Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft
File:                     rIpdP4uUYpQnOEoSDHdHYFY611o.mft (raw, json)
Hash identifier:          NNji9J0RdXoSVnt6sAOVfAM+EVSqcBHW7T9hBzJis28=
Subject key identifier:   90:5A:E8:F0:E2:0A:63:6E:B0:C7:67:3D:71:73:E2:EF:03:C8:06:60
Authority key identifier: AC:8A:5D:3F:8B:94:62:94:27:38:4A:12:0C:77:47:60:56:3A:D7:5A
Certificate issuer:       /CN=ac8a5d3f8b94629427384a120c774760563ad75a
Certificate serial:       0195903DB2F166AA0CB49FF7E72908A7829A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft
Manifest number:          0E75
Signing time:             Thu 13 Mar 2025 16:01:57 +0000
Manifest this update:     Thu 13 Mar 2025 16:01:57 +0000
Manifest next update:     Fri 14 Mar 2025 16:01:57 +0000
Files and hashes:         1: rIpdP4uUYpQnOEoSDHdHYFY611o.crl (hash: NMGxx+uMPsFGa0HyDQZ2yRbnTM8xCQgVaY3Lzv+VD2I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 14 Mar 2025 15:28:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:90:3d:b2:f1:66:aa:0c:b4:9f:f7:e7:29:08:a7:82:9a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ac8a5d3f8b94629427384a120c774760563ad75a
        Validity
            Not Before: Mar 13 16:01:57 2025 GMT
            Not After : Mar 14 16:01:57 2025 GMT
        Subject: CN=905ae8f0e20a636eb0c7673d7173e2ef03c80660
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:eb:c3:be:ab:2f:8e:31:e0:e4:d7:31:7c:4b:
                    67:28:18:ac:e2:f7:7f:87:3a:fa:be:44:86:17:21:
                    c4:67:16:53:9c:40:8d:46:8c:a7:22:1e:53:a2:d2:
                    dd:86:cf:f6:de:07:61:5b:88:1e:2a:ec:5d:08:8f:
                    ba:09:f0:50:08:ee:02:c1:02:27:3c:ea:f5:e7:25:
                    27:87:5f:57:e0:12:14:ab:d2:79:7b:82:da:c9:56:
                    db:bc:93:10:cd:3c:41:93:5d:78:23:0d:ed:a0:b6:
                    c1:6c:a7:a7:5f:53:ab:b1:30:b7:1a:6c:79:1e:6a:
                    c3:92:a3:66:7c:af:14:6b:d9:ae:97:f9:09:6c:bf:
                    75:d8:24:b8:86:e4:d5:d0:be:b0:9d:21:ac:cd:9a:
                    af:9c:2f:4a:89:7f:04:74:e0:c7:ac:16:3f:5c:66:
                    3a:ab:31:c0:55:17:b1:46:9a:f6:63:8f:9e:03:a9:
                    37:74:33:cc:37:09:49:fb:db:d6:9b:5c:67:4c:f3:
                    72:44:7f:3a:e9:c5:3e:5f:20:d2:e8:8f:49:9e:20:
                    8f:b3:2f:ec:82:40:2e:dd:6e:9b:a1:62:9d:77:f7:
                    7e:b4:22:88:04:ab:08:7c:df:62:3b:4e:ef:4e:89:
                    bf:58:68:89:9b:91:fc:1b:7e:dc:0c:28:8b:73:f7:
                    ae:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:5A:E8:F0:E2:0A:63:6E:B0:C7:67:3D:71:73:E2:EF:03:C8:06:60
            X509v3 Authority Key Identifier:
                keyid:AC:8A:5D:3F:8B:94:62:94:27:38:4A:12:0C:77:47:60:56:3A:D7:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIpdP4uUYpQnOEoSDHdHYFY611o.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/e24bb6-7363-4442-b568-c80dec87cd09/1/rIpdP4uUYpQnOEoSDHdHYFY611o.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:51:38:17:d1:d0:a0:97:5d:29:be:7c:0b:1b:8f:6a:32:61:
         5a:33:80:51:ae:a4:77:12:fc:9a:07:8d:16:c8:0c:26:2c:8b:
         f2:5d:cf:74:bb:da:46:c0:86:fd:8f:e3:7a:68:5d:73:66:b2:
         1c:28:00:cb:86:70:4e:05:69:f0:f0:56:e9:ad:0e:73:f8:eb:
         0d:13:c4:5c:54:3a:79:c3:2c:e9:3e:e1:fc:a5:bd:7c:ec:ab:
         b8:2a:8f:86:02:c1:e1:f9:c7:2b:52:f2:11:59:c7:61:ca:52:
         86:da:40:d4:33:70:c5:c3:2f:86:16:53:98:65:1e:70:33:0c:
         63:cb:25:27:3b:f7:c3:5f:de:ce:1d:4e:e0:c8:22:d7:09:7b:
         e1:0f:45:a5:68:2a:28:81:dc:fe:fa:19:19:22:68:ea:c2:34:
         ad:d6:bc:7a:03:43:21:d4:58:4d:8b:ba:0c:d5:76:a2:7c:59:
         7b:d6:93:c4:20:71:b3:93:88:cc:b7:d0:9b:7c:a6:c0:ff:ba:
         e6:af:76:15:ee:5d:9c:c7:73:d2:7b:a8:76:81:54:bf:ca:ac:
         fe:5f:3e:78:b0:be:e2:35:9f:03:24:8c:77:c7:23:e8:9a:7e:
         7e:7a:55:5e:32:bd:d1:8f:a9:b4:1d:de:30:36:5d:0c:66:a0:
         7d:8b:31:01
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWQPbLxZqoMtJ/35ykIp4KaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFjOGE1ZDNmOGI5NDYyOTQyNzM4NGExMjBjNzc0NzYwNTYz
YWQ3NWEwHhcNMjUwMzEzMTYwMTU3WhcNMjUwMzE0MTYwMTU3WjAzMTEwLwYDVQQD
Eyg5MDVhZThmMGUyMGE2MzZlYjBjNzY3M2Q3MTczZTJlZjAzYzgwNjYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+vDvqsvjjHg5NcxfEtnKBis4vd/
hzr6vkSGFyHEZxZTnECNRoynIh5TotLdhs/23gdhW4geKuxdCI+6CfBQCO4CwQIn
POr15yUnh19X4BIUq9J5e4LayVbbvJMQzTxBk114Iw3toLbBbKenX1OrsTC3Gmx5
HmrDkqNmfK8Ua9mul/kJbL912CS4huTV0L6wnSGszZqvnC9KiX8EdODHrBY/XGY6
qzHAVRexRpr2Y4+eA6k3dDPMNwlJ+9vWm1xnTPNyRH866cU+XyDS6I9JniCPsy/s
gkAu3W6boWKdd/d+tCKIBKsIfN9iO07vTom/WGiJm5H8G37cDCiLc/euHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJBa6PDiCmNusMdnPXFz4u8DyAZgMB8GA1UdIwQY
MBaAFKyKXT+LlGKUJzhKEgx3R2BWOtdaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcklwZFA0dVVZcFFuT0VvU0RIZEhZRlk2MTFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC9lMjRiYjYtNzM2My00NDQyLWI1Njgt
YzgwZGVjODdjZDA5LzEvcklwZFA0dVVZcFFuT0VvU0RIZEhZRlk2MTFvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC9lMjRiYjYtNzM2My00NDQyLWI1NjgtYzgwZGVjODdjZDA5
LzEvcklwZFA0dVVZcFFuT0VvU0RIZEhZRlk2MTFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL1E4F9HQ
oJddKb58CxuPajJhWjOAUa6kdxL8mgeNFsgMJiyL8l3PdLvaRsCG/Y/jemhdc2ay
HCgAy4ZwTgVp8PBW6a0Oc/jrDRPEXFQ6ecMs6T7h/KW9fOyruCqPhgLB4fnHK1Ly
EVnHYcpShtpA1DNwxcMvhhZTmGUecDMMY8slJzv3w1/ezh1O4Mgi1wl74Q9FpWgq
KIHc/voZGSJo6sI0rda8egNDIdRYTYu6DNV2onxZe9aTxCBxs5OIzLfQm3ymwP+6
5q92Fe5dnMdz0nuodoFUv8qs/l8+eLC+4jWfAySMd8cj6Jp+fnpVXjK90Y+ptB3e
MDZdDGagfYsxAQ==
-----END CERTIFICATE-----