Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
File:                     EDfew086MutlAvFmKoKiD4teohw.mft (raw, json)
Hash identifier:          3GEqx9n/aI69eICRm/CdXSSScanqy6eYY3GYNA5jKF0=
Subject key identifier:   5B:E7:30:3B:1B:93:0E:9D:B5:54:E6:02:EB:A4:3F:A0:C6:BB:A2:13
Authority key identifier: 10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C
Certificate issuer:       /CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
Certificate serial:       01974AE8AF601BC5F742B457AD810D8DED80
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
Manifest number:          157B
Signing time:             Sat 07 Jun 2025 15:00:52 +0000
Manifest this update:     Sat 07 Jun 2025 15:00:52 +0000
Manifest next update:     Sun 08 Jun 2025 15:00:52 +0000
Files and hashes:         1: EDfew086MutlAvFmKoKiD4teohw.crl (hash: 2WDwcjCrxcHj9/O4rB5r3D8ia9Bhi2NIW0WrYSjEE1Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:e8:af:60:1b:c5:f7:42:b4:57:ad:81:0d:8d:ed:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1037dec34f3a32eb6502f1662a82a20f8b5ea21c
        Validity
            Not Before: Jun  7 15:00:52 2025 GMT
            Not After : Jun  8 15:00:52 2025 GMT
        Subject: CN=5be7303b1b930e9db554e602eba43fa0c6bba213
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:c8:31:2a:16:83:77:9a:15:4d:d0:98:c5:44:
                    48:e1:84:df:57:d4:47:07:83:46:2f:58:16:64:0c:
                    16:47:7b:cc:01:fa:37:f1:aa:74:1b:62:24:a9:31:
                    e9:6e:16:56:ba:61:75:c2:cb:c5:4a:71:00:d8:46:
                    2a:ee:b9:7b:ef:97:ff:8b:bd:02:41:c9:92:bb:84:
                    e8:9e:b6:9a:46:d4:1b:59:ae:d0:7c:f0:ae:0a:8f:
                    dd:32:44:ad:0e:bb:aa:c7:8d:b7:97:7a:01:ad:05:
                    55:7c:eb:40:48:b9:b9:d8:51:f3:a6:84:15:72:d2:
                    70:53:16:a3:0d:03:59:35:d5:3e:19:4d:01:9d:d6:
                    f1:93:e7:3e:f1:79:33:16:4f:44:f1:52:2b:01:3b:
                    0a:5d:05:4a:a6:07:48:6b:6e:b6:3e:1d:d4:ec:ff:
                    c6:65:64:ef:fd:fc:13:8a:05:3e:e0:65:73:26:d7:
                    45:ca:95:db:7e:f3:55:e0:c6:c6:f8:46:98:1c:9b:
                    ac:75:b5:ba:49:c0:6e:22:20:0c:b7:83:9d:cf:71:
                    ed:f2:24:bb:a3:6c:f4:cf:36:ad:60:72:c6:39:8d:
                    f1:a5:36:9c:18:a7:43:66:1a:7e:98:b6:cd:30:e6:
                    0c:9b:aa:18:93:87:95:ed:52:32:f6:9b:24:55:a5:
                    b9:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:E7:30:3B:1B:93:0E:9D:B5:54:E6:02:EB:A4:3F:A0:C6:BB:A2:13
            X509v3 Authority Key Identifier:
                keyid:10:37:DE:C3:4F:3A:32:EB:65:02:F1:66:2A:82:A2:0F:8B:5E:A2:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDfew086MutlAvFmKoKiD4teohw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/b680af-d5ab-4b2f-a837-0d41a64e90ec/1/EDfew086MutlAvFmKoKiD4teohw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:37:f9:91:e2:0c:83:f3:32:92:18:2e:c4:da:2b:ab:65:a4:
         60:17:7c:93:15:5e:e4:16:83:9a:ce:06:10:7b:90:8c:1d:37:
         97:0c:90:41:0c:6d:40:d8:13:de:38:b1:0b:df:ec:6f:5f:4e:
         8e:2e:aa:9f:a7:84:da:b4:1d:14:e6:bd:62:e1:c8:3b:bf:69:
         cd:98:25:ca:ee:eb:7f:58:29:e4:c4:95:5f:e0:78:cc:f9:75:
         b2:bf:a1:2c:19:b2:70:07:3d:2a:ee:17:72:c0:51:b8:6f:df:
         12:70:27:82:e6:ae:50:35:4f:04:db:61:8f:77:e2:fe:3b:4c:
         47:ba:8a:ab:a5:df:64:a4:55:d5:ff:22:3f:82:d0:2e:22:84:
         de:be:c6:59:18:e3:2f:8d:3c:93:00:f4:c8:e6:b0:f4:cb:a1:
         4c:f2:6e:0a:e3:8b:63:09:e9:f2:c8:66:09:94:5a:8d:21:86:
         d5:a7:b9:af:e0:28:38:42:81:dc:62:9f:ca:3f:38:5b:51:28:
         e3:2c:a3:f7:b9:b9:77:22:5d:3a:ed:b9:6c:d4:f0:a5:b9:1f:
         b5:f7:35:4c:95:ed:b9:d3:a4:33:9f:65:97:a1:ab:31:a9:ac:
         fb:8b:7a:28:9b:9b:d9:20:1b:00:3c:a2:d1:9d:6c:60:ad:7a:
         eb:9c:30:ff
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdK6K9gG8X3QrRXrYENje2AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEwMzdkZWMzNGYzYTMyZWI2NTAyZjE2NjJhODJhMjBmOGI1
ZWEyMWMwHhcNMjUwNjA3MTUwMDUyWhcNMjUwNjA4MTUwMDUyWjAzMTEwLwYDVQQD
Eyg1YmU3MzAzYjFiOTMwZTlkYjU1NGU2MDJlYmE0M2ZhMGM2YmJhMjEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj8gxKhaDd5oVTdCYxURI4YTfV9RH
B4NGL1gWZAwWR3vMAfo38ap0G2IkqTHpbhZWumF1wsvFSnEA2EYq7rl775f/i70C
QcmSu4TonraaRtQbWa7QfPCuCo/dMkStDruqx423l3oBrQVVfOtASLm52FHzpoQV
ctJwUxajDQNZNdU+GU0Bndbxk+c+8XkzFk9E8VIrATsKXQVKpgdIa262Ph3U7P/G
ZWTv/fwTigU+4GVzJtdFypXbfvNV4MbG+EaYHJusdbW6ScBuIiAMt4Odz3Ht8iS7
o2z0zzatYHLGOY3xpTacGKdDZhp+mLbNMOYMm6oYk4eV7VIy9pskVaW5BwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFvnMDsbkw6dtVTmAuukP6DGu6ITMB8GA1UdIwQY
MBaAFBA33sNPOjLrZQLxZiqCog+LXqIcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRURmZXcwODZNdXRsQXZGbUtvS2lENHRlb2h3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9iNjgwYWYtZDVhYi00YjJmLWE4Mzct
MGQ0MWE2NGU5MGVjLzEvRURmZXcwODZNdXRsQXZGbUtvS2lENHRlb2h3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9iNjgwYWYtZDVhYi00YjJmLWE4MzctMGQ0MWE2NGU5MGVj
LzEvRURmZXcwODZNdXRsQXZGbUtvS2lENHRlb2h3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGDf5keIM
g/MykhguxNorq2WkYBd8kxVe5BaDms4GEHuQjB03lwyQQQxtQNgT3jixC9/sb19O
ji6qn6eE2rQdFOa9YuHIO79pzZglyu7rf1gp5MSVX+B4zPl1sr+hLBmycAc9Ku4X
csBRuG/fEnAnguauUDVPBNthj3fi/jtMR7qKq6XfZKRV1f8iP4LQLiKE3r7GWRjj
L408kwD0yOaw9MuhTPJuCuOLYwnp8shmCZRajSGG1ae5r+AoOEKB3GKfyj84W1Eo
4yyj97m5dyJdOu25bNTwpbkftfc1TJXtudOkM59ll6GrMams+4t6KJub2SAbADyi
0Z1sYK1665ww/w==
-----END CERTIFICATE-----