Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft
File:                     vVhFViKSj0TenBVdcGjh0RtEVPE.mft (raw, json)
Hash identifier:          g9DOIJ5qb5WXYvygeGvuklIuG+aWwdheGjHGABAnpZE=
Subject key identifier:   D4:4C:F4:31:83:54:C9:AF:D9:64:EB:87:F3:9A:3B:3B:0E:B6:BF:7D
Authority key identifier: BD:58:45:56:22:92:8F:44:DE:9C:15:5D:70:68:E1:D1:1B:44:54:F1
Certificate issuer:       /CN=bd58455622928f44de9c155d7068e1d11b4454f1
Certificate serial:       01974A4384F9875C57C6F231A02F0F6D8E25
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vVhFViKSj0TenBVdcGjh0RtEVPE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft
Manifest number:          1579
Signing time:             Sat 07 Jun 2025 12:00:28 +0000
Manifest this update:     Sat 07 Jun 2025 12:00:28 +0000
Manifest next update:     Sun 08 Jun 2025 12:00:28 +0000
Files and hashes:         1: vVhFViKSj0TenBVdcGjh0RtEVPE.crl (hash: 7im/EKcwJroCXbe51hwrfyHpwrlNghx17vfVPbDq8+A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vVhFViKSj0TenBVdcGjh0RtEVPE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 12:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:43:84:f9:87:5c:57:c6:f2:31:a0:2f:0f:6d:8e:25
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bd58455622928f44de9c155d7068e1d11b4454f1
        Validity
            Not Before: Jun  7 12:00:28 2025 GMT
            Not After : Jun  8 12:00:28 2025 GMT
        Subject: CN=d44cf4318354c9afd964eb87f39a3b3b0eb6bf7d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:ca:7e:01:bd:82:7c:70:26:fa:5d:41:df:18:
                    b6:63:e2:dc:14:19:14:f4:5a:2f:43:6d:6f:e6:56:
                    35:fe:a7:90:3b:7e:dc:dd:94:9c:35:9e:dc:b3:d3:
                    57:de:f2:de:0c:27:62:2e:74:96:bc:bf:91:87:7a:
                    c0:50:ca:7d:59:3a:f5:4c:e8:17:03:1c:ab:0a:30:
                    db:16:9e:c8:eb:7e:cd:d9:b0:9b:5d:1d:ca:d9:79:
                    ac:20:1a:00:f2:f2:bc:bd:44:2d:69:e4:4f:b2:c6:
                    87:3b:5d:b5:9a:3b:b1:ea:dd:7f:6e:e8:87:c2:2c:
                    5e:e2:12:66:07:b3:a9:46:08:de:12:40:ff:8c:16:
                    f3:a2:1c:09:d4:2f:f8:24:3a:80:cd:73:a7:00:ec:
                    01:eb:da:0f:6c:cb:f4:9c:76:46:75:99:8c:46:2f:
                    3a:d6:3b:4f:3e:1e:0f:81:c7:50:3d:0c:24:67:e3:
                    7a:21:6e:7e:cd:b3:8c:e0:a0:cc:6f:27:e0:58:e2:
                    00:62:62:77:d9:e8:b8:42:9c:d5:28:b7:97:26:81:
                    c4:e2:49:a6:9f:1e:93:7b:99:a2:d0:7d:d8:3e:20:
                    ea:05:4c:39:63:4f:4e:c3:33:f4:84:42:54:4a:ad:
                    18:75:33:ea:ae:46:9d:94:3c:9d:39:9c:1b:83:dd:
                    9c:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D4:4C:F4:31:83:54:C9:AF:D9:64:EB:87:F3:9A:3B:3B:0E:B6:BF:7D
            X509v3 Authority Key Identifier:
                keyid:BD:58:45:56:22:92:8F:44:DE:9C:15:5D:70:68:E1:D1:1B:44:54:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vVhFViKSj0TenBVdcGjh0RtEVPE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/1dc97c-ee67-4c2b-80ba-29089da40c99/1/vVhFViKSj0TenBVdcGjh0RtEVPE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ce:f6:29:81:2d:11:e6:6f:91:56:92:bc:c3:cc:42:7b:a2:5e:
         02:84:9a:fb:8f:5f:3a:40:61:1a:5d:63:17:99:03:da:c4:7d:
         87:a7:31:19:b0:08:6b:85:bc:a8:ff:40:01:5c:08:bd:a2:d9:
         61:58:02:b4:9f:b0:97:23:52:17:e2:e0:37:4e:b0:23:d1:c1:
         c3:04:41:f6:9a:71:c9:b6:e6:31:e5:e9:8c:36:5e:e7:9e:7a:
         43:3b:4b:ca:44:55:4a:dc:5b:13:64:61:ab:a9:9f:e3:de:68:
         d4:7c:b1:b0:66:34:06:f5:09:53:ee:95:de:19:2d:07:44:52:
         5a:a0:f6:15:38:40:91:99:a1:b8:7f:2e:8e:93:75:ed:c8:37:
         6c:29:f1:fc:50:6f:43:af:dd:f6:d8:5d:64:23:c4:75:73:28:
         b5:4a:c0:e5:0e:b8:f6:69:02:49:d0:51:51:7f:a8:6f:f5:74:
         a6:37:9e:91:c1:bb:d6:ff:6c:45:9c:d5:e0:d6:cc:93:ad:1b:
         8d:37:7c:fe:e5:ba:91:e3:e1:db:61:42:48:6e:17:61:4f:2f:
         54:03:fd:98:56:a7:ce:24:6c:60:81:d8:36:39:02:37:bd:e3:
         d4:66:15:b8:3a:e6:c6:a3:2d:c3:10:c7:bc:77:8b:19:b2:a2:
         d8:71:a5:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKQ4T5h1xXxvIxoC8PbY4lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkNTg0NTU2MjI5MjhmNDRkZTljMTU1ZDcwNjhlMWQxMWI0
NDU0ZjEwHhcNMjUwNjA3MTIwMDI4WhcNMjUwNjA4MTIwMDI4WjAzMTEwLwYDVQQD
EyhkNDRjZjQzMTgzNTRjOWFmZDk2NGViODdmMzlhM2IzYjBlYjZiZjdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMp+Ab2CfHAm+l1B3xi2Y+LcFBkU
9FovQ21v5lY1/qeQO37c3ZScNZ7cs9NX3vLeDCdiLnSWvL+Rh3rAUMp9WTr1TOgX
AxyrCjDbFp7I637N2bCbXR3K2XmsIBoA8vK8vUQtaeRPssaHO121mjux6t1/buiH
wixe4hJmB7OpRgjeEkD/jBbzohwJ1C/4JDqAzXOnAOwB69oPbMv0nHZGdZmMRi86
1jtPPh4PgcdQPQwkZ+N6IW5+zbOM4KDMbyfgWOIAYmJ32ei4QpzVKLeXJoHE4kmm
nx6Te5mi0H3YPiDqBUw5Y09OwzP0hEJUSq0YdTPqrkadlDydOZwbg92c4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNRM9DGDVMmv2WTrh/OaOzsOtr99MB8GA1UdIwQY
MBaAFL1YRVYiko9E3pwVXXBo4dEbRFTxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlZoRlZpS1NqMFRlbkJWZGNHamgwUnRFVlBFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS8xZGM5N2MtZWU2Ny00YzJiLTgwYmEt
MjkwODlkYTQwYzk5LzEvdlZoRlZpS1NqMFRlbkJWZGNHamgwUnRFVlBFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS8xZGM5N2MtZWU2Ny00YzJiLTgwYmEtMjkwODlkYTQwYzk5
LzEvdlZoRlZpS1NqMFRlbkJWZGNHamgwUnRFVlBFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAzvYpgS0R
5m+RVpK8w8xCe6JeAoSa+49fOkBhGl1jF5kD2sR9h6cxGbAIa4W8qP9AAVwIvaLZ
YVgCtJ+wlyNSF+LgN06wI9HBwwRB9ppxybbmMeXpjDZe5556QztLykRVStxbE2Rh
q6mf495o1HyxsGY0BvUJU+6V3hktB0RSWqD2FThAkZmhuH8ujpN17cg3bCnx/FBv
Q6/d9thdZCPEdXMotUrA5Q649mkCSdBRUX+ob/V0pjeekcG71v9sRZzV4NbMk60b
jTd8/uW6kePh22FCSG4XYU8vVAP9mFanziRsYIHYNjkCN73j1GYVuDrmxqMtwxDH
vHeLGbKi2HGlmw==
-----END CERTIFICATE-----