Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft
File:                     VkQtN4qHkyt22vks6Pye80Hrx1k.mft (raw, json)
Hash identifier:          GFbRoPA+1bIXC2KE6ETOi4hoR7md9OxAV4L6FboL8Ks=
Subject key identifier:   CE:E7:B8:34:8B:CA:C4:6E:63:31:F5:DA:2B:1A:FB:B6:02:56:52:3D
Authority key identifier: 56:44:2D:37:8A:87:93:2B:76:DA:F9:2C:E8:FC:9E:F3:41:EB:C7:59
Certificate issuer:       /CN=56442d378a87932b76daf92ce8fc9ef341ebc759
Certificate serial:       01958B169ADB19F58B7AB8180648E013BA17
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft
Manifest number:          0A57
Signing time:             Wed 12 Mar 2025 16:01:09 +0000
Manifest this update:     Wed 12 Mar 2025 16:01:09 +0000
Manifest next update:     Thu 13 Mar 2025 16:01:09 +0000
Files and hashes:         1: VkQtN4qHkyt22vks6Pye80Hrx1k.crl (hash: c7+EP2x3waMQNbLFWq03tiJbwEIhU/2S7RjgkMdWXNk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 13 Mar 2025 16:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:8b:16:9a:db:19:f5:8b:7a:b8:18:06:48:e0:13:ba:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=56442d378a87932b76daf92ce8fc9ef341ebc759
        Validity
            Not Before: Mar 12 16:01:09 2025 GMT
            Not After : Mar 13 16:01:09 2025 GMT
        Subject: CN=cee7b8348bcac46e6331f5da2b1afbb60256523d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:e5:f4:fd:23:99:19:f4:7d:7b:8a:d4:cd:b2:
                    61:0c:e2:fe:12:7b:dd:4b:b7:b0:49:0c:da:82:0d:
                    ef:76:04:f8:8b:35:bc:a0:3e:1d:9e:c4:42:23:20:
                    93:0e:46:9a:f8:49:e5:af:d5:1e:e6:2a:a2:e0:ce:
                    40:08:66:93:46:e3:df:00:ce:a7:b4:ba:3a:60:69:
                    19:dd:94:0e:4b:97:47:12:81:99:ea:c1:fa:7a:00:
                    0f:9d:1f:c2:cd:48:18:7d:5f:98:73:d9:b5:30:92:
                    93:f2:e1:97:ca:aa:20:77:d3:6d:fb:4b:85:58:6f:
                    0d:18:07:38:f6:4b:45:50:23:ff:4d:b0:c1:54:c7:
                    ce:fe:bf:e6:4a:a8:a3:8c:89:37:6d:57:3e:d0:1c:
                    8f:a2:1a:e2:e4:10:86:d0:2b:d7:9a:ab:76:30:d0:
                    14:27:4a:6e:10:59:33:a7:d2:fd:3b:91:0b:93:3f:
                    cf:d7:1c:e0:8b:1d:68:f5:f6:77:7e:ad:ea:9e:34:
                    f0:11:07:f5:9c:07:25:17:fb:23:7e:3b:c9:ca:fc:
                    e9:06:47:84:11:02:91:ff:c3:34:a0:37:8d:36:1b:
                    c0:85:ba:54:e9:a3:c3:65:55:ab:1d:e0:f1:eb:ed:
                    8d:47:d4:99:fe:b0:b0:67:c9:b9:7b:68:7f:bf:6a:
                    46:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:E7:B8:34:8B:CA:C4:6E:63:31:F5:DA:2B:1A:FB:B6:02:56:52:3D
            X509v3 Authority Key Identifier:
                keyid:56:44:2D:37:8A:87:93:2B:76:DA:F9:2C:E8:FC:9E:F3:41:EB:C7:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkQtN4qHkyt22vks6Pye80Hrx1k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4f3254-5442-4c87-8b14-9813f0906c4b/1/VkQtN4qHkyt22vks6Pye80Hrx1k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:43:0d:85:e4:6d:90:b2:99:e1:91:d8:ec:83:09:77:ab:c3:
         42:5b:02:ca:c0:ac:15:7c:a3:77:04:cb:96:02:f8:e1:87:1f:
         32:70:cd:5c:09:7c:e5:6a:cc:4f:73:b0:6d:2c:05:8c:cf:4d:
         0c:47:ac:21:57:89:7b:20:17:fb:f6:e3:08:8a:4c:2f:a4:ab:
         16:16:49:a1:1c:b6:37:9b:67:94:1d:e0:22:48:ec:7f:3f:38:
         c7:12:b4:7e:e5:da:b8:e0:6b:1d:c6:34:63:a9:a1:4b:9f:34:
         33:6b:fe:9f:9b:86:e4:68:b7:76:8e:24:c3:f2:9f:52:ff:56:
         a5:2c:cc:c8:90:8e:17:20:42:6e:dc:8c:4f:37:b2:40:55:e2:
         0f:b7:08:0d:b0:39:95:13:60:d2:f8:af:6b:54:fc:f5:3c:dc:
         85:f7:e6:7a:9b:12:a4:e3:a2:fd:bc:3d:67:ff:c3:be:f3:20:
         6d:dd:e4:51:34:cd:13:91:e3:54:c5:cd:c5:a7:dc:18:7c:76:
         15:aa:8c:ad:be:32:30:e4:e8:c3:96:49:17:2d:f6:48:3f:af:
         55:b2:bc:cc:66:24:8f:ef:7d:77:88:4d:9e:66:9e:40:b0:f5:
         2a:51:1f:97:aa:11:21:a8:4f:2d:76:eb:6e:7c:d5:f5:10:d1:
         30:e0:12:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZWLFprbGfWLergYBkjgE7oXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2NDQyZDM3OGE4NzkzMmI3NmRhZjkyY2U4ZmM5ZWYzNDFl
YmM3NTkwHhcNMjUwMzEyMTYwMTA5WhcNMjUwMzEzMTYwMTA5WjAzMTEwLwYDVQQD
EyhjZWU3YjgzNDhiY2FjNDZlNjMzMWY1ZGEyYjFhZmJiNjAyNTY1MjNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOX0/SOZGfR9e4rUzbJhDOL+Envd
S7ewSQzagg3vdgT4izW8oD4dnsRCIyCTDkaa+Enlr9Ue5iqi4M5ACGaTRuPfAM6n
tLo6YGkZ3ZQOS5dHEoGZ6sH6egAPnR/CzUgYfV+Yc9m1MJKT8uGXyqogd9Nt+0uF
WG8NGAc49ktFUCP/TbDBVMfO/r/mSqijjIk3bVc+0ByPohri5BCG0CvXmqt2MNAU
J0puEFkzp9L9O5ELkz/P1xzgix1o9fZ3fq3qnjTwEQf1nAclF/sjfjvJyvzpBkeE
EQKR/8M0oDeNNhvAhbpU6aPDZVWrHeDx6+2NR9SZ/rCwZ8m5e2h/v2pGmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM7nuDSLysRuYzH12isa+7YCVlI9MB8GA1UdIwQY
MBaAFFZELTeKh5Mrdtr5LOj8nvNB68dZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVmtRdE40cUhreXQyMnZrczZQeWU4MEhyeDFrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy80ZjMyNTQtNTQ0Mi00Yzg3LThiMTQt
OTgxM2YwOTA2YzRiLzEvVmtRdE40cUhreXQyMnZrczZQeWU4MEhyeDFrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy80ZjMyNTQtNTQ0Mi00Yzg3LThiMTQtOTgxM2YwOTA2YzRi
LzEvVmtRdE40cUhreXQyMnZrczZQeWU4MEhyeDFrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi0MNheRt
kLKZ4ZHY7IMJd6vDQlsCysCsFXyjdwTLlgL44YcfMnDNXAl85WrMT3OwbSwFjM9N
DEesIVeJeyAX+/bjCIpML6SrFhZJoRy2N5tnlB3gIkjsfz84xxK0fuXauOBrHcY0
Y6mhS580M2v+n5uG5Gi3do4kw/KfUv9WpSzMyJCOFyBCbtyMTzeyQFXiD7cIDbA5
lRNg0viva1T89TzchffmepsSpOOi/bw9Z//DvvMgbd3kUTTNE5HjVMXNxafcGHx2
FaqMrb4yMOTow5ZJFy32SD+vVbK8zGYkj+99d4hNnmaeQLD1KlEfl6oRIahPLXbr
bnzV9RDRMOASKg==
-----END CERTIFICATE-----