Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
File:                     aDjl4BZgX27c1MlhwZys9YFMeKM.mft (raw, json)
Hash identifier:          ziXK0qLOryzgwsNfiwkJePT4MrYouvVDwQWIMrloBWs=
Subject key identifier:   4B:02:D5:4F:A5:83:FD:FA:C4:BF:C8:61:F8:1F:CA:76:4C:9B:AF:5C
Authority key identifier: 68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3
Certificate issuer:       /CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
Certificate serial:       0197643AA7E4D0592233E2A5B25092984A10
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
Manifest number:          0FC6
Signing time:             Thu 12 Jun 2025 13:00:54 +0000
Manifest this update:     Thu 12 Jun 2025 13:00:54 +0000
Manifest next update:     Fri 13 Jun 2025 13:00:54 +0000
Files and hashes:         1: aDjl4BZgX27c1MlhwZys9YFMeKM.crl (hash: DLIbGd0jMr733p7amErRY1ACphF7Uf5xppHAtqnzbZM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:3a:a7:e4:d0:59:22:33:e2:a5:b2:50:92:98:4a:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6838e5e016605f6edcd4c961c19cacf5814c78a3
        Validity
            Not Before: Jun 12 13:00:54 2025 GMT
            Not After : Jun 13 13:00:54 2025 GMT
        Subject: CN=4b02d54fa583fdfac4bfc861f81fca764c9baf5c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:18:b9:33:1e:e9:6f:3b:28:09:39:0f:46:e9:
                    16:e7:c2:f2:f5:13:9d:3d:29:4f:7a:13:60:97:c8:
                    20:20:aa:e8:6c:94:fc:29:8b:0c:df:f7:bd:3f:1f:
                    90:20:cf:28:4a:96:00:33:70:af:9b:87:ba:df:9e:
                    b5:27:72:18:17:18:8a:ea:c5:94:1a:43:85:f2:42:
                    8c:51:d3:bc:af:87:49:40:52:8e:32:78:bf:6c:e9:
                    2d:ab:f4:a6:07:b6:0b:ea:f1:01:29:2b:f0:98:66:
                    b9:5c:b3:f1:ee:a4:d1:50:11:d7:e9:e4:69:10:14:
                    b0:23:27:a5:84:32:28:65:e6:70:05:df:87:5f:8f:
                    6f:b8:fb:d7:30:d3:8d:2f:87:7d:16:c9:d8:4a:69:
                    78:47:1a:d0:32:94:10:6c:e5:c2:99:14:c1:b4:f1:
                    56:f7:92:e0:7f:f5:b1:1c:b2:24:13:44:2f:e4:44:
                    9d:a2:92:34:bc:b2:83:11:bb:d1:59:03:73:38:33:
                    65:20:25:84:7e:2e:68:9b:71:96:0d:29:92:3c:15:
                    6f:a0:a1:cb:c9:a8:be:ac:5d:97:d1:1f:21:71:d2:
                    03:04:88:4e:d2:80:16:e1:a5:6e:2b:d2:52:76:52:
                    71:ee:80:24:42:44:13:c6:20:ab:06:1e:48:13:58:
                    9a:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:02:D5:4F:A5:83:FD:FA:C4:BF:C8:61:F8:1F:CA:76:4C:9B:AF:5C
            X509v3 Authority Key Identifier:
                keyid:68:38:E5:E0:16:60:5F:6E:DC:D4:C9:61:C1:9C:AC:F5:81:4C:78:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDjl4BZgX27c1MlhwZys9YFMeKM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/74/77f194-ff5f-4a23-b882-f4cc25a5453f/1/aDjl4BZgX27c1MlhwZys9YFMeKM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:28:02:bc:3c:39:dc:0c:d2:d8:59:97:0b:d8:d4:54:c0:55:
         84:ba:23:2c:75:d4:9d:58:98:65:92:c5:8b:42:0c:81:bf:3b:
         d5:e8:80:8c:46:57:fd:6b:a8:f9:e2:d4:ef:fe:44:e9:03:22:
         21:8d:8c:d7:78:ae:1f:3b:8e:d1:64:1c:4a:ee:6d:03:aa:fe:
         c8:46:b2:6b:69:d7:96:b6:57:f3:b6:1e:c5:f8:9b:d4:4c:03:
         af:95:df:e6:f3:03:ed:9c:21:8c:95:7e:bf:ca:78:c1:73:37:
         ab:ea:39:5a:a6:fd:07:d0:78:8d:2f:64:b3:5f:a7:31:15:01:
         2d:13:7d:72:3f:2c:38:5b:2b:1d:dc:ee:dc:36:75:49:9f:72:
         bc:5b:b9:e8:b0:37:5d:95:a3:b4:80:1c:f4:81:21:9e:ab:44:
         c2:95:8a:ec:99:f8:eb:c1:c1:6f:57:e5:4f:de:c4:d9:4d:ed:
         8f:59:49:1e:05:9b:45:ba:ef:81:bb:44:96:c5:c6:c7:db:38:
         da:bc:09:4a:3c:a6:da:25:b6:99:6f:c7:11:72:ab:4e:ef:16:
         75:69:f5:18:38:30:71:57:3e:8c:0f:c1:b4:53:12:9f:b5:18:
         e3:11:33:3b:76:27:69:61:e7:6a:7f:31:95:61:6e:4b:2d:4f:
         f2:84:2d:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdkOqfk0FkiM+KlslCSmEoQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4MzhlNWUwMTY2MDVmNmVkY2Q0Yzk2MWMxOWNhY2Y1ODE0
Yzc4YTMwHhcNMjUwNjEyMTMwMDU0WhcNMjUwNjEzMTMwMDU0WjAzMTEwLwYDVQQD
Eyg0YjAyZDU0ZmE1ODNmZGZhYzRiZmM4NjFmODFmY2E3NjRjOWJhZjVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBi5Mx7pbzsoCTkPRukW58Ly9ROd
PSlPehNgl8ggIKrobJT8KYsM3/e9Px+QIM8oSpYAM3Cvm4e63561J3IYFxiK6sWU
GkOF8kKMUdO8r4dJQFKOMni/bOktq/SmB7YL6vEBKSvwmGa5XLPx7qTRUBHX6eRp
EBSwIyelhDIoZeZwBd+HX49vuPvXMNONL4d9FsnYSml4RxrQMpQQbOXCmRTBtPFW
95Lgf/WxHLIkE0Qv5ESdopI0vLKDEbvRWQNzODNlICWEfi5om3GWDSmSPBVvoKHL
yai+rF2X0R8hcdIDBIhO0oAW4aVuK9JSdlJx7oAkQkQTxiCrBh5IE1iaGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEsC1U+lg/36xL/IYfgfynZMm69cMB8GA1UdIwQY
MBaAFGg45eAWYF9u3NTJYcGcrPWBTHijMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC83N2YxOTQtZmY1Zi00YTIzLWI4ODIt
ZjRjYzI1YTU0NTNmLzEvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC83N2YxOTQtZmY1Zi00YTIzLWI4ODItZjRjYzI1YTU0NTNm
LzEvYURqbDRCWmdYMjdjMU1saHdaeXM5WUZNZUtNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbSgCvDw5
3AzS2FmXC9jUVMBVhLojLHXUnViYZZLFi0IMgb871eiAjEZX/Wuo+eLU7/5E6QMi
IY2M13iuHzuO0WQcSu5tA6r+yEaya2nXlrZX87Yexfib1EwDr5Xf5vMD7ZwhjJV+
v8p4wXM3q+o5Wqb9B9B4jS9ks1+nMRUBLRN9cj8sOFsrHdzu3DZ1SZ9yvFu56LA3
XZWjtIAc9IEhnqtEwpWK7Jn468HBb1flT97E2U3tj1lJHgWbRbrvgbtElsXGx9s4
2rwJSjym2iW2mW/HEXKrTu8WdWn1GDgwcVc+jA/BtFMSn7UY4xEzO3YnaWHnan8x
lWFuSy1P8oQt+Q==
-----END CERTIFICATE-----