Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
File:                     0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft (raw, json)
Hash identifier:          XEhMVaT5OZ/0qosH5C2Qn2SQpE0CUVYPriW6OD/NuL0=
Subject key identifier:   1F:0C:EA:8B:FE:35:09:71:57:49:CD:63:C6:66:56:33:5A:63:6C:FD
Authority key identifier: D2:26:1D:EE:6D:54:DD:53:6E:F7:00:F2:D9:D8:19:7C:86:09:39:66
Certificate issuer:       /CN=d2261dee6d54dd536ef700f2d9d8197c86093966
Certificate serial:       01974E58759410D976F6F51593366F53CDB6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
Manifest number:          150E
Signing time:             Sun 08 Jun 2025 07:01:49 +0000
Manifest this update:     Sun 08 Jun 2025 07:01:49 +0000
Manifest next update:     Mon 09 Jun 2025 07:01:49 +0000
Files and hashes:         1: 0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl (hash: AfsN7/oRXqEXs2dpg7dGkyUSjoeb12zuF4CjJe8+HHY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:58:75:94:10:d9:76:f6:f5:15:93:36:6f:53:cd:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d2261dee6d54dd536ef700f2d9d8197c86093966
        Validity
            Not Before: Jun  8 07:01:49 2025 GMT
            Not After : Jun  9 07:01:49 2025 GMT
        Subject: CN=1f0cea8bfe3509715749cd63c66656335a636cfd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:94:1b:30:b9:e5:ac:ba:b2:1d:7a:73:55:79:
                    c1:1d:56:7a:9d:c8:bb:4c:9d:16:97:7d:c7:fd:27:
                    7e:66:f4:3c:fd:cf:64:1c:84:d0:d4:19:6a:89:f5:
                    52:0b:15:38:e7:c9:cb:fb:49:b8:4a:28:f2:6d:e4:
                    0a:81:ce:0c:18:98:45:82:88:4c:c2:12:00:37:32:
                    5c:ba:99:dc:45:00:c4:61:ae:f2:22:e1:c0:56:60:
                    71:c6:86:62:da:55:22:1d:71:89:e9:cd:6a:02:79:
                    c0:93:8d:2b:1c:d7:45:18:96:5c:5d:50:e1:aa:bf:
                    64:e8:e6:e1:9b:47:e4:a8:2a:11:32:40:c6:16:22:
                    46:1b:9a:67:ce:8d:18:dc:1c:21:d1:64:16:83:ca:
                    4e:b9:e8:9d:d8:79:9d:9a:1a:2c:a8:d8:e8:c6:f9:
                    37:7c:0a:b4:78:6a:62:38:48:05:6a:3e:79:b4:55:
                    da:ac:06:7a:11:a2:65:4f:cd:e5:6e:eb:44:3a:c4:
                    9e:c2:c8:67:11:b4:4d:f3:41:58:ab:ac:3e:68:47:
                    2d:a7:1d:9a:27:ad:29:f6:d2:ad:3a:30:b3:e6:b3:
                    d0:2c:d8:15:be:67:de:1c:e7:0a:44:ea:c1:49:d6:
                    2a:90:4a:89:27:dc:65:21:f1:29:09:a8:3d:25:4d:
                    4a:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1F:0C:EA:8B:FE:35:09:71:57:49:CD:63:C6:66:56:33:5A:63:6C:FD
            X509v3 Authority Key Identifier:
                keyid:D2:26:1D:EE:6D:54:DD:53:6E:F7:00:F2:D9:D8:19:7C:86:09:39:66

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0iYd7m1U3VNu9wDy2dgZfIYJOWY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/bacec3-491b-440b-8b48-6f0f46f4d4b4/1/0iYd7m1U3VNu9wDy2dgZfIYJOWY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:a6:40:5e:2a:86:3e:41:14:80:9d:9c:80:a0:16:7d:28:a8:
         3e:bb:01:14:09:d1:91:50:03:2b:fd:4b:ac:64:24:13:26:66:
         eb:30:71:05:7b:3a:a0:cc:ad:86:0c:e0:44:e4:7a:cd:b1:9b:
         52:a4:9d:83:8c:7b:ca:d4:71:e8:46:6a:9c:ef:9c:fe:49:b7:
         b1:1f:8a:20:96:0a:1e:0e:b2:d2:98:c4:58:07:80:be:3a:18:
         4d:c4:00:a8:c0:80:a4:74:7e:50:d9:4c:32:8d:3a:02:bd:c7:
         8e:04:33:ee:8d:73:00:de:7b:56:8a:50:33:8a:c8:92:67:b3:
         52:2d:bd:2f:1f:e2:fb:93:45:8f:5f:cc:c3:69:c6:50:c1:d4:
         0c:af:7e:ec:0e:60:59:91:91:16:98:73:de:bb:c7:b1:12:85:
         dc:b5:5d:ae:e1:89:d7:66:6f:49:84:fa:16:fd:ab:de:f4:c3:
         f7:de:e2:fc:3a:ea:9e:0c:08:17:87:7c:cd:53:de:ba:17:12:
         6f:5a:e3:57:be:15:87:d4:87:4e:b5:11:02:b6:e5:dc:41:14:
         88:1c:3f:9e:9c:56:38:7e:6e:d5:16:a8:77:ad:ce:ff:14:46:
         b4:05:ab:22:e7:0c:3a:ba:38:4a:d9:75:7b:1b:89:7f:b1:12:
         5c:28:a8:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOWHWUENl29vUVkzZvU822MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyMjYxZGVlNmQ1NGRkNTM2ZWY3MDBmMmQ5ZDgxOTdjODYw
OTM5NjYwHhcNMjUwNjA4MDcwMTQ5WhcNMjUwNjA5MDcwMTQ5WjAzMTEwLwYDVQQD
EygxZjBjZWE4YmZlMzUwOTcxNTc0OWNkNjNjNjY2NTYzMzVhNjM2Y2ZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhZQbMLnlrLqyHXpzVXnBHVZ6nci7
TJ0Wl33H/Sd+ZvQ8/c9kHITQ1BlqifVSCxU458nL+0m4SijybeQKgc4MGJhFgohM
whIANzJcupncRQDEYa7yIuHAVmBxxoZi2lUiHXGJ6c1qAnnAk40rHNdFGJZcXVDh
qr9k6Obhm0fkqCoRMkDGFiJGG5pnzo0Y3Bwh0WQWg8pOueid2HmdmhosqNjoxvk3
fAq0eGpiOEgFaj55tFXarAZ6EaJlT83lbutEOsSewshnEbRN80FYq6w+aEctpx2a
J60p9tKtOjCz5rPQLNgVvmfeHOcKROrBSdYqkEqJJ9xlIfEpCag9JU1KLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB8M6ov+NQlxV0nNY8ZmVjNaY2z9MB8GA1UdIwQY
MBaAFNImHe5tVN1TbvcA8tnYGXyGCTlmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGlZZDdtMVUzVk51OXdEeTJkZ1pmSVlKT1dZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy9iYWNlYzMtNDkxYi00NDBiLThiNDgt
NmYwZjQ2ZjRkNGI0LzEvMGlZZDdtMVUzVk51OXdEeTJkZ1pmSVlKT1dZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy9iYWNlYzMtNDkxYi00NDBiLThiNDgtNmYwZjQ2ZjRkNGI0
LzEvMGlZZDdtMVUzVk51OXdEeTJkZ1pmSVlKT1dZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi6ZAXiqG
PkEUgJ2cgKAWfSioPrsBFAnRkVADK/1LrGQkEyZm6zBxBXs6oMythgzgROR6zbGb
UqSdg4x7ytRx6EZqnO+c/km3sR+KIJYKHg6y0pjEWAeAvjoYTcQAqMCApHR+UNlM
Mo06Ar3HjgQz7o1zAN57VopQM4rIkmezUi29Lx/i+5NFj1/Mw2nGUMHUDK9+7A5g
WZGRFphz3rvHsRKF3LVdruGJ12ZvSYT6Fv2r3vTD997i/DrqngwIF4d8zVPeuhcS
b1rjV74Vh9SHTrURArbl3EEUiBw/npxWOH5u1Raod63O/xRGtAWrIucMOro4Stl1
exuJf7ESXCiohw==
-----END CERTIFICATE-----