Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
File:                     KPev7E0_BvgNaHKm1iRs0B5z1qY.mft (raw, json)
Hash identifier:          TjesgQU3Wtckw4iVOYvsFjaMO/6PUwOD38NMWEiw/rY=
Subject key identifier:   E2:93:A8:D9:51:A6:4A:42:1C:98:E2:57:A2:FA:EF:70:23:D0:FA:B5
Authority key identifier: 28:F7:AF:EC:4D:3F:06:F8:0D:68:72:A6:D6:24:6C:D0:1E:73:D6:A6
Certificate issuer:       /CN=28f7afec4d3f06f80d6872a6d6246cd01e73d6a6
Certificate serial:       0197D1A9C3C59B61D0ACB6ED28A39F901B17
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
Manifest number:          15BF
Signing time:             Thu 03 Jul 2025 19:00:53 +0000
Manifest this update:     Thu 03 Jul 2025 19:00:53 +0000
Manifest next update:     Fri 04 Jul 2025 19:00:53 +0000
Files and hashes:         1: KPev7E0_BvgNaHKm1iRs0B5z1qY.crl (hash: IvWpE0av9rDDWGqif1LQj3EhnbCDvdCc4uoNr31b6c0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 04 Jul 2025 19:00:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:d1:a9:c3:c5:9b:61:d0:ac:b6:ed:28:a3:9f:90:1b:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=28f7afec4d3f06f80d6872a6d6246cd01e73d6a6
        Validity
            Not Before: Jul  3 19:00:53 2025 GMT
            Not After : Jul  4 19:00:53 2025 GMT
        Subject: CN=e293a8d951a64a421c98e257a2faef7023d0fab5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:5e:e3:12:31:ad:41:92:2e:2d:53:e8:75:9f:
                    10:12:5d:f0:cf:35:f5:c5:7f:12:91:3b:c9:8d:41:
                    e7:c3:f7:12:11:a7:59:f2:4f:d6:b5:94:84:be:59:
                    dc:11:3c:ec:92:5c:ec:c3:04:d9:ca:db:6a:eb:aa:
                    0b:a2:18:e4:98:cb:7e:5d:cb:68:4c:cb:f3:fa:a8:
                    4b:f4:b7:32:c6:dd:3a:82:f4:b5:5a:95:57:54:38:
                    c3:dd:f3:de:dd:49:02:5c:24:06:5a:c3:96:9d:13:
                    1b:5f:4e:52:74:91:1e:01:dd:34:af:f1:9f:e8:fb:
                    2c:1c:97:ba:e3:97:01:07:5a:8c:30:f6:3e:8a:d8:
                    36:ab:87:92:f9:7d:42:1f:4f:8d:17:f9:7c:5e:e6:
                    76:7e:9c:98:d6:5e:51:83:0e:6d:13:91:11:df:fb:
                    a5:f4:34:7e:48:a9:d2:a9:d9:e8:42:f6:53:6e:10:
                    4f:ed:20:bb:2e:89:a8:72:65:72:ea:55:e0:18:8a:
                    56:69:9b:ce:97:7b:0f:d6:12:9c:a5:55:fd:cf:94:
                    bb:d6:02:2d:91:0a:6a:82:83:04:90:6d:8d:70:13:
                    8d:df:67:e6:9a:d5:2e:2f:5e:30:69:25:d6:9f:44:
                    6d:9b:b1:1a:8b:4b:5e:ca:1c:ff:75:13:ae:5d:74:
                    41:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:93:A8:D9:51:A6:4A:42:1C:98:E2:57:A2:FA:EF:70:23:D0:FA:B5
            X509v3 Authority Key Identifier:
                keyid:28:F7:AF:EC:4D:3F:06:F8:0D:68:72:A6:D6:24:6C:D0:1E:73:D6:A6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a1:30:cb:49:08:99:e4:2e:3f:f5:46:ea:52:07:b8:5a:eb:b0:
         b9:9b:65:f3:7c:21:04:7e:a8:ff:03:57:07:99:ee:ab:ed:01:
         a8:54:30:fe:a4:bf:5d:64:44:9f:c6:56:fa:a1:95:7b:63:9d:
         9d:4e:3b:13:1c:24:ce:53:b3:b5:85:71:02:98:a9:cf:7b:e0:
         43:cf:84:4e:d6:bb:1e:09:ec:15:18:95:94:97:0b:54:dd:57:
         4a:85:f4:0a:c9:a4:cc:10:d6:99:0a:a3:7e:b1:90:a2:64:f5:
         f4:21:16:c3:5c:f9:db:7a:f6:28:b7:82:02:7a:29:74:ae:34:
         3c:96:23:35:3a:c5:c7:5f:b2:c5:7e:bc:ab:10:9d:ec:02:73:
         f2:05:37:56:6d:02:85:69:dc:31:23:20:c2:fa:06:bb:8e:05:
         68:aa:10:f7:57:93:49:9b:46:2c:cb:b3:21:c7:ce:bf:81:f5:
         5a:69:56:33:3e:5b:06:aa:8e:1a:ec:66:d4:88:95:db:58:19:
         60:79:97:8f:36:fc:a9:a1:5e:10:f3:3b:ce:32:f3:1e:e3:b1:
         89:e2:fc:8b:6e:df:f6:04:13:35:63:aa:a4:d7:68:e6:27:3a:
         8b:07:21:78:91:d2:ce:01:2d:2f:99:da:b0:a6:76:11:85:e9:
         a1:1b:a4:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfRqcPFm2HQrLbtKKOfkBsXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ZjdhZmVjNGQzZjA2ZjgwZDY4NzJhNmQ2MjQ2Y2QwMWU3
M2Q2YTYwHhcNMjUwNzAzMTkwMDUzWhcNMjUwNzA0MTkwMDUzWjAzMTEwLwYDVQQD
EyhlMjkzYThkOTUxYTY0YTQyMWM5OGUyNTdhMmZhZWY3MDIzZDBmYWI1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxF7jEjGtQZIuLVPodZ8QEl3wzzX1
xX8SkTvJjUHnw/cSEadZ8k/WtZSEvlncETzsklzswwTZyttq66oLohjkmMt+Xcto
TMvz+qhL9Lcyxt06gvS1WpVXVDjD3fPe3UkCXCQGWsOWnRMbX05SdJEeAd00r/Gf
6PssHJe645cBB1qMMPY+itg2q4eS+X1CH0+NF/l8XuZ2fpyY1l5Rgw5tE5ER3/ul
9DR+SKnSqdnoQvZTbhBP7SC7LomocmVy6lXgGIpWaZvOl3sP1hKcpVX9z5S71gIt
kQpqgoMEkG2NcBON32fmmtUuL14waSXWn0Rtm7Eai0teyhz/dROuXXRBwwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOKTqNlRpkpCHJjiV6L673Aj0Pq1MB8GA1UdIwQY
MBaAFCj3r+xNPwb4DWhyptYkbNAec9amMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1BldjdFMF9CdmdOYUhLbTFpUnMwQjV6MXFZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yMTdhMzAtOGVlMS00OTEzLWExMjct
NTc2ZDQwM2M5MThmLzEvS1BldjdFMF9CdmdOYUhLbTFpUnMwQjV6MXFZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8yMTdhMzAtOGVlMS00OTEzLWExMjctNTc2ZDQwM2M5MThm
LzEvS1BldjdFMF9CdmdOYUhLbTFpUnMwQjV6MXFZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoTDLSQiZ
5C4/9UbqUge4WuuwuZtl83whBH6o/wNXB5nuq+0BqFQw/qS/XWREn8ZW+qGVe2Od
nU47ExwkzlOztYVxApipz3vgQ8+ETta7HgnsFRiVlJcLVN1XSoX0CsmkzBDWmQqj
frGQomT19CEWw1z523r2KLeCAnopdK40PJYjNTrFx1+yxX68qxCd7AJz8gU3Vm0C
hWncMSMgwvoGu44FaKoQ91eTSZtGLMuzIcfOv4H1WmlWMz5bBqqOGuxm1IiV21gZ
YHmXjzb8qaFeEPM7zjLzHuOxieL8i27f9gQTNWOqpNdo5ic6iwcheJHSzgEtL5na
sKZ2EYXpoRukgQ==
-----END CERTIFICATE-----