Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
File:                     MMOt1700croWgExJC2ahCXZZvTE.mft (raw, json)
Hash identifier:          wGX9m1dp4NleCfX+S/bG67kngO3qH8EDM2RiuH0IvoU=
Subject key identifier:   13:EF:88:81:1D:68:F9:C2:3E:80:02:B3:BC:CB:E5:C1:54:C1:BD:32
Authority key identifier: 30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31
Certificate issuer:       /CN=30c3add7bd3472ba16804c490b66a1097659bd31
Certificate serial:       0197B77C805A302ABA346ACDA5A15D8FECBF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
Manifest number:          0B68
Signing time:             Sat 28 Jun 2025 17:01:19 +0000
Manifest this update:     Sat 28 Jun 2025 17:01:19 +0000
Manifest next update:     Sun 29 Jun 2025 17:01:19 +0000
Files and hashes:         1: MMOt1700croWgExJC2ahCXZZvTE.crl (hash: 1WDdFXveF0/J3z/3cKHIRWXKrvOD2k9cKdUhtMrLDro=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:7c:80:5a:30:2a:ba:34:6a:cd:a5:a1:5d:8f:ec:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=30c3add7bd3472ba16804c490b66a1097659bd31
        Validity
            Not Before: Jun 28 17:01:19 2025 GMT
            Not After : Jun 29 17:01:19 2025 GMT
        Subject: CN=13ef88811d68f9c23e8002b3bccbe5c154c1bd32
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:44:f0:53:52:22:d7:48:fa:8a:31:98:69:60:
                    80:1a:54:e0:71:78:b0:6c:e0:9f:75:e1:7b:73:d7:
                    f6:4a:4d:42:9f:a5:c9:62:dc:76:22:ce:47:92:8a:
                    6c:46:66:c1:42:ba:cf:72:25:ab:d2:f0:64:ef:fe:
                    e0:a9:02:bc:c8:9b:4f:31:ce:d3:2a:3a:6f:2f:2a:
                    00:bb:8f:29:6f:04:4f:c6:e1:ba:b2:bf:3f:8b:03:
                    cb:41:6b:56:60:65:33:3f:69:7d:2b:fc:98:b7:a8:
                    b9:15:61:96:4f:aa:c9:5f:1d:ac:6a:4c:52:ba:ca:
                    99:72:b7:44:28:ec:4c:5b:44:e7:90:ad:6d:c2:7b:
                    c4:42:61:cb:8b:2d:a3:97:78:74:20:32:a2:ae:a5:
                    18:9d:ff:7e:92:50:ab:9d:ed:ff:a1:1a:26:19:d4:
                    f9:3b:0b:a2:7a:dc:08:b3:3b:a6:57:eb:14:69:a9:
                    71:dc:d0:2f:51:25:71:b5:78:69:51:8d:09:8d:c2:
                    fa:87:2c:ff:ed:36:7e:2f:1e:7c:36:6b:57:a7:dc:
                    3a:6c:cd:c4:3d:c1:8c:49:9a:02:8c:a0:51:d8:1d:
                    de:44:a3:ed:bd:51:c7:f8:9e:2e:4a:58:79:01:85:
                    52:fd:a2:ef:19:08:f1:a8:4e:a3:b3:dc:93:2f:66:
                    7d:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:EF:88:81:1D:68:F9:C2:3E:80:02:B3:BC:CB:E5:C1:54:C1:BD:32
            X509v3 Authority Key Identifier:
                keyid:30:C3:AD:D7:BD:34:72:BA:16:80:4C:49:0B:66:A1:09:76:59:BD:31

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMOt1700croWgExJC2ahCXZZvTE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/23ccc8-4718-453c-be3e-95cd6924ab4e/1/MMOt1700croWgExJC2ahCXZZvTE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5d:7b:4b:4f:ba:03:f3:35:8f:34:46:1f:8c:7e:c6:f9:ef:fc:
         f9:8a:0a:58:0d:56:f3:52:df:53:a6:36:e1:25:4d:a5:23:9b:
         da:00:c4:61:0e:5f:55:bf:8f:03:29:b3:c1:92:1a:05:f2:e9:
         e9:44:bf:1a:5a:b1:3b:af:83:91:b3:74:6f:65:18:36:ce:05:
         60:57:85:ca:0c:d6:53:77:cf:e0:bc:63:dc:e4:fa:d0:c3:0d:
         c1:a1:d8:81:d7:18:91:a2:63:33:0e:1b:59:a9:fd:56:c1:a3:
         10:50:b6:99:db:c6:fd:04:73:ff:c3:2a:2d:eb:82:56:56:c2:
         3c:19:68:16:24:3c:1c:a9:cd:ff:1a:8e:11:1a:ed:84:9a:0f:
         22:22:eb:c2:d3:7c:2d:3f:e0:15:54:e6:9b:b0:81:69:62:b7:
         91:d8:01:e5:0b:23:c8:be:65:ef:d4:e2:dc:a8:89:34:6b:52:
         5e:19:48:88:f4:10:81:1e:78:8f:66:3f:01:fd:3c:bd:d0:b0:
         cc:50:25:8b:76:68:b5:a2:6c:27:e0:35:f4:2f:fb:f6:46:19:
         7e:64:81:96:ec:25:02:09:39:b1:56:41:10:07:71:e9:52:e9:
         4d:01:dc:bd:98:29:b0:cb:41:fb:14:58:2d:b5:69:63:66:09:
         19:8a:f2:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3fIBaMCq6NGrNpaFdj+y/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYzNhZGQ3YmQzNDcyYmExNjgwNGM0OTBiNjZhMTA5NzY1
OWJkMzEwHhcNMjUwNjI4MTcwMTE5WhcNMjUwNjI5MTcwMTE5WjAzMTEwLwYDVQQD
EygxM2VmODg4MTFkNjhmOWMyM2U4MDAyYjNiY2NiZTVjMTU0YzFiZDMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ETwU1Ii10j6ijGYaWCAGlTgcXiw
bOCfdeF7c9f2Sk1Cn6XJYtx2Is5HkopsRmbBQrrPciWr0vBk7/7gqQK8yJtPMc7T
KjpvLyoAu48pbwRPxuG6sr8/iwPLQWtWYGUzP2l9K/yYt6i5FWGWT6rJXx2sakxS
usqZcrdEKOxMW0TnkK1twnvEQmHLiy2jl3h0IDKirqUYnf9+klCrne3/oRomGdT5
OwuietwIszumV+sUaalx3NAvUSVxtXhpUY0JjcL6hyz/7TZ+Lx58NmtXp9w6bM3E
PcGMSZoCjKBR2B3eRKPtvVHH+J4uSlh5AYVS/aLvGQjxqE6js9yTL2Z9zQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBPviIEdaPnCPoACs7zL5cFUwb0yMB8GA1UdIwQY
MBaAFDDDrde9NHK6FoBMSQtmoQl2Wb0xMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU1PdDE3MDBjcm9XZ0V4SkMyYWhDWFpadlRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8yM2NjYzgtNDcxOC00NTNjLWJlM2Ut
OTVjZDY5MjRhYjRlLzEvTU1PdDE3MDBjcm9XZ0V4SkMyYWhDWFpadlRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi8yM2NjYzgtNDcxOC00NTNjLWJlM2UtOTVjZDY5MjRhYjRl
LzEvTU1PdDE3MDBjcm9XZ0V4SkMyYWhDWFpadlRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXXtLT7oD
8zWPNEYfjH7G+e/8+YoKWA1W81LfU6Y24SVNpSOb2gDEYQ5fVb+PAymzwZIaBfLp
6US/GlqxO6+DkbN0b2UYNs4FYFeFygzWU3fP4Lxj3OT60MMNwaHYgdcYkaJjMw4b
Wan9VsGjEFC2mdvG/QRz/8MqLeuCVlbCPBloFiQ8HKnN/xqOERrthJoPIiLrwtN8
LT/gFVTmm7CBaWK3kdgB5QsjyL5l79Ti3KiJNGtSXhlIiPQQgR54j2Y/Af08vdCw
zFAli3ZotaJsJ+A19C/79kYZfmSBluwlAgk5sVZBEAdx6VLpTQHcvZgpsMtB+xRY
LbVpY2YJGYryDA==
-----END CERTIFICATE-----