Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft
File:                     435CoUa5C6fNMxrWoT7vHaL7pEA.mft (raw, json)
Hash identifier:          TflLy/+g7kU4oTJ/spSUyImSKQ18nDbXFenXKHxLZeg=
Subject key identifier:   5D:E5:B2:DF:77:D8:93:31:5B:F1:52:D2:7C:A0:68:A2:64:BE:49:79
Authority key identifier: E3:7E:42:A1:46:B9:0B:A7:CD:33:1A:D6:A1:3E:EF:1D:A2:FB:A4:40
Certificate issuer:       /CN=e37e42a146b90ba7cd331ad6a13eef1da2fba440
Certificate serial:       019752D8A7D266D3B0DB08F6C4EE74AC9219
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/435CoUa5C6fNMxrWoT7vHaL7pEA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft
Manifest number:          078E
Signing time:             Mon 09 Jun 2025 04:00:19 +0000
Manifest this update:     Mon 09 Jun 2025 04:00:19 +0000
Manifest next update:     Tue 10 Jun 2025 04:00:19 +0000
Files and hashes:         1: 435CoUa5C6fNMxrWoT7vHaL7pEA.crl (hash: wgqRKwrY/mYBqTBmCcwOT70Cs2y6izmfwu4EUhvU5ZM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/435CoUa5C6fNMxrWoT7vHaL7pEA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 09 Jun 2025 21:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:d8:a7:d2:66:d3:b0:db:08:f6:c4:ee:74:ac:92:19
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e37e42a146b90ba7cd331ad6a13eef1da2fba440
        Validity
            Not Before: Jun  9 04:00:19 2025 GMT
            Not After : Jun 10 04:00:19 2025 GMT
        Subject: CN=5de5b2df77d893315bf152d27ca068a264be4979
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:b1:d3:30:61:34:f6:17:26:50:84:60:35:d1:
                    a4:b3:df:3f:dd:2c:ec:a3:aa:16:78:3e:a6:18:b6:
                    cf:a4:d5:d7:9b:e3:3f:7e:84:b7:25:ba:b7:a4:a1:
                    fa:6f:6a:1a:74:5a:a7:65:dd:55:52:be:99:95:65:
                    10:90:cc:7e:87:cd:99:da:f7:b7:db:07:09:2d:85:
                    7e:56:0c:48:fe:a3:7b:f6:f7:86:78:f4:6c:3d:39:
                    a3:ba:cd:a2:e1:5b:be:a3:8e:5c:2c:e8:92:4a:a0:
                    18:96:ea:ca:60:b6:53:72:e1:30:a3:26:03:e2:34:
                    87:ff:e1:55:b0:5c:2f:33:4c:e3:64:a3:fa:6a:0d:
                    ef:af:8f:7b:48:c2:a6:2f:dd:c4:91:25:ac:9a:75:
                    db:73:dc:a2:77:56:4a:f4:ce:b0:3d:9c:a5:c1:1c:
                    1e:c6:45:ef:91:e2:3e:70:96:dc:79:7b:a4:3e:ad:
                    ee:0a:f7:81:f6:9a:ad:59:6f:42:33:a0:73:e0:15:
                    97:c3:8f:6e:f0:fe:44:47:27:93:a7:d1:5c:4e:bd:
                    02:a3:d9:10:46:f1:e8:1e:e0:3e:97:84:cf:ca:c3:
                    f7:59:39:33:f7:c4:92:34:e5:07:a8:c9:0f:42:0f:
                    f7:ec:b5:97:ba:52:d3:66:9d:8e:e5:7e:ec:10:2a:
                    9b:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:E5:B2:DF:77:D8:93:31:5B:F1:52:D2:7C:A0:68:A2:64:BE:49:79
            X509v3 Authority Key Identifier:
                keyid:E3:7E:42:A1:46:B9:0B:A7:CD:33:1A:D6:A1:3E:EF:1D:A2:FB:A4:40

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/435CoUa5C6fNMxrWoT7vHaL7pEA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:a8:f9:64:19:76:9f:93:af:93:e3:cc:80:db:c0:dc:b7:bc:
         81:ed:4c:d7:1f:d2:f3:3f:ff:ad:3d:1a:fd:f6:23:5a:d0:e3:
         31:05:fd:8a:40:02:00:f4:00:21:03:f5:18:1d:b6:f7:06:59:
         05:b3:d8:0d:60:e7:0f:4c:a0:9d:16:86:41:e9:96:79:78:9c:
         2b:43:5b:ca:43:44:2d:63:f7:96:52:c5:c8:32:ca:04:61:21:
         02:97:ba:09:68:96:b8:27:fc:11:79:de:2d:b2:6e:a5:b5:b3:
         ca:9a:19:14:cc:89:c3:16:39:8c:6c:10:23:71:94:1b:93:b3:
         0a:07:f7:90:cd:7b:50:7d:bf:20:6f:7f:ab:00:a0:9a:dd:87:
         58:cd:dd:1f:32:35:83:2a:9a:a5:21:aa:b8:e6:2b:46:c2:dd:
         4a:67:e1:d6:0b:ae:b7:d7:1a:55:4a:20:ce:5c:02:b6:3f:f9:
         ce:a3:46:89:db:ff:e2:b1:64:3d:8b:6a:86:f1:45:8b:55:8c:
         13:63:ac:0a:4f:01:c2:5e:9c:d7:1d:87:0f:29:e5:42:4d:fa:
         7f:82:b1:71:8c:21:61:01:af:0f:9c:a7:8f:6c:20:b4:d8:8b:
         8c:5a:26:73:11:83:09:6b:01:68:bb:dd:d4:36:5b:dd:cc:c2:
         1f:2c:3c:2b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdS2KfSZtOw2wj2xO50rJIZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUzN2U0MmExNDZiOTBiYTdjZDMzMWFkNmExM2VlZjFkYTJm
YmE0NDAwHhcNMjUwNjA5MDQwMDE5WhcNMjUwNjEwMDQwMDE5WjAzMTEwLwYDVQQD
Eyg1ZGU1YjJkZjc3ZDg5MzMxNWJmMTUyZDI3Y2EwNjhhMjY0YmU0OTc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurHTMGE09hcmUIRgNdGks98/3Szs
o6oWeD6mGLbPpNXXm+M/foS3Jbq3pKH6b2oadFqnZd1VUr6ZlWUQkMx+h82Z2ve3
2wcJLYV+VgxI/qN79veGePRsPTmjus2i4Vu+o45cLOiSSqAYlurKYLZTcuEwoyYD
4jSH/+FVsFwvM0zjZKP6ag3vr497SMKmL93EkSWsmnXbc9yid1ZK9M6wPZylwRwe
xkXvkeI+cJbceXukPq3uCveB9pqtWW9CM6Bz4BWXw49u8P5ERyeTp9FcTr0Co9kQ
RvHoHuA+l4TPysP3WTkz98SSNOUHqMkPQg/37LWXulLTZp2O5X7sECqbpwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF3lst932JMxW/FS0nygaKJkvkl5MB8GA1UdIwQY
MBaAFON+QqFGuQunzTMa1qE+7x2i+6RAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNDM1Q29VYTVDNmZOTXhyV29UN3ZIYUw3cEVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC8zZWNlNzYtMDU3NS00NmIxLTk0YmYt
MDYzMjlmNmUwNDc1LzEvNDM1Q29VYTVDNmZOTXhyV29UN3ZIYUw3cEVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC8zZWNlNzYtMDU3NS00NmIxLTk0YmYtMDYzMjlmNmUwNDc1
LzEvNDM1Q29VYTVDNmZOTXhyV29UN3ZIYUw3cEVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY6j5ZBl2
n5Ovk+PMgNvA3Le8ge1M1x/S8z//rT0a/fYjWtDjMQX9ikACAPQAIQP1GB229wZZ
BbPYDWDnD0ygnRaGQemWeXicK0NbykNELWP3llLFyDLKBGEhApe6CWiWuCf8EXne
LbJupbWzypoZFMyJwxY5jGwQI3GUG5OzCgf3kM17UH2/IG9/qwCgmt2HWM3dHzI1
gyqapSGquOYrRsLdSmfh1guut9caVUogzlwCtj/5zqNGidv/4rFkPYtqhvFFi1WM
E2OsCk8Bwl6c1x2HDynlQk36f4KxcYwhYQGvD5ynj2wgtNiLjFomcxGDCWsBaLvd
1DZb3czCHyw8Kw==
-----END CERTIFICATE-----