Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft
File:                     BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft (raw, json)
Hash identifier:          ct1ZoBPkBgWS8vy/fOeGICrUu829yEBhFPgfB42VN7M=
Subject key identifier:   8E:AB:DD:8A:76:97:B9:8B:31:D9:9D:36:2B:BA:E4:6C:24:BC:39:5D
Authority key identifier: 06:6B:A2:09:C5:0C:02:A8:58:B5:43:08:C8:2A:E5:BF:30:2E:FA:A4
Certificate issuer:       /CN=066ba209c50c02a858b54308c82ae5bf302efaa4
Certificate serial:       0197488C3DC353057350265586A81DB7A306
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft
Manifest number:          124D
Signing time:             Sat 07 Jun 2025 04:00:39 +0000
Manifest this update:     Sat 07 Jun 2025 04:00:39 +0000
Manifest next update:     Sun 08 Jun 2025 04:00:39 +0000
Files and hashes:         1: BmuiCcUMAqhYtUMIyCrlvzAu-qQ.crl (hash: MdAI6lm8Ur7BDbEuE9BqtaYltgvOHG46OSn1TJLCkOA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 04:00:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8c:3d:c3:53:05:73:50:26:55:86:a8:1d:b7:a3:06
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=066ba209c50c02a858b54308c82ae5bf302efaa4
        Validity
            Not Before: Jun  7 04:00:39 2025 GMT
            Not After : Jun  8 04:00:39 2025 GMT
        Subject: CN=8eabdd8a7697b98b31d99d362bbae46c24bc395d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:67:06:18:58:13:9e:63:99:cb:6f:7b:70:d1:
                    5e:28:de:39:64:e9:3c:9e:a1:1e:96:09:c5:4d:3b:
                    73:5e:9e:8d:27:4a:ad:45:11:27:44:8e:9c:33:56:
                    91:51:bb:93:7b:99:ac:90:31:02:87:b9:c6:42:cd:
                    26:19:4f:d8:fd:19:a2:84:5a:82:d7:df:9f:bc:74:
                    b2:3e:3b:71:50:81:df:81:2a:d1:d4:55:45:b0:66:
                    26:5f:00:67:b1:8d:2e:26:8f:71:4b:d2:71:eb:a0:
                    ca:93:18:10:45:4c:bd:bc:ba:8c:e8:81:ab:6a:81:
                    10:9c:52:3f:8a:ba:9d:f5:3e:85:75:2f:bf:9f:07:
                    b5:00:b5:98:c1:f6:62:52:ff:94:11:41:3c:33:5c:
                    29:80:38:a6:b4:c4:7e:5a:0d:d2:aa:27:5f:e3:0a:
                    03:41:e3:d5:f9:e9:9f:c6:84:f3:d5:d4:d4:1b:c8:
                    cf:6c:a2:a4:b1:c6:f7:11:a2:57:94:af:fe:55:ae:
                    46:19:36:6b:f0:60:b3:ed:f2:8e:de:7e:28:90:a1:
                    b0:6c:08:54:d5:4f:f4:39:ae:16:ad:ab:8c:f0:3f:
                    c5:3f:78:19:8b:18:7d:7d:a8:7e:75:b0:9c:20:a9:
                    a6:d3:91:92:c4:03:6f:63:33:8f:e9:c4:39:4b:6e:
                    8a:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:AB:DD:8A:76:97:B9:8B:31:D9:9D:36:2B:BA:E4:6C:24:BC:39:5D
            X509v3 Authority Key Identifier:
                keyid:06:6B:A2:09:C5:0C:02:A8:58:B5:43:08:C8:2A:E5:BF:30:2E:FA:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cc:59:1b:c2:bc:7d:b1:52:b8:5b:dd:11:a3:0d:16:38:34:b0:
         b4:3a:6d:3e:e5:c9:8a:c5:9a:7b:24:c7:92:56:dd:fb:2e:b1:
         54:de:a6:e5:ee:19:88:c1:29:6a:8c:9a:af:d3:d0:4e:1a:12:
         6e:cb:82:cf:07:ba:9c:79:bd:e3:59:a9:bb:8c:05:88:05:0e:
         b8:cd:5f:4c:f6:b5:cd:57:73:64:eb:58:7c:a0:89:cf:ff:36:
         56:29:4c:0f:9e:e9:f3:06:c0:23:cf:31:8c:72:5c:22:06:ef:
         b1:c2:cd:a8:a1:eb:c1:1e:11:62:57:47:85:c4:1a:b4:01:8d:
         5d:61:f6:70:33:5b:21:b4:b8:19:15:db:18:00:1d:fa:8e:8e:
         e4:22:4e:5f:9b:65:f8:77:5e:3e:82:0e:56:9c:a0:71:28:ab:
         df:5f:45:c2:1b:c4:72:b1:2f:c7:3d:0b:5c:53:5c:f1:a7:79:
         b4:6c:cb:c6:08:77:d9:d5:1f:af:88:55:50:9f:2e:c2:60:87:
         18:1a:23:ee:8a:d9:85:bb:b2:dc:24:48:3a:8b:92:b6:af:87:
         fe:98:2a:f1:32:64:17:6d:22:68:41:1e:66:b7:25:4c:07:86:
         ae:67:d8:de:0d:25:b2:3d:c0:32:24:fe:c9:bd:c4:70:2a:1c:
         d6:ca:47:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjD3DUwVzUCZVhqgdt6MGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NmJhMjA5YzUwYzAyYTg1OGI1NDMwOGM4MmFlNWJmMzAy
ZWZhYTQwHhcNMjUwNjA3MDQwMDM5WhcNMjUwNjA4MDQwMDM5WjAzMTEwLwYDVQQD
Eyg4ZWFiZGQ4YTc2OTdiOThiMzFkOTlkMzYyYmJhZTQ2YzI0YmMzOTVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWcGGFgTnmOZy297cNFeKN45ZOk8
nqEelgnFTTtzXp6NJ0qtRREnRI6cM1aRUbuTe5mskDECh7nGQs0mGU/Y/RmihFqC
19+fvHSyPjtxUIHfgSrR1FVFsGYmXwBnsY0uJo9xS9Jx66DKkxgQRUy9vLqM6IGr
aoEQnFI/irqd9T6FdS+/nwe1ALWYwfZiUv+UEUE8M1wpgDimtMR+Wg3Sqidf4woD
QePV+emfxoTz1dTUG8jPbKKkscb3EaJXlK/+Va5GGTZr8GCz7fKO3n4okKGwbAhU
1U/0Oa4WrauM8D/FP3gZixh9fah+dbCcIKmm05GSxANvYzOP6cQ5S26KgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI6r3Yp2l7mLMdmdNiu65GwkvDldMB8GA1UdIwQY
MBaAFAZrognFDAKoWLVDCMgq5b8wLvqkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm11aUNjVU1BcWhZdFVNSXlDcmx2ekF1LXFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8zMTUxYjgtZDhmMS00MTAyLTkzNmYt
OTNmZmVjNWMzYzgxLzEvQm11aUNjVU1BcWhZdFVNSXlDcmx2ekF1LXFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8zMTUxYjgtZDhmMS00MTAyLTkzNmYtOTNmZmVjNWMzYzgx
LzEvQm11aUNjVU1BcWhZdFVNSXlDcmx2ekF1LXFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzFkbwrx9
sVK4W90Row0WODSwtDptPuXJisWaeyTHklbd+y6xVN6m5e4ZiMEpaoyar9PQThoS
bsuCzwe6nHm941mpu4wFiAUOuM1fTPa1zVdzZOtYfKCJz/82VilMD57p8wbAI88x
jHJcIgbvscLNqKHrwR4RYldHhcQatAGNXWH2cDNbIbS4GRXbGAAd+o6O5CJOX5tl
+HdePoIOVpygcSir319FwhvEcrEvxz0LXFNc8ad5tGzLxgh32dUfr4hVUJ8uwmCH
GBoj7orZhbuy3CRIOouStq+H/pgq8TJkF20iaEEeZrclTAeGrmfY3g0lsj3AMiT+
yb3EcCoc1spHVQ==
-----END CERTIFICATE-----