Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
File:                     USzy1zi8akeL64yogkEB_w_IGmE.mft (raw, json)
Hash identifier:          /us1XbxXdgM+Prvro/22J+H4wuI1+r+pkiJDO1Nxii0=
Subject key identifier:   73:87:15:15:3A:DB:04:6D:FD:4A:07:FE:5F:AF:BF:5D:1B:65:A0:AE
Authority key identifier: 51:2C:F2:D7:38:BC:6A:47:8B:EB:8C:A8:82:41:01:FF:0F:C8:1A:61
Certificate issuer:       /CN=512cf2d738bc6a478beb8ca8824101ff0fc81a61
Certificate serial:       019749313CFFEC5768E07D47A7C5E8676E7D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
Manifest number:          035E
Signing time:             Sat 07 Jun 2025 07:00:52 +0000
Manifest this update:     Sat 07 Jun 2025 07:00:52 +0000
Manifest next update:     Sun 08 Jun 2025 07:00:52 +0000
Files and hashes:         1: USzy1zi8akeL64yogkEB_w_IGmE.crl (hash: PmpuzGVRarsHkyj7lFwE2uQaSduxV/bMzJmxydHaaRE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:49:31:3c:ff:ec:57:68:e0:7d:47:a7:c5:e8:67:6e:7d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=512cf2d738bc6a478beb8ca8824101ff0fc81a61
        Validity
            Not Before: Jun  7 07:00:52 2025 GMT
            Not After : Jun  8 07:00:52 2025 GMT
        Subject: CN=738715153adb046dfd4a07fe5fafbf5d1b65a0ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:b3:1d:4d:6c:60:fd:40:08:03:bf:ba:98:68:
                    f3:be:e2:61:b1:2e:23:11:d1:9f:2d:56:ad:eb:13:
                    1c:b9:38:37:52:76:15:b5:e4:ec:93:83:9f:0c:db:
                    a2:3c:ea:c4:b6:e4:03:47:3c:26:49:8b:bd:0a:b7:
                    6c:db:90:9b:61:1b:69:9a:c7:f8:24:12:86:9b:cb:
                    65:41:12:d8:9a:67:13:16:e1:74:0b:ac:85:70:3d:
                    f4:24:19:4c:ff:7a:c2:a1:02:27:ff:f6:cc:a3:e1:
                    83:0a:18:26:fe:b5:00:94:4b:24:65:d2:2a:fa:10:
                    9f:21:8f:0a:22:63:88:62:eb:ad:bf:56:f1:93:93:
                    9e:34:da:99:e5:16:ee:bc:fe:dc:52:b2:5e:4a:54:
                    c8:6d:46:9a:50:fe:3a:c5:b1:bb:69:6e:85:7d:30:
                    7c:bd:7e:22:7e:a1:90:35:15:87:b1:33:7c:1c:17:
                    aa:32:03:9e:f9:a4:be:72:6e:c9:a4:5e:f8:41:3a:
                    84:c0:e0:e1:5d:86:93:9f:32:8b:9f:68:5a:38:6b:
                    6e:d1:d5:7f:65:06:8a:5f:a5:2e:6b:cd:56:e0:aa:
                    5b:c1:2b:40:1d:22:86:41:a7:45:51:53:ef:fb:c5:
                    4a:cd:79:c1:e3:94:76:76:c5:60:64:4c:2c:cd:f5:
                    74:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:87:15:15:3A:DB:04:6D:FD:4A:07:FE:5F:AF:BF:5D:1B:65:A0:AE
            X509v3 Authority Key Identifier:
                keyid:51:2C:F2:D7:38:BC:6A:47:8B:EB:8C:A8:82:41:01:FF:0F:C8:1A:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         97:2f:36:34:86:14:cf:0d:7f:5d:22:4d:c6:e9:b4:35:3e:62:
         95:5b:ff:c9:93:c8:82:1d:52:c1:27:f7:40:5f:c8:88:cf:b8:
         e0:9b:80:9c:c2:2b:37:9b:6e:e0:0b:d4:cc:0e:ab:68:ae:30:
         71:ce:b8:46:33:67:99:7d:dd:8d:a4:99:87:4a:bd:e4:ad:9f:
         49:03:bd:20:f0:bb:3c:2c:37:2f:73:4d:1a:93:93:8d:4a:a8:
         60:f2:76:53:50:e8:e6:4d:a6:61:9f:33:39:bf:89:2d:f3:68:
         e9:33:0a:80:2e:f0:a3:ff:52:7f:6a:cb:e1:ca:e1:05:ad:29:
         44:8d:22:3b:98:7f:eb:27:4a:ac:2d:db:25:23:82:49:d5:d9:
         d5:43:67:0a:95:77:60:1d:fd:6a:3a:83:65:79:7f:67:ea:e2:
         5b:9a:8c:74:c0:22:66:bd:00:61:36:fd:68:00:65:50:c0:42:
         2c:67:4f:4b:05:e3:13:25:b7:7d:ee:3c:2d:76:06:ac:75:6a:
         81:b0:9b:12:de:fc:c7:ba:e1:bb:a2:57:97:6f:96:78:ea:f9:
         d5:ab:c4:91:00:67:22:94:d3:06:54:ad:eb:b6:15:ea:4a:cc:
         21:a8:78:46:4b:68:0f:1c:07:f2:fd:70:ed:df:ba:5f:98:e5:
         8c:f5:59:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJMTz/7Fdo4H1Hp8XoZ259MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMmNmMmQ3MzhiYzZhNDc4YmViOGNhODgyNDEwMWZmMGZj
ODFhNjEwHhcNMjUwNjA3MDcwMDUyWhcNMjUwNjA4MDcwMDUyWjAzMTEwLwYDVQQD
Eyg3Mzg3MTUxNTNhZGIwNDZkZmQ0YTA3ZmU1ZmFmYmY1ZDFiNjVhMGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbMdTWxg/UAIA7+6mGjzvuJhsS4j
EdGfLVat6xMcuTg3UnYVteTsk4OfDNuiPOrEtuQDRzwmSYu9Crds25CbYRtpmsf4
JBKGm8tlQRLYmmcTFuF0C6yFcD30JBlM/3rCoQIn//bMo+GDChgm/rUAlEskZdIq
+hCfIY8KImOIYuutv1bxk5OeNNqZ5RbuvP7cUrJeSlTIbUaaUP46xbG7aW6FfTB8
vX4ifqGQNRWHsTN8HBeqMgOe+aS+cm7JpF74QTqEwODhXYaTnzKLn2haOGtu0dV/
ZQaKX6Uua81W4KpbwStAHSKGQadFUVPv+8VKzXnB45R2dsVgZEwszfV0CQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHOHFRU62wRt/UoH/l+vv10bZaCuMB8GA1UdIwQY
MBaAFFEs8tc4vGpHi+uMqIJBAf8PyBphMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVN6eTF6aThha2VMNjR5b2drRUJfd19JR21FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS80YTU0Y2YtMjQxNC00ZDZmLThiYTUt
NzAwMWJhZjc3NWYyLzEvVVN6eTF6aThha2VMNjR5b2drRUJfd19JR21FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS80YTU0Y2YtMjQxNC00ZDZmLThiYTUtNzAwMWJhZjc3NWYy
LzEvVVN6eTF6aThha2VMNjR5b2drRUJfd19JR21FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAly82NIYU
zw1/XSJNxum0NT5ilVv/yZPIgh1SwSf3QF/IiM+44JuAnMIrN5tu4AvUzA6raK4w
cc64RjNnmX3djaSZh0q95K2fSQO9IPC7PCw3L3NNGpOTjUqoYPJ2U1Do5k2mYZ8z
Ob+JLfNo6TMKgC7wo/9Sf2rL4crhBa0pRI0iO5h/6ydKrC3bJSOCSdXZ1UNnCpV3
YB39ajqDZXl/Z+riW5qMdMAiZr0AYTb9aABlUMBCLGdPSwXjEyW3fe48LXYGrHVq
gbCbEt78x7rhu6JXl2+WeOr51avEkQBnIpTTBlSt67YV6krMIah4RktoDxwH8v1w
7d+6X5jljPVZLQ==
-----END CERTIFICATE-----