Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.mft
File:                     wtVzsWdwcfL9bUS4QBthISBZjM8.mft (raw, json)
Hash identifier:          ozhVj7s1VTdAJGiDkcRl4B8KAnP+ScmtjxCtYn0Qolc=
Subject key identifier:   83:91:17:89:81:4A:BD:DB:88:CF:3A:44:66:95:CD:8C:8D:FA:E3:DD
Authority key identifier: C2:D5:73:B1:67:70:71:F2:FD:6D:44:B8:40:1B:61:21:20:59:8C:CF
Certificate issuer:       /CN=c2d573b1677071f2fd6d44b8401b612120598ccf
Certificate serial:       0197488CBBB38F12C31E7C6CCD446AD11454
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/wtVzsWdwcfL9bUS4QBthISBZjM8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.mft
Manifest number:          1578
Signing time:             Sat 07 Jun 2025 04:01:11 +0000
Manifest this update:     Sat 07 Jun 2025 04:01:11 +0000
Manifest next update:     Sun 08 Jun 2025 04:01:11 +0000
Files and hashes:         1: wtVzsWdwcfL9bUS4QBthISBZjM8.crl (hash: Kq08kn4Cf24ei7AsDPTR1swZIj2fPxu8Y1irNx3Xdk8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/wtVzsWdwcfL9bUS4QBthISBZjM8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 00:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8c:bb:b3:8f:12:c3:1e:7c:6c:cd:44:6a:d1:14:54
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c2d573b1677071f2fd6d44b8401b612120598ccf
        Validity
            Not Before: Jun  7 04:01:11 2025 GMT
            Not After : Jun  8 04:01:11 2025 GMT
        Subject: CN=83911789814abddb88cf3a446695cd8c8dfae3dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:68:97:7c:d3:81:80:6d:1c:1f:a0:79:a8:0d:
                    a5:44:99:42:9f:d2:0a:ed:56:11:1c:71:35:66:67:
                    a5:ce:0a:62:b7:f3:28:cd:fb:b7:0d:d4:76:29:36:
                    7c:f7:0c:5c:e7:b1:1f:8c:61:9d:a5:7c:c6:b2:ae:
                    59:92:59:e5:91:13:c1:5d:75:ce:2c:24:2d:9d:54:
                    43:bb:6c:d7:d0:19:72:36:e6:ee:64:b6:b3:00:c8:
                    35:15:3e:ee:7c:02:d8:34:5f:69:6c:48:ba:46:5d:
                    e2:d5:84:73:4e:70:4e:a5:ab:0b:0c:27:79:3f:5b:
                    f2:8d:8d:93:fd:23:86:97:6e:3a:dc:65:91:ac:2e:
                    53:dc:79:19:13:25:85:65:eb:80:b9:cd:57:c7:dc:
                    66:48:f2:d0:f6:1d:5e:ff:c6:3d:29:a8:4d:72:af:
                    bf:bc:b3:88:cd:f9:c2:a0:32:62:d4:92:38:6e:46:
                    7f:eb:b2:ed:03:f1:5d:a5:25:a5:fa:92:ca:f2:64:
                    0d:7f:bc:98:a9:fe:80:dd:01:88:81:a4:30:5d:ca:
                    d6:dc:ba:1f:22:66:fe:eb:af:ef:27:e2:d4:92:bd:
                    40:c5:d9:9e:2d:c2:95:2d:86:5e:29:96:b7:48:d6:
                    4e:3c:d3:55:90:a4:e8:34:87:6f:7d:3b:61:37:38:
                    81:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                83:91:17:89:81:4A:BD:DB:88:CF:3A:44:66:95:CD:8C:8D:FA:E3:DD
            X509v3 Authority Key Identifier:
                keyid:C2:D5:73:B1:67:70:71:F2:FD:6D:44:B8:40:1B:61:21:20:59:8C:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wtVzsWdwcfL9bUS4QBthISBZjM8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/b5f591-d5ea-47e2-9e69-04d12f2d070a/1/wtVzsWdwcfL9bUS4QBthISBZjM8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         71:bc:5e:02:7d:d4:60:a5:67:fa:e5:db:7c:5e:ed:7a:3a:89:
         e0:16:f6:e3:1e:79:f8:b4:6a:02:f1:e4:1a:2b:e7:86:1a:8d:
         76:8c:bf:60:74:4e:46:63:f1:28:34:9c:ef:92:7c:02:74:0c:
         59:83:0b:db:d8:1b:5e:42:07:d0:fa:76:cd:e8:e5:60:e5:3d:
         be:e5:09:1a:bf:95:ee:7d:95:a0:8d:14:b0:26:c2:36:bc:61:
         25:f7:70:f9:41:49:d0:3c:16:f4:9c:52:c0:ec:b6:3b:e9:76:
         e8:5e:5f:dd:70:6c:9d:1e:33:ca:39:66:76:be:ea:e9:f8:f9:
         49:e6:e8:ee:f9:e0:34:49:d1:ae:a6:0e:41:e7:32:2d:8d:26:
         6d:24:2a:b8:5e:49:ed:d3:23:8a:69:14:60:0a:f9:04:da:db:
         be:1e:35:66:90:99:fa:54:58:f1:14:97:7c:1b:c5:13:80:1f:
         e8:0f:b6:c2:6d:0e:e3:e1:6e:d4:de:6e:a3:ec:8e:89:7f:80:
         b8:44:44:47:9f:11:07:1b:7b:c6:c0:47:44:2a:a1:9c:37:06:
         77:a0:f7:8c:c3:87:75:43:ea:c9:ff:a8:d4:b2:6b:23:d5:05:
         ef:19:ac:c1:a5:af:c0:b8:ec:f5:50:20:7e:58:ad:e7:a9:d7:
         f5:2b:c1:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjLuzjxLDHnxszURq0RRUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMyZDU3M2IxNjc3MDcxZjJmZDZkNDRiODQwMWI2MTIxMjA1
OThjY2YwHhcNMjUwNjA3MDQwMTExWhcNMjUwNjA4MDQwMTExWjAzMTEwLwYDVQQD
Eyg4MzkxMTc4OTgxNGFiZGRiODhjZjNhNDQ2Njk1Y2Q4YzhkZmFlM2RkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmiXfNOBgG0cH6B5qA2lRJlCn9IK
7VYRHHE1Zmelzgpit/Mozfu3DdR2KTZ89wxc57EfjGGdpXzGsq5ZklnlkRPBXXXO
LCQtnVRDu2zX0BlyNubuZLazAMg1FT7ufALYNF9pbEi6Rl3i1YRzTnBOpasLDCd5
P1vyjY2T/SOGl2463GWRrC5T3HkZEyWFZeuAuc1Xx9xmSPLQ9h1e/8Y9KahNcq+/
vLOIzfnCoDJi1JI4bkZ/67LtA/FdpSWl+pLK8mQNf7yYqf6A3QGIgaQwXcrW3Lof
Imb+66/vJ+LUkr1AxdmeLcKVLYZeKZa3SNZOPNNVkKToNIdvfTthNziBuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIORF4mBSr3biM86RGaVzYyN+uPdMB8GA1UdIwQY
MBaAFMLVc7FncHHy/W1EuEAbYSEgWYzPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvd3RWenNXZHdjZkw5YlVTNFFCdGhJU0Jaak04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9iNWY1OTEtZDVlYS00N2UyLTllNjkt
MDRkMTJmMmQwNzBhLzEvd3RWenNXZHdjZkw5YlVTNFFCdGhJU0Jaak04Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC9iNWY1OTEtZDVlYS00N2UyLTllNjktMDRkMTJmMmQwNzBh
LzEvd3RWenNXZHdjZkw5YlVTNFFCdGhJU0Jaak04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcbxeAn3U
YKVn+uXbfF7tejqJ4Bb24x55+LRqAvHkGivnhhqNdoy/YHRORmPxKDSc75J8AnQM
WYML29gbXkIH0Pp2zejlYOU9vuUJGr+V7n2VoI0UsCbCNrxhJfdw+UFJ0DwW9JxS
wOy2O+l26F5f3XBsnR4zyjlmdr7q6fj5Sebo7vngNEnRrqYOQecyLY0mbSQquF5J
7dMjimkUYAr5BNrbvh41ZpCZ+lRY8RSXfBvFE4Af6A+2wm0O4+Fu1N5uo+yOiX+A
uERER58RBxt7xsBHRCqhnDcGd6D3jMOHdUPqyf+o1LJrI9UF7xmswaWvwLjs9VAg
flit56nX9SvBjw==
-----END CERTIFICATE-----