Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft
File:                     UNorr8N6OYjdKUyROuUiDgONuWQ.mft (raw, json)
Hash identifier:          Sl5otgzfV+UT6WGYEhJ8GEemnH5FFbJJAJcfdLeB0MI=
Subject key identifier:   C6:09:01:FC:32:CD:EC:D1:AE:5A:9D:B9:2B:25:50:EA:56:FE:68:E0
Authority key identifier: 50:DA:2B:AF:C3:7A:39:88:DD:29:4C:91:3A:E5:22:0E:03:8D:B9:64
Certificate issuer:       /CN=50da2bafc37a3988dd294c913ae5220e038db964
Certificate serial:       0196B710BF3F5BB15E0A430BF4320E0E6239
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft
Manifest number:          147D
Signing time:             Fri 09 May 2025 22:00:50 +0000
Manifest this update:     Fri 09 May 2025 22:00:50 +0000
Manifest next update:     Sat 10 May 2025 22:00:50 +0000
Files and hashes:         1: UNorr8N6OYjdKUyROuUiDgONuWQ.crl (hash: khtUPL/c+jP+oalVwZi5W0hkAk/u0dIt3QVWASBNwF4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 10 May 2025 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b7:10:bf:3f:5b:b1:5e:0a:43:0b:f4:32:0e:0e:62:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=50da2bafc37a3988dd294c913ae5220e038db964
        Validity
            Not Before: May  9 22:00:50 2025 GMT
            Not After : May 10 22:00:50 2025 GMT
        Subject: CN=c60901fc32cdecd1ae5a9db92b2550ea56fe68e0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:03:45:4a:43:7e:dd:9a:a0:70:42:2e:19:c9:
                    7f:3e:00:0b:24:29:d6:c4:64:a3:bb:6a:b6:48:1a:
                    be:77:a6:be:fc:2b:f9:e7:55:13:15:a0:00:4c:24:
                    de:66:65:f8:e3:eb:44:cd:81:42:57:f7:38:3d:46:
                    8b:b8:9f:3a:a9:b8:6f:30:65:7c:28:14:cb:48:8f:
                    85:b8:1a:66:5a:6b:aa:35:6d:73:83:2d:b9:f5:31:
                    a1:2b:35:20:69:a8:d2:1b:07:ba:1a:d4:26:8a:f4:
                    81:4c:10:ca:13:95:cf:7b:c2:79:e2:62:3a:c3:3c:
                    3e:63:ac:ee:38:c1:a2:29:e0:c7:fc:fb:24:9e:9b:
                    01:92:45:09:52:7c:05:8d:f2:53:9b:08:5d:ef:b2:
                    72:d8:89:fe:87:f2:f3:58:d9:e3:91:0b:29:79:4a:
                    b6:82:ac:0e:cc:9b:78:23:67:45:26:0d:83:9e:08:
                    eb:58:fe:59:dd:e6:9b:6b:c3:ba:3f:32:aa:04:91:
                    53:41:28:53:c3:11:52:e3:2a:be:89:59:97:4f:89:
                    85:d5:31:00:0d:b8:9d:b7:1d:37:47:ed:b8:83:c2:
                    d2:2c:07:eb:23:3e:ab:37:5a:6e:24:ef:7b:ba:d8:
                    e6:14:c7:85:75:f2:95:b5:5c:4c:de:f9:07:3c:3b:
                    0e:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:09:01:FC:32:CD:EC:D1:AE:5A:9D:B9:2B:25:50:EA:56:FE:68:E0
            X509v3 Authority Key Identifier:
                keyid:50:DA:2B:AF:C3:7A:39:88:DD:29:4C:91:3A:E5:22:0E:03:8D:B9:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UNorr8N6OYjdKUyROuUiDgONuWQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/16453d-28d0-46dd-8577-bdd57751c673/1/UNorr8N6OYjdKUyROuUiDgONuWQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3d:82:23:cc:37:24:9c:8c:37:84:5b:e8:ea:06:46:55:96:77:
         f2:02:80:9e:23:45:a7:58:1e:7c:59:a1:d2:70:36:f1:2f:b4:
         13:97:88:3a:d4:97:86:b5:2b:30:1a:86:e3:c8:30:7d:8b:5a:
         5a:bb:44:09:e1:6d:29:52:a7:e4:b3:d8:00:a0:f0:09:a2:22:
         e1:91:b5:22:cc:dc:a8:ef:58:35:ef:59:6f:85:e3:83:ee:e6:
         a4:e6:a1:47:aa:6a:5a:11:0b:6f:66:16:d7:b7:d2:2d:06:94:
         79:4d:1a:c1:8a:29:ad:2c:45:54:b2:81:8e:32:a1:e0:cd:94:
         50:06:cc:17:4c:e4:a4:c6:96:45:17:93:7f:a0:4c:07:36:98:
         04:37:71:f7:ec:0e:36:31:8c:df:a7:9f:37:10:7c:71:e1:6c:
         dd:4c:f3:f3:67:50:50:17:0d:f6:e5:89:46:c8:cc:75:0e:20:
         d1:1b:28:d6:4f:ee:62:cc:3c:38:8b:31:1c:20:15:61:01:01:
         7c:64:b0:19:f2:52:6a:be:08:1a:5f:9d:88:93:5f:27:7d:6b:
         e0:fc:3a:19:5f:19:78:3b:e4:dd:a3:51:72:60:c4:ec:a4:cd:
         20:69:dd:a4:86:74:8c:1b:fb:9b:67:d4:af:85:f9:76:77:19:
         59:09:a5:1f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa3EL8/W7FeCkML9DIODmI5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwZGEyYmFmYzM3YTM5ODhkZDI5NGM5MTNhZTUyMjBlMDM4
ZGI5NjQwHhcNMjUwNTA5MjIwMDUwWhcNMjUwNTEwMjIwMDUwWjAzMTEwLwYDVQQD
EyhjNjA5MDFmYzMyY2RlY2QxYWU1YTlkYjkyYjI1NTBlYTU2ZmU2OGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlgNFSkN+3ZqgcEIuGcl/PgALJCnW
xGSju2q2SBq+d6a+/Cv551UTFaAATCTeZmX44+tEzYFCV/c4PUaLuJ86qbhvMGV8
KBTLSI+FuBpmWmuqNW1zgy259TGhKzUgaajSGwe6GtQmivSBTBDKE5XPe8J54mI6
wzw+Y6zuOMGiKeDH/PsknpsBkkUJUnwFjfJTmwhd77Jy2In+h/LzWNnjkQspeUq2
gqwOzJt4I2dFJg2DngjrWP5Z3eaba8O6PzKqBJFTQShTwxFS4yq+iVmXT4mF1TEA
Dbidtx03R+24g8LSLAfrIz6rN1puJO97utjmFMeFdfKVtVxM3vkHPDsOzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMYJAfwyzezRrlqduSslUOpW/mjgMB8GA1UdIwQY
MBaAFFDaK6/DejmI3SlMkTrlIg4DjblkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVU5vcnI4TjZPWWpkS1V5Uk91VWlEZ09OdVdRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8xNjQ1M2QtMjhkMC00NmRkLTg1Nzct
YmRkNTc3NTFjNjczLzEvVU5vcnI4TjZPWWpkS1V5Uk91VWlEZ09OdVdRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8xNjQ1M2QtMjhkMC00NmRkLTg1NzctYmRkNTc3NTFjNjcz
LzEvVU5vcnI4TjZPWWpkS1V5Uk91VWlEZ09OdVdRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPYIjzDck
nIw3hFvo6gZGVZZ38gKAniNFp1gefFmh0nA28S+0E5eIOtSXhrUrMBqG48gwfYta
WrtECeFtKVKn5LPYAKDwCaIi4ZG1IszcqO9YNe9Zb4Xjg+7mpOahR6pqWhELb2YW
17fSLQaUeU0awYoprSxFVLKBjjKh4M2UUAbMF0zkpMaWRReTf6BMBzaYBDdx9+wO
NjGM36efNxB8ceFs3Uzz82dQUBcN9uWJRsjMdQ4g0Rso1k/uYsw8OIsxHCAVYQEB
fGSwGfJSar4IGl+diJNfJ31r4Pw6GV8ZeDvk3aNRcmDE7KTNIGndpIZ0jBv7m2fU
r4X5dncZWQmlHw==
-----END CERTIFICATE-----