Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
File:                     TkMMADsADTVe0WnlXYzPOTg34go.mft (raw, json)
Hash identifier:          +R7Scw4t0avYF+7cbfMwBCMsgqjBk4ZhYZqIkSwNL2o=
Subject key identifier:   D6:68:20:E8:18:22:8B:C3:ED:DA:DD:C1:9C:60:44:92:E3:79:BF:F5
Authority key identifier: 4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A
Certificate issuer:       /CN=4e430c003b000d355ed169e55d8ccf393837e20a
Certificate serial:       0196BC002C2B1BE2AE89C567809D1428E444
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
Manifest number:          0CB7
Signing time:             Sat 10 May 2025 21:00:49 +0000
Manifest this update:     Sat 10 May 2025 21:00:49 +0000
Manifest next update:     Sun 11 May 2025 21:00:49 +0000
Files and hashes:         1: TkMMADsADTVe0WnlXYzPOTg34go.crl (hash: THDxCZBtre8WbyaH647OjLJvmmeKt3hlPNWbfDRgCQk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 21:00:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:bc:00:2c:2b:1b:e2:ae:89:c5:67:80:9d:14:28:e4:44
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4e430c003b000d355ed169e55d8ccf393837e20a
        Validity
            Not Before: May 10 21:00:49 2025 GMT
            Not After : May 11 21:00:49 2025 GMT
        Subject: CN=d66820e818228bc3eddaddc19c604492e379bff5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:e7:fb:6c:c6:26:70:ec:3d:c9:23:c2:00:f5:
                    68:44:ca:8f:1c:20:2c:6e:ea:43:09:6f:4a:53:82:
                    59:c7:74:53:0f:33:fe:8e:d5:fd:58:1f:d2:f8:d3:
                    f5:6a:2a:aa:58:68:62:ca:b2:d3:fd:5c:67:7c:04:
                    c7:4c:ba:ac:5a:07:c7:08:d2:a4:17:66:40:12:ba:
                    f7:e1:b6:5a:95:77:9e:59:c9:4e:e1:a9:88:a2:5b:
                    ed:e3:0a:c2:e9:a2:82:f7:16:55:62:51:27:5c:ef:
                    c2:5a:ce:6a:4b:f0:b3:4a:82:49:a4:95:9b:93:a7:
                    8c:da:45:a6:02:a1:67:ef:2b:eb:c9:83:61:5f:7b:
                    5c:cc:49:e9:a2:ad:9f:03:55:03:f1:03:2a:07:75:
                    39:6d:c9:b8:c6:a0:07:30:a4:08:4b:43:4d:14:af:
                    e8:38:dc:b1:75:28:a6:a7:30:ff:7c:27:76:46:5c:
                    67:b4:b8:a3:56:cd:9f:05:fe:59:8b:b7:6c:69:df:
                    2c:20:db:d8:d9:e0:cf:71:34:00:10:c5:f9:fb:59:
                    87:3f:7c:b4:0b:36:88:42:d5:38:9c:c6:67:84:15:
                    c0:6c:ae:9b:4d:86:2a:e6:2a:c7:03:20:2f:e0:0e:
                    87:d9:b0:c7:bb:d7:42:dd:e9:08:e6:d6:56:ba:ff:
                    20:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:68:20:E8:18:22:8B:C3:ED:DA:DD:C1:9C:60:44:92:E3:79:BF:F5
            X509v3 Authority Key Identifier:
                keyid:4E:43:0C:00:3B:00:0D:35:5E:D1:69:E5:5D:8C:CF:39:38:37:E2:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkMMADsADTVe0WnlXYzPOTg34go.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/82225d-040a-4d9b-a33b-88d8234a6d3e/1/TkMMADsADTVe0WnlXYzPOTg34go.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bb:6f:4d:60:2e:7f:5a:33:86:83:7f:18:89:c7:00:5c:f4:59:
         e8:ff:41:13:e0:b0:21:19:c6:8e:a2:52:ad:45:fb:b3:84:cd:
         5c:4f:41:ec:04:c7:aa:32:b6:a3:59:95:a6:20:4d:cf:89:75:
         99:7f:43:fc:c3:ac:9b:31:23:e4:ce:81:a7:be:d1:31:01:3d:
         88:c5:7d:3b:e4:f1:cb:17:f8:28:28:dc:f1:85:f4:db:30:91:
         77:2d:6e:30:5c:cb:a4:bb:56:ed:ad:ab:da:d6:73:71:53:52:
         b0:83:17:1f:06:78:cb:b9:d9:6d:cd:d3:a3:02:b4:a0:23:26:
         f2:af:b7:ff:33:9a:d0:d2:eb:b3:aa:9b:6f:47:0e:31:5d:50:
         5f:15:49:58:8a:b1:93:13:e9:38:4f:d8:17:a1:3f:29:2d:02:
         a1:bc:40:b7:32:b3:e7:6a:78:7b:5b:70:35:de:0e:8a:06:4f:
         20:10:fa:b9:a6:9c:5d:59:bf:8e:b6:39:36:aa:af:47:df:b8:
         a7:72:58:2f:c2:81:6a:5c:86:16:77:f2:fe:b7:38:be:68:a4:
         20:b9:0a:55:d7:cf:89:23:bb:fe:ff:4e:f9:fa:cf:df:10:cf:
         e0:0c:70:c2:4b:c1:07:01:10:4d:81:50:e1:f0:13:32:1c:12:
         5e:e8:3c:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa8ACwrG+KuicVngJ0UKOREMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlNDMwYzAwM2IwMDBkMzU1ZWQxNjllNTVkOGNjZjM5Mzgz
N2UyMGEwHhcNMjUwNTEwMjEwMDQ5WhcNMjUwNTExMjEwMDQ5WjAzMTEwLwYDVQQD
EyhkNjY4MjBlODE4MjI4YmMzZWRkYWRkYzE5YzYwNDQ5MmUzNzliZmY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4+f7bMYmcOw9ySPCAPVoRMqPHCAs
bupDCW9KU4JZx3RTDzP+jtX9WB/S+NP1aiqqWGhiyrLT/VxnfATHTLqsWgfHCNKk
F2ZAErr34bZalXeeWclO4amIolvt4wrC6aKC9xZVYlEnXO/CWs5qS/CzSoJJpJWb
k6eM2kWmAqFn7yvryYNhX3tczEnpoq2fA1UD8QMqB3U5bcm4xqAHMKQIS0NNFK/o
ONyxdSimpzD/fCd2RlxntLijVs2fBf5Zi7dsad8sINvY2eDPcTQAEMX5+1mHP3y0
CzaIQtU4nMZnhBXAbK6bTYYq5irHAyAv4A6H2bDHu9dC3ekI5tZWuv8gKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNZoIOgYIovD7drdwZxgRJLjeb/1MB8GA1UdIwQY
MBaAFE5DDAA7AA01XtFp5V2Mzzk4N+IKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS84MjIyNWQtMDQwYS00ZDliLWEzM2It
ODhkODIzNGE2ZDNlLzEvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS84MjIyNWQtMDQwYS00ZDliLWEzM2ItODhkODIzNGE2ZDNl
LzEvVGtNTUFEc0FEVFZlMFdubFhZelBPVGczNGdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu29NYC5/
WjOGg38YiccAXPRZ6P9BE+CwIRnGjqJSrUX7s4TNXE9B7ATHqjK2o1mVpiBNz4l1
mX9D/MOsmzEj5M6Bp77RMQE9iMV9O+Txyxf4KCjc8YX02zCRdy1uMFzLpLtW7a2r
2tZzcVNSsIMXHwZ4y7nZbc3TowK0oCMm8q+3/zOa0NLrs6qbb0cOMV1QXxVJWIqx
kxPpOE/YF6E/KS0CobxAtzKz52p4e1twNd4OigZPIBD6uaacXVm/jrY5NqqvR9+4
p3JYL8KBalyGFnfy/rc4vmikILkKVdfPiSO7/v9O+frP3xDP4AxwwkvBBwEQTYFQ
4fATMhwSXug8ag==
-----END CERTIFICATE-----