Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft
File:                     qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft (raw, json)
Hash identifier:          hz0o0jGzZAiS6qJgsFTkcq+jMqa30BIbRY36frIMxBs=
Subject key identifier:   5D:CD:13:88:C3:45:DB:50:AD:8A:A7:6E:C6:4F:16:32:78:56:02:82
Authority key identifier: A9:24:0F:02:7A:94:09:22:9C:59:FF:63:0A:A2:A8:0F:93:78:A9:3F
Certificate issuer:       /CN=a9240f027a9409229c59ff630aa2a80f9378a93f
Certificate serial:       01964CA2A568D7FC900C3F3C9F16741E7901
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qSQPAnqUCSKcWf9jCqKoD5N4qT8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft
Manifest number:          104C
Signing time:             Sat 19 Apr 2025 06:00:49 +0000
Manifest this update:     Sat 19 Apr 2025 06:00:49 +0000
Manifest next update:     Sun 20 Apr 2025 06:00:49 +0000
Files and hashes:         1: qSQPAnqUCSKcWf9jCqKoD5N4qT8.crl (hash: XnHFCpR66CLuOr07wlTE9N6tJYhQj+IRctk/H2XpYxk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qSQPAnqUCSKcWf9jCqKoD5N4qT8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 20 Apr 2025 04:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:4c:a2:a5:68:d7:fc:90:0c:3f:3c:9f:16:74:1e:79:01
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a9240f027a9409229c59ff630aa2a80f9378a93f
        Validity
            Not Before: Apr 19 06:00:49 2025 GMT
            Not After : Apr 20 06:00:49 2025 GMT
        Subject: CN=5dcd1388c345db50ad8aa76ec64f163278560282
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:56:43:df:75:0e:91:5a:30:b4:11:37:73:a9:
                    89:0f:01:47:46:e3:ac:3c:d3:c0:47:ec:8b:7c:eb:
                    41:a5:04:97:01:47:80:60:ea:28:63:c4:0e:0f:b2:
                    5e:7e:51:d3:83:0d:c3:65:51:8d:60:bb:51:51:0c:
                    c5:04:2b:77:50:7c:09:91:79:84:88:7f:65:c3:41:
                    fd:59:23:d5:f0:cf:b4:d3:3a:78:41:f5:02:f6:72:
                    bd:da:2f:76:06:b3:81:8a:00:f3:6c:fc:72:f2:c1:
                    27:49:f7:ab:19:d2:b9:65:b4:96:ac:03:93:55:ca:
                    9d:76:58:9c:92:36:21:96:2e:6b:5a:6f:f3:bf:67:
                    90:02:d0:d4:ff:8e:db:ba:64:7d:3c:ef:0a:75:85:
                    99:7c:02:4e:02:36:34:b3:59:73:2e:a4:69:6d:09:
                    6e:5f:e1:3e:b4:49:b2:cf:c9:b7:6d:19:37:0d:7f:
                    42:df:32:eb:7b:5b:e6:41:80:e6:85:a8:b4:52:06:
                    a7:4d:ef:40:13:68:fe:e4:33:ca:64:bb:95:ab:4e:
                    a4:76:65:85:7c:da:b4:e5:c7:02:da:11:91:b3:66:
                    6d:bb:65:23:74:d2:35:1c:14:4d:e3:5f:80:73:84:
                    15:66:07:d0:f3:f5:37:8b:4e:18:c3:dc:d1:b7:f9:
                    c4:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:CD:13:88:C3:45:DB:50:AD:8A:A7:6E:C6:4F:16:32:78:56:02:82
            X509v3 Authority Key Identifier:
                keyid:A9:24:0F:02:7A:94:09:22:9C:59:FF:63:0A:A2:A8:0F:93:78:A9:3F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qSQPAnqUCSKcWf9jCqKoD5N4qT8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bfcf7f-930c-4ed4-96cd-3d1b3a86ce87/1/qSQPAnqUCSKcWf9jCqKoD5N4qT8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:db:73:43:cc:b9:31:06:c3:42:7a:4c:45:8c:bf:ae:a0:df:
         7f:f4:e3:95:48:e8:ea:41:28:58:d8:cc:6e:d2:32:1f:5c:7b:
         ad:ed:8f:2c:25:d0:b1:47:78:71:1a:4a:c6:f2:ab:f7:14:5f:
         52:5b:c3:53:5b:e7:3d:34:23:62:97:3f:cb:2f:12:ea:16:5f:
         9b:b1:71:63:8f:16:db:b8:39:ee:76:75:2c:8e:71:1c:94:84:
         cd:a1:c7:b0:93:a5:4a:79:5b:44:2c:33:a7:da:ab:df:22:f1:
         eb:01:12:bb:9e:2c:53:dd:86:16:c1:68:4e:3f:05:87:73:a9:
         e8:70:0c:8b:0d:53:fc:fc:42:60:45:c2:99:4f:9d:d8:45:c9:
         34:22:e3:42:7d:fb:81:fa:f4:8d:a1:ed:12:95:de:b2:51:9d:
         07:a0:92:b3:43:13:d5:cc:ab:88:d4:75:ce:9f:79:c4:de:70:
         ce:9e:a9:84:82:66:d0:2c:9c:3d:e1:ac:3d:d3:3c:af:4d:f8:
         3c:6e:53:0e:64:57:fb:8b:1c:86:bf:0f:40:b3:4f:a3:49:9b:
         bf:6b:68:b3:af:5d:4c:8a:03:c2:50:fb:b0:fb:b6:5f:c9:14:
         26:d2:73:4f:31:21:2a:94:ff:fb:c5:03:51:37:84:da:7f:3d:
         b0:10:0f:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZMoqVo1/yQDD88nxZ0HnkBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE5MjQwZjAyN2E5NDA5MjI5YzU5ZmY2MzBhYTJhODBmOTM3
OGE5M2YwHhcNMjUwNDE5MDYwMDQ5WhcNMjUwNDIwMDYwMDQ5WjAzMTEwLwYDVQQD
Eyg1ZGNkMTM4OGMzNDVkYjUwYWQ4YWE3NmVjNjRmMTYzMjc4NTYwMjgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9lZD33UOkVowtBE3c6mJDwFHRuOs
PNPAR+yLfOtBpQSXAUeAYOooY8QOD7JeflHTgw3DZVGNYLtRUQzFBCt3UHwJkXmE
iH9lw0H9WSPV8M+00zp4QfUC9nK92i92BrOBigDzbPxy8sEnSferGdK5ZbSWrAOT
VcqddlickjYhli5rWm/zv2eQAtDU/47bumR9PO8KdYWZfAJOAjY0s1lzLqRpbQlu
X+E+tEmyz8m3bRk3DX9C3zLre1vmQYDmhai0UganTe9AE2j+5DPKZLuVq06kdmWF
fNq05ccC2hGRs2Ztu2UjdNI1HBRN41+Ac4QVZgfQ8/U3i04Yw9zRt/nEjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF3NE4jDRdtQrYqnbsZPFjJ4VgKCMB8GA1UdIwQY
MBaAFKkkDwJ6lAkinFn/YwqiqA+TeKk/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcVNRUEFucVVDU0tjV2Y5akNxS29ENU40cVQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My9iZmNmN2YtOTMwYy00ZWQ0LTk2Y2Qt
M2QxYjNhODZjZTg3LzEvcVNRUEFucVVDU0tjV2Y5akNxS29ENU40cVQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My9iZmNmN2YtOTMwYy00ZWQ0LTk2Y2QtM2QxYjNhODZjZTg3
LzEvcVNRUEFucVVDU0tjV2Y5akNxS29ENU40cVQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUNtzQ8y5
MQbDQnpMRYy/rqDff/TjlUjo6kEoWNjMbtIyH1x7re2PLCXQsUd4cRpKxvKr9xRf
UlvDU1vnPTQjYpc/yy8S6hZfm7FxY48W27g57nZ1LI5xHJSEzaHHsJOlSnlbRCwz
p9qr3yLx6wESu54sU92GFsFoTj8Fh3Op6HAMiw1T/PxCYEXCmU+d2EXJNCLjQn37
gfr0jaHtEpXeslGdB6CSs0MT1cyriNR1zp95xN5wzp6phIJm0CycPeGsPdM8r034
PG5TDmRX+4schr8PQLNPo0mbv2tos69dTIoDwlD7sPu2X8kUJtJzTzEhKpT/+8UD
UTeE2n89sBAPmA==
-----END CERTIFICATE-----