Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/ea47f3-1172-4001-87c8-b99cdf975eb6/1/Sqk04w2mkOdRcTO30hJjJlWnS4c.mft
File:                     Sqk04w2mkOdRcTO30hJjJlWnS4c.mft (raw, json)
Hash identifier:          7Un3dXW5ZQBkZJIXSnxeouzibCXaQ2oQNSgZU/1SnL4=
Subject key identifier:   5C:CE:62:CA:57:D1:21:9E:86:29:72:C2:32:11:B5:04:A8:C2:22:77
Authority key identifier: 4A:A9:34:E3:0D:A6:90:E7:51:71:33:B7:D2:12:63:26:55:A7:4B:87
Certificate issuer:       /CN=4aa934e30da690e7517133b7d212632655a74b87
Certificate serial:       01974C6930ECE1D3D3695018BD8817FC04DB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sqk04w2mkOdRcTO30hJjJlWnS4c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/ea47f3-1172-4001-87c8-b99cdf975eb6/1/Sqk04w2mkOdRcTO30hJjJlWnS4c.mft
Manifest number:          0E7A
Signing time:             Sat 07 Jun 2025 22:00:51 +0000
Manifest this update:     Sat 07 Jun 2025 22:00:51 +0000
Manifest next update:     Sun 08 Jun 2025 22:00:51 +0000
Files and hashes:         1: Sqk04w2mkOdRcTO30hJjJlWnS4c.crl (hash: k6SmiCfmNP9vEXx2rUvBKAi+G/+a8cluMqlXlYE3KXA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e1/ea47f3-1172-4001-87c8-b99cdf975eb6/1/Sqk04w2mkOdRcTO30hJjJlWnS4c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e1/ea47f3-1172-4001-87c8-b99cdf975eb6/1/Sqk04w2mkOdRcTO30hJjJlWnS4c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sqk04w2mkOdRcTO30hJjJlWnS4c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 20:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4c:69:30:ec:e1:d3:d3:69:50:18:bd:88:17:fc:04:db
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4aa934e30da690e7517133b7d212632655a74b87
        Validity
            Not Before: Jun  7 22:00:51 2025 GMT
            Not After : Jun  8 22:00:51 2025 GMT
        Subject: CN=5cce62ca57d1219e862972c23211b504a8c22277
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:f8:cc:96:96:3a:4a:99:46:78:f0:f4:e5:95:
                    b6:f0:82:66:67:db:79:dc:60:fb:65:b4:83:b0:c6:
                    70:df:21:94:56:60:cc:80:92:7c:ad:9d:74:aa:28:
                    91:e4:51:d8:ea:5f:ce:1e:ed:11:f9:96:04:18:fe:
                    b0:b9:ab:49:cf:93:28:d7:61:c7:60:6c:11:ef:96:
                    9c:23:f0:3f:54:0d:3c:ca:a2:c7:e0:bd:58:38:fc:
                    dd:78:e6:ba:4c:a1:57:9e:cb:48:17:2c:80:8d:dd:
                    8d:63:08:42:77:5e:e5:4b:04:cd:aa:98:84:9e:10:
                    2c:80:a7:d0:07:66:eb:03:09:01:80:07:7d:48:c3:
                    4b:83:07:f7:46:f4:98:72:49:b7:13:97:a0:b9:7f:
                    0f:b3:0d:fb:84:1f:91:4c:2c:28:36:9d:9a:75:84:
                    87:65:11:bd:a5:1e:d4:51:24:dd:0e:32:6a:59:2c:
                    d6:6d:a9:fe:e8:9a:62:87:63:06:66:80:19:60:fc:
                    db:9e:35:05:67:2a:ee:b2:84:6f:cb:8e:82:72:35:
                    ba:2c:da:01:4d:7e:d6:73:24:fa:b3:3f:7f:25:c9:
                    b4:d1:85:0e:c8:33:ae:e3:00:bd:1d:82:26:e1:4b:
                    15:30:9e:9f:cf:2f:00:30:57:21:5d:af:70:d7:a0:
                    45:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:CE:62:CA:57:D1:21:9E:86:29:72:C2:32:11:B5:04:A8:C2:22:77
            X509v3 Authority Key Identifier:
                keyid:4A:A9:34:E3:0D:A6:90:E7:51:71:33:B7:D2:12:63:26:55:A7:4B:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sqk04w2mkOdRcTO30hJjJlWnS4c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea47f3-1172-4001-87c8-b99cdf975eb6/1/Sqk04w2mkOdRcTO30hJjJlWnS4c.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/ea47f3-1172-4001-87c8-b99cdf975eb6/1/Sqk04w2mkOdRcTO30hJjJlWnS4c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0d:b6:2e:a9:71:cc:90:e5:cc:6e:5e:db:3f:bb:ff:a6:45:5f:
         5b:58:8d:4e:b5:07:71:96:b3:c8:d4:4a:fd:54:8c:af:f1:56:
         51:78:fa:f3:55:db:bb:a6:7c:03:8b:25:8b:43:43:1e:0f:ce:
         85:6a:62:da:2e:c7:e0:cc:30:20:23:8b:dd:74:37:4a:44:26:
         b8:24:e9:19:85:53:78:fd:89:52:7b:57:8c:08:a7:1c:d1:27:
         4b:2f:a7:a6:cf:76:2b:71:ce:be:2c:7a:81:2c:82:32:35:7f:
         4b:7c:5f:14:ed:04:f4:86:23:5f:b5:9b:38:63:c5:bb:df:19:
         df:dd:c8:c9:5e:3e:72:54:a1:e5:a0:e8:53:9a:7f:8b:d9:89:
         7c:b8:fd:da:4c:b7:6a:12:05:88:b0:1a:5e:89:4b:22:85:61:
         74:40:97:09:e4:57:6f:41:ca:2d:98:ce:43:98:c9:62:dd:6d:
         32:d0:fd:93:48:72:a4:1a:5a:67:30:1e:4a:3e:a2:88:82:32:
         52:fe:f2:db:2f:8c:5b:fa:a5:bb:4e:c1:60:0c:c8:04:5b:05:
         03:f7:45:1a:c9:c5:e6:35:6b:a0:12:fc:94:80:59:b2:5a:33:
         d6:ce:ae:e5:1e:d9:de:2c:83:e6:43:e3:25:bd:c8:b9:c0:e5:
         1e:a4:19:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdMaTDs4dPTaVAYvYgX/ATbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhYTkzNGUzMGRhNjkwZTc1MTcxMzNiN2QyMTI2MzI2NTVh
NzRiODcwHhcNMjUwNjA3MjIwMDUxWhcNMjUwNjA4MjIwMDUxWjAzMTEwLwYDVQQD
Eyg1Y2NlNjJjYTU3ZDEyMTllODYyOTcyYzIzMjExYjUwNGE4YzIyMjc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkvjMlpY6SplGePD05ZW28IJmZ9t5
3GD7ZbSDsMZw3yGUVmDMgJJ8rZ10qiiR5FHY6l/OHu0R+ZYEGP6wuatJz5Mo12HH
YGwR75acI/A/VA08yqLH4L1YOPzdeOa6TKFXnstIFyyAjd2NYwhCd17lSwTNqpiE
nhAsgKfQB2brAwkBgAd9SMNLgwf3RvSYckm3E5eguX8Psw37hB+RTCwoNp2adYSH
ZRG9pR7UUSTdDjJqWSzWban+6Jpih2MGZoAZYPzbnjUFZyrusoRvy46CcjW6LNoB
TX7WcyT6sz9/Jcm00YUOyDOu4wC9HYIm4UsVMJ6fzy8AMFchXa9w16BFaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFzOYspX0SGehilywjIRtQSowiJ3MB8GA1UdIwQY
MBaAFEqpNOMNppDnUXEzt9ISYyZVp0uHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU3FrMDR3Mm1rT2RSY1RPMzBoSmpKbFduUzRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS9lYTQ3ZjMtMTE3Mi00MDAxLTg3Yzgt
Yjk5Y2RmOTc1ZWI2LzEvU3FrMDR3Mm1rT2RSY1RPMzBoSmpKbFduUzRjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS9lYTQ3ZjMtMTE3Mi00MDAxLTg3YzgtYjk5Y2RmOTc1ZWI2
LzEvU3FrMDR3Mm1rT2RSY1RPMzBoSmpKbFduUzRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADbYuqXHM
kOXMbl7bP7v/pkVfW1iNTrUHcZazyNRK/VSMr/FWUXj681Xbu6Z8A4sli0NDHg/O
hWpi2i7H4MwwICOL3XQ3SkQmuCTpGYVTeP2JUntXjAinHNEnSy+nps92K3HOvix6
gSyCMjV/S3xfFO0E9IYjX7WbOGPFu98Z393IyV4+clSh5aDoU5p/i9mJfLj92ky3
ahIFiLAaXolLIoVhdECXCeRXb0HKLZjOQ5jJYt1tMtD9k0hypBpaZzAeSj6iiIIy
Uv7y2y+MW/qlu07BYAzIBFsFA/dFGsnF5jVroBL8lIBZsloz1s6u5R7Z3iyD5kPj
Jb3IucDlHqQZEw==
-----END CERTIFICATE-----