Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
File:                     tWpL1vXr8vf_2ajRzZparN5iKFw.mft (raw, json)
Hash identifier:          c7Rv9dHTUDHkZIJ2lwb02x/wqV0lOEFYSl6WTg6iRnk=
Subject key identifier:   80:54:B0:4B:07:CA:66:15:42:98:2A:21:B6:93:54:1A:A5:18:16:D6
Authority key identifier: B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C
Certificate issuer:       /CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
Certificate serial:       01974B1FB0D38C7D3424CCA3BBAD53B52987
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
Manifest number:          0737
Signing time:             Sat 07 Jun 2025 16:00:57 +0000
Manifest this update:     Sat 07 Jun 2025 16:00:57 +0000
Manifest next update:     Sun 08 Jun 2025 16:00:57 +0000
Files and hashes:         1: tWpL1vXr8vf_2ajRzZparN5iKFw.crl (hash: ej3QfDh2RuWk+bzXGP73QPzN8pCmfx83OtT2omczUs4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 16:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4b:1f:b0:d3:8c:7d:34:24:cc:a3:bb:ad:53:b5:29:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
        Validity
            Not Before: Jun  7 16:00:57 2025 GMT
            Not After : Jun  8 16:00:57 2025 GMT
        Subject: CN=8054b04b07ca661542982a21b693541aa51816d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:19:5a:80:a6:f2:76:e0:be:16:01:16:fc:fb:
                    07:ec:fb:bd:f0:bf:6b:3e:b4:19:f9:8c:69:2a:da:
                    25:5b:6c:66:5c:dd:84:68:65:df:e9:cf:b5:82:aa:
                    74:97:b5:00:5c:3c:b1:b0:f8:20:d5:18:27:22:68:
                    d9:da:c2:57:26:aa:6b:14:7f:e6:f1:d4:18:1e:e7:
                    2d:3e:3f:9e:cd:75:bc:7e:e7:73:78:24:1b:d2:5c:
                    a1:ab:3d:d5:18:fc:dc:64:05:39:63:f4:a7:05:75:
                    b0:26:7c:79:b9:e9:c8:22:54:b5:93:30:10:48:c7:
                    bc:bc:15:b4:29:bd:30:35:d4:4d:69:d9:8a:df:72:
                    c0:fa:37:ce:c3:6e:61:84:e5:2a:0f:35:69:60:28:
                    22:83:9a:fa:c3:2c:ea:30:5f:99:35:13:54:9e:e6:
                    9d:6a:40:a3:b3:09:6a:08:d9:89:fd:d5:a9:f5:5f:
                    8a:d9:d9:65:74:e1:5c:be:ab:b0:71:1e:2b:1b:e2:
                    41:b4:c2:80:95:89:37:9d:10:d9:1e:c0:a9:87:50:
                    fc:87:a7:00:6f:a4:54:f8:3a:a3:88:0f:d0:14:b4:
                    a3:86:02:95:6f:59:dc:f2:0e:da:44:5e:95:b0:e3:
                    c4:b2:34:f6:f8:29:c0:48:0b:70:97:b1:7b:7a:89:
                    6d:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:54:B0:4B:07:CA:66:15:42:98:2A:21:B6:93:54:1A:A5:18:16:D6
            X509v3 Authority Key Identifier:
                keyid:B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:2e:a0:f7:53:a6:7c:18:c0:8c:8f:81:3c:4a:3b:17:bb:57:
         47:11:9e:b4:a2:9d:05:76:85:b2:31:b2:2c:41:40:65:f0:c1:
         59:6a:5a:c6:4d:bc:0b:f7:8b:b9:6c:11:0d:88:7d:b6:68:31:
         c0:e0:68:4a:b3:55:83:80:6c:7f:20:79:92:37:45:06:14:68:
         44:f9:a9:cd:32:39:8a:14:df:3a:22:71:ed:4f:e5:99:f4:e3:
         52:1a:78:52:1c:18:2a:2d:08:50:4a:95:ff:4e:15:7d:85:fe:
         f0:a4:09:eb:65:96:56:2d:7d:dc:fc:9f:46:a7:f7:ce:fc:19:
         cd:64:7d:c3:bf:99:ce:1a:55:b8:5f:c3:8c:fc:a3:a6:d6:63:
         92:15:07:75:45:c6:93:ad:bc:90:a9:1d:0d:5e:e4:82:80:a6:
         3b:60:ac:af:48:8a:c3:f6:2a:fc:1a:34:b7:af:59:29:87:3c:
         1b:6c:b2:27:d6:68:bc:77:88:ce:bc:dc:81:4c:cb:47:f6:22:
         80:60:b2:56:37:23:75:fe:d9:ef:60:e3:ef:27:01:59:07:54:
         7d:9c:67:19:ea:c8:1e:6e:de:18:c5:e3:ea:8b:25:23:55:cf:
         4e:5a:ab:d1:9d:84:22:55:30:6f:e7:6e:64:8d:cf:94:39:b1:
         c6:16:55:3c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdLH7DTjH00JMyju61TtSmHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NmE0YmQ2ZjVlYmYyZjdmZmQ5YThkMWNkOWE1YWFjZGU2
MjI4NWMwHhcNMjUwNjA3MTYwMDU3WhcNMjUwNjA4MTYwMDU3WjAzMTEwLwYDVQQD
Eyg4MDU0YjA0YjA3Y2E2NjE1NDI5ODJhMjFiNjkzNTQxYWE1MTgxNmQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxRlagKbyduC+FgEW/PsH7Pu98L9r
PrQZ+YxpKtolW2xmXN2EaGXf6c+1gqp0l7UAXDyxsPgg1RgnImjZ2sJXJqprFH/m
8dQYHuctPj+ezXW8fudzeCQb0lyhqz3VGPzcZAU5Y/SnBXWwJnx5uenIIlS1kzAQ
SMe8vBW0Kb0wNdRNadmK33LA+jfOw25hhOUqDzVpYCgig5r6wyzqMF+ZNRNUnuad
akCjswlqCNmJ/dWp9V+K2dlldOFcvquwcR4rG+JBtMKAlYk3nRDZHsCph1D8h6cA
b6RU+DqjiA/QFLSjhgKVb1nc8g7aRF6VsOPEsjT2+CnASAtwl7F7eoltvwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIBUsEsHymYVQpgqIbaTVBqlGBbWMB8GA1UdIwQY
MBaAFLVqS9b16/L3/9mo0c2aWqzeYihcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMt
MDgyZTExMzYzZjBhLzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMtMDgyZTExMzYzZjBh
LzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAS6g91Om
fBjAjI+BPEo7F7tXRxGetKKdBXaFsjGyLEFAZfDBWWpaxk28C/eLuWwRDYh9tmgx
wOBoSrNVg4BsfyB5kjdFBhRoRPmpzTI5ihTfOiJx7U/lmfTjUhp4UhwYKi0IUEqV
/04VfYX+8KQJ62WWVi193PyfRqf3zvwZzWR9w7+ZzhpVuF/DjPyjptZjkhUHdUXG
k628kKkdDV7kgoCmO2Csr0iKw/Yq/Bo0t69ZKYc8G2yyJ9ZovHeIzrzcgUzLR/Yi
gGCyVjcjdf7Z72Dj7ycBWQdUfZxnGerIHm7eGMXj6oslI1XPTlqr0Z2EIlUwb+du
ZI3PlDmxxhZVPA==
-----END CERTIFICATE-----