Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
File:                     tkDbwv_PXWNFicBEAV1xdcuv8-0.mft (raw, json)
Hash identifier:          xR+x0epu0vg9+CLBeCPscrVa5y8HZX1e4woTAzGzirg=
Subject key identifier:   FE:EE:FA:39:61:69:B4:19:27:AA:4C:E3:7E:83:86:D4:1B:F1:8E:2A
Authority key identifier: B6:40:DB:C2:FF:CF:5D:63:45:89:C0:44:01:5D:71:75:CB:AF:F3:ED
Certificate issuer:       /CN=b640dbc2ffcf5d634589c044015d7175cbaff3ed
Certificate serial:       01974B1F6975D2A19325A476DF9E37E88E03
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
Manifest number:          101C
Signing time:             Sat 07 Jun 2025 16:00:39 +0000
Manifest this update:     Sat 07 Jun 2025 16:00:39 +0000
Manifest next update:     Sun 08 Jun 2025 16:00:39 +0000
Files and hashes:         1: tkDbwv_PXWNFicBEAV1xdcuv8-0.crl (hash: FSYxgapzGfR9qius7FnNwRfHl7Zi0P1WhBsx1WKXhYs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:1f:69:75:d2:a1:93:25:a4:76:df:9e:37:e8:8e:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b640dbc2ffcf5d634589c044015d7175cbaff3ed
        Validity
            Not Before: Jun  7 16:00:39 2025 GMT
            Not After : Jun  8 16:00:39 2025 GMT
        Subject: CN=feeefa396169b41927aa4ce37e8386d41bf18e2a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:25:4d:a6:53:8d:3e:0d:db:9e:80:25:5f:e8:
                    7e:fb:a5:86:33:c5:e4:09:6f:d7:a1:e2:6d:67:9b:
                    97:32:e8:46:ab:4f:f8:0e:f3:3f:fe:c0:d7:3f:a8:
                    a8:a9:e1:8e:7d:32:11:37:4f:79:f7:ab:39:e4:eb:
                    15:ac:79:de:d4:87:14:93:78:c8:2f:63:ba:9d:11:
                    37:90:3b:83:52:be:d3:38:f7:bc:5c:c9:f1:e3:71:
                    50:2b:27:29:d0:be:a5:c8:3e:57:05:b1:3d:0c:b5:
                    c9:f8:39:d8:0b:91:86:00:83:c1:91:05:66:81:44:
                    b6:a4:49:43:93:65:62:e8:10:cb:6a:d0:03:cb:f4:
                    bc:0b:bc:49:34:f0:5b:87:37:5d:ac:c7:fa:fa:c4:
                    d8:db:6d:06:5d:03:6b:86:84:d0:9b:8a:ef:cb:ec:
                    40:cc:ae:17:b5:3a:d7:5d:3d:b7:f2:5d:23:59:19:
                    7d:de:05:ec:5a:36:51:3e:64:e2:d3:c5:20:b3:64:
                    87:74:bf:ac:6a:4c:7e:a3:92:89:1d:51:82:6d:98:
                    a2:03:63:4a:87:15:f4:fc:9d:7a:88:73:d2:2f:bb:
                    dc:fc:17:6f:3e:3b:2c:94:a1:16:8a:05:da:21:1a:
                    0f:9d:f1:80:04:fb:76:87:a5:aa:b8:93:ee:40:93:
                    91:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:EE:FA:39:61:69:B4:19:27:AA:4C:E3:7E:83:86:D4:1B:F1:8E:2A
            X509v3 Authority Key Identifier:
                keyid:B6:40:DB:C2:FF:CF:5D:63:45:89:C0:44:01:5D:71:75:CB:AF:F3:ED

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tkDbwv_PXWNFicBEAV1xdcuv8-0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/76768c-cd75-46a9-8d65-6cbb77baa02d/1/tkDbwv_PXWNFicBEAV1xdcuv8-0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:de:50:fe:75:e3:83:d7:41:bd:fa:0e:9a:3a:54:56:9d:e6:
         70:58:d6:55:be:f9:ec:6d:23:0b:3a:ba:80:e6:bb:1c:84:ce:
         94:7b:71:e6:bc:1a:45:c9:3f:3f:69:f1:83:2d:14:fc:28:57:
         b8:6a:e1:7e:1d:25:61:3d:9d:a0:d9:2a:4d:61:f9:0a:f0:d5:
         49:37:af:96:1f:08:f9:43:c6:77:a5:32:00:41:a9:08:8d:0b:
         34:c4:7d:ba:7c:19:49:bc:4e:5b:06:f2:9b:2a:97:a0:c1:85:
         c5:ae:24:77:89:33:e9:05:d8:83:d5:22:08:8c:e8:d4:e0:da:
         af:6e:37:f2:bf:28:04:c0:66:80:87:eb:60:a1:c5:fd:80:2d:
         e8:6f:f4:43:d3:50:d0:d3:4c:c4:fb:75:91:4f:a3:6a:09:6d:
         2e:12:21:5e:f7:46:0a:c5:e6:ab:ed:6d:b4:88:cd:63:31:79:
         04:5b:c2:a2:70:94:33:12:20:71:04:1b:f9:57:ff:b4:23:02:
         2e:5f:4e:dc:a2:76:75:ea:6b:e0:05:cb:a5:21:b1:1f:c1:44:
         b9:cf:a9:e9:4a:15:5a:91:52:a9:ab:50:fc:df:ac:ec:c0:76:
         a6:11:b8:b2:2a:96:22:70:26:7c:7d:42:87:f9:30:01:cc:24:
         d1:88:2b:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLH2l10qGTJaR235436I4DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2NDBkYmMyZmZjZjVkNjM0NTg5YzA0NDAxNWQ3MTc1Y2Jh
ZmYzZWQwHhcNMjUwNjA3MTYwMDM5WhcNMjUwNjA4MTYwMDM5WjAzMTEwLwYDVQQD
EyhmZWVlZmEzOTYxNjliNDE5MjdhYTRjZTM3ZTgzODZkNDFiZjE4ZTJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuiVNplONPg3bnoAlX+h++6WGM8Xk
CW/XoeJtZ5uXMuhGq0/4DvM//sDXP6ioqeGOfTIRN09596s55OsVrHne1IcUk3jI
L2O6nRE3kDuDUr7TOPe8XMnx43FQKycp0L6lyD5XBbE9DLXJ+DnYC5GGAIPBkQVm
gUS2pElDk2Vi6BDLatADy/S8C7xJNPBbhzddrMf6+sTY220GXQNrhoTQm4rvy+xA
zK4XtTrXXT238l0jWRl93gXsWjZRPmTi08Ugs2SHdL+sakx+o5KJHVGCbZiiA2NK
hxX0/J16iHPSL7vc/BdvPjsslKEWigXaIRoPnfGABPt2h6WquJPuQJORbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP7u+jlhabQZJ6pM436DhtQb8Y4qMB8GA1UdIwQY
MBaAFLZA28L/z11jRYnARAFdcXXLr/PtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGtEYnd2X1BYV05GaWNCRUFWMXhkY3V2OC0wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi83Njc2OGMtY2Q3NS00NmE5LThkNjUt
NmNiYjc3YmFhMDJkLzEvdGtEYnd2X1BYV05GaWNCRUFWMXhkY3V2OC0wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi83Njc2OGMtY2Q3NS00NmE5LThkNjUtNmNiYjc3YmFhMDJk
LzEvdGtEYnd2X1BYV05GaWNCRUFWMXhkY3V2OC0wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKN5Q/nXj
g9dBvfoOmjpUVp3mcFjWVb757G0jCzq6gOa7HITOlHtx5rwaRck/P2nxgy0U/ChX
uGrhfh0lYT2doNkqTWH5CvDVSTevlh8I+UPGd6UyAEGpCI0LNMR9unwZSbxOWwby
myqXoMGFxa4kd4kz6QXYg9UiCIzo1ODar2438r8oBMBmgIfrYKHF/YAt6G/0Q9NQ
0NNMxPt1kU+jagltLhIhXvdGCsXmq+1ttIjNYzF5BFvConCUMxIgcQQb+Vf/tCMC
Ll9O3KJ2depr4AXLpSGxH8FEuc+p6UoVWpFSqatQ/N+s7MB2phG4siqWInAmfH1C
h/kwAcwk0YgrNA==
-----END CERTIFICATE-----