Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft
File:                     oJD-k_R_g4ea4suDVIjNn31pm8A.mft (raw, json)
Hash identifier:          3e4gzTEYCUMG/a82iGMLIyuXbFa3D/IA7fVo6GC9l08=
Subject key identifier:   90:32:CE:D5:35:D8:D7:0D:BD:2F:7B:41:DD:88:2F:05:85:CA:EA:EA
Authority key identifier: A0:90:FE:93:F4:7F:83:87:9A:E2:CB:83:54:88:CD:9F:7D:69:9B:C0
Certificate issuer:       /CN=a090fe93f47f83879ae2cb835488cd9f7d699bc0
Certificate serial:       0197469E8F11C9EF8FB8BF8A38D6874C1ED8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft
Manifest number:          1579
Signing time:             Fri 06 Jun 2025 19:01:25 +0000
Manifest this update:     Fri 06 Jun 2025 19:01:25 +0000
Manifest next update:     Sat 07 Jun 2025 19:01:25 +0000
Files and hashes:         1: oJD-k_R_g4ea4suDVIjNn31pm8A.crl (hash: B5U2VR36IivZbs6X/XNNPTVeJg59eIe+UeeNUd0S30k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 07 Jun 2025 15:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:46:9e:8f:11:c9:ef:8f:b8:bf:8a:38:d6:87:4c:1e:d8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a090fe93f47f83879ae2cb835488cd9f7d699bc0
        Validity
            Not Before: Jun  6 19:01:25 2025 GMT
            Not After : Jun  7 19:01:25 2025 GMT
        Subject: CN=9032ced535d8d70dbd2f7b41dd882f0585caeaea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8a:fb:c3:ef:dc:87:ef:08:ed:2e:f8:1c:be:f9:
                    60:e4:9b:35:ca:bb:97:b9:86:2f:48:55:ba:65:69:
                    81:41:01:26:14:16:b1:09:cd:bd:db:78:43:d5:d9:
                    64:ec:41:07:f9:f2:76:75:b8:67:89:2c:ee:6d:d8:
                    27:57:7d:3b:2b:f8:68:93:af:79:e6:d0:a4:d8:19:
                    0f:35:20:d1:83:e8:4b:a2:ec:0e:7f:bc:f5:3f:6f:
                    7d:47:8b:e3:10:4e:8d:59:e1:4a:a8:82:da:6f:48:
                    c3:bb:86:17:09:30:c3:e8:9a:d1:97:aa:76:f6:da:
                    82:36:c9:c4:9a:f0:38:29:d6:20:31:d0:81:cd:53:
                    82:a6:e5:c0:ce:24:50:ba:d9:86:3e:c5:35:b5:b3:
                    28:7a:cd:14:5f:88:be:3c:48:2a:79:fb:86:f5:68:
                    b0:fc:b6:f9:bc:61:a5:21:bd:f2:e1:b5:d4:bc:c7:
                    b4:d5:ab:85:03:fc:e8:cd:5b:06:e1:32:1e:c3:86:
                    d6:ae:a6:9e:1e:a0:fe:b4:1e:8e:84:00:1a:f0:41:
                    fa:f0:38:38:da:ec:25:bc:e9:4a:e9:a7:43:7d:c6:
                    42:14:10:a0:b5:78:23:ac:14:3b:fe:b7:73:21:14:
                    fd:17:ca:aa:fb:08:a2:d1:3b:77:c6:ac:2c:8b:01:
                    9c:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:32:CE:D5:35:D8:D7:0D:BD:2F:7B:41:DD:88:2F:05:85:CA:EA:EA
            X509v3 Authority Key Identifier:
                keyid:A0:90:FE:93:F4:7F:83:87:9A:E2:CB:83:54:88:CD:9F:7D:69:9B:C0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:cc:d2:d2:aa:09:fb:6c:72:41:35:cd:3e:92:d1:2a:74:af:
         fe:ed:c2:ae:29:2c:6f:bd:dd:bb:b7:23:7b:d7:49:5a:f3:36:
         b7:21:e7:c2:1e:ba:4d:a5:62:1b:1b:02:fc:f4:8e:80:9e:80:
         8d:26:02:24:7c:e8:c4:f9:e4:bc:54:d0:b1:e9:a3:29:86:2e:
         19:5e:6c:39:72:79:24:21:8a:bc:f6:8b:90:40:9e:3f:8c:b2:
         4e:fd:ba:9b:ba:a0:f9:f0:d8:31:93:37:9f:2e:13:e5:ff:35:
         6e:06:1e:93:bf:f0:d2:68:13:56:6b:9f:03:c5:db:38:01:52:
         fd:25:a3:e2:af:1d:4f:7d:ef:08:a7:9b:59:15:c1:c1:15:b5:
         96:e7:7a:b7:eb:4e:2f:5e:d4:66:a6:74:e6:c7:10:a7:2d:14:
         12:2f:2e:bf:c4:78:b1:8a:19:62:27:d8:68:82:ee:c4:d3:15:
         11:6f:0e:07:81:91:87:62:23:c8:0c:66:92:94:04:90:2b:25:
         74:00:bf:27:5e:8e:4f:c2:c3:53:b2:be:25:b7:9b:ec:1a:db:
         26:25:e1:7d:06:49:5d:00:f8:39:d1:e2:f9:3c:36:3b:c4:95:
         1c:ee:69:25:32:e9:7c:17:45:94:76:3d:32:c1:e0:75:52:7b:
         e8:53:8b:ec
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdGno8Rye+PuL+KONaHTB7YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOTBmZTkzZjQ3ZjgzODc5YWUyY2I4MzU0ODhjZDlmN2Q2
OTliYzAwHhcNMjUwNjA2MTkwMTI1WhcNMjUwNjA3MTkwMTI1WjAzMTEwLwYDVQQD
Eyg5MDMyY2VkNTM1ZDhkNzBkYmQyZjdiNDFkZDg4MmYwNTg1Y2FlYWVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAivvD79yH7wjtLvgcvvlg5Js1yruX
uYYvSFW6ZWmBQQEmFBaxCc2923hD1dlk7EEH+fJ2dbhniSzubdgnV307K/hok695
5tCk2BkPNSDRg+hLouwOf7z1P299R4vjEE6NWeFKqILab0jDu4YXCTDD6JrRl6p2
9tqCNsnEmvA4KdYgMdCBzVOCpuXAziRQutmGPsU1tbMoes0UX4i+PEgqefuG9Wiw
/Lb5vGGlIb3y4bXUvMe01auFA/zozVsG4TIew4bWrqaeHqD+tB6OhAAa8EH68Dg4
2uwlvOlK6adDfcZCFBCgtXgjrBQ7/rdzIRT9F8qq+wii0Tt3xqwsiwGcmwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJAyztU12NcNvS97Qd2ILwWFyurqMB8GA1UdIwQY
MBaAFKCQ/pP0f4OHmuLLg1SIzZ99aZvAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0pELWtfUl9nNGVhNHN1RFZJak5uMzFwbThBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9hYmJjYzktZjgzMi00YjViLWJjMjIt
MjU3ODFlMTE2NzgyLzEvb0pELWtfUl9nNGVhNHN1RFZJak5uMzFwbThBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC9hYmJjYzktZjgzMi00YjViLWJjMjItMjU3ODFlMTE2Nzgy
LzEvb0pELWtfUl9nNGVhNHN1RFZJak5uMzFwbThBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFszS0qoJ
+2xyQTXNPpLRKnSv/u3Criksb73du7cje9dJWvM2tyHnwh66TaViGxsC/PSOgJ6A
jSYCJHzoxPnkvFTQsemjKYYuGV5sOXJ5JCGKvPaLkECeP4yyTv26m7qg+fDYMZM3
ny4T5f81bgYek7/w0mgTVmufA8XbOAFS/SWj4q8dT33vCKebWRXBwRW1lud6t+tO
L17UZqZ05scQpy0UEi8uv8R4sYoZYifYaILuxNMVEW8OB4GRh2IjyAxmkpQEkCsl
dAC/J16OT8LDU7K+Jbeb7BrbJiXhfQZJXQD4OdHi+Tw2O8SVHO5pJTLpfBdFlHY9
MsHgdVJ76FOL7A==
-----END CERTIFICATE-----