Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
File:                     tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft (raw, json)
Hash identifier:          eQ7mVvv6tOyBrbJGo6u1APzz1BCICHRYuMxqSseIIkI=
Subject key identifier:   B8:E5:75:91:74:84:7F:3C:E4:26:27:8F:A6:01:0A:7A:D3:74:0A:EC
Authority key identifier: B4:83:BC:0A:71:A5:2D:0C:F3:98:95:22:36:75:75:95:9E:BD:CE:F5
Certificate issuer:       /CN=b483bc0a71a52d0cf3989522367575959ebdcef5
Certificate serial:       019750B43244FBC097CC6C783C7DB11F27FC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
Manifest number:          150E
Signing time:             Sun 08 Jun 2025 18:01:15 +0000
Manifest this update:     Sun 08 Jun 2025 18:01:15 +0000
Manifest next update:     Mon 09 Jun 2025 18:01:15 +0000
Files and hashes:         1: tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl (hash: e4UHsF0Kflpq5A5k8Av/BTw8z929/pBexcc5gAY/PaU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 17:19:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:50:b4:32:44:fb:c0:97:cc:6c:78:3c:7d:b1:1f:27:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b483bc0a71a52d0cf3989522367575959ebdcef5
        Validity
            Not Before: Jun  8 18:01:15 2025 GMT
            Not After : Jun  9 18:01:15 2025 GMT
        Subject: CN=b8e5759174847f3ce426278fa6010a7ad3740aec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:b2:5c:7c:bb:e7:68:fb:05:5e:4d:60:7e:24:
                    09:35:36:d5:48:d7:25:f2:2f:21:e8:b8:1f:05:16:
                    56:82:e5:53:00:65:3d:45:49:27:00:df:bc:e9:7d:
                    3f:b1:09:1a:a7:8c:55:c3:12:d2:15:da:96:37:e3:
                    83:18:8b:48:15:4a:10:4c:86:d4:30:bc:a9:2b:d9:
                    d3:a3:ca:22:18:85:d1:85:77:0a:65:97:6d:34:0a:
                    91:45:c3:e6:87:2c:4a:d7:f4:93:7d:70:4b:d1:ab:
                    8f:46:9c:3d:7b:91:00:86:8a:a8:b0:55:99:92:28:
                    f1:f0:8a:9a:a7:9e:8f:bb:7a:eb:28:86:8a:b9:b4:
                    03:c1:45:d7:0e:10:4f:f0:1c:c6:37:6c:89:42:c1:
                    a1:ca:70:82:b4:6d:4c:9f:00:b5:5c:44:3c:64:7f:
                    6d:cb:df:f0:8c:a5:b7:25:7f:6c:78:9a:b7:54:c6:
                    a5:89:31:86:53:d5:79:7b:d8:20:58:2f:39:22:9f:
                    c3:c0:0b:71:29:7c:bb:eb:bc:a5:3d:07:23:93:0a:
                    57:2a:47:c7:20:3a:48:eb:e0:4f:9b:04:d0:cd:4d:
                    6a:d5:48:9b:a8:07:06:4a:b8:8b:ce:1e:48:fd:4f:
                    9c:92:b1:2e:06:ae:5c:67:0b:f0:6a:be:19:4e:29:
                    0c:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:E5:75:91:74:84:7F:3C:E4:26:27:8F:A6:01:0A:7A:D3:74:0A:EC
            X509v3 Authority Key Identifier:
                keyid:B4:83:BC:0A:71:A5:2D:0C:F3:98:95:22:36:75:75:95:9E:BD:CE:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIO8CnGlLQzzmJUiNnV1lZ69zvU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/f89fbd-5142-4bcc-bab1-994ef87db3a3/1/tIO8CnGlLQzzmJUiNnV1lZ69zvU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2b:13:74:91:c3:ca:4e:44:0e:dc:de:56:35:d5:16:de:7e:59:
         24:4b:05:31:a7:29:c7:b2:c0:7b:e4:8e:4c:45:1b:0e:cc:7f:
         7e:9f:e5:d4:4a:dc:46:fa:a8:50:0e:9a:81:95:d0:68:2b:e2:
         b9:cd:d4:69:94:62:4f:8d:98:4e:18:5f:0f:eb:4a:89:2a:2b:
         4c:be:6f:a4:3e:13:39:ef:24:4f:27:5d:b0:18:60:fe:d7:e8:
         3f:c5:a7:a8:93:10:00:34:3e:21:f3:b0:ab:83:b4:9b:6d:8d:
         4b:5e:96:c5:17:e9:e2:cb:f7:f1:cd:16:f9:2e:41:50:7e:7a:
         cd:b8:f3:ee:7b:9c:2a:76:4a:2b:3e:18:d0:ee:18:94:d3:fc:
         83:6f:11:af:10:ab:c9:34:02:7a:ad:85:7b:a4:b0:19:24:15:
         97:54:68:cb:51:4e:ca:4c:67:90:76:52:7a:9d:ed:1b:f2:a2:
         a7:65:73:20:0d:c8:2d:3d:14:65:cd:c4:5e:20:89:4f:fc:d2:
         b6:48:4f:86:ba:37:8e:2f:12:c6:4a:f7:eb:6b:cf:7a:78:b0:
         af:86:e6:74:9b:d0:54:b3:a2:d5:c3:7e:7f:53:39:db:4b:c7:
         18:05:1f:94:04:cc:30:76:c9:b7:fc:75:0b:64:fd:b0:b0:2d:
         b1:38:53:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQtDJE+8CXzGx4PH2xHyf8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0ODNiYzBhNzFhNTJkMGNmMzk4OTUyMjM2NzU3NTk1OWVi
ZGNlZjUwHhcNMjUwNjA4MTgwMTE1WhcNMjUwNjA5MTgwMTE1WjAzMTEwLwYDVQQD
EyhiOGU1NzU5MTc0ODQ3ZjNjZTQyNjI3OGZhNjAxMGE3YWQzNzQwYWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApbJcfLvnaPsFXk1gfiQJNTbVSNcl
8i8h6LgfBRZWguVTAGU9RUknAN+86X0/sQkap4xVwxLSFdqWN+ODGItIFUoQTIbU
MLypK9nTo8oiGIXRhXcKZZdtNAqRRcPmhyxK1/STfXBL0auPRpw9e5EAhoqosFWZ
kijx8Iqap56Pu3rrKIaKubQDwUXXDhBP8BzGN2yJQsGhynCCtG1MnwC1XEQ8ZH9t
y9/wjKW3JX9seJq3VMaliTGGU9V5e9ggWC85Ip/DwAtxKXy767ylPQcjkwpXKkfH
IDpI6+BPmwTQzU1q1UibqAcGSriLzh5I/U+ckrEuBq5cZwvwar4ZTikMrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLjldZF0hH885CYnj6YBCnrTdArsMB8GA1UdIwQY
MBaAFLSDvApxpS0M85iVIjZ1dZWevc71MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdElPOENuR2xMUXp6bUpVaU5uVjFsWjY5enZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS9mODlmYmQtNTE0Mi00YmNjLWJhYjEt
OTk0ZWY4N2RiM2EzLzEvdElPOENuR2xMUXp6bUpVaU5uVjFsWjY5enZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS9mODlmYmQtNTE0Mi00YmNjLWJhYjEtOTk0ZWY4N2RiM2Ez
LzEvdElPOENuR2xMUXp6bUpVaU5uVjFsWjY5enZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKxN0kcPK
TkQO3N5WNdUW3n5ZJEsFMacpx7LAe+SOTEUbDsx/fp/l1ErcRvqoUA6agZXQaCvi
uc3UaZRiT42YThhfD+tKiSorTL5vpD4TOe8kTyddsBhg/tfoP8WnqJMQADQ+IfOw
q4O0m22NS16WxRfp4sv38c0W+S5BUH56zbjz7nucKnZKKz4Y0O4YlNP8g28RrxCr
yTQCeq2Fe6SwGSQVl1Roy1FOykxnkHZSep3tG/Kip2VzIA3ILT0UZc3EXiCJT/zS
tkhPhro3ji8Sxkr362vPeniwr4bmdJvQVLOi1cN+f1M520vHGAUflATMMHbJt/x1
C2T9sLAtsThTfg==
-----END CERTIFICATE-----