Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
File:                     Yefv0ZrydUeUJswZJcW8Ls7ums4.mft (raw, json)
Hash identifier:          c8249C7rwNHFYabG6OTQKXUBFQGQJv/1pnM44h4w7Ho=
Subject key identifier:   EC:8E:E7:21:34:E9:A3:33:0C:FD:9D:CA:01:64:96:F9:B3:58:33:1D
Authority key identifier: 61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE
Certificate issuer:       /CN=61e7efd19af275479426cc1925c5bc2eceee9ace
Certificate serial:       01964AEAACED90CBD7026CB949E58D22FBC8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
Manifest number:          140A
Signing time:             Fri 18 Apr 2025 22:00:15 +0000
Manifest this update:     Fri 18 Apr 2025 22:00:15 +0000
Manifest next update:     Sat 19 Apr 2025 22:00:15 +0000
Files and hashes:         1: Yefv0ZrydUeUJswZJcW8Ls7ums4.crl (hash: pUVROAHKqPVGIbc5xENlBFDtHY26vqMs+syXj2NnoGs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 19 Apr 2025 22:00:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:4a:ea:ac:ed:90:cb:d7:02:6c:b9:49:e5:8d:22:fb:c8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=61e7efd19af275479426cc1925c5bc2eceee9ace
        Validity
            Not Before: Apr 18 22:00:15 2025 GMT
            Not After : Apr 19 22:00:15 2025 GMT
        Subject: CN=ec8ee72134e9a3330cfd9dca016496f9b358331d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:3a:bc:25:d2:02:3e:48:b5:81:3b:99:bd:d6:
                    62:38:17:6a:52:ee:d1:59:80:fa:53:20:71:3d:2d:
                    1a:60:97:ac:e2:49:19:c7:a0:a8:e7:93:47:aa:c9:
                    50:df:4c:f5:cc:53:7f:67:9b:1a:da:65:02:fb:3b:
                    6a:ae:8b:7c:e3:9e:22:c5:42:60:5b:f6:bc:75:4f:
                    fc:43:37:ac:18:49:40:33:10:23:0b:8c:cd:73:f4:
                    43:08:5d:94:ed:d7:71:e4:33:29:8f:0b:93:d7:86:
                    40:ed:2c:64:a3:a3:6e:bf:5a:c9:91:3e:aa:47:1d:
                    09:93:9b:0c:74:e0:05:ea:88:3a:b7:2e:8b:13:58:
                    1d:01:0b:f5:9b:04:ec:90:26:50:fd:9a:e4:5a:bc:
                    a0:e0:62:34:d9:94:df:ab:c9:07:d8:53:0b:e9:8c:
                    b2:c1:56:98:44:ca:44:6c:d4:5c:6b:dc:77:4a:e8:
                    0d:f6:28:64:e3:5c:a0:b8:f4:b9:e4:88:e9:95:ee:
                    83:7c:33:2e:88:94:d5:20:d1:78:4c:2b:06:ea:c6:
                    fd:e9:21:99:8d:7c:5b:47:c1:aa:d4:0d:28:10:06:
                    32:fa:b4:46:73:a7:e9:a9:a6:24:94:64:74:0c:e5:
                    61:22:7f:de:87:97:e3:ba:4c:5d:ac:c3:67:35:26:
                    ee:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:8E:E7:21:34:E9:A3:33:0C:FD:9D:CA:01:64:96:F9:B3:58:33:1D
            X509v3 Authority Key Identifier:
                keyid:61:E7:EF:D1:9A:F2:75:47:94:26:CC:19:25:C5:BC:2E:CE:EE:9A:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yefv0ZrydUeUJswZJcW8Ls7ums4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/e3c390-e475-4024-ac7f-08740df87106/1/Yefv0ZrydUeUJswZJcW8Ls7ums4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:eb:3f:dc:38:2d:24:6b:54:30:4d:a9:92:9a:75:83:10:33:
         a8:9e:ae:e2:27:28:e8:6f:b2:26:dc:80:20:9e:f2:38:09:ed:
         28:c5:28:ec:e1:53:e5:1a:d0:0c:6a:68:d3:84:e8:14:1f:3d:
         fd:7d:ae:be:60:c3:d6:82:f5:1b:66:a9:98:b6:de:ef:da:52:
         f5:30:d4:d2:e8:d1:fe:e9:67:4b:04:e1:bc:82:1a:42:79:d2:
         cf:dd:d6:fd:54:52:02:58:81:6a:0e:b7:62:83:a7:2a:fb:1c:
         0f:a0:76:3e:5e:b1:f1:34:35:9e:3b:c7:ce:29:9b:03:0d:26:
         a3:f2:9a:ff:29:42:cc:8a:b6:a6:6d:19:23:ee:b4:1f:95:b9:
         77:1e:01:e3:8b:de:7f:09:e6:e3:0b:d4:06:77:7e:13:aa:6f:
         86:04:b1:e2:c9:24:c3:64:fe:ad:15:40:73:3f:15:82:40:4a:
         12:c9:82:29:06:2b:4c:8a:64:64:78:6d:32:53:40:56:ba:73:
         e4:df:7f:fd:77:c8:36:bb:43:fe:17:ec:b1:13:20:4e:07:a5:
         e2:55:ab:8c:03:f4:00:0c:8f:3b:b6:e6:04:9c:23:ba:63:90:
         6c:01:c1:a1:fe:47:8b:2d:7d:84:c4:b7:8a:12:c0:cc:db:7f:
         5b:25:45:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZK6qztkMvXAmy5SeWNIvvIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxZTdlZmQxOWFmMjc1NDc5NDI2Y2MxOTI1YzViYzJlY2Vl
ZTlhY2UwHhcNMjUwNDE4MjIwMDE1WhcNMjUwNDE5MjIwMDE1WjAzMTEwLwYDVQQD
EyhlYzhlZTcyMTM0ZTlhMzMzMGNmZDlkY2EwMTY0OTZmOWIzNTgzMzFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2zq8JdICPki1gTuZvdZiOBdqUu7R
WYD6UyBxPS0aYJes4kkZx6Co55NHqslQ30z1zFN/Z5sa2mUC+ztqrot8454ixUJg
W/a8dU/8QzesGElAMxAjC4zNc/RDCF2U7ddx5DMpjwuT14ZA7Sxko6Nuv1rJkT6q
Rx0Jk5sMdOAF6og6ty6LE1gdAQv1mwTskCZQ/ZrkWryg4GI02ZTfq8kH2FML6Yyy
wVaYRMpEbNRca9x3SugN9ihk41yguPS55Ijple6DfDMuiJTVINF4TCsG6sb96SGZ
jXxbR8Gq1A0oEAYy+rRGc6fpqaYklGR0DOVhIn/eh5fjukxdrMNnNSbu1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOyO5yE06aMzDP2dygFklvmzWDMdMB8GA1UdIwQY
MBaAFGHn79Ga8nVHlCbMGSXFvC7O7prOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWVmdjBacnlkVWVVSnN3WkpjVzhMczd1bXM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi9lM2MzOTAtZTQ3NS00MDI0LWFjN2Yt
MDg3NDBkZjg3MTA2LzEvWWVmdjBacnlkVWVVSnN3WkpjVzhMczd1bXM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi9lM2MzOTAtZTQ3NS00MDI0LWFjN2YtMDg3NDBkZjg3MTA2
LzEvWWVmdjBacnlkVWVVSnN3WkpjVzhMczd1bXM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk+s/3Dgt
JGtUME2pkpp1gxAzqJ6u4ico6G+yJtyAIJ7yOAntKMUo7OFT5RrQDGpo04ToFB89
/X2uvmDD1oL1G2apmLbe79pS9TDU0ujR/ulnSwThvIIaQnnSz93W/VRSAliBag63
YoOnKvscD6B2Pl6x8TQ1njvHzimbAw0mo/Ka/ylCzIq2pm0ZI+60H5W5dx4B44ve
fwnm4wvUBnd+E6pvhgSx4skkw2T+rRVAcz8VgkBKEsmCKQYrTIpkZHhtMlNAVrpz
5N9//XfINrtD/hfssRMgTgel4lWrjAP0AAyPO7bmBJwjumOQbAHBof5Hiy19hMS3
ihLAzNt/WyVFEw==
-----END CERTIFICATE-----