Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft
File:                     bn-6EaMdOqkN48e7i1bTzQbmvnU.mft (raw, json)
Hash identifier:          p+ANoBBc48FPyKpVJdBFQMr0UPtbn6BX2KZsulPxnS0=
Subject key identifier:   82:32:18:75:44:9B:1D:F3:3D:EA:5B:F6:E1:CF:E4:39:5F:B4:E4:CE
Authority key identifier: 6E:7F:BA:11:A3:1D:3A:A9:0D:E3:C7:BB:8B:56:D3:CD:06:E6:BE:75
Certificate issuer:       /CN=6e7fba11a31d3aa90de3c7bb8b56d3cd06e6be75
Certificate serial:       01974A7B045ADE1173E8DB554875C308788A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft
Manifest number:          1563
Signing time:             Sat 07 Jun 2025 13:01:05 +0000
Manifest this update:     Sat 07 Jun 2025 13:01:05 +0000
Manifest next update:     Sun 08 Jun 2025 13:01:05 +0000
Files and hashes:         1: bn-6EaMdOqkN48e7i1bTzQbmvnU.crl (hash: c0wHOtyaAZuole0uu/UmlN2ZWPutZXSP2goyBHdRPzE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:4a:7b:04:5a:de:11:73:e8:db:55:48:75:c3:08:78:8a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6e7fba11a31d3aa90de3c7bb8b56d3cd06e6be75
        Validity
            Not Before: Jun  7 13:01:05 2025 GMT
            Not After : Jun  8 13:01:05 2025 GMT
        Subject: CN=82321875449b1df33dea5bf6e1cfe4395fb4e4ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:2b:16:0b:4e:f1:04:2a:c4:ae:92:df:5d:5a:
                    ad:04:ff:6e:7f:d7:34:e0:63:c1:cb:e1:fc:83:eb:
                    f1:22:93:0e:c6:b7:01:e3:80:13:86:48:3a:cc:c8:
                    2a:1a:7a:2e:a9:b2:e9:64:6b:6d:64:dd:99:d0:90:
                    8e:4e:06:13:ec:8c:61:90:a7:b1:b9:33:58:0b:d0:
                    8c:d8:87:f5:a1:c1:31:88:a7:9c:10:22:a8:e9:d8:
                    7c:0d:cc:55:f0:2f:95:b1:34:1c:13:97:b9:5c:22:
                    37:01:ea:9d:db:22:e6:2f:a0:d4:1e:8e:cb:c3:c9:
                    1b:45:04:4e:f0:30:3d:ac:f0:e6:45:3f:99:12:0e:
                    96:40:ca:e2:89:48:32:0c:f2:2d:8a:7e:9f:f3:18:
                    d3:a5:d4:c0:9d:b0:08:56:c7:41:d9:55:10:f3:57:
                    90:bc:50:81:4a:5c:f9:83:49:7e:5c:62:9d:e1:f4:
                    97:4b:e8:34:2c:52:bd:84:63:d4:4d:6e:7d:a0:57:
                    99:9b:12:f3:14:20:30:5b:17:d2:52:7d:4e:5e:57:
                    93:f4:dd:91:77:48:78:6f:5b:61:21:a5:8e:78:63:
                    ec:36:3f:0f:cd:6e:aa:be:f7:15:fa:c5:59:8b:c6:
                    6a:8f:7a:f1:c7:58:1d:fb:c1:dc:b8:80:3f:1b:a0:
                    ad:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                82:32:18:75:44:9B:1D:F3:3D:EA:5B:F6:E1:CF:E4:39:5F:B4:E4:CE
            X509v3 Authority Key Identifier:
                keyid:6E:7F:BA:11:A3:1D:3A:A9:0D:E3:C7:BB:8B:56:D3:CD:06:E6:BE:75

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:23:08:87:ce:ec:78:b9:39:c2:ca:d3:8b:0f:31:7e:8e:03:
         f4:68:88:dd:56:49:cc:09:36:ed:fb:93:40:84:5d:e9:09:ff:
         5e:5f:c1:43:87:c6:94:cc:bc:24:72:dc:62:a6:be:e4:81:30:
         53:99:3f:64:2a:63:6c:8b:bf:4d:d5:6f:33:05:eb:57:ed:c5:
         06:83:1f:a1:cd:ac:3b:b2:7c:33:c2:77:6c:6f:4d:8c:19:c2:
         33:44:4c:8c:f6:57:0c:c7:fb:bb:93:65:80:f5:be:42:1f:40:
         d2:64:71:10:8b:d6:4c:d8:30:79:7e:e9:f2:1a:f9:88:68:a0:
         bb:6f:3e:84:2c:45:0a:d3:6e:35:3d:84:cd:b5:c8:5b:60:cf:
         81:39:ba:63:00:a6:94:60:42:46:0d:bf:9f:76:51:fc:0c:41:
         40:e6:11:6a:ef:07:cc:34:19:d3:d4:d8:f8:bd:ba:5e:79:72:
         d2:61:30:b4:dd:dc:41:07:47:3c:13:62:8b:92:89:a2:e3:07:
         e3:36:81:17:5c:d1:47:48:37:aa:58:6f:5e:8a:61:bf:7f:9c:
         f7:01:7d:95:4c:22:6f:11:d4:71:3f:e6:42:2e:29:c7:cf:fd:
         83:14:f9:02:d3:f1:f9:63:f7:b3:37:45:40:e2:79:81:85:58:
         f3:a5:f9:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdKewRa3hFz6NtVSHXDCHiKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlN2ZiYTExYTMxZDNhYTkwZGUzYzdiYjhiNTZkM2NkMDZl
NmJlNzUwHhcNMjUwNjA3MTMwMTA1WhcNMjUwNjA4MTMwMTA1WjAzMTEwLwYDVQQD
Eyg4MjMyMTg3NTQ0OWIxZGYzM2RlYTViZjZlMWNmZTQzOTVmYjRlNGNlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCsWC07xBCrErpLfXVqtBP9uf9c0
4GPBy+H8g+vxIpMOxrcB44AThkg6zMgqGnouqbLpZGttZN2Z0JCOTgYT7IxhkKex
uTNYC9CM2If1ocExiKecECKo6dh8DcxV8C+VsTQcE5e5XCI3Aeqd2yLmL6DUHo7L
w8kbRQRO8DA9rPDmRT+ZEg6WQMriiUgyDPItin6f8xjTpdTAnbAIVsdB2VUQ81eQ
vFCBSlz5g0l+XGKd4fSXS+g0LFK9hGPUTW59oFeZmxLzFCAwWxfSUn1OXleT9N2R
d0h4b1thIaWOeGPsNj8PzW6qvvcV+sVZi8Zqj3rxx1gd+8HcuIA/G6CtJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIIyGHVEmx3zPepb9uHP5DlftOTOMB8GA1UdIwQY
MBaAFG5/uhGjHTqpDePHu4tW080G5r51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm4tNkVhTWRPcWtONDhlN2kxYlR6UWJtdm5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi81MmVmN2MtOWEzNi00MzYyLThlN2Yt
NjM5NDIxNGExMjJjLzEvYm4tNkVhTWRPcWtONDhlN2kxYlR6UWJtdm5VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi81MmVmN2MtOWEzNi00MzYyLThlN2YtNjM5NDIxNGExMjJj
LzEvYm4tNkVhTWRPcWtONDhlN2kxYlR6UWJtdm5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGiMIh87s
eLk5wsrTiw8xfo4D9GiI3VZJzAk27fuTQIRd6Qn/Xl/BQ4fGlMy8JHLcYqa+5IEw
U5k/ZCpjbIu/TdVvMwXrV+3FBoMfoc2sO7J8M8J3bG9NjBnCM0RMjPZXDMf7u5Nl
gPW+Qh9A0mRxEIvWTNgweX7p8hr5iGigu28+hCxFCtNuNT2EzbXIW2DPgTm6YwCm
lGBCRg2/n3ZR/AxBQOYRau8HzDQZ09TY+L26Xnly0mEwtN3cQQdHPBNii5KJouMH
4zaBF1zRR0g3qlhvXophv3+c9wF9lUwibxHUcT/mQi4px8/9gxT5AtPx+WP3szdF
QOJ5gYVY86X5EQ==
-----END CERTIFICATE-----