Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
File:                     pWT0IqqXs96coPZ5Gfv4LrH93dI.mft (raw, json)
Hash identifier:          VNz9SQzsTa98sXzxm8UMIbGB7UABcKuyRl6X0D6K5TU=
Subject key identifier:   E2:F3:E9:FF:B8:88:47:37:7F:AA:64:30:19:AB:95:87:C7:34:C8:9D
Authority key identifier: A5:64:F4:22:AA:97:B3:DE:9C:A0:F6:79:19:FB:F8:2E:B1:FD:DD:D2
Certificate issuer:       /CN=a564f422aa97b3de9ca0f67919fbf82eb1fdddd2
Certificate serial:       0197C803B11C782AE3E3E4D4CC009B6EA5F8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
Manifest number:          05E8
Signing time:             Tue 01 Jul 2025 22:02:54 +0000
Manifest this update:     Tue 01 Jul 2025 22:02:54 +0000
Manifest next update:     Wed 02 Jul 2025 22:02:54 +0000
Files and hashes:         1: pWT0IqqXs96coPZ5Gfv4LrH93dI.crl (hash: YFlcuM+d15LQReWxHBSkbN5RZt8j8v0MaZb4bCsNXqE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 02 Jul 2025 22:02:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:c8:03:b1:1c:78:2a:e3:e3:e4:d4:cc:00:9b:6e:a5:f8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a564f422aa97b3de9ca0f67919fbf82eb1fdddd2
        Validity
            Not Before: Jul  1 22:02:54 2025 GMT
            Not After : Jul  2 22:02:54 2025 GMT
        Subject: CN=e2f3e9ffb88847377faa643019ab9587c734c89d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:41:c3:88:4f:f8:6c:b7:8c:07:01:b6:a5:cc:
                    dc:44:a5:70:69:52:cc:62:be:32:83:11:14:80:9c:
                    fd:db:06:e1:e8:5b:21:c3:fa:8e:ff:8a:96:a5:92:
                    8d:f7:da:c3:d2:39:20:3f:b4:0f:cb:44:31:ae:4a:
                    c1:df:31:b5:21:78:ae:04:c3:87:2a:08:54:1d:2f:
                    e3:c9:83:9e:6c:e4:32:93:19:5d:7b:e9:af:d9:15:
                    7d:4a:94:47:ba:34:8e:21:39:c1:36:38:e4:f9:12:
                    da:25:29:1c:04:d9:fa:02:c1:81:69:0d:66:6a:d1:
                    2f:5b:6d:63:e3:f5:87:79:23:73:a6:63:88:2a:e5:
                    eb:5a:e5:66:02:e6:94:29:96:2d:ed:b5:9e:bf:ab:
                    ac:0b:35:28:e9:da:70:73:cb:a3:cd:31:44:6c:7f:
                    ca:d0:63:fe:41:ce:8c:02:02:aa:1d:09:81:c1:b2:
                    02:6d:cb:df:bf:f6:34:bd:15:34:53:1e:9b:49:f6:
                    73:ec:05:a1:39:b1:6c:25:ab:e8:0d:8b:4d:2f:7c:
                    5e:96:59:1f:70:cd:04:50:90:51:52:83:b6:fc:d4:
                    77:76:4c:4c:6b:db:97:46:76:0f:54:0c:95:d4:c0:
                    77:c0:3b:28:5c:72:ff:5f:0c:d1:4a:06:5e:ca:39:
                    93:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:F3:E9:FF:B8:88:47:37:7F:AA:64:30:19:AB:95:87:C7:34:C8:9D
            X509v3 Authority Key Identifier:
                keyid:A5:64:F4:22:AA:97:B3:DE:9C:A0:F6:79:19:FB:F8:2E:B1:FD:DD:D2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pWT0IqqXs96coPZ5Gfv4LrH93dI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/d59e98-210f-4b55-ac4a-0268381107af/1/pWT0IqqXs96coPZ5Gfv4LrH93dI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:21:74:aa:62:bb:a9:4a:49:0d:f7:0b:c3:48:7c:f0:13:8d:
         b0:81:89:ec:a8:05:06:70:6d:b9:c7:ea:5d:87:56:63:6b:29:
         7f:24:92:d9:63:9b:85:36:1a:f4:9e:44:18:1e:1c:89:78:94:
         28:dc:30:e9:e8:ce:76:67:5e:01:76:7e:e8:45:b4:a9:ab:51:
         db:d2:1c:18:14:33:c8:74:25:68:3f:3f:10:8e:65:ad:8f:f2:
         a1:3f:d3:97:9e:a6:4d:60:77:9c:cc:eb:a8:61:4f:15:5f:15:
         7f:95:c7:48:f3:47:ae:f1:e6:86:e3:54:38:95:bb:78:b2:11:
         3c:de:c3:0d:22:dd:50:7b:2f:62:37:78:74:df:28:4a:d6:55:
         82:de:1c:31:94:73:c6:46:c1:43:54:1c:9e:5b:f6:49:8e:66:
         19:2a:b9:ad:43:64:1b:0d:f2:ed:fb:5a:36:30:2c:a5:b9:8e:
         bc:cd:3d:85:21:d2:83:58:63:35:94:80:65:1c:60:f1:b7:db:
         a8:99:c0:07:6e:5a:80:97:fb:73:43:b8:20:91:5c:bb:33:1b:
         95:6f:5c:cf:57:04:94:42:87:fa:14:33:23:e5:18:7b:e5:05:
         b3:3c:de:94:ab:45:2f:23:d4:a3:3e:3a:2d:aa:40:d1:9f:e2:
         ff:b3:ef:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfIA7EceCrj4+TUzACbbqX4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1NjRmNDIyYWE5N2IzZGU5Y2EwZjY3OTE5ZmJmODJlYjFm
ZGRkZDIwHhcNMjUwNzAxMjIwMjU0WhcNMjUwNzAyMjIwMjU0WjAzMTEwLwYDVQQD
EyhlMmYzZTlmZmI4ODg0NzM3N2ZhYTY0MzAxOWFiOTU4N2M3MzRjODlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmUHDiE/4bLeMBwG2pczcRKVwaVLM
Yr4ygxEUgJz92wbh6Fshw/qO/4qWpZKN99rD0jkgP7QPy0QxrkrB3zG1IXiuBMOH
KghUHS/jyYOebOQykxlde+mv2RV9SpRHujSOITnBNjjk+RLaJSkcBNn6AsGBaQ1m
atEvW21j4/WHeSNzpmOIKuXrWuVmAuaUKZYt7bWev6usCzUo6dpwc8ujzTFEbH/K
0GP+Qc6MAgKqHQmBwbICbcvfv/Y0vRU0Ux6bSfZz7AWhObFsJavoDYtNL3xellkf
cM0EUJBRUoO2/NR3dkxMa9uXRnYPVAyV1MB3wDsoXHL/XwzRSgZeyjmT6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOLz6f+4iEc3f6pkMBmrlYfHNMidMB8GA1UdIwQY
MBaAFKVk9CKql7PenKD2eRn7+C6x/d3SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFdUMElxcVhzOTZjb1BaNUdmdjRMckg5M2RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kNTllOTgtMjEwZi00YjU1LWFjNGEt
MDI2ODM4MTEwN2FmLzEvcFdUMElxcVhzOTZjb1BaNUdmdjRMckg5M2RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi9kNTllOTgtMjEwZi00YjU1LWFjNGEtMDI2ODM4MTEwN2Fm
LzEvcFdUMElxcVhzOTZjb1BaNUdmdjRMckg5M2RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdiF0qmK7
qUpJDfcLw0h88BONsIGJ7KgFBnBtucfqXYdWY2spfySS2WObhTYa9J5EGB4ciXiU
KNww6ejOdmdeAXZ+6EW0qatR29IcGBQzyHQlaD8/EI5lrY/yoT/Tl56mTWB3nMzr
qGFPFV8Vf5XHSPNHrvHmhuNUOJW7eLIRPN7DDSLdUHsvYjd4dN8oStZVgt4cMZRz
xkbBQ1Qcnlv2SY5mGSq5rUNkGw3y7ftaNjAspbmOvM09hSHSg1hjNZSAZRxg8bfb
qJnAB25agJf7c0O4IJFcuzMblW9cz1cElEKH+hQzI+UYe+UFszzelKtFLyPUoz46
LapA0Z/i/7PvqQ==
-----END CERTIFICATE-----