Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
File:                     gbv0m8K-YG6m9Ivb-WJX3natfMA.mft (raw, json)
Hash identifier:          y3yCugQjEiX+YLTgHMlrlV7DEkn21490SkBBXqbndj4=
Subject key identifier:   46:CF:20:4A:76:A3:4C:3C:78:10:DE:BF:45:94:2E:6F:FD:BF:32:6A
Authority key identifier: 81:BB:F4:9B:C2:BE:60:6E:A6:F4:8B:DB:F9:62:57:DE:76:AD:7C:C0
Certificate issuer:       /CN=81bbf49bc2be606ea6f48bdbf96257de76ad7cc0
Certificate serial:       01965914433E779900293DD976C5742287A8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
Manifest number:          14FD
Signing time:             Mon 21 Apr 2025 16:00:22 +0000
Manifest this update:     Mon 21 Apr 2025 16:00:22 +0000
Manifest next update:     Tue 22 Apr 2025 16:00:22 +0000
Files and hashes:         1: gbv0m8K-YG6m9Ivb-WJX3natfMA.crl (hash: bu0ZwstW0CASPgNw49Kt8we+lHsUcUTLC76aWJ8t1AI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 22 Apr 2025 13:46:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:59:14:43:3e:77:99:00:29:3d:d9:76:c5:74:22:87:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=81bbf49bc2be606ea6f48bdbf96257de76ad7cc0
        Validity
            Not Before: Apr 21 16:00:22 2025 GMT
            Not After : Apr 22 16:00:22 2025 GMT
        Subject: CN=46cf204a76a34c3c7810debf45942e6ffdbf326a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:75:35:69:f7:65:34:c2:b0:d0:78:38:91:0d:
                    c8:70:ee:b8:47:ca:b1:23:1c:23:23:af:72:ec:74:
                    84:6e:a9:be:bf:b1:7e:ab:ae:8a:21:ee:9f:b1:ce:
                    d7:9b:3b:44:64:2e:a3:53:30:3e:a6:ed:45:de:66:
                    9a:51:4c:bd:8c:7a:2f:7c:b3:84:d8:04:99:5f:fc:
                    68:52:f0:40:ea:68:96:cc:67:ef:b5:5e:d7:28:ef:
                    20:de:b8:25:0b:f0:26:c9:73:4f:13:b1:cf:8b:e7:
                    6a:d0:d5:9d:67:95:db:3a:ee:42:a3:af:1c:10:53:
                    25:c3:21:21:c7:36:1b:23:67:15:00:0d:c9:6a:64:
                    6e:80:67:b5:85:2d:8c:e6:fd:20:4d:e3:d5:75:14:
                    59:33:18:dc:ef:19:e5:14:8e:a3:85:3b:b7:c1:8f:
                    e3:64:a0:ed:37:9b:48:b3:01:34:3f:aa:08:50:07:
                    95:57:23:a2:a7:3c:4c:f2:e1:ce:9f:d9:73:18:00:
                    a4:7f:96:d9:b3:b0:df:7b:4b:7d:6f:eb:67:7b:92:
                    a1:e4:44:bb:07:98:f3:37:6c:5d:1b:8f:2a:8e:42:
                    e2:44:88:9a:54:a1:e7:b5:22:8c:0e:f6:20:08:e0:
                    82:7b:e1:0c:dc:86:92:3e:02:e6:06:46:b4:35:ff:
                    44:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:CF:20:4A:76:A3:4C:3C:78:10:DE:BF:45:94:2E:6F:FD:BF:32:6A
            X509v3 Authority Key Identifier:
                keyid:81:BB:F4:9B:C2:BE:60:6E:A6:F4:8B:DB:F9:62:57:DE:76:AD:7C:C0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:9b:6e:f0:aa:2f:8d:a5:2e:45:4e:37:4b:60:1e:50:9d:a8:
         d4:0e:da:c7:b8:8d:6e:a5:26:80:19:cc:b5:36:d6:22:06:d5:
         fb:6b:30:4c:ba:16:e3:4e:bc:88:87:2a:7d:25:59:f0:01:03:
         8c:87:70:ef:e7:49:ca:40:bf:0b:6d:1a:c3:04:1f:41:0e:41:
         af:49:9c:d9:73:1b:e2:c5:ba:ed:a8:38:1d:b1:4f:5f:9b:30:
         76:e4:f5:10:bf:6b:86:c5:73:97:2f:ff:bb:5c:3b:be:5d:7a:
         f1:1f:df:7e:ae:c0:1f:4d:2c:ba:0c:6f:2e:b3:a8:66:35:15:
         55:9b:9f:23:93:50:79:18:7b:58:80:2a:22:fb:b8:f3:64:29:
         f8:ac:20:0c:cd:9b:23:9c:57:e0:23:ca:37:19:79:fd:01:be:
         9f:01:a9:07:32:0b:e9:9b:9b:b2:41:73:ae:6c:59:06:9a:57:
         83:ce:af:48:e9:0e:6a:8e:cb:0a:a3:e5:af:8d:1f:eb:a2:11:
         5b:35:7f:86:54:38:ba:e5:e3:66:f3:37:1e:67:3e:4c:a6:c1:
         03:fa:22:dd:bb:e7:8b:05:61:5a:a9:f3:5d:9a:ca:23:d7:5c:
         3d:e7:29:b4:30:88:9c:06:9e:1b:88:fc:a1:fe:54:ed:48:17:
         a6:d5:ba:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZZFEM+d5kAKT3ZdsV0IoeoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYmJmNDliYzJiZTYwNmVhNmY0OGJkYmY5NjI1N2RlNzZh
ZDdjYzAwHhcNMjUwNDIxMTYwMDIyWhcNMjUwNDIyMTYwMDIyWjAzMTEwLwYDVQQD
Eyg0NmNmMjA0YTc2YTM0YzNjNzgxMGRlYmY0NTk0MmU2ZmZkYmYzMjZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl3U1afdlNMKw0Hg4kQ3IcO64R8qx
IxwjI69y7HSEbqm+v7F+q66KIe6fsc7XmztEZC6jUzA+pu1F3maaUUy9jHovfLOE
2ASZX/xoUvBA6miWzGfvtV7XKO8g3rglC/AmyXNPE7HPi+dq0NWdZ5XbOu5Co68c
EFMlwyEhxzYbI2cVAA3JamRugGe1hS2M5v0gTePVdRRZMxjc7xnlFI6jhTu3wY/j
ZKDtN5tIswE0P6oIUAeVVyOipzxM8uHOn9lzGACkf5bZs7Dfe0t9b+tne5Kh5ES7
B5jzN2xdG48qjkLiRIiaVKHntSKMDvYgCOCCe+EM3IaSPgLmBka0Nf9EDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEbPIEp2o0w8eBDev0WULm/9vzJqMB8GA1UdIwQY
MBaAFIG79JvCvmBupvSL2/liV952rXzAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2J2MG04Sy1ZRzZtOUl2Yi1XSlgzbmF0Zk1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS84NjNlZWUtNzcxNC00YmM0LTkyNjgt
NDE2OTQyMDJkZTY4LzEvZ2J2MG04Sy1ZRzZtOUl2Yi1XSlgzbmF0Zk1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS84NjNlZWUtNzcxNC00YmM0LTkyNjgtNDE2OTQyMDJkZTY4
LzEvZ2J2MG04Sy1ZRzZtOUl2Yi1XSlgzbmF0Zk1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdptu8Kov
jaUuRU43S2AeUJ2o1A7ax7iNbqUmgBnMtTbWIgbV+2swTLoW4068iIcqfSVZ8AED
jIdw7+dJykC/C20awwQfQQ5Br0mc2XMb4sW67ag4HbFPX5swduT1EL9rhsVzly//
u1w7vl168R/ffq7AH00sugxvLrOoZjUVVZufI5NQeRh7WIAqIvu482Qp+KwgDM2b
I5xX4CPKNxl5/QG+nwGpBzIL6ZubskFzrmxZBppXg86vSOkOao7LCqPlr40f66IR
WzV/hlQ4uuXjZvM3Hmc+TKbBA/oi3bvniwVhWqnzXZrKI9dcPecptDCInAaeG4j8
of5U7UgXptW6wg==
-----END CERTIFICATE-----