Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
File:                     K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft (raw, json)
Hash identifier:          OeUc8N6g3Y5sg/jRSYE04WX9+ixkAW/3vm+krNe3U/8=
Subject key identifier:   1E:72:5A:7A:66:23:3D:B8:37:50:50:E3:6C:E8:7C:07:79:C2:01:5E
Authority key identifier: 2B:49:E8:84:A4:41:F0:4B:7F:5E:2E:D4:74:B5:84:7E:83:21:2B:CB
Certificate issuer:       /CN=2b49e884a441f04b7f5e2ed474b5847e83212bcb
Certificate serial:       01974A7ACEC3870374E094964C6C4E17A1FB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
Manifest number:          1578
Signing time:             Sat 07 Jun 2025 13:00:51 +0000
Manifest this update:     Sat 07 Jun 2025 13:00:51 +0000
Manifest next update:     Sun 08 Jun 2025 13:00:51 +0000
Files and hashes:         1: K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl (hash: J33nVtuKtAQb0D3rUldGDKzXkpAhIkuTWknZQOYXn9U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7a:ce:c3:87:03:74:e0:94:96:4c:6c:4e:17:a1:fb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b49e884a441f04b7f5e2ed474b5847e83212bcb
        Validity
            Not Before: Jun  7 13:00:51 2025 GMT
            Not After : Jun  8 13:00:51 2025 GMT
        Subject: CN=1e725a7a66233db8375050e36ce87c0779c2015e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f7:c2:2e:7f:fc:11:61:d6:e1:e8:79:6f:44:e8:
                    1e:85:15:13:66:8a:c5:d1:8d:f0:1c:6e:ac:54:aa:
                    5f:29:7a:aa:80:13:5a:d5:e9:c6:cb:47:94:10:05:
                    9e:70:82:48:8a:29:c5:ce:f3:e4:25:f7:44:84:b7:
                    b7:20:e8:0a:32:df:22:f9:ff:9b:12:69:35:6e:25:
                    fb:a0:b3:53:98:08:8a:20:e8:3a:11:85:44:58:f4:
                    61:c6:88:a0:97:59:15:ed:d9:86:a6:ac:12:ae:2a:
                    6c:7c:cc:fa:68:4d:ea:6d:75:5c:ac:ae:7d:be:fb:
                    ba:18:c4:8f:bd:c1:99:b5:65:3e:71:ff:cd:27:8a:
                    30:62:22:3e:9a:ca:a2:c0:94:b5:2a:d5:76:7f:e3:
                    0c:e3:28:1b:4d:75:98:34:4c:35:de:f0:4d:0d:86:
                    d0:97:0a:16:cd:80:e6:a6:cc:bc:3c:2a:fc:f8:79:
                    42:65:66:90:75:38:8d:50:63:6d:6b:64:c1:2c:a9:
                    f9:4c:46:39:45:75:40:3f:dc:bf:0e:8d:39:67:06:
                    d1:f3:84:de:bb:d3:73:32:5d:94:42:c2:18:7f:b5:
                    5e:35:a7:86:4e:da:8b:fd:84:4e:46:8d:18:f0:ca:
                    3b:2e:aa:aa:36:60:10:22:02:6b:7a:1e:1f:c9:1a:
                    1b:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:72:5A:7A:66:23:3D:B8:37:50:50:E3:6C:E8:7C:07:79:C2:01:5E
            X509v3 Authority Key Identifier:
                keyid:2B:49:E8:84:A4:41:F0:4B:7F:5E:2E:D4:74:B5:84:7E:83:21:2B:CB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:08:70:bc:50:56:b7:a8:9f:b4:bc:41:38:ab:8d:32:d8:56:
         67:1c:ea:dd:99:34:88:e2:03:84:9d:2f:6a:6f:25:4c:18:ec:
         d0:84:56:e8:b5:1f:dd:d0:cd:5d:fe:d8:a4:07:89:d9:8e:bd:
         c4:34:61:8f:95:81:52:39:83:b5:23:0e:ab:ab:3c:24:93:38:
         ea:6f:31:d0:8c:8b:78:71:1c:9a:0c:25:b0:67:dd:69:b2:e1:
         0a:f3:e0:bb:d8:27:5d:08:f2:3d:aa:21:49:54:fd:cf:5a:03:
         5c:04:ea:b4:14:0f:ae:f5:23:c2:f4:7e:b8:94:35:f4:f4:6b:
         4f:be:8d:41:0e:96:d3:b9:a4:f3:b6:09:70:90:7d:2c:ed:ca:
         d6:40:8e:84:14:d2:66:1a:f0:80:8e:48:0c:1a:7b:3a:5b:2f:
         27:90:70:31:a0:d7:f4:4b:ce:e7:b0:63:16:3f:da:e4:70:9e:
         aa:1a:2a:cc:66:d9:df:71:e1:9c:d0:4e:a7:a3:c1:50:43:12:
         bb:a0:67:9c:24:37:38:e5:97:d4:92:6a:f2:1d:a5:b9:51:cb:
         55:2b:ed:46:89:15:5c:8f:e8:14:9b:80:42:f8:3f:b0:45:b5:
         15:92:27:c7:f1:d4:a7:cd:95:51:cd:a9:ea:77:27:96:86:97:
         c2:03:70:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKes7DhwN04JSWTGxOF6H7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiNDllODg0YTQ0MWYwNGI3ZjVlMmVkNDc0YjU4NDdlODMy
MTJiY2IwHhcNMjUwNjA3MTMwMDUxWhcNMjUwNjA4MTMwMDUxWjAzMTEwLwYDVQQD
EygxZTcyNWE3YTY2MjMzZGI4Mzc1MDUwZTM2Y2U4N2MwNzc5YzIwMTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA98Iuf/wRYdbh6HlvROgehRUTZorF
0Y3wHG6sVKpfKXqqgBNa1enGy0eUEAWecIJIiinFzvPkJfdEhLe3IOgKMt8i+f+b
Emk1biX7oLNTmAiKIOg6EYVEWPRhxoigl1kV7dmGpqwSripsfMz6aE3qbXVcrK59
vvu6GMSPvcGZtWU+cf/NJ4owYiI+msqiwJS1KtV2f+MM4ygbTXWYNEw13vBNDYbQ
lwoWzYDmpsy8PCr8+HlCZWaQdTiNUGNta2TBLKn5TEY5RXVAP9y/Do05ZwbR84Te
u9NzMl2UQsIYf7VeNaeGTtqL/YRORo0Y8Mo7LqqqNmAQIgJreh4fyRobqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB5yWnpmIz24N1BQ42zofAd5wgFeMB8GA1UdIwQY
MBaAFCtJ6ISkQfBLf14u1HS1hH6DISvLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzBub2hLUkI4RXRfWGk3VWRMV0Vmb01oSzhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy9hZjUyOGMtZmY0MS00ZWVmLThhOTMt
NDJkZDk4NWNkN2IwLzEvSzBub2hLUkI4RXRfWGk3VWRMV0Vmb01oSzhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYy9hZjUyOGMtZmY0MS00ZWVmLThhOTMtNDJkZDk4NWNkN2Iw
LzEvSzBub2hLUkI4RXRfWGk3VWRMV0Vmb01oSzhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhAhwvFBW
t6iftLxBOKuNMthWZxzq3Zk0iOIDhJ0vam8lTBjs0IRW6LUf3dDNXf7YpAeJ2Y69
xDRhj5WBUjmDtSMOq6s8JJM46m8x0IyLeHEcmgwlsGfdabLhCvPgu9gnXQjyPaoh
SVT9z1oDXATqtBQPrvUjwvR+uJQ19PRrT76NQQ6W07mk87YJcJB9LO3K1kCOhBTS
ZhrwgI5IDBp7OlsvJ5BwMaDX9EvO57BjFj/a5HCeqhoqzGbZ33HhnNBOp6PBUEMS
u6BnnCQ3OOWX1JJq8h2luVHLVSvtRokVXI/oFJuAQvg/sEW1FZInx/HUp82VUc2p
6ncnloaXwgNwGQ==
-----END CERTIFICATE-----