Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/feb7e0-2b7e-426c-b037-2091cca8bc48/1/rl81puj7U5sZVMtDps516X-q4XU.mft
File:                     rl81puj7U5sZVMtDps516X-q4XU.mft (raw, json)
Hash identifier:          5Uh3dMyrk/sJ+nJ9Y63PsHDmvvtBpzHOW16kKOdncQM=
Subject key identifier:   79:0D:E1:A4:B1:26:D7:07:67:F3:03:B8:8B:9B:67:96:2A:76:C3:8A
Authority key identifier: AE:5F:35:A6:E8:FB:53:9B:19:54:CB:43:A6:CE:75:E9:7F:AA:E1:75
Certificate issuer:       /CN=ae5f35a6e8fb539b1954cb43a6ce75e97faae175
Certificate serial:       01974E5756477BF4A2EA3DB27F4015E61FF6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rl81puj7U5sZVMtDps516X-q4XU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/feb7e0-2b7e-426c-b037-2091cca8bc48/1/rl81puj7U5sZVMtDps516X-q4XU.mft
Manifest number:          0976
Signing time:             Sun 08 Jun 2025 07:00:35 +0000
Manifest this update:     Sun 08 Jun 2025 07:00:35 +0000
Manifest next update:     Mon 09 Jun 2025 07:00:35 +0000
Files and hashes:         1: rl81puj7U5sZVMtDps516X-q4XU.crl (hash: tfMg3V/gyLYhU4M7VqcCZbBJGaGYg1YAffRGwfl2U7U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b2/feb7e0-2b7e-426c-b037-2091cca8bc48/1/rl81puj7U5sZVMtDps516X-q4XU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b2/feb7e0-2b7e-426c-b037-2091cca8bc48/1/rl81puj7U5sZVMtDps516X-q4XU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rl81puj7U5sZVMtDps516X-q4XU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4e:57:56:47:7b:f4:a2:ea:3d:b2:7f:40:15:e6:1f:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ae5f35a6e8fb539b1954cb43a6ce75e97faae175
        Validity
            Not Before: Jun  8 07:00:35 2025 GMT
            Not After : Jun  9 07:00:35 2025 GMT
        Subject: CN=790de1a4b126d70767f303b88b9b67962a76c38a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:cb:17:88:b6:17:9c:be:19:10:2e:4d:79:37:
                    e6:9e:c3:e0:f3:21:2e:c6:95:9c:91:44:f5:f0:a2:
                    c9:fa:ba:f6:a3:72:6c:14:71:99:0a:93:9b:5d:ef:
                    72:53:0b:af:7d:d5:e4:1e:47:a9:26:6f:65:29:e9:
                    c5:b6:e8:02:c4:c5:68:e8:59:fe:de:46:45:c5:a5:
                    3a:4c:be:19:73:82:c8:85:15:fe:32:96:63:30:5a:
                    e3:06:f2:4e:4b:00:c1:2e:46:6e:5f:12:fb:6c:02:
                    2b:02:f1:50:82:5d:d1:74:e7:bb:c5:65:5d:ee:6b:
                    87:f1:44:07:f6:51:84:8d:07:d0:f4:31:0e:1e:37:
                    fd:a0:99:e2:2d:14:e3:db:bb:c4:c3:c8:24:7f:dc:
                    0e:74:fb:79:00:f6:10:ad:6b:f2:ac:11:f1:65:a7:
                    56:22:e7:b3:58:e0:b6:ec:03:a2:72:01:85:fe:2c:
                    77:a7:5e:c7:b7:a8:f7:de:f6:b3:b3:f1:1e:fb:9d:
                    a3:73:82:60:60:35:e8:a2:91:55:6f:82:16:6a:08:
                    14:09:05:a7:73:48:fd:b6:66:2c:10:20:56:f0:3c:
                    02:8b:e5:e0:89:e2:a1:a7:ef:d1:c0:24:d2:02:8d:
                    2a:71:27:64:63:73:21:ee:9a:e4:b2:6f:1a:61:e8:
                    a1:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:0D:E1:A4:B1:26:D7:07:67:F3:03:B8:8B:9B:67:96:2A:76:C3:8A
            X509v3 Authority Key Identifier:
                keyid:AE:5F:35:A6:E8:FB:53:9B:19:54:CB:43:A6:CE:75:E9:7F:AA:E1:75

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rl81puj7U5sZVMtDps516X-q4XU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/feb7e0-2b7e-426c-b037-2091cca8bc48/1/rl81puj7U5sZVMtDps516X-q4XU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/feb7e0-2b7e-426c-b037-2091cca8bc48/1/rl81puj7U5sZVMtDps516X-q4XU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         41:32:20:71:87:8c:e7:f0:14:8a:36:6a:61:88:e9:4b:53:30:
         6f:bf:4f:a4:2b:11:85:72:45:0d:f9:ed:ed:6a:a6:c4:50:37:
         e5:c7:f4:59:8b:d9:c5:a0:26:c0:17:3a:f0:2e:64:8d:04:45:
         bc:25:b8:be:48:1f:b8:1b:3e:16:e0:ee:13:3f:9d:8d:51:39:
         de:ad:a9:5b:f0:dd:66:eb:e8:4d:d9:cb:a9:5b:a0:b6:45:7e:
         f9:cd:da:56:69:23:4c:76:a2:ad:0e:81:72:44:21:d1:ff:30:
         ac:4a:84:49:80:44:38:bb:97:72:d9:41:3c:fa:21:1f:c5:95:
         07:b8:ab:4c:88:ff:62:e4:ed:95:5a:83:df:62:77:13:ce:ce:
         72:6f:a3:2e:e4:e4:2a:e8:42:40:92:b6:88:31:8f:a4:d6:4e:
         19:23:d5:ee:e5:82:2f:17:aa:90:6d:9a:64:66:86:a7:01:31:
         da:b3:05:7d:e9:9b:6a:8f:28:7b:27:dd:a4:a7:46:21:13:1c:
         74:16:50:90:e3:df:b1:24:ec:22:95:7a:66:27:91:e2:dc:ad:
         84:bc:49:a1:fe:e3:a7:f8:aa:e6:45:9d:3a:c7:22:ab:c6:64:
         0d:f9:9f:c0:bc:b8:60:4c:43:5b:98:f4:67:fd:06:a8:3d:98:
         e8:39:3b:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOV1ZHe/Si6j2yf0AV5h/2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlNWYzNWE2ZThmYjUzOWIxOTU0Y2I0M2E2Y2U3NWU5N2Zh
YWUxNzUwHhcNMjUwNjA4MDcwMDM1WhcNMjUwNjA5MDcwMDM1WjAzMTEwLwYDVQQD
Eyg3OTBkZTFhNGIxMjZkNzA3NjdmMzAzYjg4YjliNjc5NjJhNzZjMzhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA68sXiLYXnL4ZEC5NeTfmnsPg8yEu
xpWckUT18KLJ+rr2o3JsFHGZCpObXe9yUwuvfdXkHkepJm9lKenFtugCxMVo6Fn+
3kZFxaU6TL4Zc4LIhRX+MpZjMFrjBvJOSwDBLkZuXxL7bAIrAvFQgl3RdOe7xWVd
7muH8UQH9lGEjQfQ9DEOHjf9oJniLRTj27vEw8gkf9wOdPt5APYQrWvyrBHxZadW
IuezWOC27AOicgGF/ix3p17Ht6j33vazs/Ee+52jc4JgYDXoopFVb4IWaggUCQWn
c0j9tmYsECBW8DwCi+XgieKhp+/RwCTSAo0qcSdkY3Mh7prksm8aYeihUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHkN4aSxJtcHZ/MDuIubZ5YqdsOKMB8GA1UdIwQY
MBaAFK5fNabo+1ObGVTLQ6bOdel/quF1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmw4MXB1ajdVNXNaVk10RHBzNTE2WC1xNFhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9mZWI3ZTAtMmI3ZS00MjZjLWIwMzct
MjA5MWNjYThiYzQ4LzEvcmw4MXB1ajdVNXNaVk10RHBzNTE2WC1xNFhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9mZWI3ZTAtMmI3ZS00MjZjLWIwMzctMjA5MWNjYThiYzQ4
LzEvcmw4MXB1ajdVNXNaVk10RHBzNTE2WC1xNFhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQTIgcYeM
5/AUijZqYYjpS1Mwb79PpCsRhXJFDfnt7WqmxFA35cf0WYvZxaAmwBc68C5kjQRF
vCW4vkgfuBs+FuDuEz+djVE53q2pW/DdZuvoTdnLqVugtkV++c3aVmkjTHairQ6B
ckQh0f8wrEqESYBEOLuXctlBPPohH8WVB7irTIj/YuTtlVqD32J3E87Ocm+jLuTk
KuhCQJK2iDGPpNZOGSPV7uWCLxeqkG2aZGaGpwEx2rMFfembao8oeyfdpKdGIRMc
dBZQkOPfsSTsIpV6ZieR4tythLxJof7jp/iq5kWdOsciq8ZkDfmfwLy4YExDW5j0
Z/0GqD2Y6Dk7+w==
-----END CERTIFICATE-----