Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft
File:                     ezR3xSqsENrC7dQXOrbZTV4k3vU.mft (raw, json)
Hash identifier:          oYbOszZJkVP4brKKYRn1V0Q1VG1sy4+rz9FkSqzX5Pk=
Subject key identifier:   86:D8:7B:6D:09:24:59:7E:E2:B0:48:44:10:DE:AB:CB:EB:AC:4B:A9
Authority key identifier: 7B:34:77:C5:2A:AC:10:DA:C2:ED:D4:17:3A:B6:D9:4D:5E:24:DE:F5
Certificate issuer:       /CN=7b3477c52aac10dac2edd4173ab6d94d5e24def5
Certificate serial:       01974B567FAC0B89CD045333FD3356D877DD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ezR3xSqsENrC7dQXOrbZTV4k3vU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft
Manifest number:          059E
Signing time:             Sat 07 Jun 2025 17:00:49 +0000
Manifest this update:     Sat 07 Jun 2025 17:00:49 +0000
Manifest next update:     Sun 08 Jun 2025 17:00:49 +0000
Files and hashes:         1: ezR3xSqsENrC7dQXOrbZTV4k3vU.crl (hash: yT7xz8BBRpiS1Wg28UF1RzQQh+cNOBnlYDqwGEGe+L0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ezR3xSqsENrC7dQXOrbZTV4k3vU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 11:24:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:56:7f:ac:0b:89:cd:04:53:33:fd:33:56:d8:77:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7b3477c52aac10dac2edd4173ab6d94d5e24def5
        Validity
            Not Before: Jun  7 17:00:49 2025 GMT
            Not After : Jun  8 17:00:49 2025 GMT
        Subject: CN=86d87b6d0924597ee2b0484410deabcbebac4ba9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:29:e9:ea:99:df:d9:05:cd:ec:7d:8d:88:56:
                    46:95:54:d2:ec:41:9b:44:a0:b3:a7:59:0a:2e:32:
                    f1:27:d5:c8:a0:23:d0:ec:ed:85:bb:d3:39:56:43:
                    29:cf:23:2d:27:f0:68:c9:8b:23:aa:47:bc:12:2d:
                    96:4d:54:b6:df:24:7c:d3:e6:3a:5f:6a:98:84:71:
                    7d:e4:f9:74:b8:de:45:0d:1e:05:15:05:4c:13:fa:
                    51:11:e7:da:af:68:21:91:66:9a:55:d7:fd:cb:f1:
                    62:71:19:12:d4:b5:82:e7:45:5e:9e:11:8f:32:22:
                    56:3a:3b:a2:c7:bf:f1:3a:09:bb:cb:88:66:7e:66:
                    ac:d1:eb:16:aa:64:d0:24:22:65:54:24:7c:85:4b:
                    de:11:82:f7:c2:cf:db:e2:2d:cc:05:71:50:e5:70:
                    9e:75:f1:15:8b:3b:8e:37:b7:ca:30:58:0e:9e:0b:
                    49:3d:e4:15:e3:4a:15:84:5a:87:8f:45:9a:e5:24:
                    81:3d:b2:a3:19:49:30:ad:c7:77:a6:7d:9c:b0:19:
                    3e:d1:d4:ae:c1:8f:18:19:f2:19:14:2b:3a:04:0e:
                    46:79:99:ee:c8:6a:99:8a:ce:9b:6e:d2:e1:ac:02:
                    b4:fd:dc:f4:77:8a:4e:b9:9e:7a:fc:e9:61:c6:bd:
                    26:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                86:D8:7B:6D:09:24:59:7E:E2:B0:48:44:10:DE:AB:CB:EB:AC:4B:A9
            X509v3 Authority Key Identifier:
                keyid:7B:34:77:C5:2A:AC:10:DA:C2:ED:D4:17:3A:B6:D9:4D:5E:24:DE:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ezR3xSqsENrC7dQXOrbZTV4k3vU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/77/bca347-983a-4c1a-88b8-cc69a2386edc/1/ezR3xSqsENrC7dQXOrbZTV4k3vU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:ec:62:04:6b:e2:75:ff:51:58:60:d9:4a:01:77:c7:1d:28:
         e5:17:a0:f7:d4:a7:5d:13:24:61:cf:37:4e:eb:bd:bc:08:7b:
         5f:91:05:66:9d:e9:72:20:df:29:ce:f9:17:ef:dd:49:61:db:
         55:0a:1e:a3:a4:ee:48:2e:79:e8:a3:2f:30:ca:93:b2:be:46:
         50:72:54:61:08:12:a1:ee:9d:cc:64:95:ea:59:6e:1e:95:76:
         3e:11:0d:fa:8b:e7:b0:90:48:bc:2e:7f:69:42:34:76:15:61:
         b6:b2:b4:08:6a:16:18:48:a9:ce:20:18:a6:97:d5:73:74:aa:
         19:3c:8c:7d:e8:89:8e:22:3e:31:6b:dd:f0:b6:5c:46:2e:fb:
         3c:f5:bb:61:b5:99:ed:73:8f:9d:1c:0e:92:bb:ff:69:d7:a2:
         98:a3:3b:96:40:25:ba:43:7b:f7:e3:9a:59:19:68:61:b5:c8:
         93:9e:a5:29:6e:ae:fc:04:06:18:3d:9d:92:01:e3:2f:77:0a:
         c0:56:19:37:69:0e:2b:e3:ed:51:ac:99:da:88:0c:8c:ae:14:
         bf:be:6d:4b:63:6d:f7:7d:c5:6b:79:60:4c:e1:d0:83:36:c9:
         f1:1f:1e:44:3d:a7:05:a7:02:84:01:32:08:ca:cd:de:5e:0c:
         ad:f3:f5:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLVn+sC4nNBFMz/TNW2HfdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiMzQ3N2M1MmFhYzEwZGFjMmVkZDQxNzNhYjZkOTRkNWUy
NGRlZjUwHhcNMjUwNjA3MTcwMDQ5WhcNMjUwNjA4MTcwMDQ5WjAzMTEwLwYDVQQD
Eyg4NmQ4N2I2ZDA5MjQ1OTdlZTJiMDQ4NDQxMGRlYWJjYmViYWM0YmE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlSnp6pnf2QXN7H2NiFZGlVTS7EGb
RKCzp1kKLjLxJ9XIoCPQ7O2Fu9M5VkMpzyMtJ/BoyYsjqke8Ei2WTVS23yR80+Y6
X2qYhHF95Pl0uN5FDR4FFQVME/pREefar2ghkWaaVdf9y/FicRkS1LWC50VenhGP
MiJWOjuix7/xOgm7y4hmfmas0esWqmTQJCJlVCR8hUveEYL3ws/b4i3MBXFQ5XCe
dfEVizuON7fKMFgOngtJPeQV40oVhFqHj0Wa5SSBPbKjGUkwrcd3pn2csBk+0dSu
wY8YGfIZFCs6BA5GeZnuyGqZis6bbtLhrAK0/dz0d4pOuZ56/Olhxr0mSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIbYe20JJFl+4rBIRBDeq8vrrEupMB8GA1UdIwQY
MBaAFHs0d8UqrBDawu3UFzq22U1eJN71MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXpSM3hTcXNFTnJDN2RRWE9yYlpUVjRrM3ZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny9iY2EzNDctOTgzYS00YzFhLTg4Yjgt
Y2M2OWEyMzg2ZWRjLzEvZXpSM3hTcXNFTnJDN2RRWE9yYlpUVjRrM3ZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny9iY2EzNDctOTgzYS00YzFhLTg4YjgtY2M2OWEyMzg2ZWRj
LzEvZXpSM3hTcXNFTnJDN2RRWE9yYlpUVjRrM3ZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfOxiBGvi
df9RWGDZSgF3xx0o5Reg99SnXRMkYc83Tuu9vAh7X5EFZp3pciDfKc75F+/dSWHb
VQoeo6TuSC556KMvMMqTsr5GUHJUYQgSoe6dzGSV6lluHpV2PhEN+ovnsJBIvC5/
aUI0dhVhtrK0CGoWGEipziAYppfVc3SqGTyMfeiJjiI+MWvd8LZcRi77PPW7YbWZ
7XOPnRwOkrv/adeimKM7lkAlukN79+OaWRloYbXIk56lKW6u/AQGGD2dkgHjL3cK
wFYZN2kOK+PtUayZ2ogMjK4Uv75tS2Nt933Fa3lgTOHQgzbJ8R8eRD2nBacChAEy
CMrN3l4MrfP1GQ==
-----END CERTIFICATE-----