Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File:                     BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier:          7u2ihJaBVKBIb9yxJAdCwWI9VeAml9FUaJmGqRPpyA4=
Subject key identifier:   B3:07:53:C0:F8:F2:A3:DC:3B:7B:75:FE:43:59:C5:6D:EE:16:2F:2E
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer:       /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial:       0197BA0FA7AFE0B8962AE187FF2160E6F2B9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number:          0761
Signing time:             Sun 29 Jun 2025 05:01:17 +0000
Manifest this update:     Sun 29 Jun 2025 05:01:17 +0000
Manifest next update:     Mon 30 Jun 2025 05:01:17 +0000
Files and hashes:         1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: JuLb9HMov5+ZCp7zTUcllg560e5TAgL/U4MwjFGdEsI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 00:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:ba:0f:a7:af:e0:b8:96:2a:e1:87:ff:21:60:e6:f2:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
        Validity
            Not Before: Jun 29 05:01:17 2025 GMT
            Not After : Jun 30 05:01:17 2025 GMT
        Subject: CN=b30753c0f8f2a3dc3b7b75fe4359c56dee162f2e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:44:42:27:22:f2:59:e1:dd:a3:ae:03:d6:3b:
                    f1:9b:cf:94:6c:d7:b9:b9:5a:b8:62:42:01:34:f0:
                    6d:7a:4a:82:76:ac:6c:d6:e0:b9:25:53:da:f5:ec:
                    2a:1c:f8:23:77:ba:51:d5:5c:cc:a8:27:4b:0a:74:
                    84:56:e2:a6:dd:4b:a5:6c:4d:40:e4:9a:73:ee:c5:
                    6a:b5:62:da:a9:b9:88:55:14:52:2f:68:01:70:88:
                    a0:6e:77:9c:03:72:02:5f:16:38:c0:d1:ff:be:94:
                    99:96:2b:79:e0:1b:30:b1:bd:c1:16:d3:b4:b4:70:
                    13:68:28:8d:14:e4:6a:4e:46:ee:92:03:f4:0c:86:
                    df:25:79:51:d8:60:d9:ed:11:f4:be:b8:d8:88:ac:
                    c7:03:76:22:85:ae:b6:d1:ae:48:4c:b7:ef:bd:01:
                    ac:93:cf:7f:43:bc:8d:43:72:22:9e:48:85:43:80:
                    40:6f:4c:a5:0d:f0:51:c7:b1:ad:d1:be:61:c7:09:
                    a0:8a:a5:e8:3b:2d:d2:4a:c4:b0:3c:c8:c9:d6:db:
                    58:1d:2a:df:b3:d2:9d:50:f9:86:12:bf:91:9c:b8:
                    64:f5:b6:c2:be:ea:d4:fa:e6:5a:d1:08:99:4a:df:
                    41:44:1d:31:f0:22:2a:f5:d7:21:9b:6d:76:75:1b:
                    a5:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:07:53:C0:F8:F2:A3:DC:3B:7B:75:FE:43:59:C5:6D:EE:16:2F:2E
            X509v3 Authority Key Identifier:
                keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:05:1b:57:9e:88:d8:0b:51:e0:f2:03:de:22:2e:06:2f:c1:
         92:5f:09:6e:3e:f7:a3:ef:66:40:82:2c:44:c2:19:36:68:9a:
         a9:ff:f2:57:77:92:01:ec:89:bc:d9:9d:04:25:9c:8c:59:bd:
         5f:cb:0f:b1:7b:25:db:67:c4:46:24:f5:2c:2e:56:84:14:19:
         af:9a:a8:85:43:06:6e:0d:48:d2:28:ee:36:cf:31:d9:aa:01:
         89:3a:8c:9f:85:dc:c4:97:9c:1c:6c:eb:f9:91:7c:1a:93:ca:
         74:a4:a9:a8:2e:55:5a:31:2b:da:69:35:52:6a:ac:d5:f2:f0:
         f0:71:9f:8a:27:a3:02:89:c6:74:a4:a5:79:2f:90:c7:97:69:
         d8:38:8b:e4:88:a4:aa:04:d8:5f:5a:07:ca:e0:32:c3:93:9e:
         48:2b:3f:70:e8:92:e2:eb:a0:e5:9a:51:85:34:72:38:9c:09:
         53:f3:3b:ac:6b:b0:5c:3f:38:23:56:e4:90:0f:75:00:1f:e6:
         08:3e:3a:36:18:e5:ab:1f:33:ee:b5:7f:de:2f:44:33:d6:96:
         76:13:a1:c7:97:6f:c6:6f:58:8b:fc:88:e6:24:69:93:ee:41:
         b0:fe:93:4c:b3:e4:42:9c:4b:97:59:f6:df:f0:e0:00:3b:fa:
         8f:c5:30:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe6D6ev4LiWKuGH/yFg5vK5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0ZTMyYzQzZjk2OWJhNDE3YmEzNmQwNzIxYjFkOWQ1MDYy
NGM0MGYwHhcNMjUwNjI5MDUwMTE3WhcNMjUwNjMwMDUwMTE3WjAzMTEwLwYDVQQD
EyhiMzA3NTNjMGY4ZjJhM2RjM2I3Yjc1ZmU0MzU5YzU2ZGVlMTYyZjJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh0RCJyLyWeHdo64D1jvxm8+UbNe5
uVq4YkIBNPBtekqCdqxs1uC5JVPa9ewqHPgjd7pR1VzMqCdLCnSEVuKm3UulbE1A
5Jpz7sVqtWLaqbmIVRRSL2gBcIigbnecA3ICXxY4wNH/vpSZlit54Bswsb3BFtO0
tHATaCiNFORqTkbukgP0DIbfJXlR2GDZ7RH0vrjYiKzHA3Yiha620a5ITLfvvQGs
k89/Q7yNQ3IinkiFQ4BAb0ylDfBRx7Gt0b5hxwmgiqXoOy3SSsSwPMjJ1ttYHSrf
s9KdUPmGEr+RnLhk9bbCvurU+uZa0QiZSt9BRB0x8CIq9dchm212dRulUwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLMHU8D48qPcO3t1/kNZxW3uFi8uMB8GA1UdIwQY
MBaAFATjLEP5abpBe6NtByGx2dUGJMQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAt
ODI2YTQ4ZWVmZDk2LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAtODI2YTQ4ZWVmZDk2
LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAawUbV56I
2AtR4PID3iIuBi/Bkl8Jbj73o+9mQIIsRMIZNmiaqf/yV3eSAeyJvNmdBCWcjFm9
X8sPsXsl22fERiT1LC5WhBQZr5qohUMGbg1I0ijuNs8x2aoBiTqMn4XcxJecHGzr
+ZF8GpPKdKSpqC5VWjEr2mk1Umqs1fLw8HGfiiejAonGdKSleS+Qx5dp2DiL5Iik
qgTYX1oHyuAyw5OeSCs/cOiS4uug5ZpRhTRyOJwJU/M7rGuwXD84I1bkkA91AB/m
CD46Nhjlqx8z7rV/3i9EM9aWdhOhx5dvxm9Yi/yI5iRpk+5BsP6TTLPkQpxLl1n2
3/DgADv6j8Uwwg==
-----END CERTIFICATE-----