Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.mft
File:                     dGMPFkhbT5M4X5So7HEArUjF_FA.mft (raw, json)
Hash identifier:          Z34+DdJMiwE4Qk0IT9kaHd5ohWETmImmBnJQWoGuBoE=
Subject key identifier:   A6:46:FE:CE:8B:CC:98:2D:5A:AC:04:32:89:57:47:25:43:23:4E:67
Authority key identifier: 74:63:0F:16:48:5B:4F:93:38:5F:94:A8:EC:71:00:AD:48:C5:FC:50
Certificate issuer:       /CN=74630f16485b4f93385f94a8ec7100ad48c5fc50
Certificate serial:       0196A465DAFA36852D7759207A4FBC9FF484
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dGMPFkhbT5M4X5So7HEArUjF_FA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.mft
Manifest number:          0C5F
Signing time:             Tue 06 May 2025 07:01:00 +0000
Manifest this update:     Tue 06 May 2025 07:01:00 +0000
Manifest next update:     Wed 07 May 2025 07:01:00 +0000
Files and hashes:         1: dGMPFkhbT5M4X5So7HEArUjF_FA.crl (hash: 9W+B9yP8hi4bq41RbjZYHPpeauDT7zCKT1aLGks+Uow=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dGMPFkhbT5M4X5So7HEArUjF_FA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 07 May 2025 04:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:a4:65:da:fa:36:85:2d:77:59:20:7a:4f:bc:9f:f4:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=74630f16485b4f93385f94a8ec7100ad48c5fc50
        Validity
            Not Before: May  6 07:01:00 2025 GMT
            Not After : May  7 07:01:00 2025 GMT
        Subject: CN=a646fece8bcc982d5aac04328957472543234e67
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:88:3e:d3:38:94:ba:14:32:e8:27:36:9d:57:
                    55:45:90:df:96:c5:5b:56:83:13:80:86:d7:ed:57:
                    3d:a4:cd:ee:b8:f4:8e:b7:7e:12:c2:f1:c2:90:69:
                    c7:f1:8b:b0:a5:86:99:4a:00:29:ef:64:ad:9d:44:
                    37:48:54:41:98:66:6e:ad:16:ea:03:e2:00:f0:b1:
                    7e:8a:89:82:87:87:32:89:b1:7d:3d:08:27:e6:8d:
                    bf:c6:09:f6:ce:53:e6:da:7f:02:6e:23:70:5c:e8:
                    ff:fa:95:ac:c0:7c:34:f6:c5:20:5c:37:cf:fa:b2:
                    0b:18:8b:5f:77:7f:03:c5:f4:44:6c:69:cd:8e:d1:
                    41:42:76:4c:cf:c1:76:12:9d:94:61:14:c1:ab:a5:
                    69:1b:95:e0:f6:99:3b:94:9d:ca:61:c9:bb:56:5f:
                    bf:a6:16:f9:99:e3:2c:33:e1:ec:9f:89:63:af:2e:
                    d5:94:36:ab:d4:18:d0:ae:b9:2e:dc:d4:22:c1:8c:
                    95:24:99:28:10:b1:8a:93:27:be:55:3b:fb:ae:51:
                    f2:54:41:ba:1f:ca:5c:a2:92:da:81:dd:ce:8a:ac:
                    28:ab:d7:e8:51:31:99:1d:47:e8:7b:d5:df:cd:44:
                    36:20:0d:4f:f9:db:d2:9c:91:91:00:c6:cd:2c:d7:
                    04:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A6:46:FE:CE:8B:CC:98:2D:5A:AC:04:32:89:57:47:25:43:23:4E:67
            X509v3 Authority Key Identifier:
                keyid:74:63:0F:16:48:5B:4F:93:38:5F:94:A8:EC:71:00:AD:48:C5:FC:50

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGMPFkhbT5M4X5So7HEArUjF_FA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b44856-214a-4596-927b-3da415ac0dc0/1/dGMPFkhbT5M4X5So7HEArUjF_FA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c7:8a:95:3c:26:8a:47:a3:4b:9c:ce:80:8b:fc:9c:d4:43:4e:
         68:b8:b5:33:08:c5:32:ae:69:bd:9f:b4:20:2c:cc:61:c2:f7:
         3d:89:3c:41:5c:f6:f0:84:14:ca:94:0d:be:71:d2:63:a9:f7:
         01:97:a9:18:e5:58:5f:25:13:aa:b0:a0:b1:39:8f:98:74:86:
         e5:a3:30:04:11:45:db:c0:73:c7:5d:fd:40:65:d1:6e:4f:90:
         57:f1:6a:08:dc:d6:b0:68:7c:9b:e2:48:bd:f0:40:28:34:18:
         df:91:b2:b0:77:ef:a0:e0:d2:ae:5b:66:9b:3c:09:59:8f:22:
         96:36:b3:2a:6b:4d:8e:6d:7d:8f:3d:7f:e2:0d:30:f0:6c:64:
         9a:6b:2b:cf:39:92:7c:8e:e6:92:76:c5:aa:b5:a6:9d:7f:f8:
         21:2d:9f:35:98:4e:82:eb:a7:b2:99:fa:e5:0e:78:8b:42:e6:
         57:17:3d:33:df:bc:78:4f:d6:a8:63:63:b6:2a:b0:50:27:ad:
         9b:1c:20:cb:63:31:38:3b:ce:be:c9:a8:07:bb:61:43:e3:dd:
         75:3b:a7:12:8d:21:8c:89:27:b5:5c:89:02:01:f1:f4:d4:68:
         41:99:a9:9f:c6:a5:88:3d:37:50:ba:6d:3d:75:b7:98:b2:25:
         05:75:11:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZakZdr6NoUtd1kgek+8n/SEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NjMwZjE2NDg1YjRmOTMzODVmOTRhOGVjNzEwMGFkNDhj
NWZjNTAwHhcNMjUwNTA2MDcwMTAwWhcNMjUwNTA3MDcwMTAwWjAzMTEwLwYDVQQD
EyhhNjQ2ZmVjZThiY2M5ODJkNWFhYzA0MzI4OTU3NDcyNTQzMjM0ZTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Ig+0ziUuhQy6Cc2nVdVRZDflsVb
VoMTgIbX7Vc9pM3uuPSOt34SwvHCkGnH8YuwpYaZSgAp72StnUQ3SFRBmGZurRbq
A+IA8LF+iomCh4cyibF9PQgn5o2/xgn2zlPm2n8CbiNwXOj/+pWswHw09sUgXDfP
+rILGItfd38DxfREbGnNjtFBQnZMz8F2Ep2UYRTBq6VpG5Xg9pk7lJ3KYcm7Vl+/
phb5meMsM+Hsn4ljry7VlDar1BjQrrku3NQiwYyVJJkoELGKkye+VTv7rlHyVEG6
H8pcopLagd3Oiqwoq9foUTGZHUfoe9XfzUQ2IA1P+dvSnJGRAMbNLNcETwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKZG/s6LzJgtWqwEMolXRyVDI05nMB8GA1UdIwQY
MBaAFHRjDxZIW0+TOF+UqOxxAK1IxfxQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEdNUEZraGJUNU00WDVTbzdIRUFyVWpGX0ZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9iNDQ4NTYtMjE0YS00NTk2LTkyN2It
M2RhNDE1YWMwZGMwLzEvZEdNUEZraGJUNU00WDVTbzdIRUFyVWpGX0ZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9iNDQ4NTYtMjE0YS00NTk2LTkyN2ItM2RhNDE1YWMwZGMw
LzEvZEdNUEZraGJUNU00WDVTbzdIRUFyVWpGX0ZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx4qVPCaK
R6NLnM6Ai/yc1ENOaLi1MwjFMq5pvZ+0ICzMYcL3PYk8QVz28IQUypQNvnHSY6n3
AZepGOVYXyUTqrCgsTmPmHSG5aMwBBFF28Bzx139QGXRbk+QV/FqCNzWsGh8m+JI
vfBAKDQY35GysHfvoODSrltmmzwJWY8iljazKmtNjm19jz1/4g0w8GxkmmsrzzmS
fI7mknbFqrWmnX/4IS2fNZhOguunspn65Q54i0LmVxc9M9+8eE/WqGNjtiqwUCet
mxwgy2MxODvOvsmoB7thQ+PddTunEo0hjIkntVyJAgHx9NRoQZmpn8aliD03ULpt
PXW3mLIlBXURtg==
-----END CERTIFICATE-----