Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
File:                     ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft (raw, json)
Hash identifier:          0rfpEl5/ZbqXkmTM08AVn6+qDRzPYQ6H9LFXHBGtpOc=
Subject key identifier:   C3:27:C3:18:BD:A2:26:1B:0C:D3:F0:13:FD:70:B9:F9:E4:98:19:DB
Authority key identifier: 7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87
Certificate issuer:       /CN=7b0d46c5822cad9253ea53a100f3d936224ae687
Certificate serial:       01975D2589AF08595F8188B1FF4989BF2E5C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
Manifest number:          03B7
Signing time:             Wed 11 Jun 2025 04:00:30 +0000
Manifest this update:     Wed 11 Jun 2025 04:00:30 +0000
Manifest next update:     Thu 12 Jun 2025 04:00:30 +0000
Files and hashes:         1: ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl (hash: 9aoH8L/wKGNr5huebL8rp/6pKLHDgHW/JQKGF4FMtvA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 04:00:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5d:25:89:af:08:59:5f:81:88:b1:ff:49:89:bf:2e:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7b0d46c5822cad9253ea53a100f3d936224ae687
        Validity
            Not Before: Jun 11 04:00:30 2025 GMT
            Not After : Jun 12 04:00:30 2025 GMT
        Subject: CN=c327c318bda2261b0cd3f013fd70b9f9e49819db
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:38:d6:9c:61:07:4e:68:b1:3d:55:33:a1:bc:
                    72:52:3f:07:6b:c1:f5:19:20:e7:8e:e6:8a:e7:ac:
                    73:b7:b8:b6:44:3d:6c:26:98:11:85:42:af:fd:b6:
                    44:d0:36:e5:c0:b6:81:3d:e0:3d:39:95:23:11:c8:
                    f0:f4:f2:52:b8:d7:fb:cb:81:42:a1:3a:e1:fb:32:
                    cd:ad:e7:4a:e7:82:4b:9e:aa:29:5f:a5:d3:8c:d9:
                    a9:f4:a5:97:0a:57:4e:8e:be:54:7b:8a:3c:21:d5:
                    16:36:16:e1:c0:ba:4a:33:fd:b9:62:21:34:f4:a2:
                    63:b4:f9:86:34:b5:5e:80:c0:49:98:93:47:ee:9f:
                    7b:80:cb:90:6e:af:04:77:ca:12:0c:da:6c:72:05:
                    25:f5:b2:b2:10:a9:75:13:91:ec:ed:1d:4a:41:19:
                    ae:c8:95:99:1b:67:0c:a1:c4:b2:d6:2c:04:38:fe:
                    b2:be:5f:2b:99:9f:2b:10:bd:45:81:2b:48:06:76:
                    b2:25:b4:5f:5b:7e:a7:d5:b3:e5:7e:32:85:48:b0:
                    77:6f:29:4d:29:30:44:98:bf:ba:b2:db:bd:e2:ac:
                    c4:4c:29:d4:24:2e:ed:b8:95:7f:1c:cb:71:b6:3e:
                    d0:45:9f:86:e6:48:6f:53:82:6c:41:73:33:7f:b9:
                    da:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:27:C3:18:BD:A2:26:1B:0C:D3:F0:13:FD:70:B9:F9:E4:98:19:DB
            X509v3 Authority Key Identifier:
                keyid:7B:0D:46:C5:82:2C:AD:92:53:EA:53:A1:00:F3:D9:36:22:4A:E6:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ew1GxYIsrZJT6lOhAPPZNiJK5oc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c25444-2671-4ad2-9050-baa59ece2b63/1/ew1GxYIsrZJT6lOhAPPZNiJK5oc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2c:90:40:25:b7:83:9b:0d:40:e7:2f:58:13:d1:06:b4:1a:eb:
         c4:6a:92:47:29:bf:ed:18:5e:03:6c:a3:e2:c5:c2:38:34:56:
         d4:53:65:62:82:94:86:4f:00:15:70:db:4f:ef:2f:85:53:e2:
         7a:50:85:2b:e3:c8:74:30:a6:d3:25:a3:45:11:f5:0e:75:ef:
         5e:a2:45:1f:8b:b3:2a:d6:08:8d:74:80:79:cf:0c:2b:db:a5:
         51:6c:1f:6b:91:8b:15:c8:5c:48:53:18:6d:37:c5:74:51:fa:
         59:d3:4f:ea:62:07:da:92:13:38:20:dd:7e:05:ff:6d:06:2c:
         52:0b:af:07:ae:ec:0e:e3:d1:31:b8:25:13:a3:e4:84:19:01:
         fa:15:31:82:8a:5f:df:51:84:ce:d8:b7:f8:8b:c1:43:27:2d:
         c9:5b:ca:c9:4f:66:a9:1e:df:43:d7:97:ae:e9:a3:08:d8:37:
         6c:25:89:9c:75:72:a3:5e:84:1a:c6:39:2b:d5:db:12:50:e0:
         dc:df:72:5a:ef:8a:1e:ab:43:9f:57:2c:8e:73:2a:3e:6c:23:
         75:b9:dc:06:e1:18:c8:5f:4d:90:58:b9:6b:5c:95:6d:d8:26:
         81:90:55:65:a0:70:47:aa:38:ee:64:c2:96:e1:a1:75:1d:f1:
         00:76:bf:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZddJYmvCFlfgYix/0mJvy5cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdiMGQ0NmM1ODIyY2FkOTI1M2VhNTNhMTAwZjNkOTM2MjI0
YWU2ODcwHhcNMjUwNjExMDQwMDMwWhcNMjUwNjEyMDQwMDMwWjAzMTEwLwYDVQQD
EyhjMzI3YzMxOGJkYTIyNjFiMGNkM2YwMTNmZDcwYjlmOWU0OTgxOWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjjWnGEHTmixPVUzobxyUj8Ha8H1
GSDnjuaK56xzt7i2RD1sJpgRhUKv/bZE0DblwLaBPeA9OZUjEcjw9PJSuNf7y4FC
oTrh+zLNredK54JLnqopX6XTjNmp9KWXCldOjr5Ue4o8IdUWNhbhwLpKM/25YiE0
9KJjtPmGNLVegMBJmJNH7p97gMuQbq8Ed8oSDNpscgUl9bKyEKl1E5Hs7R1KQRmu
yJWZG2cMocSy1iwEOP6yvl8rmZ8rEL1FgStIBnayJbRfW36n1bPlfjKFSLB3bylN
KTBEmL+6stu94qzETCnUJC7tuJV/HMtxtj7QRZ+G5khvU4JsQXMzf7naswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMMnwxi9oiYbDNPwE/1wufnkmBnbMB8GA1UdIwQY
MBaAFHsNRsWCLK2SU+pToQDz2TYiSuaHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXcxR3hZSXNyWkpUNmxPaEFQUFpOaUpLNW9jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9jMjU0NDQtMjY3MS00YWQyLTkwNTAt
YmFhNTllY2UyYjYzLzEvZXcxR3hZSXNyWkpUNmxPaEFQUFpOaUpLNW9jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9jMjU0NDQtMjY3MS00YWQyLTkwNTAtYmFhNTllY2UyYjYz
LzEvZXcxR3hZSXNyWkpUNmxPaEFQUFpOaUpLNW9jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALJBAJbeD
mw1A5y9YE9EGtBrrxGqSRym/7RheA2yj4sXCODRW1FNlYoKUhk8AFXDbT+8vhVPi
elCFK+PIdDCm0yWjRRH1DnXvXqJFH4uzKtYIjXSAec8MK9ulUWwfa5GLFchcSFMY
bTfFdFH6WdNP6mIH2pITOCDdfgX/bQYsUguvB67sDuPRMbglE6PkhBkB+hUxgopf
31GEzti3+IvBQyctyVvKyU9mqR7fQ9eXrumjCNg3bCWJnHVyo16EGsY5K9XbElDg
3N9yWu+KHqtDn1csjnMqPmwjdbncBuEYyF9NkFi5a1yVbdgmgZBVZaBwR6o47mTC
luGhdR3xAHa/Pg==
-----END CERTIFICATE-----