Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
File:                     ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft (raw, json)
Hash identifier:          DVVctfosw5voQqQpi6wo0aUNw9SM+QSoGnF02qj92UY=
Subject key identifier:   20:57:01:8B:B2:A4:82:72:27:BA:F1:68:D6:C8:B5:E4:C1:5A:5D:60
Authority key identifier: 7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87
Certificate issuer:       /CN=7b0d46c5822cad9253ea53a100f3d936224ae687
Certificate serial:       0197556BFE4A6AACD3E6C9FAF5CEAB24A5A8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
Manifest number:          03B3
Signing time:             Mon 09 Jun 2025 16:00:30 +0000
Manifest this update:     Mon 09 Jun 2025 16:00:30 +0000
Manifest next update:     Tue 10 Jun 2025 16:00:30 +0000
Files and hashes:         1: ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl (hash: 8xz35bnvk5EQnWvwsMe17wMqLaBP0MaByVlm36PsrIY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 11:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:55:6b:fe:4a:6a:ac:d3:e6:c9:fa:f5:ce:ab:24:a5:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7b0d46c5822cad9253ea53a100f3d936224ae687
        Validity
            Not Before: Jun  9 16:00:30 2025 GMT
            Not After : Jun 10 16:00:30 2025 GMT
        Subject: CN=2057018bb2a4827227baf168d6c8b5e4c15a5d60
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:92:44:85:a1:7e:e4:6d:0f:8c:63:30:82:7c:
                    d6:a0:54:44:bc:99:75:87:6c:e3:47:96:9b:a2:16:
                    62:18:75:8e:91:94:1d:52:2f:5a:f5:22:2e:3f:fa:
                    a0:dc:2b:8e:f1:91:49:9e:ee:7d:85:7c:9d:c4:d1:
                    38:97:24:a6:d0:de:5a:40:9c:d6:c9:b0:12:2c:37:
                    02:cc:87:5f:04:36:fa:29:ab:b8:cb:99:bd:c7:13:
                    65:42:bc:03:65:b9:d8:91:a5:29:6f:48:a7:75:5c:
                    0b:d7:14:86:21:d0:6b:40:b7:d3:4f:8d:9b:4e:07:
                    6b:d6:a2:a0:7a:73:99:71:a0:1c:8c:68:d3:8d:a7:
                    2d:ea:1f:92:3e:61:58:d4:db:b9:f2:3e:1d:70:44:
                    0e:4a:ac:20:9a:70:08:d6:39:32:5e:7e:fb:39:84:
                    8f:41:11:4f:27:08:78:76:72:7a:4c:b1:4f:ad:d9:
                    3a:a0:9b:98:90:64:ba:ad:de:d8:17:5b:1c:a1:c4:
                    69:87:8e:1d:39:24:0b:35:31:34:1f:e6:c6:6b:09:
                    71:27:4f:87:7a:1c:cd:6f:ba:10:75:35:40:40:94:
                    4c:4b:1f:24:72:24:cc:7e:c5:30:d7:7e:6e:43:ee:
                    c8:c4:eb:bc:3f:fd:a0:40:a6:df:6e:3c:1e:c1:b1:
                    95:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:57:01:8B:B2:A4:82:72:27:BA:F1:68:D6:C8:B5:E4:C1:5A:5D:60
            X509v3 Authority Key Identifier:
                keyid:7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:f3:4f:70:dc:54:63:27:eb:3a:37:21:ba:77:62:2f:fe:68:
         b6:78:f0:06:03:59:b4:e2:d3:8a:df:8b:bd:3e:c2:4b:8b:96:
         a5:d6:34:3d:62:73:ae:6d:79:a8:4a:5e:83:da:3c:94:09:f9:
         23:63:af:d3:86:d2:2d:95:b6:0c:4f:12:1c:1f:f4:59:a7:9d:
         27:0d:f6:dd:3a:9c:0a:ff:df:a5:96:ea:ca:04:6a:ac:1c:5a:
         f7:d6:fc:14:f9:14:6f:51:58:46:89:3c:44:f3:be:9d:49:99:
         ea:f4:1c:83:66:0e:72:8f:7c:81:96:f8:52:ea:e7:dd:73:dd:
         69:a8:f6:f1:75:a1:d2:97:63:64:cd:14:c2:9c:00:b0:0e:30:
         dd:43:c6:0a:6a:1c:be:db:46:72:8a:36:34:64:61:b7:4f:06:
         f3:0d:c8:d9:6f:cc:ec:d1:a4:b3:17:e5:fe:8d:01:2a:4c:ac:
         de:f7:39:68:12:e2:99:94:c8:7d:da:b2:15:bb:a6:e2:b8:48:
         cb:6f:42:54:77:b8:36:8c:33:6d:c4:58:03:29:86:98:91:5a:
         b1:34:89:bf:97:41:c4:8f:d6:8d:63:06:c6:7c:30:c9:d4:36:
         9b:a0:c6:f1:e7:d3:20:c2:8f:01:ab:a5:c1:4d:52:9f:ee:0f:
         48:d1:f0:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdVa/5KaqzT5sn69c6rJKWoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiMGQ0NmM1ODIyY2FkOTI1M2VhNTNhMTAwZjNkOTM2MjI0
YWU2ODcwHhcNMjUwNjA5MTYwMDMwWhcNMjUwNjEwMTYwMDMwWjAzMTEwLwYDVQQD
EygyMDU3MDE4YmIyYTQ4MjcyMjdiYWYxNjhkNmM4YjVlNGMxNWE1ZDYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlZJEhaF+5G0PjGMwgnzWoFREvJl1
h2zjR5abohZiGHWOkZQdUi9a9SIuP/qg3CuO8ZFJnu59hXydxNE4lySm0N5aQJzW
ybASLDcCzIdfBDb6Kau4y5m9xxNlQrwDZbnYkaUpb0indVwL1xSGIdBrQLfTT42b
Tgdr1qKgenOZcaAcjGjTjact6h+SPmFY1Nu58j4dcEQOSqwgmnAI1jkyXn77OYSP
QRFPJwh4dnJ6TLFPrdk6oJuYkGS6rd7YF1scocRph44dOSQLNTE0H+bGawlxJ0+H
ehzNb7oQdTVAQJRMSx8kciTMfsUw135uQ+7IxOu8P/2gQKbfbjwewbGVlQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCBXAYuypIJyJ7rxaNbIteTBWl1gMB8GA1UdIwQY
MBaAFHsNRsWCLK2SU+pToQDz2TYiSuaHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXcxR3hZSXNyWkpUNmxPaEFQUFpOaUpLNW9jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9jMjU0NDQtMjY3MS00YWQyLTkwNTAt
YmFhNTllY2UyYjYzLzEvZXcxR3hZSXNyWkpUNmxPaEFQUFpOaUpLNW9jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9jMjU0NDQtMjY3MS00YWQyLTkwNTAtYmFhNTllY2UyYjYz
LzEvZXcxR3hZSXNyWkpUNmxPaEFQUFpOaUpLNW9jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqPNPcNxU
YyfrOjchundiL/5otnjwBgNZtOLTit+LvT7CS4uWpdY0PWJzrm15qEpeg9o8lAn5
I2Ov04bSLZW2DE8SHB/0WaedJw323TqcCv/fpZbqygRqrBxa99b8FPkUb1FYRok8
RPO+nUmZ6vQcg2YOco98gZb4Uurn3XPdaaj28XWh0pdjZM0UwpwAsA4w3UPGCmoc
vttGcoo2NGRht08G8w3I2W/M7NGksxfl/o0BKkys3vc5aBLimZTIfdqyFbum4rhI
y29CVHe4NowzbcRYAymGmJFasTSJv5dBxI/WjWMGxnwwydQ2m6DG8efTIMKPAaul
wU1Sn+4PSNHwuw==
-----END CERTIFICATE-----