Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
File:                     5XB6RVkqydFxmoV2lgMXeCm0bgo.mft (raw, json)
Hash identifier:          KkgNwZUwi6QosikkS2+upuS28QK8D3exgqbDzIc6G4M=
Subject key identifier:   17:90:86:42:8A:A5:5E:CC:58:25:8D:12:99:80:A3:F0:D2:1A:F4:59
Authority key identifier: E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A
Certificate issuer:       /CN=e5707a45592ac9d1719a85769603177829b46e0a
Certificate serial:       019748FA25F313357942641490E6A11A1B47
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
Manifest number:          0B7A
Signing time:             Sat 07 Jun 2025 06:00:42 +0000
Manifest this update:     Sat 07 Jun 2025 06:00:42 +0000
Manifest next update:     Sun 08 Jun 2025 06:00:42 +0000
Files and hashes:         1: 5XB6RVkqydFxmoV2lgMXeCm0bgo.crl (hash: 8I67SYatOrDsDupr4uwQpmksbVE0qid1jk0LFdAXo2A=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 06:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:fa:25:f3:13:35:79:42:64:14:90:e6:a1:1a:1b:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e5707a45592ac9d1719a85769603177829b46e0a
        Validity
            Not Before: Jun  7 06:00:42 2025 GMT
            Not After : Jun  8 06:00:42 2025 GMT
        Subject: CN=179086428aa55ecc58258d129980a3f0d21af459
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:3e:47:3b:5e:85:18:ca:d6:5d:db:6c:4d:a4:
                    9b:23:06:e4:37:3c:e8:d1:f3:a3:4b:f0:52:8b:5f:
                    75:65:1e:bc:12:78:52:04:2d:47:17:20:fa:78:bb:
                    35:34:7e:f2:10:87:81:8c:f3:d6:8d:e6:e6:a4:e8:
                    e3:40:27:c3:c2:54:2f:0b:ed:1c:1a:16:b5:ae:9f:
                    54:9f:d4:0a:52:c2:6d:84:01:25:ac:34:c8:a2:fd:
                    de:ba:16:62:b1:2e:4c:cf:4d:50:53:9f:56:cd:ca:
                    c4:f8:b2:84:96:c9:92:c7:60:57:28:57:84:57:29:
                    b2:8f:c8:27:46:be:f6:18:24:f5:c8:9f:3e:78:31:
                    57:38:57:8a:3a:e5:89:4a:81:2a:a0:38:d0:f5:86:
                    19:a1:1c:3e:b8:45:3a:86:ec:ee:c8:6a:b2:58:0a:
                    dc:42:33:d9:a7:9f:f4:7c:46:23:1f:4e:a9:e2:e4:
                    8e:18:63:8c:b4:f7:96:d5:c1:a3:fc:1a:5b:df:2e:
                    9f:87:53:c0:49:8d:34:a7:3d:77:b6:b4:e7:2a:53:
                    e1:07:6b:b3:05:2b:cd:e4:96:80:02:e0:61:74:3d:
                    66:7d:4a:d5:e3:e2:39:7e:5f:f8:4c:70:dc:db:50:
                    31:f3:d9:f4:48:ed:79:80:f3:77:e0:8f:99:73:2b:
                    89:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:90:86:42:8A:A5:5E:CC:58:25:8D:12:99:80:A3:F0:D2:1A:F4:59
            X509v3 Authority Key Identifier:
                keyid:E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         02:6b:a2:9a:1c:69:f7:80:f6:39:60:50:f8:42:c8:10:0a:cd:
         f5:85:7d:3f:50:f5:46:cd:e3:8a:8e:56:2c:9b:78:4f:0d:d4:
         ab:f2:40:35:93:67:08:05:65:d4:5d:f4:3d:f9:25:97:81:14:
         bc:63:31:3e:43:c2:c5:4a:dc:19:06:8c:df:24:4e:fe:44:4d:
         ff:ed:b8:b7:1f:74:92:0a:dd:6c:47:b1:2c:13:1c:63:40:1b:
         8a:e9:b0:f2:e7:ee:69:da:0e:59:15:25:91:b5:5c:23:83:e2:
         66:bf:40:d1:53:7f:11:a4:e9:45:8a:fd:27:a2:79:0f:ec:25:
         27:2c:89:81:da:2d:7d:af:2d:17:64:ff:a3:be:d8:84:2f:7a:
         32:0e:a7:bd:2b:0e:86:a7:72:1a:be:24:d8:0f:50:14:e4:48:
         36:a9:ab:70:1e:ba:c0:7c:78:34:b9:b1:26:e9:71:40:7b:9f:
         0c:b2:19:54:22:47:3b:39:c6:fc:a3:8b:84:0d:da:a6:c6:68:
         1c:53:94:69:91:2a:f0:b2:85:f0:5f:c2:76:f7:5f:70:48:eb:
         42:2d:52:62:66:fe:3f:35:40:58:a7:f6:17:24:71:f1:ed:1e:
         91:90:f3:48:40:6c:24:bb:93:1c:74:2a:f4:1e:d5:35:8b:5e:
         2c:db:64:58
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+iXzEzV5QmQUkOahGhtHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU1NzA3YTQ1NTkyYWM5ZDE3MTlhODU3Njk2MDMxNzc4Mjli
NDZlMGEwHhcNMjUwNjA3MDYwMDQyWhcNMjUwNjA4MDYwMDQyWjAzMTEwLwYDVQQD
EygxNzkwODY0MjhhYTU1ZWNjNTgyNThkMTI5OTgwYTNmMGQyMWFmNDU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxT5HO16FGMrWXdtsTaSbIwbkNzzo
0fOjS/BSi191ZR68EnhSBC1HFyD6eLs1NH7yEIeBjPPWjebmpOjjQCfDwlQvC+0c
Gha1rp9Un9QKUsJthAElrDTIov3euhZisS5Mz01QU59WzcrE+LKElsmSx2BXKFeE
Vymyj8gnRr72GCT1yJ8+eDFXOFeKOuWJSoEqoDjQ9YYZoRw+uEU6huzuyGqyWArc
QjPZp5/0fEYjH06p4uSOGGOMtPeW1cGj/Bpb3y6fh1PASY00pz13trTnKlPhB2uz
BSvN5JaAAuBhdD1mfUrV4+I5fl/4THDc21Ax89n0SO15gPN34I+ZcyuJXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBeQhkKKpV7MWCWNEpmAo/DSGvRZMB8GA1UdIwQY
MBaAFOVwekVZKsnRcZqFdpYDF3gptG4KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNVhCNlJWa3F5ZEZ4bW9WMmxnTVhlQ20wYmdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8xNDQ2YWEtNmU0MS00NWMwLWIwOWEt
MzJjMzY1OGIyNWJlLzEvNVhCNlJWa3F5ZEZ4bW9WMmxnTVhlQ20wYmdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS8xNDQ2YWEtNmU0MS00NWMwLWIwOWEtMzJjMzY1OGIyNWJl
LzEvNVhCNlJWa3F5ZEZ4bW9WMmxnTVhlQ20wYmdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAmuimhxp
94D2OWBQ+ELIEArN9YV9P1D1Rs3jio5WLJt4Tw3Uq/JANZNnCAVl1F30Pfkll4EU
vGMxPkPCxUrcGQaM3yRO/kRN/+24tx90kgrdbEexLBMcY0Abiumw8ufuadoOWRUl
kbVcI4PiZr9A0VN/EaTpRYr9J6J5D+wlJyyJgdotfa8tF2T/o77YhC96Mg6nvSsO
hqdyGr4k2A9QFORINqmrcB66wHx4NLmxJulxQHufDLIZVCJHOznG/KOLhA3apsZo
HFOUaZEq8LKF8F/CdvdfcEjrQi1SYmb+PzVAWKf2FyRx8e0ekZDzSEBsJLuTHHQq
9B7VNYteLNtkWA==
-----END CERTIFICATE-----