Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
File:                     HCTxyq-zII64J6B4JkF7y5STQS8.mft (raw, json)
Hash identifier:          MrPCXcX1yjE+PRpcL/skQHbzgoWxNmFBK//PSgWE0Tc=
Subject key identifier:   4D:B8:23:7F:5C:FC:EB:D4:83:97:A3:C9:10:A4:16:F7:D9:0B:2C:FA
Authority key identifier: 1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F
Certificate issuer:       /CN=1c24f1caafb3208eb827a07826417bcb9493412f
Certificate serial:       0197507CF4D0755F7B36CC98FB6974BF2C49
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
Manifest number:          04F6
Signing time:             Sun 08 Jun 2025 17:00:55 +0000
Manifest this update:     Sun 08 Jun 2025 17:00:55 +0000
Manifest next update:     Mon 09 Jun 2025 17:00:55 +0000
Files and hashes:         1: HCTxyq-zII64J6B4JkF7y5STQS8.crl (hash: XHYmRBuqn/C2EWLY/Wb9xM4P5PDnWQG6x6jq6KVJkwc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 17:00:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:50:7c:f4:d0:75:5f:7b:36:cc:98:fb:69:74:bf:2c:49
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1c24f1caafb3208eb827a07826417bcb9493412f
        Validity
            Not Before: Jun  8 17:00:55 2025 GMT
            Not After : Jun  9 17:00:55 2025 GMT
        Subject: CN=4db8237f5cfcebd48397a3c910a416f7d90b2cfa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:05:27:18:bf:3a:89:e4:8d:a3:f0:d3:c0:9f:
                    16:ca:3a:d5:b6:64:6b:f1:f1:62:06:00:86:10:1d:
                    a9:d2:f5:c4:f0:fa:1d:67:6a:2f:8a:00:b3:57:50:
                    e4:7c:e0:1a:93:74:de:72:9a:5e:81:64:32:7b:c6:
                    74:39:2a:f3:28:d9:e4:b1:45:d9:65:37:25:b3:9d:
                    5b:8f:2b:90:fd:3a:0b:83:6b:f5:24:5a:32:4b:a2:
                    83:b2:bb:70:7d:f0:95:85:6d:3c:cd:81:84:d1:28:
                    cd:f4:28:4f:56:dc:95:74:0b:b6:80:61:b9:b1:bb:
                    42:fb:5b:cd:a1:4b:ee:ca:47:f8:7a:a5:08:2b:6c:
                    3d:ad:da:06:ee:4f:09:f8:6a:e3:77:7a:84:02:7d:
                    15:b7:6b:57:99:a4:68:57:4a:91:1e:1b:34:8c:dd:
                    13:40:95:63:77:2b:4f:3c:78:b5:76:36:9c:a1:dc:
                    08:64:5e:52:21:a4:70:f7:04:5c:99:c3:40:3f:1d:
                    a1:7d:bb:04:c5:01:23:ab:bb:d2:11:b3:5d:30:e6:
                    09:41:4d:33:22:2d:a1:b1:df:06:e5:af:e8:75:61:
                    cf:ce:f8:db:c1:2a:36:03:de:95:4e:13:80:80:60:
                    e2:aa:31:ec:8f:5c:07:ed:61:61:b6:74:a0:7e:34:
                    07:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:B8:23:7F:5C:FC:EB:D4:83:97:A3:C9:10:A4:16:F7:D9:0B:2C:FA
            X509v3 Authority Key Identifier:
                keyid:1C:24:F1:CA:AF:B3:20:8E:B8:27:A0:78:26:41:7B:CB:94:93:41:2F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCTxyq-zII64J6B4JkF7y5STQS8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b55fde-2b55-47be-8d64-7dcfffae278c/1/HCTxyq-zII64J6B4JkF7y5STQS8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:f5:20:0a:07:1d:86:a4:f3:c5:b2:e8:b9:0d:d2:2c:93:44:
         93:a1:90:75:3e:27:79:df:8e:27:54:1d:9d:64:1c:8b:fe:0b:
         72:ec:ad:4d:b7:cd:41:c4:2c:d4:d8:3a:05:8a:43:f9:c9:5a:
         74:0f:e0:14:bc:2a:ae:80:9c:0a:0f:9e:34:a9:f3:58:70:15:
         5f:23:59:84:1a:77:99:00:e9:2e:a7:56:11:a8:5c:c3:b3:00:
         c5:7f:97:4d:21:ab:b4:e1:56:f8:dc:01:db:c8:f8:ef:73:3c:
         5b:d2:59:25:06:3c:4e:3f:0c:c7:f5:88:04:ba:4b:e6:88:08:
         39:c8:ba:56:c2:ce:14:40:b6:b0:07:12:16:ca:e5:80:c4:f6:
         73:4a:1e:f8:63:8b:1e:5c:8f:48:59:93:7a:d8:dc:ac:ec:e2:
         d0:85:3a:5f:83:ce:f2:ff:88:02:4b:6d:b8:ac:ea:dc:83:82:
         a8:83:96:68:a1:b9:7d:8f:14:d6:8d:0e:00:6b:f2:79:8a:3c:
         f4:39:05:b5:66:e0:a1:af:9a:21:ad:53:58:45:8b:3f:71:a2:
         7a:76:5e:b6:27:c2:42:49:d5:9b:ca:43:95:2c:b2:8f:2a:e3:
         cb:69:51:1b:58:17:74:44:cf:b9:c8:c3:ee:1f:50:40:6d:3e:
         7b:60:2c:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdQfPTQdV97NsyY+2l0vyxJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMjRmMWNhYWZiMzIwOGViODI3YTA3ODI2NDE3YmNiOTQ5
MzQxMmYwHhcNMjUwNjA4MTcwMDU1WhcNMjUwNjA5MTcwMDU1WjAzMTEwLwYDVQQD
Eyg0ZGI4MjM3ZjVjZmNlYmQ0ODM5N2EzYzkxMGE0MTZmN2Q5MGIyY2ZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2gUnGL86ieSNo/DTwJ8WyjrVtmRr
8fFiBgCGEB2p0vXE8PodZ2ovigCzV1DkfOAak3TecppegWQye8Z0OSrzKNnksUXZ
ZTcls51bjyuQ/ToLg2v1JFoyS6KDsrtwffCVhW08zYGE0SjN9ChPVtyVdAu2gGG5
sbtC+1vNoUvuykf4eqUIK2w9rdoG7k8J+Grjd3qEAn0Vt2tXmaRoV0qRHhs0jN0T
QJVjdytPPHi1djacodwIZF5SIaRw9wRcmcNAPx2hfbsExQEjq7vSEbNdMOYJQU0z
Ii2hsd8G5a/odWHPzvjbwSo2A96VThOAgGDiqjHsj1wH7WFhtnSgfjQHyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE24I39c/OvUg5ejyRCkFvfZCyz6MB8GA1UdIwQY
MBaAFBwk8cqvsyCOuCegeCZBe8uUk0EvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS9iNTVmZGUtMmI1NS00N2JlLThkNjQt
N2RjZmZmYWUyNzhjLzEvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZS9iNTVmZGUtMmI1NS00N2JlLThkNjQtN2RjZmZmYWUyNzhj
LzEvSENUeHlxLXpJSTY0SjZCNEprRjd5NVNUUVM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe/UgCgcd
hqTzxbLouQ3SLJNEk6GQdT4ned+OJ1QdnWQci/4LcuytTbfNQcQs1Ng6BYpD+cla
dA/gFLwqroCcCg+eNKnzWHAVXyNZhBp3mQDpLqdWEahcw7MAxX+XTSGrtOFW+NwB
28j473M8W9JZJQY8Tj8Mx/WIBLpL5ogIOci6VsLOFEC2sAcSFsrlgMT2c0oe+GOL
HlyPSFmTetjcrOzi0IU6X4PO8v+IAkttuKzq3IOCqIOWaKG5fY8U1o0OAGvyeYo8
9DkFtWbgoa+aIa1TWEWLP3GienZetifCQknVm8pDlSyyjyrjy2lRG1gXdETPucjD
7h9QQG0+e2Assg==
-----END CERTIFICATE-----