Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/97940f-907b-46c2-b2c2-f22980e5ca92/1/2TLsITGy__Du_D-3jLxbjTLvHGE.mft
File:                     2TLsITGy__Du_D-3jLxbjTLvHGE.mft (raw, json)
Hash identifier:          DLqScwy+dFZPVyV3g1vRzU8ygwKlPnXvL4AXrDCNxhY=
Subject key identifier:   F8:8A:E0:7B:BD:8F:20:C0:D2:57:04:7C:BC:8A:92:DB:1F:D5:EE:3F
Authority key identifier: D9:32:EC:21:31:B2:FF:F0:EE:FC:3F:B7:8C:BC:5B:8D:32:EF:1C:61
Certificate issuer:       /CN=d932ec2131b2fff0eefc3fb78cbc5b8d32ef1c61
Certificate serial:       0197B9D8AE54E8267CB947515AE78D4177C6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2TLsITGy__Du_D-3jLxbjTLvHGE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/97940f-907b-46c2-b2c2-f22980e5ca92/1/2TLsITGy__Du_D-3jLxbjTLvHGE.mft
Manifest number:          1082
Signing time:             Sun 29 Jun 2025 04:01:14 +0000
Manifest this update:     Sun 29 Jun 2025 04:01:14 +0000
Manifest next update:     Mon 30 Jun 2025 04:01:14 +0000
Files and hashes:         1: 2TLsITGy__Du_D-3jLxbjTLvHGE.crl (hash: 0ltqfHhehazEuHQJESHRCaNENOG3pIDSa72skC0kqyw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/97940f-907b-46c2-b2c2-f22980e5ca92/1/2TLsITGy__Du_D-3jLxbjTLvHGE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/97940f-907b-46c2-b2c2-f22980e5ca92/1/2TLsITGy__Du_D-3jLxbjTLvHGE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2TLsITGy__Du_D-3jLxbjTLvHGE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 04:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b9:d8:ae:54:e8:26:7c:b9:47:51:5a:e7:8d:41:77:c6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d932ec2131b2fff0eefc3fb78cbc5b8d32ef1c61
        Validity
            Not Before: Jun 29 04:01:14 2025 GMT
            Not After : Jun 30 04:01:14 2025 GMT
        Subject: CN=f88ae07bbd8f20c0d257047cbc8a92db1fd5ee3f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:f9:e9:8c:58:c9:7b:79:1d:33:77:46:f8:04:
                    d8:8e:57:3e:12:2c:e3:a8:4e:35:be:26:1f:2c:34:
                    ab:99:fa:0f:30:a9:a7:cd:b3:ac:47:0e:c0:ef:91:
                    07:6d:63:9d:64:74:73:44:99:67:b9:b2:aa:75:ca:
                    b9:da:c1:7c:56:c8:15:fb:d7:f6:c7:65:2d:da:f2:
                    c5:bf:66:c4:1b:fb:0d:22:e7:5f:f4:b8:b0:0b:97:
                    82:25:79:a0:c4:97:23:6b:59:0a:d3:91:7a:98:e3:
                    a7:a2:5e:3f:91:f5:92:8b:c2:f1:9f:9c:e0:51:a9:
                    82:83:1a:2b:66:8b:b3:b5:f1:14:13:68:4a:92:df:
                    0c:40:6f:84:cb:f5:b0:21:93:1e:8b:32:ef:b1:8d:
                    d4:2a:f1:02:c8:ad:0a:cd:eb:68:99:f9:30:1d:5f:
                    1c:dd:d6:0a:81:86:8a:47:4b:f5:91:9c:43:b0:d0:
                    5e:87:45:56:4b:91:fc:55:55:90:af:68:88:44:cb:
                    a5:17:61:95:3a:60:c1:ca:bc:4c:d2:12:11:bf:d7:
                    4c:f1:13:2f:14:fe:c9:79:97:70:3b:69:eb:54:96:
                    83:64:70:ea:56:3d:71:4d:b0:15:a2:3f:a8:65:c9:
                    26:91:58:32:9b:15:a7:9c:c4:53:d7:ba:17:c4:a0:
                    3a:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F8:8A:E0:7B:BD:8F:20:C0:D2:57:04:7C:BC:8A:92:DB:1F:D5:EE:3F
            X509v3 Authority Key Identifier:
                keyid:D9:32:EC:21:31:B2:FF:F0:EE:FC:3F:B7:8C:BC:5B:8D:32:EF:1C:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2TLsITGy__Du_D-3jLxbjTLvHGE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/97940f-907b-46c2-b2c2-f22980e5ca92/1/2TLsITGy__Du_D-3jLxbjTLvHGE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/97940f-907b-46c2-b2c2-f22980e5ca92/1/2TLsITGy__Du_D-3jLxbjTLvHGE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:ea:27:35:30:3b:d8:2f:6f:d5:45:57:ea:ce:71:b0:89:c3:
         ba:5d:6f:e4:d0:0f:0b:3d:97:a1:1a:ff:0c:6e:17:ac:d7:a3:
         0e:23:90:63:67:24:e7:f2:44:cd:10:f0:ab:f3:da:0b:c0:f8:
         79:e4:31:a8:8c:91:2b:3c:44:da:1e:98:07:5a:11:64:d1:f0:
         48:9c:44:9b:f0:fd:69:fa:b5:fd:50:3b:e4:e2:4e:58:50:99:
         60:fe:c0:bf:b9:92:a7:7a:6c:bc:3d:4a:4e:4b:2b:81:a1:7e:
         f0:75:e9:83:5f:21:4f:e0:de:76:6b:6e:12:8c:c3:5f:cf:94:
         e1:d9:f4:ed:14:a2:82:5e:fc:40:c0:0b:ff:f8:bd:75:4b:56:
         02:9b:96:92:4f:bb:bd:0c:c7:13:13:77:94:97:56:af:f0:13:
         d7:de:12:98:ea:86:bf:c8:7a:81:ad:1f:be:38:52:09:85:73:
         63:ec:f6:9b:44:e0:f1:97:e2:f0:32:98:f2:17:2e:cf:bd:d7:
         c0:44:f7:9f:b2:b6:07:f3:03:b9:1e:bc:49:4b:a6:18:64:d1:
         b0:e0:54:7b:d7:df:d8:77:d9:ff:b9:ff:8e:aa:3c:f9:9f:0a:
         4b:63:61:ad:69:85:b2:fe:8b:a2:3b:93:4c:4f:34:02:bd:85:
         80:9f:76:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe52K5U6CZ8uUdRWueNQXfGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ5MzJlYzIxMzFiMmZmZjBlZWZjM2ZiNzhjYmM1YjhkMzJl
ZjFjNjEwHhcNMjUwNjI5MDQwMTE0WhcNMjUwNjMwMDQwMTE0WjAzMTEwLwYDVQQD
EyhmODhhZTA3YmJkOGYyMGMwZDI1NzA0N2NiYzhhOTJkYjFmZDVlZTNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfnpjFjJe3kdM3dG+ATYjlc+Eizj
qE41viYfLDSrmfoPMKmnzbOsRw7A75EHbWOdZHRzRJlnubKqdcq52sF8VsgV+9f2
x2Ut2vLFv2bEG/sNIudf9LiwC5eCJXmgxJcja1kK05F6mOOnol4/kfWSi8Lxn5zg
UamCgxorZouztfEUE2hKkt8MQG+Ey/WwIZMeizLvsY3UKvECyK0KzetomfkwHV8c
3dYKgYaKR0v1kZxDsNBeh0VWS5H8VVWQr2iIRMulF2GVOmDByrxM0hIRv9dM8RMv
FP7JeZdwO2nrVJaDZHDqVj1xTbAVoj+oZckmkVgymxWnnMRT17oXxKA6oQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPiK4Hu9jyDA0lcEfLyKktsf1e4/MB8GA1UdIwQY
MBaAFNky7CExsv/w7vw/t4y8W40y7xxhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMlRMc0lUR3lfX0R1X0QtM2pMeGJqVEx2SEdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi85Nzk0MGYtOTA3Yi00NmMyLWIyYzIt
ZjIyOTgwZTVjYTkyLzEvMlRMc0lUR3lfX0R1X0QtM2pMeGJqVEx2SEdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi85Nzk0MGYtOTA3Yi00NmMyLWIyYzItZjIyOTgwZTVjYTky
LzEvMlRMc0lUR3lfX0R1X0QtM2pMeGJqVEx2SEdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHOonNTA7
2C9v1UVX6s5xsInDul1v5NAPCz2XoRr/DG4XrNejDiOQY2ck5/JEzRDwq/PaC8D4
eeQxqIyRKzxE2h6YB1oRZNHwSJxEm/D9afq1/VA75OJOWFCZYP7Av7mSp3psvD1K
TksrgaF+8HXpg18hT+DedmtuEozDX8+U4dn07RSigl78QMAL//i9dUtWApuWkk+7
vQzHExN3lJdWr/AT194SmOqGv8h6ga0fvjhSCYVzY+z2m0Tg8Zfi8DKY8hcuz73X
wET3n7K2B/MDuR68SUumGGTRsOBUe9ff2HfZ/7n/jqo8+Z8KS2NhrWmFsv6LojuT
TE80Ar2FgJ92ow==
-----END CERTIFICATE-----