Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft
File:                     s8l-xqz0xTcKU8r4I5YxblbkhsY.mft (raw, json)
Hash identifier:          Zpm1G2n93y14+KwvHibKSq5WsKBNTO9CnYpzPitUREY=
Subject key identifier:   63:A7:EB:8C:70:23:A3:64:C8:83:B7:FF:CC:9C:C8:9E:F2:62:53:62
Authority key identifier: B3:C9:7E:C6:AC:F4:C5:37:0A:53:CA:F8:23:96:31:6E:56:E4:86:C6
Certificate issuer:       /CN=b3c97ec6acf4c5370a53caf82396316e56e486c6
Certificate serial:       0197488C2D86B62C4C27ED703637C2B3BB80
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft
Manifest number:          0546
Signing time:             Sat 07 Jun 2025 04:00:35 +0000
Manifest this update:     Sat 07 Jun 2025 04:00:35 +0000
Manifest next update:     Sun 08 Jun 2025 04:00:35 +0000
Files and hashes:         1: s8l-xqz0xTcKU8r4I5YxblbkhsY.crl (hash: U18MXeSeMnJ2GaBPZGQVcks/F6gsdaoX+HsJ2PXRXRU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8c:2d:86:b6:2c:4c:27:ed:70:36:37:c2:b3:bb:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b3c97ec6acf4c5370a53caf82396316e56e486c6
        Validity
            Not Before: Jun  7 04:00:35 2025 GMT
            Not After : Jun  8 04:00:35 2025 GMT
        Subject: CN=63a7eb8c7023a364c883b7ffcc9cc89ef2625362
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:65:4d:83:85:79:cf:0c:2a:92:4c:14:53:23:
                    af:6d:72:62:5b:a4:26:6d:d7:81:16:f0:a7:37:1f:
                    6e:2d:ee:da:e9:90:0b:1f:a3:d0:82:bb:e5:d6:f9:
                    3f:9c:f7:18:7d:c8:04:4a:b4:03:bd:04:b4:fa:09:
                    d4:3c:ce:24:8f:78:e0:59:ee:c9:50:34:29:d2:50:
                    fd:fa:0f:5a:86:50:3f:17:2c:04:7e:5c:c7:a3:f5:
                    19:ec:38:72:49:cc:88:14:05:da:b1:9c:e1:61:87:
                    f7:fa:11:7d:1b:d7:bf:b8:1c:a3:50:99:51:e7:85:
                    da:84:3a:f0:ce:c0:94:96:35:40:3b:48:63:ea:82:
                    4e:bf:75:72:88:bc:ba:27:85:eb:25:23:2a:bb:20:
                    2a:40:c3:5a:9c:76:47:92:76:81:05:9b:67:a1:fa:
                    8b:e2:d3:c7:99:39:7a:bb:97:f0:0e:d9:e6:db:14:
                    2a:ad:b0:80:57:67:c6:42:85:df:4d:9a:4b:8f:85:
                    6b:03:1d:e1:c3:91:50:f3:c2:ae:fe:e5:06:6c:1c:
                    1d:d7:26:83:d9:c1:df:f3:0d:73:33:65:16:2d:f4:
                    7f:8f:da:06:2b:ea:ee:fe:41:50:e3:01:47:b8:99:
                    67:55:1f:28:5a:e8:1d:93:c4:20:8a:22:40:4b:2a:
                    ef:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:A7:EB:8C:70:23:A3:64:C8:83:B7:FF:CC:9C:C8:9E:F2:62:53:62
            X509v3 Authority Key Identifier:
                keyid:B3:C9:7E:C6:AC:F4:C5:37:0A:53:CA:F8:23:96:31:6E:56:E4:86:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s8l-xqz0xTcKU8r4I5YxblbkhsY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/72f328-ce5f-404a-9d4c-d3c19598a0e6/1/s8l-xqz0xTcKU8r4I5YxblbkhsY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         cf:85:b0:24:c4:0c:7b:8e:e8:fc:7f:93:2d:12:0d:0f:a1:35:
         f4:0d:1a:e3:8c:d5:73:22:32:7a:48:84:66:13:b2:bc:fc:d6:
         14:21:8e:34:a9:45:fd:b7:5c:20:d9:27:6e:2b:d0:e1:9a:a2:
         01:01:af:df:0d:bb:49:68:94:3f:8b:e5:04:8b:7d:79:10:c3:
         10:e4:2d:0e:d3:e0:90:dc:00:5e:39:f1:d9:6d:e9:4e:93:63:
         6e:34:f6:ee:4d:e9:e7:18:a4:61:3b:12:71:cf:1b:f4:26:2e:
         a9:87:0e:ef:22:8d:3e:58:51:eb:6f:f4:9b:97:92:4d:10:b5:
         7c:b1:ca:8a:06:a0:c0:75:b2:f2:9d:6e:6f:66:6c:e9:06:f9:
         27:e5:7a:24:e7:ba:4e:a0:c8:f6:21:34:60:70:cb:8d:38:e7:
         cb:69:e4:5b:44:25:7e:35:ca:47:95:5d:14:e3:ab:42:c8:07:
         28:79:05:32:33:96:80:b5:71:82:57:9f:b0:d1:aa:21:20:47:
         44:59:c8:21:f2:c9:64:6b:39:5c:1c:c1:db:e7:d9:13:64:c0:
         e5:32:fa:ee:e7:40:45:f1:10:8d:9c:fc:ea:8d:d7:6e:87:7b:
         ac:df:85:a4:96:f8:8b:fd:f1:59:6f:46:d8:3e:ed:de:13:54:
         92:f9:42:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjC2GtixMJ+1wNjfCs7uAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzYzk3ZWM2YWNmNGM1MzcwYTUzY2FmODIzOTYzMTZlNTZl
NDg2YzYwHhcNMjUwNjA3MDQwMDM1WhcNMjUwNjA4MDQwMDM1WjAzMTEwLwYDVQQD
Eyg2M2E3ZWI4YzcwMjNhMzY0Yzg4M2I3ZmZjYzljYzg5ZWYyNjI1MzYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu2VNg4V5zwwqkkwUUyOvbXJiW6Qm
bdeBFvCnNx9uLe7a6ZALH6PQgrvl1vk/nPcYfcgESrQDvQS0+gnUPM4kj3jgWe7J
UDQp0lD9+g9ahlA/FywEflzHo/UZ7DhyScyIFAXasZzhYYf3+hF9G9e/uByjUJlR
54XahDrwzsCUljVAO0hj6oJOv3VyiLy6J4XrJSMquyAqQMNanHZHknaBBZtnofqL
4tPHmTl6u5fwDtnm2xQqrbCAV2fGQoXfTZpLj4VrAx3hw5FQ88Ku/uUGbBwd1yaD
2cHf8w1zM2UWLfR/j9oGK+ru/kFQ4wFHuJlnVR8oWugdk8QgiiJASyrv/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGOn64xwI6NkyIO3/8ycyJ7yYlNiMB8GA1UdIwQY
MBaAFLPJfsas9MU3ClPK+COWMW5W5IbGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczhsLXhxejB4VGNLVThyNEk1WXhibGJraHNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni83MmYzMjgtY2U1Zi00MDRhLTlkNGMt
ZDNjMTk1OThhMGU2LzEvczhsLXhxejB4VGNLVThyNEk1WXhibGJraHNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni83MmYzMjgtY2U1Zi00MDRhLTlkNGMtZDNjMTk1OThhMGU2
LzEvczhsLXhxejB4VGNLVThyNEk1WXhibGJraHNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAz4WwJMQM
e47o/H+TLRIND6E19A0a44zVcyIyekiEZhOyvPzWFCGONKlF/bdcINknbivQ4Zqi
AQGv3w27SWiUP4vlBIt9eRDDEOQtDtPgkNwAXjnx2W3pTpNjbjT27k3p5xikYTsS
cc8b9CYuqYcO7yKNPlhR62/0m5eSTRC1fLHKigagwHWy8p1ub2Zs6Qb5J+V6JOe6
TqDI9iE0YHDLjTjny2nkW0QlfjXKR5VdFOOrQsgHKHkFMjOWgLVxglefsNGqISBH
RFnIIfLJZGs5XBzB2+fZE2TA5TL67udARfEQjZz86o3Xbod7rN+FpJb4i/3xWW9G
2D7t3hNUkvlCdg==
-----END CERTIFICATE-----