXu5iRE6mSnp5ZD3oFbE9taDlYEDj5y6tzR959VKu/QID62rTwod8W4/
C5AY34HX+hE5G59PDREj8r5iJNuEwUt4rm0LuYciCKywXL/YekBHnpNMwQ+6L7jm
nxUYOj8b/Dg+erZhsGVFywrj47I1BWUoNHKdzbp/Fm4SIyCBvRJwmbtvdKiyqRUj
9iMcNEMiCTo88GpB0ZRudJNw7XajrijkRG0YeZmOzYriHwKzrP6E7wF4VwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAeAFJIdEWFdo1bluTzF7GKyRVL0MB8GA1UdIwQY
MBaAFIcsqunw+3nexoRL6s6MIhzvTTLJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC82Yzc5MWYtYmE4NS00YzAzLWI3OTEt
ZTViMTY3MmQ0YjE3LzEvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC82Yzc5MWYtYmE4NS00YzAzLWI3OTEtZTViMTY3MmQ0YjE3
LzEvaHl5cTZmRDdlZDdHaEV2cXpvd2lITzlOTXNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARGHSP3sx
U0ShQIE2hG9gZXIhpVXRUDXUG6ADlS04IfWucFqBkV7lsr+gJI5n73a8youm9zCX
N7MRKW/yvI+VUhsU1kJ3dP5gpvDoRpAyFXAn82MYuWoK5PtSHIMUGMAQyj+Mjsra
mK3tpSwSza0A+JIWOq1y4NT6B7IbLvFHKngxzS+uEaDBnl15FVmnmI2Aj0Z2VMWg
OH2731Y6LBAaV8PeVjEXSCbQ6mPxZKtyEj39uHyEVLkBEBKZ/EWc+VaRzWyC2OoX
dMdM15zez1Knz/ZvHLRcpL9R4+6EDeQOfws9EzHCsZ4GU5E1AlJjg0ZV6PCd/YwS
sKCw5DZnMhOnug==
-----END CERTIFICATE-----