Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
File:                     orO6gtodtcGUN6wzeDhG8vK_9GI.mft (raw, json)
Hash identifier:          xZD5c6C7RLwExmVoHUDIZEAPf9maTyQdsN85/hXEXp0=
Subject key identifier:   43:2D:B3:5A:26:48:AB:4C:58:B2:44:53:2C:D3:7E:AC:44:D8:47:32
Authority key identifier: A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62
Certificate issuer:       /CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
Certificate serial:       0197BA7EAD28D26530FE7F5EDB19D840EC57
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
Manifest number:          0357
Signing time:             Sun 29 Jun 2025 07:02:33 +0000
Manifest this update:     Sun 29 Jun 2025 07:02:33 +0000
Manifest next update:     Mon 30 Jun 2025 07:02:33 +0000
Files and hashes:         1: orO6gtodtcGUN6wzeDhG8vK_9GI.crl (hash: wBJfQTDph8v0hPBRBCXVd/rVZjJnqo5LoYGA+7JJPuw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 07:02:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:ba:7e:ad:28:d2:65:30:fe:7f:5e:db:19:d8:40:ec:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
        Validity
            Not Before: Jun 29 07:02:33 2025 GMT
            Not After : Jun 30 07:02:33 2025 GMT
        Subject: CN=432db35a2648ab4c58b244532cd37eac44d84732
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e9:bd:3a:ef:9b:12:1f:84:70:1e:2d:57:2e:25:
                    3b:0e:04:31:51:f9:9b:b4:e1:e8:c2:8c:6c:41:a4:
                    03:9d:88:61:12:fd:cb:a6:21:ca:8e:c6:38:80:62:
                    41:bb:c6:93:d6:55:b2:95:76:8f:dd:af:29:fb:03:
                    17:46:7d:a3:9d:02:17:05:c6:7e:bc:ef:32:88:45:
                    a0:49:05:31:ee:40:26:d8:1c:3e:8b:7d:07:11:66:
                    55:21:d0:45:f6:de:8a:22:ee:b7:67:80:c6:19:01:
                    bd:c2:dd:74:45:20:e8:1d:56:2c:da:b3:1b:e8:ba:
                    43:46:4e:c5:46:27:75:17:4b:2f:7b:ac:6b:0c:70:
                    4b:22:5b:96:8e:cd:37:bc:03:d1:e2:1a:85:f7:98:
                    02:6d:55:ee:fe:f7:f4:cd:53:bf:38:66:78:c7:fc:
                    6e:96:53:78:b0:93:3f:b0:a9:92:76:0c:45:39:dc:
                    33:64:52:87:f8:f6:94:da:7f:ff:8c:74:39:04:8d:
                    1b:7b:32:23:79:82:b8:0f:e6:16:83:3f:fa:4c:b1:
                    e5:5a:0a:6a:14:0f:f4:fc:6d:7a:61:56:f8:e2:3b:
                    bc:db:17:3d:a5:1f:be:34:a2:ae:d3:73:93:ab:a5:
                    7b:32:d6:e2:83:94:96:dc:4f:ba:7a:14:9f:77:93:
                    b3:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:2D:B3:5A:26:48:AB:4C:58:B2:44:53:2C:D3:7E:AC:44:D8:47:32
            X509v3 Authority Key Identifier:
                keyid:A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:52:ea:2b:8e:be:3a:61:9a:21:1b:ff:68:d3:3f:a0:a6:5c:
         9d:6b:c8:7e:ba:7c:b8:0f:6c:a6:97:42:6e:c2:d5:c1:27:44:
         b6:39:6e:0b:02:b7:c9:a9:85:60:2a:c9:ef:9a:d2:2c:e0:41:
         32:c0:8a:3b:cc:ad:3e:09:83:21:c5:d4:17:06:80:7d:f9:93:
         30:72:07:6a:b0:c9:1a:ae:a9:51:91:54:bc:77:ef:63:23:c0:
         2e:7d:55:4c:1e:16:80:e7:2e:d5:8a:34:8d:e5:61:77:05:98:
         28:f4:6c:11:18:da:2f:b9:ae:e7:2f:97:07:24:cd:5d:39:32:
         ad:1e:d7:43:72:28:c8:8d:77:24:6d:7d:11:38:b2:18:7f:3f:
         dd:9f:32:ed:87:63:00:59:99:cc:7f:de:03:c4:58:f1:7a:13:
         f4:7a:1d:84:c0:bb:3c:3d:61:31:65:4c:df:16:6f:85:09:e2:
         ea:b2:ac:96:2e:4b:7a:af:1a:09:d4:2f:84:89:aa:ab:42:59:
         df:83:b6:09:ce:ed:2f:2b:6b:92:74:8b:ad:c1:89:35:6f:ec:
         8d:f6:06:b7:fd:1f:6b:7a:d7:d9:dc:6c:22:69:d0:7a:d8:04:
         88:de:98:25:ca:c3:ee:d6:df:72:07:11:39:18:97:61:9c:03:
         48:ac:d9:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6fq0o0mUw/n9e2xnYQOxXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyYjNiYTgyZGExZGI1YzE5NDM3YWMzMzc4Mzg0NmYyZjJi
ZmY0NjIwHhcNMjUwNjI5MDcwMjMzWhcNMjUwNjMwMDcwMjMzWjAzMTEwLwYDVQQD
Eyg0MzJkYjM1YTI2NDhhYjRjNThiMjQ0NTMyY2QzN2VhYzQ0ZDg0NzMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6b0675sSH4RwHi1XLiU7DgQxUfmb
tOHowoxsQaQDnYhhEv3LpiHKjsY4gGJBu8aT1lWylXaP3a8p+wMXRn2jnQIXBcZ+
vO8yiEWgSQUx7kAm2Bw+i30HEWZVIdBF9t6KIu63Z4DGGQG9wt10RSDoHVYs2rMb
6LpDRk7FRid1F0sve6xrDHBLIluWjs03vAPR4hqF95gCbVXu/vf0zVO/OGZ4x/xu
llN4sJM/sKmSdgxFOdwzZFKH+PaU2n//jHQ5BI0bezIjeYK4D+YWgz/6TLHlWgpq
FA/0/G16YVb44ju82xc9pR++NKKu03OTq6V7Mtbig5SW3E+6ehSfd5Oz/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEMts1omSKtMWLJEUyzTfqxE2EcyMB8GA1UdIwQY
MBaAFKKzuoLaHbXBlDesM3g4RvLyv/RiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NS80NDk4MWMtOTZmOC00ODY2LWI3ZmUt
Zjg5OGQyMDRlYjRlLzEvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NS80NDk4MWMtOTZmOC00ODY2LWI3ZmUtZjg5OGQyMDRlYjRl
LzEvb3JPNmd0b2R0Y0dVTjZ3emVEaEc4dktfOUdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJVLqK46+
OmGaIRv/aNM/oKZcnWvIfrp8uA9sppdCbsLVwSdEtjluCwK3yamFYCrJ75rSLOBB
MsCKO8ytPgmDIcXUFwaAffmTMHIHarDJGq6pUZFUvHfvYyPALn1VTB4WgOcu1Yo0
jeVhdwWYKPRsERjaL7mu5y+XByTNXTkyrR7XQ3IoyI13JG19ETiyGH8/3Z8y7Ydj
AFmZzH/eA8RY8XoT9HodhMC7PD1hMWVM3xZvhQni6rKsli5Leq8aCdQvhImqq0JZ
34O2Cc7tLytrknSLrcGJNW/sjfYGt/0fa3rX2dxsImnQetgEiN6YJcrD7tbfcgcR
ORiXYZwDSKzZvA==
-----END CERTIFICATE-----