Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft
File:                     dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft (raw, json)
Hash identifier:          2UuykpOP3/hePnjVRoRm3Tg/fYoKjnXC8g7idpPlXt8=
Subject key identifier:   6E:26:20:42:C0:0C:81:D3:63:6A:59:93:9B:70:61:A2:19:6E:53:36
Authority key identifier: 75:71:C8:92:99:9B:B4:56:4B:CE:48:0C:92:1B:6F:F1:72:05:EC:C6
Certificate issuer:       /CN=7571c892999bb4564bce480c921b6ff17205ecc6
Certificate serial:       01974779C40BFC8E3674C9871991B8B0870F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dXHIkpmbtFZLzkgMkhtv8XIF7MY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft
Manifest number:          055A
Signing time:             Fri 06 Jun 2025 23:00:51 +0000
Manifest this update:     Fri 06 Jun 2025 23:00:51 +0000
Manifest next update:     Sat 07 Jun 2025 23:00:51 +0000
Files and hashes:         1: dXHIkpmbtFZLzkgMkhtv8XIF7MY.crl (hash: lEx4Madl5sZE7uDGKvu1beVKUtsgjCULx71juH6jEBQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dXHIkpmbtFZLzkgMkhtv8XIF7MY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 23:00:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:47:79:c4:0b:fc:8e:36:74:c9:87:19:91:b8:b0:87:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7571c892999bb4564bce480c921b6ff17205ecc6
        Validity
            Not Before: Jun  6 23:00:51 2025 GMT
            Not After : Jun  7 23:00:51 2025 GMT
        Subject: CN=6e262042c00c81d3636a59939b7061a2196e5336
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:17:2c:6b:a8:2b:be:4e:60:5a:e0:24:b6:90:
                    ce:dc:35:98:01:20:17:9e:f9:c6:a1:34:15:cc:b9:
                    5e:28:a9:89:96:13:bb:49:5c:74:c2:83:c6:b7:a1:
                    27:84:71:1e:c8:15:73:ea:9f:90:b3:fd:80:c7:b5:
                    f7:43:e7:52:02:b8:f3:76:7a:23:4b:75:a2:90:f8:
                    26:eb:aa:0c:58:0a:2a:15:a7:e5:3a:88:f5:a5:b1:
                    07:27:33:c4:2f:32:ea:1e:7a:01:dc:14:87:5c:ec:
                    10:92:a6:1f:de:bc:5e:76:11:d3:37:0e:3f:33:ba:
                    38:22:09:50:1e:f9:bb:cc:ec:d2:86:d4:7a:0e:f5:
                    43:c5:fe:60:48:34:6e:9f:98:11:44:d9:ee:b3:13:
                    66:b3:34:69:f6:aa:87:48:cd:a2:39:73:f5:25:2d:
                    74:5b:92:f2:3a:05:cc:dc:a8:0a:e4:9d:32:5e:71:
                    33:7e:c5:48:a4:81:bb:5a:72:79:ad:12:e0:c7:31:
                    36:ed:cf:fc:6c:b9:4b:16:54:4d:ac:6a:6a:fc:93:
                    37:e5:71:d7:36:f0:00:84:e5:84:c5:3a:cf:db:4f:
                    be:a5:7a:0a:d5:d8:ce:64:b6:12:85:f2:bb:d8:10:
                    1a:33:40:7f:eb:f6:3a:d2:e2:35:42:d7:5c:02:58:
                    39:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6E:26:20:42:C0:0C:81:D3:63:6A:59:93:9B:70:61:A2:19:6E:53:36
            X509v3 Authority Key Identifier:
                keyid:75:71:C8:92:99:9B:B4:56:4B:CE:48:0C:92:1B:6F:F1:72:05:EC:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dXHIkpmbtFZLzkgMkhtv8XIF7MY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/818ac5-93dd-40fd-bf6f-e04f8fcc2ca1/1/dXHIkpmbtFZLzkgMkhtv8XIF7MY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         99:a5:b6:fc:e8:28:5b:ff:31:aa:6f:b2:75:55:2d:7c:e0:45:
         a4:4f:f5:03:b6:f7:76:46:e3:95:ab:98:1f:e5:60:f9:14:3a:
         10:b9:61:b4:6d:4b:d4:6d:72:b8:23:44:39:1e:8a:e4:37:f2:
         85:0f:d6:4d:ce:66:ec:ae:14:3b:75:28:8f:39:f7:28:cd:47:
         6e:c2:c9:b7:1d:00:3d:c0:c4:a9:79:80:6d:b4:47:60:a3:d8:
         a2:84:9d:4e:0a:3f:fc:42:03:07:0c:d9:6f:dc:a2:2f:3e:72:
         d5:28:02:28:ba:36:45:8b:04:f6:58:38:a9:2b:81:0f:54:ab:
         71:fb:fc:bf:91:dd:7e:fa:05:86:c0:7a:21:06:3c:0d:36:37:
         1c:5e:b2:7a:6b:c7:62:d1:e9:6a:6a:7c:2b:e8:25:50:fa:a8:
         72:e5:b3:e7:29:f9:52:98:b9:76:94:99:7a:cf:1c:b5:95:27:
         00:3f:6a:02:6f:87:40:b3:51:63:b3:96:bc:e4:fe:1d:ae:3c:
         c1:e7:56:3d:3f:04:3e:97:71:b9:79:e3:c3:ea:7d:11:33:55:
         3f:94:d6:0d:ca:bb:1a:7b:d2:89:90:b5:0e:63:e0:b0:b1:cf:
         d4:1e:24:69:d7:8c:57:4a:4e:20:81:ac:89:ad:0b:73:61:9b:
         1a:d4:d1:dc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdHecQL/I42dMmHGZG4sIcPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1NzFjODkyOTk5YmI0NTY0YmNlNDgwYzkyMWI2ZmYxNzIw
NWVjYzYwHhcNMjUwNjA2MjMwMDUxWhcNMjUwNjA3MjMwMDUxWjAzMTEwLwYDVQQD
Eyg2ZTI2MjA0MmMwMGM4MWQzNjM2YTU5OTM5YjcwNjFhMjE5NmU1MzM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRcsa6grvk5gWuAktpDO3DWYASAX
nvnGoTQVzLleKKmJlhO7SVx0woPGt6EnhHEeyBVz6p+Qs/2Ax7X3Q+dSArjzdnoj
S3WikPgm66oMWAoqFaflOoj1pbEHJzPELzLqHnoB3BSHXOwQkqYf3rxedhHTNw4/
M7o4IglQHvm7zOzShtR6DvVDxf5gSDRun5gRRNnusxNmszRp9qqHSM2iOXP1JS10
W5LyOgXM3KgK5J0yXnEzfsVIpIG7WnJ5rRLgxzE27c/8bLlLFlRNrGpq/JM35XHX
NvAAhOWExTrP20++pXoK1djOZLYShfK72BAaM0B/6/Y60uI1QtdcAlg5AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG4mIELADIHTY2pZk5twYaIZblM2MB8GA1UdIwQY
MBaAFHVxyJKZm7RWS85IDJIbb/FyBezGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFhISWtwbWJ0RlpMemtnTWtodHY4WElGN01ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC84MThhYzUtOTNkZC00MGZkLWJmNmYt
ZTA0ZjhmY2MyY2ExLzEvZFhISWtwbWJ0RlpMemtnTWtodHY4WElGN01ZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC84MThhYzUtOTNkZC00MGZkLWJmNmYtZTA0ZjhmY2MyY2Ex
LzEvZFhISWtwbWJ0RlpMemtnTWtodHY4WElGN01ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmaW2/Ogo
W/8xqm+ydVUtfOBFpE/1A7b3dkbjlauYH+Vg+RQ6ELlhtG1L1G1yuCNEOR6K5Dfy
hQ/WTc5m7K4UO3Uojzn3KM1HbsLJtx0APcDEqXmAbbRHYKPYooSdTgo//EIDBwzZ
b9yiLz5y1SgCKLo2RYsE9lg4qSuBD1Srcfv8v5HdfvoFhsB6IQY8DTY3HF6yemvH
YtHpamp8K+glUPqocuWz5yn5Upi5dpSZes8ctZUnAD9qAm+HQLNRY7OWvOT+Ha48
wedWPT8EPpdxuXnjw+p9ETNVP5TWDcq7GnvSiZC1DmPgsLHP1B4kadeMV0pOIIGs
ia0Lc2GbGtTR3A==
-----END CERTIFICATE-----