Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.mft
File:                     UTNdj7orxzOYOV-90-DW8_89G2Q.mft (raw, json)
Hash identifier:          OF31KExXOrbA/PIh/lWX/in0kNIdNm5S8Cd8i+EFRkI=
Subject key identifier:   A8:49:22:8B:B0:5B:06:BA:EB:07:D1:BA:D9:5E:F0:06:EB:76:1A:4D
Authority key identifier: 51:33:5D:8F:BA:2B:C7:33:98:39:5F:BD:D3:E0:D6:F3:FF:3D:1B:64
Certificate issuer:       /CN=51335d8fba2bc73398395fbdd3e0d6f3ff3d1b64
Certificate serial:       019749681FD3F5493E6B22251495362FB08B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UTNdj7orxzOYOV-90-DW8_89G2Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.mft
Manifest number:          1110
Signing time:             Sat 07 Jun 2025 08:00:49 +0000
Manifest this update:     Sat 07 Jun 2025 08:00:49 +0000
Manifest next update:     Sun 08 Jun 2025 08:00:49 +0000
Files and hashes:         1: UTNdj7orxzOYOV-90-DW8_89G2Q.crl (hash: cLSHGpGk7BmvMHqxzTHqB3addCbuC09uxSCMsn5mSf4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UTNdj7orxzOYOV-90-DW8_89G2Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 08 Jun 2025 08:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:49:68:1f:d3:f5:49:3e:6b:22:25:14:95:36:2f:b0:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=51335d8fba2bc73398395fbdd3e0d6f3ff3d1b64
        Validity
            Not Before: Jun  7 08:00:49 2025 GMT
            Not After : Jun  8 08:00:49 2025 GMT
        Subject: CN=a849228bb05b06baeb07d1bad95ef006eb761a4d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:b6:cb:34:f6:76:ba:fb:62:6f:23:f6:4e:dc:
                    b1:5b:55:7e:1d:f0:85:e8:09:84:8f:58:a6:81:3e:
                    2b:72:5a:d3:f7:e9:79:85:89:7c:9f:2c:43:06:3e:
                    c7:d9:0c:8a:20:87:50:35:1b:ab:3b:1f:06:3f:63:
                    39:ae:61:3e:ad:8f:04:76:e8:9e:6b:a7:44:91:c7:
                    40:6c:c0:d2:62:c3:f2:7a:6c:85:43:d5:2c:71:c5:
                    c9:e5:5f:f4:70:91:21:91:9b:b3:5d:4f:1a:e6:3c:
                    07:be:ef:19:63:53:a7:7f:fe:e8:cc:0a:58:cd:c7:
                    e3:d5:6e:a6:29:25:cd:e1:64:2b:a0:d1:1f:19:1c:
                    78:46:1f:58:84:ad:14:f1:26:61:fd:e8:92:9a:cc:
                    58:1c:fb:09:d3:df:ea:65:f9:da:83:d7:2f:f6:0d:
                    81:81:b3:a8:a3:0c:83:e0:f0:86:d2:67:d6:69:bc:
                    32:5a:52:21:59:03:20:ee:ae:d8:13:2f:09:19:e4:
                    10:4d:f2:93:10:a7:c5:71:ed:b0:2e:3e:1c:2c:bf:
                    9f:29:60:ff:f3:be:9a:9d:cf:22:ab:3e:55:12:72:
                    2b:11:b0:7f:ec:f1:4c:30:07:57:3c:b9:64:9e:eb:
                    ce:8d:cc:82:24:df:93:6b:92:63:cc:a1:20:c1:e9:
                    9e:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:49:22:8B:B0:5B:06:BA:EB:07:D1:BA:D9:5E:F0:06:EB:76:1A:4D
            X509v3 Authority Key Identifier:
                keyid:51:33:5D:8F:BA:2B:C7:33:98:39:5F:BD:D3:E0:D6:F3:FF:3D:1B:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTNdj7orxzOYOV-90-DW8_89G2Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/42b317-12c8-4dd1-9c55-bfa969e567b1/1/UTNdj7orxzOYOV-90-DW8_89G2Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:47:d8:53:30:0e:66:63:27:e2:d7:9a:e5:f7:75:9a:2e:b3:
         cb:2e:46:9c:9c:3f:24:c3:87:d3:3f:af:70:4f:5e:3a:05:9a:
         b3:b8:a6:4b:81:25:2e:bf:28:a1:be:94:77:6e:d7:73:5f:ec:
         c3:93:4f:71:c5:99:6d:4b:fd:a9:df:8a:c7:ff:45:4f:ef:ad:
         f3:45:43:1b:48:01:4a:00:46:29:e4:5a:80:f7:58:b4:3c:73:
         99:86:ae:7a:9e:c5:bd:a5:29:0a:e3:4b:f6:1f:6c:01:b3:95:
         51:18:52:a3:3e:07:3e:37:70:c9:bd:ca:21:dc:ca:97:1e:e7:
         43:0a:20:9b:27:ce:85:b6:9a:4b:af:30:41:37:d0:01:3d:0c:
         7e:f2:ac:db:52:30:fb:59:31:fe:b9:b3:c3:90:0b:41:f6:8e:
         48:c7:25:a2:58:4c:98:17:7b:08:1d:35:25:65:a3:b9:3c:3b:
         83:fd:87:45:91:15:de:ae:93:5a:17:5a:03:8a:54:48:89:59:
         1f:2c:6a:19:e6:c7:f4:61:66:3a:a3:4e:a4:6b:66:2c:e5:48:
         42:14:70:57:63:84:f9:c5:31:29:34:c7:1d:57:24:4b:d9:36:
         30:e0:06:6b:29:c1:77:7b:79:c5:e6:77:86:28:fc:c6:85:57:
         8e:a6:e7:db
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJaB/T9Uk+ayIlFJU2L7CLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUxMzM1ZDhmYmEyYmM3MzM5ODM5NWZiZGQzZTBkNmYzZmYz
ZDFiNjQwHhcNMjUwNjA3MDgwMDQ5WhcNMjUwNjA4MDgwMDQ5WjAzMTEwLwYDVQQD
EyhhODQ5MjI4YmIwNWIwNmJhZWIwN2QxYmFkOTVlZjAwNmViNzYxYTRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAubbLNPZ2uvtibyP2TtyxW1V+HfCF
6AmEj1imgT4rclrT9+l5hYl8nyxDBj7H2QyKIIdQNRurOx8GP2M5rmE+rY8Eduie
a6dEkcdAbMDSYsPyemyFQ9UsccXJ5V/0cJEhkZuzXU8a5jwHvu8ZY1Onf/7ozApY
zcfj1W6mKSXN4WQroNEfGRx4Rh9YhK0U8SZh/eiSmsxYHPsJ09/qZfnag9cv9g2B
gbOoowyD4PCG0mfWabwyWlIhWQMg7q7YEy8JGeQQTfKTEKfFce2wLj4cLL+fKWD/
876anc8iqz5VEnIrEbB/7PFMMAdXPLlknuvOjcyCJN+Ta5JjzKEgweme9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKhJIouwWwa66wfRutle8AbrdhpNMB8GA1UdIwQY
MBaAFFEzXY+6K8czmDlfvdPg1vP/PRtkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVVROZGo3b3J4ek9ZT1YtOTAtRFc4Xzg5RzJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYS80MmIzMTctMTJjOC00ZGQxLTljNTUt
YmZhOTY5ZTU2N2IxLzEvVVROZGo3b3J4ek9ZT1YtOTAtRFc4Xzg5RzJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYS80MmIzMTctMTJjOC00ZGQxLTljNTUtYmZhOTY5ZTU2N2Ix
LzEvVVROZGo3b3J4ek9ZT1YtOTAtRFc4Xzg5RzJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa0fYUzAO
ZmMn4tea5fd1mi6zyy5GnJw/JMOH0z+vcE9eOgWas7imS4ElLr8oob6Ud27Xc1/s
w5NPccWZbUv9qd+Kx/9FT++t80VDG0gBSgBGKeRagPdYtDxzmYauep7FvaUpCuNL
9h9sAbOVURhSoz4HPjdwyb3KIdzKlx7nQwogmyfOhbaaS68wQTfQAT0MfvKs21Iw
+1kx/rmzw5ALQfaOSMclolhMmBd7CB01JWWjuTw7g/2HRZEV3q6TWhdaA4pUSIlZ
HyxqGebH9GFmOqNOpGtmLOVIQhRwV2OE+cUxKTTHHVckS9k2MOAGaynBd3t5xeZ3
hij8xoVXjqbn2w==
-----END CERTIFICATE-----