Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
File:                     sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json)
Hash identifier:          LH3gWw6kV2K/TlifCfAfovmjxxLZ2W77TRiNHSrESQs=
Subject key identifier:   AF:31:5E:3E:4B:B7:96:CE:B7:84:07:65:30:8F:36:73:CA:69:F8:AC
Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
Certificate issuer:       /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Certificate serial:       0197488D3790BE617288F4B1A3EFB957D451
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
Manifest number:          1577
Signing time:             Sat 07 Jun 2025 04:01:43 +0000
Manifest this update:     Sat 07 Jun 2025 04:01:43 +0000
Manifest next update:     Sun 08 Jun 2025 04:01:43 +0000
Files and hashes:         1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: 2qmc1V0J6r7hmFdkQCNpV7afge705sduqpmVOqFobb4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 22:50:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:48:8d:37:90:be:61:72:88:f4:b1:a3:ef:b9:57:d4:51
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
        Validity
            Not Before: Jun  7 04:01:43 2025 GMT
            Not After : Jun  8 04:01:43 2025 GMT
        Subject: CN=af315e3e4bb796ceb7840765308f3673ca69f8ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:2a:5e:57:fc:15:16:6d:c9:b8:4e:4b:fa:48:
                    2b:e7:59:22:3c:85:4c:4f:b0:62:d4:44:b5:e3:4a:
                    b9:9f:25:58:dd:db:bd:d0:d2:6c:65:b4:11:4b:0c:
                    cc:b0:37:7f:a8:e8:0b:61:98:be:39:f2:55:e9:f9:
                    9e:6c:45:d5:5c:c2:d4:a8:49:e4:1a:9d:35:fb:f6:
                    c8:af:73:35:e2:e9:da:bf:35:39:a3:55:ae:38:3a:
                    d4:cd:bf:5b:e0:4d:cb:87:a9:3f:db:e7:e8:39:2e:
                    6b:3d:24:14:c2:51:49:f6:8e:dc:ba:87:f8:43:aa:
                    d6:9b:e0:8a:42:ee:c9:69:f3:b3:9e:3e:1e:47:3a:
                    89:65:e5:7d:3c:88:e9:99:d9:4b:4b:69:00:06:c9:
                    43:98:c8:d5:f3:b3:88:3f:c5:3b:cf:b1:32:60:dd:
                    b7:42:0e:a3:44:9a:13:75:eb:b9:1b:c4:d9:a4:1e:
                    59:6b:9d:15:55:0d:ec:03:3b:3a:ad:68:80:ed:81:
                    4b:18:07:25:24:86:e2:94:53:76:de:73:da:36:78:
                    a0:37:e8:9d:d6:d8:f2:6c:fd:74:d0:ae:48:b8:66:
                    cf:a7:4f:d0:bf:ee:da:67:4d:56:6b:26:65:00:30:
                    65:31:59:22:75:e1:89:17:75:ce:05:cb:f8:7a:e3:
                    ce:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AF:31:5E:3E:4B:B7:96:CE:B7:84:07:65:30:8F:36:73:CA:69:F8:AC
            X509v3 Authority Key Identifier:
                keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:d3:2e:40:00:f5:98:df:be:b0:5e:59:98:fa:9f:d9:d2:b1:
         ba:50:28:f9:40:65:71:d1:0a:1d:44:9d:82:4d:5f:f5:14:d7:
         d0:c7:20:d8:69:5c:33:60:e9:20:09:cd:e8:11:cf:5b:a7:fe:
         b0:07:05:b9:2b:1a:17:0d:1c:1b:97:83:7c:d5:58:72:3d:83:
         19:75:b9:55:27:e6:23:6d:d9:0f:29:f8:ef:0f:69:83:f8:64:
         e5:31:ed:80:43:b6:f8:c5:d9:ee:de:2d:5e:50:e7:3f:a0:33:
         cb:56:f5:5c:12:24:37:0d:ee:b5:d3:e9:02:0b:32:af:72:e9:
         4f:ea:d5:24:9a:6e:28:b1:67:c7:b9:b3:71:ef:36:5e:cd:f8:
         f1:45:e0:bf:ff:7c:8d:f1:de:28:a7:39:6e:ce:5d:fc:21:98:
         b3:0b:8b:11:1e:24:ec:ca:01:03:7b:dc:f5:73:fe:72:ba:27:
         e4:3c:3f:9c:1d:03:cb:8a:a8:59:7d:82:8d:3b:b8:da:c5:69:
         25:c3:74:b4:f1:14:91:c0:65:4c:bc:fc:90:b0:8e:35:74:bd:
         9b:c5:a5:6e:23:91:64:3d:3b:fb:20:08:18:dc:1f:04:5b:84:
         c9:8d:e3:9d:3d:c8:9c:5d:aa:76:93:0e:cc:9b:bc:5c:bc:2f:
         94:b7:33:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjTeQvmFyiPSxo++5V9RRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwMjljNzI3YzZlMjJlZWQ4ZmJjZDFlOGI3NjkzOTU3OGQw
ZGNhMGEwHhcNMjUwNjA3MDQwMTQzWhcNMjUwNjA4MDQwMTQzWjAzMTEwLwYDVQQD
EyhhZjMxNWUzZTRiYjc5NmNlYjc4NDA3NjUzMDhmMzY3M2NhNjlmOGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1CpeV/wVFm3JuE5L+kgr51kiPIVM
T7Bi1ES140q5nyVY3du90NJsZbQRSwzMsDd/qOgLYZi+OfJV6fmebEXVXMLUqEnk
Gp01+/bIr3M14unavzU5o1WuODrUzb9b4E3Lh6k/2+foOS5rPSQUwlFJ9o7cuof4
Q6rWm+CKQu7JafOznj4eRzqJZeV9PIjpmdlLS2kABslDmMjV87OIP8U7z7EyYN23
Qg6jRJoTdeu5G8TZpB5Za50VVQ3sAzs6rWiA7YFLGAclJIbilFN23nPaNnigN+id
1tjybP100K5IuGbPp0/Qv+7aZ01WayZlADBlMVkideGJF3XOBcv4euPOHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK8xXj5Lt5bOt4QHZTCPNnPKafisMB8GA1UdIwQY
MBaAFLApxyfG4i7tj7zR6LdpOVeNDcoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC80NjE1YTEtOTA1Mi00MGM2LWExOGQt
YTBkNzk5MjRkYjZjLzEvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC80NjE1YTEtOTA1Mi00MGM2LWExOGQtYTBkNzk5MjRkYjZj
LzEvc0NuSEo4YmlMdTJQdk5Ib3QyazVWNDBOeWdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAitMuQAD1
mN++sF5ZmPqf2dKxulAo+UBlcdEKHUSdgk1f9RTX0Mcg2GlcM2DpIAnN6BHPW6f+
sAcFuSsaFw0cG5eDfNVYcj2DGXW5VSfmI23ZDyn47w9pg/hk5THtgEO2+MXZ7t4t
XlDnP6Azy1b1XBIkNw3utdPpAgsyr3LpT+rVJJpuKLFnx7mzce82Xs348UXgv/98
jfHeKKc5bs5d/CGYswuLER4k7MoBA3vc9XP+cron5Dw/nB0Dy4qoWX2CjTu42sVp
JcN0tPEUkcBlTLz8kLCONXS9m8WlbiORZD07+yAIGNwfBFuEyY3jnT3InF2qdpMO
zJu8XLwvlLcz3g==
-----END CERTIFICATE-----