Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft
File:                     v_tlOi9T2WcLP5GEAgnz8seKwbI.mft (raw, json)
Hash identifier:          BcB0QhcPIG9Z+3A2G/KPLz7AnOXsoI/ApvZjUSIiXzg=
Subject key identifier:   39:2E:97:03:72:DF:55:8D:C0:0A:A8:7F:FE:B4:45:90:96:16:A6:FB
Authority key identifier: BF:FB:65:3A:2F:53:D9:67:0B:3F:91:84:02:09:F3:F2:C7:8A:C1:B2
Certificate issuer:       /CN=bffb653a2f53d9670b3f91840209f3f2c78ac1b2
Certificate serial:       019752345547FE8BC863D5726810F676C55C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/v_tlOi9T2WcLP5GEAgnz8seKwbI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft
Manifest number:          157F
Signing time:             Mon 09 Jun 2025 01:00:50 +0000
Manifest this update:     Mon 09 Jun 2025 01:00:50 +0000
Manifest next update:     Tue 10 Jun 2025 01:00:50 +0000
Files and hashes:         1: v_tlOi9T2WcLP5GEAgnz8seKwbI.crl (hash: 95fKxtu2XfZzQzm2ISlZM0wo1wcdha4qFTgTk1KNvw4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/v_tlOi9T2WcLP5GEAgnz8seKwbI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 21:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:34:55:47:fe:8b:c8:63:d5:72:68:10:f6:76:c5:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bffb653a2f53d9670b3f91840209f3f2c78ac1b2
        Validity
            Not Before: Jun  9 01:00:50 2025 GMT
            Not After : Jun 10 01:00:50 2025 GMT
        Subject: CN=392e970372df558dc00aa87ffeb445909616a6fb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:72:cf:23:be:64:5c:4c:0d:3e:50:51:5c:62:
                    46:35:46:b3:2b:c6:40:aa:b4:6e:82:b2:06:98:86:
                    42:b9:93:78:d8:d4:92:2c:f5:3f:f6:47:44:7f:49:
                    e4:52:7f:47:3d:57:2e:85:c9:c1:2f:41:65:f7:0d:
                    ba:c9:de:73:8f:38:8a:4f:de:7c:10:10:33:22:80:
                    db:ec:16:a2:3c:ca:4d:22:40:dd:1b:2c:1f:f7:b9:
                    1b:bf:32:8c:68:c3:3b:f9:82:c2:e7:39:29:79:e2:
                    36:5f:e1:b6:86:ce:05:97:a8:8a:85:4f:6f:fe:22:
                    76:39:95:f2:00:4f:09:6b:a6:7a:dc:88:59:6f:2a:
                    05:c7:50:69:71:18:0c:16:d9:2b:e6:f1:f7:bf:d8:
                    00:23:a8:fe:62:ba:c6:8c:85:fa:27:46:5b:71:8a:
                    de:1d:7a:56:c9:53:1a:be:06:a1:a5:38:68:d9:84:
                    5c:bb:49:42:c3:60:2d:ce:71:93:96:25:34:65:15:
                    d7:07:40:28:8b:02:b0:c0:b7:73:6e:2d:d8:ec:82:
                    2a:51:19:3c:75:01:44:c7:e0:a9:6d:d1:8b:3a:ff:
                    24:83:8e:ae:98:43:89:02:42:dc:75:0c:90:23:b8:
                    12:58:88:aa:7c:5c:e8:72:0c:3e:f0:7e:93:89:a6:
                    b2:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:2E:97:03:72:DF:55:8D:C0:0A:A8:7F:FE:B4:45:90:96:16:A6:FB
            X509v3 Authority Key Identifier:
                keyid:BF:FB:65:3A:2F:53:D9:67:0B:3F:91:84:02:09:F3:F2:C7:8A:C1:B2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v_tlOi9T2WcLP5GEAgnz8seKwbI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/307e30-177d-4b3f-b564-bd2f8c6d5499/1/v_tlOi9T2WcLP5GEAgnz8seKwbI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:b3:8c:e6:bf:10:c6:eb:43:01:51:36:7c:b7:02:c6:b9:fb:
         44:1f:df:20:f4:66:3c:dc:f6:b1:53:07:76:77:ad:9f:db:26:
         ed:dc:f3:5b:07:59:ff:11:c1:2f:70:78:d1:33:e8:91:de:67:
         5c:38:e1:66:e9:c6:1f:a3:e5:8d:02:d2:21:b8:90:38:76:a0:
         f8:e3:07:fb:05:b0:0d:c8:4c:a9:db:f3:61:c8:0f:4d:b7:a2:
         76:2a:c1:06:a1:53:2c:ce:a7:d9:fd:ef:c9:95:a6:91:69:ab:
         2c:dc:00:08:b2:d5:83:5f:9f:a3:54:c1:d5:63:d5:a6:c8:69:
         6c:a7:bb:42:c5:07:bf:a9:09:b4:34:96:74:02:c6:0c:8c:59:
         56:d3:f7:ed:fb:b6:64:b4:a3:c2:8a:a4:a7:e1:0f:a5:bc:ec:
         70:f3:51:20:9e:da:2a:3c:54:e4:a8:80:e3:46:d4:01:70:d8:
         e9:65:c2:c8:b0:7f:ce:8b:ce:8a:56:a3:61:26:56:74:68:17:
         b4:ed:8e:60:21:c6:88:41:ce:22:ce:5b:6d:04:d5:fa:30:9b:
         da:ff:a5:06:9b:a2:1f:c7:63:f6:9b:30:52:fb:0b:88:63:94:
         f0:33:47:b5:f8:80:25:f7:4d:29:3b:f2:ac:f0:83:05:fc:36:
         9e:9d:6c:b3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdSNFVH/ovIY9VyaBD2dsVcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmZmI2NTNhMmY1M2Q5NjcwYjNmOTE4NDAyMDlmM2YyYzc4
YWMxYjIwHhcNMjUwNjA5MDEwMDUwWhcNMjUwNjEwMDEwMDUwWjAzMTEwLwYDVQQD
EygzOTJlOTcwMzcyZGY1NThkYzAwYWE4N2ZmZWI0NDU5MDk2MTZhNmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHLPI75kXEwNPlBRXGJGNUazK8ZA
qrRugrIGmIZCuZN42NSSLPU/9kdEf0nkUn9HPVcuhcnBL0Fl9w26yd5zjziKT958
EBAzIoDb7BaiPMpNIkDdGywf97kbvzKMaMM7+YLC5zkpeeI2X+G2hs4Fl6iKhU9v
/iJ2OZXyAE8Ja6Z63IhZbyoFx1BpcRgMFtkr5vH3v9gAI6j+YrrGjIX6J0ZbcYre
HXpWyVMavgahpTho2YRcu0lCw2AtznGTliU0ZRXXB0AoiwKwwLdzbi3Y7IIqURk8
dQFEx+CpbdGLOv8kg46umEOJAkLcdQyQI7gSWIiqfFzocgw+8H6Tiaay/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDkulwNy31WNwAqof/60RZCWFqb7MB8GA1UdIwQY
MBaAFL/7ZTovU9lnCz+RhAIJ8/LHisGyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdl90bE9pOVQyV2NMUDVHRUFnbno4c2VLd2JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8zMDdlMzAtMTc3ZC00YjNmLWI1NjQt
YmQyZjhjNmQ1NDk5LzEvdl90bE9pOVQyV2NMUDVHRUFnbno4c2VLd2JJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS8zMDdlMzAtMTc3ZC00YjNmLWI1NjQtYmQyZjhjNmQ1NDk5
LzEvdl90bE9pOVQyV2NMUDVHRUFnbno4c2VLd2JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHLOM5r8Q
xutDAVE2fLcCxrn7RB/fIPRmPNz2sVMHdnetn9sm7dzzWwdZ/xHBL3B40TPokd5n
XDjhZunGH6PljQLSIbiQOHag+OMH+wWwDchMqdvzYcgPTbeidirBBqFTLM6n2f3v
yZWmkWmrLNwACLLVg1+fo1TB1WPVpshpbKe7QsUHv6kJtDSWdALGDIxZVtP37fu2
ZLSjwoqkp+EPpbzscPNRIJ7aKjxU5KiA40bUAXDY6WXCyLB/zovOilajYSZWdGgX
tO2OYCHGiEHOIs5bbQTV+jCb2v+lBpuiH8dj9pswUvsLiGOU8DNHtfiAJfdNKTvy
rPCDBfw2np1ssw==
-----END CERTIFICATE-----