Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
File:                     eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft (raw, json)
Hash identifier:          qQYCXtdy+pgj3dxM+zXRUK46OhiF9LNJjHv2MaOF8ug=
Subject key identifier:   38:12:A2:62:88:73:82:50:90:1B:C3:56:D5:4A:F2:C2:AA:20:EB:39
Authority key identifier: 78:59:66:9C:2B:7C:0B:25:C0:7E:79:32:B8:A1:F9:8B:0B:BE:DC:4C
Certificate issuer:       /CN=7859669c2b7c0b25c07e7932b8a1f98b0bbedc4c
Certificate serial:       0197469DFB0538325A687ABF25A799A51ADB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
Manifest number:          1579
Signing time:             Fri 06 Jun 2025 19:00:47 +0000
Manifest this update:     Fri 06 Jun 2025 19:00:47 +0000
Manifest next update:     Sat 07 Jun 2025 19:00:47 +0000
Files and hashes:         1: eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl (hash: SWxnuaOEfa0c3Nj+DVPYQ/WdckdgVlyAHta4t6Nyk8Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:46:9d:fb:05:38:32:5a:68:7a:bf:25:a7:99:a5:1a:db
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7859669c2b7c0b25c07e7932b8a1f98b0bbedc4c
        Validity
            Not Before: Jun  6 19:00:47 2025 GMT
            Not After : Jun  7 19:00:47 2025 GMT
        Subject: CN=3812a26288738250901bc356d54af2c2aa20eb39
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:cd:19:18:75:91:8d:0b:bc:b1:60:bb:10:d6:
                    4b:9a:dd:83:16:d4:03:ac:56:ce:4a:67:2c:19:da:
                    68:62:79:80:64:b7:95:b1:fa:40:af:c7:d4:38:0f:
                    80:50:16:20:55:f1:7f:e8:24:bc:8f:3e:36:11:83:
                    96:3f:02:fa:b5:4e:7e:97:bf:1a:bf:2f:fc:d8:45:
                    4b:8d:72:45:ca:9c:10:46:b5:2d:89:f4:cd:06:89:
                    fe:e3:8c:e9:91:bc:bc:03:c7:f8:1b:26:10:40:f2:
                    fe:56:e5:f8:d5:b3:5d:0e:53:24:3d:d2:be:c4:16:
                    48:1a:83:ef:e8:03:03:cd:e6:4f:11:a9:26:23:2a:
                    16:e8:fb:9b:25:b9:c4:fd:c3:4e:c3:cf:bd:26:ad:
                    c6:81:0c:9a:51:55:4d:5e:bf:f7:c5:64:35:02:3a:
                    05:55:b6:92:80:79:f5:71:8d:c2:14:e4:58:c7:24:
                    2f:83:24:6e:ee:ef:d2:59:e0:c8:f1:4e:90:29:be:
                    84:5c:33:20:87:ad:0c:86:e9:9b:64:f8:ca:37:8a:
                    b2:f3:94:c5:3f:ed:02:51:5b:82:01:a2:ad:58:a4:
                    44:dd:86:1c:99:9e:90:f4:df:fe:5e:31:db:84:0a:
                    20:4d:ec:a6:7a:df:cc:7a:6a:f3:93:2b:ae:56:fc:
                    c9:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:12:A2:62:88:73:82:50:90:1B:C3:56:D5:4A:F2:C2:AA:20:EB:39
            X509v3 Authority Key Identifier:
                keyid:78:59:66:9C:2B:7C:0B:25:C0:7E:79:32:B8:A1:F9:8B:0B:BE:DC:4C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7f:52:7b:2a:73:eb:4e:72:12:05:3b:ae:9f:f4:10:a4:34:c1:
         ef:b5:47:d7:26:d1:f3:64:21:4a:41:f7:a6:7d:48:d9:56:d9:
         0f:9d:91:69:8e:9b:a7:11:6f:5b:14:e0:14:3b:6c:4e:5a:af:
         3b:4c:c2:04:28:09:71:5c:46:f3:bc:5c:5e:6a:6a:9e:e7:d6:
         30:f5:92:2d:d4:74:af:e9:3b:37:4d:6a:68:42:94:3d:02:77:
         26:d0:71:82:74:8b:34:4e:9d:0e:e4:97:8d:d9:6d:d2:df:62:
         d1:f7:99:9c:f3:17:b1:0d:ab:59:ba:c3:a7:5f:e4:9a:d7:f7:
         90:84:38:50:81:92:ca:b9:1e:ac:b3:dd:66:d3:6b:6a:9f:7c:
         d4:bb:8d:be:8d:41:29:c0:9a:4b:cc:63:5d:37:89:19:48:e1:
         93:51:57:4f:01:cd:40:51:6a:53:d0:d3:39:f1:b2:fb:c1:00:
         bf:19:6e:97:e0:d9:5d:83:3a:2c:0d:54:21:10:47:9c:76:66:
         ce:f4:a4:5b:a1:1c:14:45:e6:cc:25:07:7e:61:4f:6a:e6:bf:
         31:12:a7:f3:99:2b:6a:75:79:52:c6:6e:64:ab:08:4b:83:5b:
         bd:fd:d2:89:42:02:11:81:ee:7f:94:72:2b:2b:dc:7f:d0:33:
         e0:73:28:7b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGnfsFODJaaHq/JaeZpRrbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4NTk2NjljMmI3YzBiMjVjMDdlNzkzMmI4YTFmOThiMGJi
ZWRjNGMwHhcNMjUwNjA2MTkwMDQ3WhcNMjUwNjA3MTkwMDQ3WjAzMTEwLwYDVQQD
EygzODEyYTI2Mjg4NzM4MjUwOTAxYmMzNTZkNTRhZjJjMmFhMjBlYjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA580ZGHWRjQu8sWC7ENZLmt2DFtQD
rFbOSmcsGdpoYnmAZLeVsfpAr8fUOA+AUBYgVfF/6CS8jz42EYOWPwL6tU5+l78a
vy/82EVLjXJFypwQRrUtifTNBon+44zpkby8A8f4GyYQQPL+VuX41bNdDlMkPdK+
xBZIGoPv6AMDzeZPEakmIyoW6PubJbnE/cNOw8+9Jq3GgQyaUVVNXr/3xWQ1AjoF
VbaSgHn1cY3CFORYxyQvgyRu7u/SWeDI8U6QKb6EXDMgh60MhumbZPjKN4qy85TF
P+0CUVuCAaKtWKRE3YYcmZ6Q9N/+XjHbhAogTeymet/MemrzkyuuVvzJHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDgSomKIc4JQkBvDVtVK8sKqIOs5MB8GA1UdIwQY
MBaAFHhZZpwrfAslwH55Mrih+YsLvtxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUZsbW5DdDhDeVhBZm5reXVLSDVpd3UtM0V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS80YjU0OTUtMTA3Mi00ZWYzLTg2Njkt
ZmMzNTU5Njk2MjQ2LzEvZUZsbW5DdDhDeVhBZm5reXVLSDVpd3UtM0V3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS80YjU0OTUtMTA3Mi00ZWYzLTg2NjktZmMzNTU5Njk2MjQ2
LzEvZUZsbW5DdDhDeVhBZm5reXVLSDVpd3UtM0V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf1J7KnPr
TnISBTuun/QQpDTB77VH1ybR82QhSkH3pn1I2VbZD52RaY6bpxFvWxTgFDtsTlqv
O0zCBCgJcVxG87xcXmpqnufWMPWSLdR0r+k7N01qaEKUPQJ3JtBxgnSLNE6dDuSX
jdlt0t9i0feZnPMXsQ2rWbrDp1/kmtf3kIQ4UIGSyrkerLPdZtNrap981LuNvo1B
KcCaS8xjXTeJGUjhk1FXTwHNQFFqU9DTOfGy+8EAvxlul+DZXYM6LA1UIRBHnHZm
zvSkW6EcFEXmzCUHfmFPaua/MRKn85kranV5UsZuZKsIS4Nbvf3SiUICEYHuf5Ry
Kyvcf9Az4HMoew==
-----END CERTIFICATE-----