Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.mft
File:                     uIazyxP9IWfYnRIYXpNQbdRcmvk.mft (raw, json)
Hash identifier:          Hp+DWdn2sjCkMK11vKvvAdrBYhyUEVF0gyIcV3RWTbM=
Subject key identifier:   C2:8D:65:87:3C:71:4C:1E:82:48:73:24:6A:3E:3B:4E:DF:14:83:AE
Authority key identifier: B8:86:B3:CB:13:FD:21:67:D8:9D:12:18:5E:93:50:6D:D4:5C:9A:F9
Certificate issuer:       /CN=b886b3cb13fd2167d89d12185e93506dd45c9af9
Certificate serial:       01974FA0DBF8CF15FDEB63C78D0582CD632B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uIazyxP9IWfYnRIYXpNQbdRcmvk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.mft
Manifest number:          0AA0
Signing time:             Sun 08 Jun 2025 13:00:31 +0000
Manifest this update:     Sun 08 Jun 2025 13:00:31 +0000
Manifest next update:     Mon 09 Jun 2025 13:00:31 +0000
Files and hashes:         1: uIazyxP9IWfYnRIYXpNQbdRcmvk.crl (hash: a7cW3EPbzfaOqkWcAULjGvVSVzui4USeoqJx57tnTkY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uIazyxP9IWfYnRIYXpNQbdRcmvk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 11:44:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4f:a0:db:f8:cf:15:fd:eb:63:c7:8d:05:82:cd:63:2b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b886b3cb13fd2167d89d12185e93506dd45c9af9
        Validity
            Not Before: Jun  8 13:00:31 2025 GMT
            Not After : Jun  9 13:00:31 2025 GMT
        Subject: CN=c28d65873c714c1e824873246a3e3b4edf1483ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:dc:da:33:05:dc:15:6f:32:5d:4a:b3:81:e7:
                    0a:16:b5:59:77:df:26:66:e4:51:07:9c:3f:a1:1f:
                    64:8a:25:9f:fe:a0:22:8b:a5:11:88:47:19:a3:ce:
                    f9:07:15:3d:f3:1f:b9:a8:a7:a1:4c:11:94:fa:f5:
                    e3:7a:b1:3e:6c:25:7d:b6:5d:ab:fa:32:2d:ec:2f:
                    ba:5b:0e:ce:00:7f:70:6c:e7:23:dc:7a:cd:ca:fe:
                    de:18:c6:fb:74:c9:47:d1:ef:35:76:f8:de:20:33:
                    80:63:f6:27:be:6b:89:93:4d:92:20:ae:0d:5f:19:
                    60:bf:4e:6b:27:3b:4f:86:d6:2a:84:f9:3b:80:7f:
                    80:22:d4:fb:05:5f:66:48:6d:ff:68:d0:33:7f:6c:
                    1a:0a:65:f7:bc:ef:cf:92:88:7d:e2:d2:da:d9:fa:
                    5f:ff:87:91:a3:80:78:39:82:4a:de:a4:9f:f4:0d:
                    37:cc:67:aa:4b:93:f0:16:0e:d3:4b:29:8e:a7:21:
                    56:63:22:3b:35:37:79:e0:93:c6:04:ef:f9:73:48:
                    b2:47:23:eb:5d:f9:98:c1:f4:31:51:e3:d6:3d:b7:
                    e6:27:96:ab:1f:dc:76:91:0c:a0:34:53:56:63:7c:
                    1d:49:9f:79:3b:4f:9f:96:0d:c8:36:4f:5a:da:4f:
                    27:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:8D:65:87:3C:71:4C:1E:82:48:73:24:6A:3E:3B:4E:DF:14:83:AE
            X509v3 Authority Key Identifier:
                keyid:B8:86:B3:CB:13:FD:21:67:D8:9D:12:18:5E:93:50:6D:D4:5C:9A:F9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uIazyxP9IWfYnRIYXpNQbdRcmvk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/61/42ac3c-c583-4b82-bcb7-04739402e27b/1/uIazyxP9IWfYnRIYXpNQbdRcmvk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:5c:bc:66:c4:02:3e:11:8d:51:8c:d6:00:a8:a0:a6:09:5e:
         06:8e:5b:b4:a9:5a:eb:f4:ba:2c:68:17:38:a3:68:6d:37:e6:
         12:f3:cf:fb:c9:5a:b5:f2:3b:f4:73:e5:8c:83:e1:73:32:e5:
         45:a3:5b:ac:93:29:89:ef:61:4d:ed:0e:3d:a6:41:1f:83:df:
         40:bc:ca:7c:c8:62:4e:b6:17:a2:b3:d7:02:79:ba:e8:11:68:
         ed:6e:f1:16:06:30:c7:d1:62:5a:ce:d0:6a:1e:8a:73:66:c5:
         6d:e5:09:9c:05:fc:73:26:4a:18:72:e3:c2:72:f9:c2:de:11:
         53:5b:51:7d:d1:f6:04:f7:80:1d:b0:6b:52:8b:b9:2f:ec:5a:
         67:4c:39:19:b7:16:d6:b8:0d:1f:be:6d:cc:66:df:2a:6e:e0:
         d6:a2:5e:9f:35:4e:aa:55:d3:07:84:3f:3d:b0:88:e3:4a:58:
         0c:0b:fa:16:86:a2:5e:dc:e3:80:51:d3:ce:b4:c5:94:7a:34:
         8b:a8:21:ae:fd:5b:3d:c7:e3:31:d3:11:77:83:19:1e:05:f6:
         d0:3b:f5:fa:43:eb:3c:09:e9:15:a3:00:65:24:d5:16:8e:02:
         21:66:f8:4b:3c:91:22:49:a3:f1:1f:a1:2f:a9:83:60:d9:0b:
         cf:8c:e6:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdPoNv4zxX962PHjQWCzWMrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4ODZiM2NiMTNmZDIxNjdkODlkMTIxODVlOTM1MDZkZDQ1
YzlhZjkwHhcNMjUwNjA4MTMwMDMxWhcNMjUwNjA5MTMwMDMxWjAzMTEwLwYDVQQD
EyhjMjhkNjU4NzNjNzE0YzFlODI0ODczMjQ2YTNlM2I0ZWRmMTQ4M2FlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9zaMwXcFW8yXUqzgecKFrVZd98m
ZuRRB5w/oR9kiiWf/qAii6URiEcZo875BxU98x+5qKehTBGU+vXjerE+bCV9tl2r
+jIt7C+6Ww7OAH9wbOcj3HrNyv7eGMb7dMlH0e81dvjeIDOAY/YnvmuJk02SIK4N
Xxlgv05rJztPhtYqhPk7gH+AItT7BV9mSG3/aNAzf2waCmX3vO/Pkoh94tLa2fpf
/4eRo4B4OYJK3qSf9A03zGeqS5PwFg7TSymOpyFWYyI7NTd54JPGBO/5c0iyRyPr
XfmYwfQxUePWPbfmJ5arH9x2kQygNFNWY3wdSZ95O0+flg3INk9a2k8nVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMKNZYc8cUwegkhzJGo+O07fFIOuMB8GA1UdIwQY
MBaAFLiGs8sT/SFn2J0SGF6TUG3UXJr5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUlhenl4UDlJV2ZZblJJWVhwTlFiZFJjbXZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS80MmFjM2MtYzU4My00YjgyLWJjYjct
MDQ3Mzk0MDJlMjdiLzEvdUlhenl4UDlJV2ZZblJJWVhwTlFiZFJjbXZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS80MmFjM2MtYzU4My00YjgyLWJjYjctMDQ3Mzk0MDJlMjdi
LzEvdUlhenl4UDlJV2ZZblJJWVhwTlFiZFJjbXZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALly8ZsQC
PhGNUYzWAKigpgleBo5btKla6/S6LGgXOKNobTfmEvPP+8latfI79HPljIPhczLl
RaNbrJMpie9hTe0OPaZBH4PfQLzKfMhiTrYXorPXAnm66BFo7W7xFgYwx9FiWs7Q
ah6Kc2bFbeUJnAX8cyZKGHLjwnL5wt4RU1tRfdH2BPeAHbBrUou5L+xaZ0w5GbcW
1rgNH75tzGbfKm7g1qJenzVOqlXTB4Q/PbCI40pYDAv6FoaiXtzjgFHTzrTFlHo0
i6ghrv1bPcfjMdMRd4MZHgX20Dv1+kPrPAnpFaMAZSTVFo4CIWb4SzyRIkmj8R+h
L6mDYNkLz4zmdA==
-----END CERTIFICATE-----