Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
File:                     5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft (raw, json)
Hash identifier:          u7RYdquemUf7yA0x6J62Nnvp5ybj1j2kprWhdCMJD4I=
Subject key identifier:   7E:12:96:61:5F:5E:1C:42:53:62:F5:BC:81:0E:0B:96:98:47:D1:70
Authority key identifier: E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9
Certificate issuer:       /CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
Certificate serial:       0197500EF932ED1EE8121BCE672BF242B742
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
Manifest number:          0364
Signing time:             Sun 08 Jun 2025 15:00:47 +0000
Manifest this update:     Sun 08 Jun 2025 15:00:47 +0000
Manifest next update:     Mon 09 Jun 2025 15:00:47 +0000
Files and hashes:         1: 5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl (hash: QBiy5jiqsCPR8J/Yr3GtFWqXLKtfE5JDmAnIKl36Sc0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 12:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:50:0e:f9:32:ed:1e:e8:12:1b:ce:67:2b:f2:42:b7:42
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
        Validity
            Not Before: Jun  8 15:00:47 2025 GMT
            Not After : Jun  9 15:00:47 2025 GMT
        Subject: CN=7e1296615f5e1c425362f5bc810e0b969847d170
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:92:be:04:1f:f5:ee:3a:02:2b:96:b1:0c:ee:
                    8f:50:bd:8b:43:27:50:0e:74:10:fc:c1:5e:e8:26:
                    3a:dd:23:7f:87:ae:31:bb:da:76:5c:28:59:f0:4a:
                    6b:75:bb:8f:9d:f4:f1:68:4a:47:c9:1c:08:96:bb:
                    6e:06:f5:54:2d:e9:77:f5:74:f4:f2:eb:93:c3:90:
                    e8:f1:e9:9b:63:fc:87:29:b2:4f:4d:8c:b0:05:1d:
                    f4:d9:20:3f:cf:20:9a:a4:92:84:a2:e1:e8:7a:37:
                    ee:a9:c0:f2:62:19:d0:4c:9f:eb:a8:f7:f1:db:ce:
                    c6:1b:43:25:0b:47:a1:c7:16:f9:63:53:e8:2b:45:
                    6e:ed:cf:a5:68:2f:d1:59:e4:60:b9:5f:c7:d9:1a:
                    8a:bd:b0:4f:f0:f7:56:50:32:db:9c:78:27:af:d2:
                    69:0d:c7:70:e2:ac:1d:4e:b0:e5:c0:74:ec:01:34:
                    c4:3a:14:dd:bc:29:23:40:fa:d2:d4:24:a4:6a:53:
                    c3:65:2f:0d:5f:12:44:eb:5d:21:fe:02:f6:83:1d:
                    e7:50:e5:9d:3d:cc:68:b9:af:9c:f7:48:ce:ca:dc:
                    ea:f5:f8:0a:52:1e:6e:bb:e8:fc:50:75:92:be:fd:
                    87:f0:5d:40:fa:1a:aa:b9:ec:28:06:1e:38:1f:68:
                    ab:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:12:96:61:5F:5E:1C:42:53:62:F5:BC:81:0E:0B:96:98:47:D1:70
            X509v3 Authority Key Identifier:
                keyid:E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         57:48:53:d8:8f:4c:5e:2b:59:87:29:23:d4:89:8d:cd:e5:7c:
         37:b1:1f:d9:e1:41:23:d4:b9:f2:5e:20:f2:1f:ee:46:84:37:
         bf:50:95:c9:9b:e1:1e:6a:ea:d5:8f:bc:d2:df:1b:27:0e:96:
         35:f8:ad:0a:b0:c6:5c:78:06:d0:56:87:d3:67:46:95:77:4d:
         fa:a0:3a:3e:0b:3b:7e:b8:17:99:cc:9e:61:67:de:50:f1:8c:
         89:76:49:91:58:cb:d4:3f:20:d4:a8:2a:d8:cc:36:5c:6f:92:
         b5:69:18:39:db:7d:52:f2:de:a3:df:40:f8:02:8d:c0:70:d1:
         7b:f2:c9:69:3a:a9:39:d4:f4:c8:35:b5:61:32:0a:5a:c2:61:
         23:00:09:e1:a2:1b:1d:df:b3:d5:ed:36:e7:da:22:78:41:44:
         e0:78:52:71:34:8b:bd:fe:e4:ee:4d:d4:1d:55:9e:91:6a:31:
         f7:e7:45:dd:cb:12:e0:8b:ac:81:a2:09:a9:18:ac:84:b4:e8:
         eb:5c:73:e3:d9:eb:61:f1:02:58:40:35:e6:f8:e1:93:16:73:
         ba:da:7e:ea:48:71:54:4b:f1:ba:44:0b:a6:3a:ec:53:6a:52:
         47:97:74:81:26:65:2a:08:79:e8:90:1d:35:08:fe:54:48:b5:
         d6:48:c6:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQDvky7R7oEhvOZyvyQrdCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0MThjZGRjMzlkMzQ3NTYzYzZkYzFlNWVjNWU1OTYyMWU0
MGU0ZDkwHhcNMjUwNjA4MTUwMDQ3WhcNMjUwNjA5MTUwMDQ3WjAzMTEwLwYDVQQD
Eyg3ZTEyOTY2MTVmNWUxYzQyNTM2MmY1YmM4MTBlMGI5Njk4NDdkMTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxZK+BB/17joCK5axDO6PUL2LQydQ
DnQQ/MFe6CY63SN/h64xu9p2XChZ8EprdbuPnfTxaEpHyRwIlrtuBvVULel39XT0
8uuTw5Do8embY/yHKbJPTYywBR302SA/zyCapJKEouHoejfuqcDyYhnQTJ/rqPfx
287GG0MlC0ehxxb5Y1PoK0Vu7c+laC/RWeRguV/H2RqKvbBP8PdWUDLbnHgnr9Jp
Dcdw4qwdTrDlwHTsATTEOhTdvCkjQPrS1CSkalPDZS8NXxJE610h/gL2gx3nUOWd
Pcxoua+c90jOytzq9fgKUh5uu+j8UHWSvv2H8F1A+hqquewoBh44H2irBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH4SlmFfXhxCU2L1vIEOC5aYR9FwMB8GA1UdIwQY
MBaAFOQYzdw500dWPG3B5exeWWIeQOTZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUJqTjNEblRSMVk4YmNIbDdGNVpZaDVBNU5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8zZWVkMjgtMjMwYy00YjlmLTkwNGMt
Nzc3ZTZjYTRlZmY2LzEvNUJqTjNEblRSMVk4YmNIbDdGNVpZaDVBNU5rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC8zZWVkMjgtMjMwYy00YjlmLTkwNGMtNzc3ZTZjYTRlZmY2
LzEvNUJqTjNEblRSMVk4YmNIbDdGNVpZaDVBNU5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV0hT2I9M
XitZhykj1ImNzeV8N7Ef2eFBI9S58l4g8h/uRoQ3v1CVyZvhHmrq1Y+80t8bJw6W
NfitCrDGXHgG0FaH02dGlXdN+qA6Pgs7frgXmcyeYWfeUPGMiXZJkVjL1D8g1Kgq
2Mw2XG+StWkYOdt9UvLeo99A+AKNwHDRe/LJaTqpOdT0yDW1YTIKWsJhIwAJ4aIb
Hd+z1e0259oieEFE4HhScTSLvf7k7k3UHVWekWox9+dF3csS4IusgaIJqRishLTo
61xz49nrYfECWEA15vjhkxZzutp+6khxVEvxukQLpjrsU2pSR5d0gSZlKgh56JAd
NQj+VEi11kjGjg==
-----END CERTIFICATE-----