Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.mft
File:                     stNBgAdlZtcr7mHzoybFbgq7gEo.mft (raw, json)
Hash identifier:          9jfkhYFMe/pXRHnkZ9jc6Nm/Ap0OQslUqedAXX9IzdA=
Subject key identifier:   D9:7E:67:7E:32:5D:F6:95:D2:5F:A3:4D:C1:B5:4E:A4:DC:27:AE:9C
Authority key identifier: B2:D3:41:80:07:65:66:D7:2B:EE:61:F3:A3:26:C5:6E:0A:BB:80:4A
Certificate issuer:       /CN=b2d34180076566d72bee61f3a326c56e0abb804a
Certificate serial:       01974C6995970F581BC82ECE9A577C3EABA5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/stNBgAdlZtcr7mHzoybFbgq7gEo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.mft
Manifest number:          0E57
Signing time:             Sat 07 Jun 2025 22:01:17 +0000
Manifest this update:     Sat 07 Jun 2025 22:01:17 +0000
Manifest next update:     Sun 08 Jun 2025 22:01:17 +0000
Files and hashes:         1: stNBgAdlZtcr7mHzoybFbgq7gEo.crl (hash: NjgLAv3FDp2kZHKJ9A41Njdg2u80df0iIkIwyStzWXg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/stNBgAdlZtcr7mHzoybFbgq7gEo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 22:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:69:95:97:0f:58:1b:c8:2e:ce:9a:57:7c:3e:ab:a5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b2d34180076566d72bee61f3a326c56e0abb804a
        Validity
            Not Before: Jun  7 22:01:17 2025 GMT
            Not After : Jun  8 22:01:17 2025 GMT
        Subject: CN=d97e677e325df695d25fa34dc1b54ea4dc27ae9c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:78:9b:64:73:be:3c:ae:91:dc:4c:d7:6c:3b:
                    ff:ce:df:94:17:f2:29:e5:29:93:b3:32:6b:a4:26:
                    1e:c8:a8:1b:59:b7:fc:a3:d3:53:44:bc:e0:0c:4e:
                    44:ee:5e:a7:1e:c3:7f:09:8c:03:c4:5a:2a:ef:58:
                    0d:c9:5d:53:b5:b4:39:38:8d:e5:f8:29:66:08:01:
                    5f:07:99:64:cd:b4:d9:a1:fd:e2:ae:50:5b:30:dc:
                    c4:2e:db:63:72:f0:49:72:68:ef:9f:da:c4:98:cd:
                    7b:9d:c3:26:f4:58:8c:fd:df:d5:3a:6e:fc:87:aa:
                    71:be:e4:6b:2e:5a:95:2e:8f:87:44:1e:f9:db:c2:
                    5f:fb:f7:54:d2:bb:65:28:1d:71:43:9b:f1:4a:b9:
                    4f:62:66:cb:e6:ed:bc:76:6f:ac:01:77:22:df:b3:
                    cc:b8:ab:0a:90:b6:b2:4a:cc:56:7c:3f:58:f4:e4:
                    8f:79:8a:d7:77:6b:61:16:8d:73:0f:7a:74:fd:56:
                    0f:74:a8:8a:b8:5d:51:d7:c9:5d:6a:63:01:73:c6:
                    56:4c:96:12:84:e5:85:0c:f2:65:8e:47:0a:60:48:
                    e2:2d:5d:8b:6a:d5:49:6d:05:24:7f:89:39:20:36:
                    35:40:6a:f9:f0:39:44:f4:9c:51:74:21:ae:04:02:
                    ec:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:7E:67:7E:32:5D:F6:95:D2:5F:A3:4D:C1:B5:4E:A4:DC:27:AE:9C
            X509v3 Authority Key Identifier:
                keyid:B2:D3:41:80:07:65:66:D7:2B:EE:61:F3:A3:26:C5:6E:0A:BB:80:4A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stNBgAdlZtcr7mHzoybFbgq7gEo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/bbf773-67f9-4be5-95cb-70d7f8f4925a/1/stNBgAdlZtcr7mHzoybFbgq7gEo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:e2:23:e6:30:96:17:3c:63:d4:b0:62:5f:4c:e0:ed:35:c8:
         d4:9c:97:5b:54:58:66:87:a8:26:39:02:fa:28:3f:a9:6b:89:
         ce:6e:08:77:3e:8b:ca:43:21:64:6b:8a:51:8d:db:7d:2e:03:
         00:4a:f9:58:e0:86:a1:e5:f1:ae:77:89:83:0e:1c:5c:45:42:
         03:16:ff:e6:c2:53:6c:a0:0c:14:ce:b1:87:42:ff:96:86:b0:
         44:37:21:61:d2:3f:ef:6f:8a:57:96:21:6b:69:06:63:70:4e:
         fa:da:34:c1:76:49:5b:e0:33:5b:74:a3:ea:0b:e1:fd:3a:eb:
         04:a1:3e:5e:98:82:64:cf:1d:81:63:69:be:2b:3b:3f:3d:ed:
         53:3b:22:8e:33:ec:87:be:92:39:cf:43:4a:30:42:a2:5b:99:
         ad:9d:48:94:37:2e:31:09:7a:1e:05:a8:20:de:9c:6d:94:a2:
         f9:a4:92:97:16:d3:52:a2:e0:70:a6:53:34:eb:a5:4f:ca:4b:
         87:8e:ff:32:29:49:56:a1:81:86:6e:b1:59:5c:cb:1f:ab:a3:
         e7:a9:b3:8d:fc:08:2e:61:fd:4b:1a:d2:b7:ae:f7:c0:fe:1a:
         1d:ac:bc:8d:c8:9f:bf:bf:ad:ca:3e:bc:f3:01:48:9b:1f:9b:
         5a:84:60:70
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMaZWXD1gbyC7Omld8PqulMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZDM0MTgwMDc2NTY2ZDcyYmVlNjFmM2EzMjZjNTZlMGFi
YjgwNGEwHhcNMjUwNjA3MjIwMTE3WhcNMjUwNjA4MjIwMTE3WjAzMTEwLwYDVQQD
EyhkOTdlNjc3ZTMyNWRmNjk1ZDI1ZmEzNGRjMWI1NGVhNGRjMjdhZTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlXibZHO+PK6R3EzXbDv/zt+UF/Ip
5SmTszJrpCYeyKgbWbf8o9NTRLzgDE5E7l6nHsN/CYwDxFoq71gNyV1TtbQ5OI3l
+ClmCAFfB5lkzbTZof3irlBbMNzELttjcvBJcmjvn9rEmM17ncMm9FiM/d/VOm78
h6pxvuRrLlqVLo+HRB7528Jf+/dU0rtlKB1xQ5vxSrlPYmbL5u28dm+sAXci37PM
uKsKkLaySsxWfD9Y9OSPeYrXd2thFo1zD3p0/VYPdKiKuF1R18ldamMBc8ZWTJYS
hOWFDPJljkcKYEjiLV2LatVJbQUkf4k5IDY1QGr58DlE9JxRdCGuBALstwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNl+Z34yXfaV0l+jTcG1TqTcJ66cMB8GA1UdIwQY
MBaAFLLTQYAHZWbXK+5h86MmxW4Ku4BKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3ROQmdBZGxadGNyN21Iem95YkZiZ3E3Z0VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9iYmY3NzMtNjdmOS00YmU1LTk1Y2It
NzBkN2Y4ZjQ5MjVhLzEvc3ROQmdBZGxadGNyN21Iem95YkZiZ3E3Z0VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC9iYmY3NzMtNjdmOS00YmU1LTk1Y2ItNzBkN2Y4ZjQ5MjVh
LzEvc3ROQmdBZGxadGNyN21Iem95YkZiZ3E3Z0VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPOIj5jCW
Fzxj1LBiX0zg7TXI1JyXW1RYZoeoJjkC+ig/qWuJzm4Idz6LykMhZGuKUY3bfS4D
AEr5WOCGoeXxrneJgw4cXEVCAxb/5sJTbKAMFM6xh0L/loawRDchYdI/72+KV5Yh
a2kGY3BO+to0wXZJW+AzW3Sj6gvh/TrrBKE+XpiCZM8dgWNpvis7Pz3tUzsijjPs
h76SOc9DSjBColuZrZ1IlDcuMQl6HgWoIN6cbZSi+aSSlxbTUqLgcKZTNOulT8pL
h47/MilJVqGBhm6xWVzLH6uj56mzjfwILmH9SxrSt673wP4aHay8jcifv7+tyj68
8wFImx+bWoRgcA==
-----END CERTIFICATE-----