Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft
File:                     QTJyL2byeskHL9x-kx9uGoUTz8Y.mft (raw, json)
Hash identifier:          ZcCbiptSWjQWfklrPPo8cwLJgTWr/pX0E9aH0aF+9Qo=
Subject key identifier:   7A:3C:CE:15:C7:CF:75:8F:92:DD:13:69:15:66:B3:EB:BC:69:57:7C
Authority key identifier: 41:32:72:2F:66:F2:7A:C9:07:2F:DC:7E:93:1F:6E:1A:85:13:CF:C6
Certificate issuer:       /CN=4132722f66f27ac9072fdc7e931f6e1a8513cfc6
Certificate serial:       0197469DDD70585D62C007B2A416D5565D1B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QTJyL2byeskHL9x-kx9uGoUTz8Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft
Manifest number:          94
Signing time:             Fri 06 Jun 2025 19:00:40 +0000
Manifest this update:     Fri 06 Jun 2025 19:00:40 +0000
Manifest next update:     Sat 07 Jun 2025 19:00:40 +0000
Files and hashes:         1: QTJyL2byeskHL9x-kx9uGoUTz8Y.crl (hash: InM5H0WfQ7+N7qGcspfeRCM4YsmEVW7jnp2I76sTh4Q=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QTJyL2byeskHL9x-kx9uGoUTz8Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:46:9d:dd:70:58:5d:62:c0:07:b2:a4:16:d5:56:5d:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4132722f66f27ac9072fdc7e931f6e1a8513cfc6
        Validity
            Not Before: Jun  6 19:00:40 2025 GMT
            Not After : Jun  7 19:00:40 2025 GMT
        Subject: CN=7a3cce15c7cf758f92dd13691566b3ebbc69577c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:eb:38:8b:b4:20:9d:85:9f:a1:d5:7f:3b:3e:
                    66:d5:62:b6:9e:30:b6:42:da:0c:a0:f2:58:bb:59:
                    f0:dc:e8:00:21:3d:5c:04:6c:bc:41:0b:4c:3c:2c:
                    95:28:8e:ac:81:ef:32:3a:b5:8c:da:a7:10:fe:b7:
                    72:dc:26:9d:a2:16:36:8f:f1:75:f5:88:26:c8:70:
                    25:00:90:5d:9d:75:24:9b:b3:72:ba:23:da:d7:63:
                    d7:e1:45:c2:1e:da:b5:a4:b2:42:ca:6f:c6:1c:f2:
                    f6:f9:bd:e9:da:c5:af:95:4d:63:b8:bd:3a:eb:0f:
                    2c:b9:da:f0:92:69:aa:17:8a:7c:1b:2b:5f:5b:1f:
                    c7:c7:a9:39:3b:80:be:4c:fb:ef:29:ca:5c:61:cd:
                    bc:4f:9b:f4:f0:3c:13:65:bd:50:77:c8:67:8f:67:
                    e5:5d:89:4e:37:58:c8:01:06:ee:88:7b:c6:38:61:
                    26:51:6c:70:b2:50:d4:8d:a6:d6:f4:36:8a:07:64:
                    48:79:e7:ce:23:1f:6b:82:61:12:f4:a1:19:7e:4c:
                    ff:dd:52:74:7a:b9:be:86:b8:8b:02:ac:8c:d1:4a:
                    7b:41:b6:4d:6c:df:09:fe:44:6f:aa:05:eb:3b:52:
                    ee:0d:6b:e8:3f:82:4a:e7:fe:d8:ff:56:f9:bf:d7:
                    33:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7A:3C:CE:15:C7:CF:75:8F:92:DD:13:69:15:66:B3:EB:BC:69:57:7C
            X509v3 Authority Key Identifier:
                keyid:41:32:72:2F:66:F2:7A:C9:07:2F:DC:7E:93:1F:6E:1A:85:13:CF:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QTJyL2byeskHL9x-kx9uGoUTz8Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/93/985056-748f-4b92-b6fe-54c37c02b7ee/1/QTJyL2byeskHL9x-kx9uGoUTz8Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:0a:33:13:83:67:f4:85:aa:60:7b:f2:2d:d3:21:74:29:ec:
         08:10:76:91:8d:eb:49:3c:33:41:23:20:ca:e4:49:3b:cf:53:
         cc:03:44:58:0a:0a:29:53:ed:fc:0d:c2:fc:6a:14:53:1a:3a:
         fd:57:2a:7d:21:d9:6f:60:49:ca:21:ef:fd:06:51:ea:3b:ec:
         29:a6:06:46:45:c5:5c:dc:e7:82:fb:a2:fa:17:c3:c3:a6:89:
         8f:d1:e1:78:43:bd:40:ed:04:f9:e2:3e:fc:70:7e:57:86:0b:
         c7:e8:61:b1:f7:ef:71:35:0f:2a:06:be:18:ca:72:54:de:cf:
         9b:f3:31:89:7a:1f:ac:8c:de:2b:42:da:35:20:79:5a:64:45:
         29:c3:98:87:39:b1:d4:b8:7a:49:25:67:cb:17:b3:c5:35:28:
         ec:0e:25:1d:b7:37:e7:1a:f7:61:84:c6:a7:d0:1c:1b:3c:9f:
         f7:de:2b:4f:44:bc:59:43:54:41:86:6f:b6:7e:73:b7:a8:fa:
         4a:15:c2:af:a0:57:98:db:63:7d:e6:cd:82:6f:c1:e9:84:40:
         04:55:70:ac:f8:d2:f1:52:d2:2f:b5:7e:2c:4a:19:e6:de:d1:
         66:e2:34:23:4d:5f:01:a7:c3:cb:c3:04:74:b7:01:fc:ce:89:
         28:37:af:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGnd1wWF1iwAeypBbVVl0bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMzI3MjJmNjZmMjdhYzkwNzJmZGM3ZTkzMWY2ZTFhODUx
M2NmYzYwHhcNMjUwNjA2MTkwMDQwWhcNMjUwNjA3MTkwMDQwWjAzMTEwLwYDVQQD
Eyg3YTNjY2UxNWM3Y2Y3NThmOTJkZDEzNjkxNTY2YjNlYmJjNjk1NzdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwOs4i7QgnYWfodV/Oz5m1WK2njC2
QtoMoPJYu1nw3OgAIT1cBGy8QQtMPCyVKI6sge8yOrWM2qcQ/rdy3CadohY2j/F1
9YgmyHAlAJBdnXUkm7NyuiPa12PX4UXCHtq1pLJCym/GHPL2+b3p2sWvlU1juL06
6w8sudrwkmmqF4p8GytfWx/Hx6k5O4C+TPvvKcpcYc28T5v08DwTZb1Qd8hnj2fl
XYlON1jIAQbuiHvGOGEmUWxwslDUjabW9DaKB2RIeefOIx9rgmES9KEZfkz/3VJ0
erm+hriLAqyM0Up7QbZNbN8J/kRvqgXrO1LuDWvoP4JK5/7Y/1b5v9czuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHo8zhXHz3WPkt0TaRVms+u8aVd8MB8GA1UdIwQY
MBaAFEEyci9m8nrJBy/cfpMfbhqFE8/GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVRKeUwyYnllc2tITDl4LWt4OXVHb1VUejhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My85ODUwNTYtNzQ4Zi00YjkyLWI2ZmUt
NTRjMzdjMDJiN2VlLzEvUVRKeUwyYnllc2tITDl4LWt4OXVHb1VUejhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My85ODUwNTYtNzQ4Zi00YjkyLWI2ZmUtNTRjMzdjMDJiN2Vl
LzEvUVRKeUwyYnllc2tITDl4LWt4OXVHb1VUejhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATAozE4Nn
9IWqYHvyLdMhdCnsCBB2kY3rSTwzQSMgyuRJO89TzANEWAoKKVPt/A3C/GoUUxo6
/VcqfSHZb2BJyiHv/QZR6jvsKaYGRkXFXNzngvui+hfDw6aJj9HheEO9QO0E+eI+
/HB+V4YLx+hhsffvcTUPKga+GMpyVN7Pm/MxiXofrIzeK0LaNSB5WmRFKcOYhzmx
1Lh6SSVnyxezxTUo7A4lHbc35xr3YYTGp9AcGzyf994rT0S8WUNUQYZvtn5zt6j6
ShXCr6BXmNtjfebNgm/B6YRABFVwrPjS8VLSL7V+LEoZ5t7RZuI0I01fAafDy8ME
dLcB/M6JKDevSg==
-----END CERTIFICATE-----