Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
File:                     eYCaQAStlYNQpkbViavLPP3z7S4.mft (raw, json)
Hash identifier:          ra9oBVYEvg5FZiUNEaR41qgzZzfOzIgW0bJ8s7ZiJN8=
Subject key identifier:   63:66:74:D3:FB:A1:CB:91:C4:86:FB:62:37:A5:42:34:34:86:BD:37
Authority key identifier: 79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E
Certificate issuer:       /CN=79809a4004ad958350a646d589abcb3cfdf3ed2e
Certificate serial:       0196523714A8552AE2073AEB37586E63AB6A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
Manifest number:          067F
Signing time:             Sun 20 Apr 2025 08:01:03 +0000
Manifest this update:     Sun 20 Apr 2025 08:01:03 +0000
Manifest next update:     Mon 21 Apr 2025 08:01:03 +0000
Files and hashes:         1: eYCaQAStlYNQpkbViavLPP3z7S4.crl (hash: P4TWws+B9Vxtg3mF7qWN2i2dDOy3DoBWs+vm2/Z1Bg0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 21 Apr 2025 07:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:52:37:14:a8:55:2a:e2:07:3a:eb:37:58:6e:63:ab:6a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=79809a4004ad958350a646d589abcb3cfdf3ed2e
        Validity
            Not Before: Apr 20 08:01:03 2025 GMT
            Not After : Apr 21 08:01:03 2025 GMT
        Subject: CN=636674d3fba1cb91c486fb6237a542343486bd37
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:43:5b:59:87:f7:76:a7:27:ab:1b:f9:0c:b0:
                    7a:48:1c:02:35:75:cf:f1:1e:2e:f0:21:d9:7d:0f:
                    26:70:fb:ac:d3:9d:44:bd:ee:58:02:cc:91:6f:9a:
                    d7:06:ce:1c:dc:f5:a5:8c:7b:96:58:1e:67:e1:ac:
                    82:44:79:3a:d4:22:4f:a4:96:8b:c9:5d:fa:2f:18:
                    23:00:47:cd:07:70:1c:f2:b3:6b:9c:b4:71:a8:99:
                    a8:66:d1:f9:80:90:70:6f:96:59:aa:e3:8e:4f:77:
                    d5:ec:e2:d3:49:c7:78:f7:06:54:6d:9f:a2:f5:9c:
                    df:34:3d:48:7a:e1:1e:22:4c:8f:97:40:3f:1e:52:
                    a7:cb:88:9b:82:58:f1:ad:2e:41:e8:a0:b3:54:ee:
                    55:48:8d:da:6d:68:0b:d7:48:4d:f7:ff:0e:a1:64:
                    c4:bb:04:1a:90:11:58:28:46:ed:fa:aa:08:6e:2a:
                    71:71:88:a0:06:53:52:c3:fb:db:8d:ee:e7:c4:3b:
                    f9:9f:56:63:a9:46:7d:b5:0c:57:b5:a3:94:a4:1f:
                    79:f3:63:ec:28:6c:f7:e7:3f:64:1e:3c:f7:e5:58:
                    0f:46:b7:89:76:51:2d:89:d5:52:4f:c8:11:01:24:
                    2b:e6:29:5c:82:46:b5:75:38:4e:12:52:6c:64:81:
                    39:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:66:74:D3:FB:A1:CB:91:C4:86:FB:62:37:A5:42:34:34:86:BD:37
            X509v3 Authority Key Identifier:
                keyid:79:80:9A:40:04:AD:95:83:50:A6:46:D5:89:AB:CB:3C:FD:F3:ED:2E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eYCaQAStlYNQpkbViavLPP3z7S4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/5b45f8-9a30-41d3-b611-d5aa6477efde/1/eYCaQAStlYNQpkbViavLPP3z7S4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         61:d9:d9:fd:ee:ce:52:a6:25:2f:e8:64:57:f7:40:3b:ba:a0:
         c8:25:b8:9f:75:ad:66:80:6d:65:73:6f:63:49:74:54:b3:3b:
         03:11:59:7e:bb:f5:ec:61:ba:6d:cd:74:2f:47:3e:11:a6:44:
         c4:e1:62:e4:4c:86:7c:11:0a:9f:32:74:4e:b0:c2:33:51:73:
         54:3d:ad:b1:fe:a6:5e:68:01:f5:47:d5:ae:33:29:2d:d9:d5:
         f8:ae:4e:d5:d5:0b:6b:61:0c:7b:59:7a:14:75:f9:cb:f9:b1:
         8b:73:f7:ab:6e:d5:d0:f8:ea:da:3d:3f:f5:19:d8:2a:7c:fd:
         3f:1d:92:13:fb:70:08:38:08:c6:e7:0b:59:e7:15:9a:19:58:
         26:30:d8:14:39:de:af:b0:d5:2e:8b:41:2c:c7:c4:2d:02:c8:
         b5:7f:cf:4f:96:34:fb:5a:e0:84:19:3b:71:bf:90:84:ab:92:
         9d:f5:13:79:87:75:56:50:e6:65:30:25:cf:e5:f0:90:44:dc:
         76:d8:32:10:33:50:45:66:25:1f:d4:de:48:99:13:fc:db:26:
         78:16:8c:1a:f7:d9:79:75:a8:76:2f:5d:ef:f4:07:93:7b:4e:
         fe:0a:6f:d1:cf:57:33:93:c5:bc:a7:ba:e1:1e:07:e3:d7:11:
         87:10:85:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZSNxSoVSriBzrrN1huY6tqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5ODA5YTQwMDRhZDk1ODM1MGE2NDZkNTg5YWJjYjNjZmRm
M2VkMmUwHhcNMjUwNDIwMDgwMTAzWhcNMjUwNDIxMDgwMTAzWjAzMTEwLwYDVQQD
Eyg2MzY2NzRkM2ZiYTFjYjkxYzQ4NmZiNjIzN2E1NDIzNDM0ODZiZDM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UNbWYf3dqcnqxv5DLB6SBwCNXXP
8R4u8CHZfQ8mcPus051Eve5YAsyRb5rXBs4c3PWljHuWWB5n4ayCRHk61CJPpJaL
yV36LxgjAEfNB3Ac8rNrnLRxqJmoZtH5gJBwb5ZZquOOT3fV7OLTScd49wZUbZ+i
9ZzfND1IeuEeIkyPl0A/HlKny4ibgljxrS5B6KCzVO5VSI3abWgL10hN9/8OoWTE
uwQakBFYKEbt+qoIbipxcYigBlNSw/vbje7nxDv5n1ZjqUZ9tQxXtaOUpB9582Ps
KGz35z9kHjz35VgPRreJdlEtidVST8gRASQr5ilcgka1dThOElJsZIE5AQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGNmdNP7ocuRxIb7YjelQjQ0hr03MB8GA1UdIwQY
MBaAFHmAmkAErZWDUKZG1Ymryzz98+0uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81YjQ1ZjgtOWEzMC00MWQzLWI2MTEt
ZDVhYTY0NzdlZmRlLzEvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81YjQ1ZjgtOWEzMC00MWQzLWI2MTEtZDVhYTY0NzdlZmRl
LzEvZVlDYVFBU3RsWU5RcGtiVmlhdkxQUDN6N1M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYdnZ/e7O
UqYlL+hkV/dAO7qgyCW4n3WtZoBtZXNvY0l0VLM7AxFZfrv17GG6bc10L0c+EaZE
xOFi5EyGfBEKnzJ0TrDCM1FzVD2tsf6mXmgB9UfVrjMpLdnV+K5O1dULa2EMe1l6
FHX5y/mxi3P3q27V0Pjq2j0/9RnYKnz9Px2SE/twCDgIxucLWecVmhlYJjDYFDne
r7DVLotBLMfELQLItX/PT5Y0+1rghBk7cb+QhKuSnfUTeYd1VlDmZTAlz+XwkETc
dtgyEDNQRWYlH9TeSJkT/NsmeBaMGvfZeXWodi9d7/QHk3tO/gpv0c9XM5PFvKe6
4R4H49cRhxCF8w==
-----END CERTIFICATE-----