Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft
File:                     L97GcLeAw7-UAe8cEVodh_6PfHo.mft (raw, json)
Hash identifier:          pidy8P9QntZGW47Lwpq+dV3jHah/vmBUhaFu1Js0Mhg=
Subject key identifier:   55:39:27:F8:80:83:85:21:11:05:CF:5A:78:C5:EB:3D:CC:52:91:52
Authority key identifier: 2F:DE:C6:70:B7:80:C3:BF:94:01:EF:1C:11:5A:1D:87:FE:8F:7C:7A
Certificate issuer:       /CN=2fdec670b780c3bf9401ef1c115a1d87fe8f7c7a
Certificate serial:       0197B8FCC1A4A806447A0FBDD577964744B9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/L97GcLeAw7-UAe8cEVodh_6PfHo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft
Manifest number:          0C96
Signing time:             Sun 29 Jun 2025 00:01:01 +0000
Manifest this update:     Sun 29 Jun 2025 00:01:01 +0000
Manifest next update:     Mon 30 Jun 2025 00:01:01 +0000
Files and hashes:         1: L97GcLeAw7-UAe8cEVodh_6PfHo.crl (hash: x7sDylDxO6OchEU7aGRg3GRqS7uBZUa38whnWap130U=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/L97GcLeAw7-UAe8cEVodh_6PfHo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 19:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b8:fc:c1:a4:a8:06:44:7a:0f:bd:d5:77:96:47:44:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2fdec670b780c3bf9401ef1c115a1d87fe8f7c7a
        Validity
            Not Before: Jun 29 00:01:01 2025 GMT
            Not After : Jun 30 00:01:01 2025 GMT
        Subject: CN=553927f8808385211105cf5a78c5eb3dcc529152
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:d0:1e:3e:2c:19:00:f9:ad:f0:ab:66:2c:10:
                    7b:87:4b:f4:38:f2:bb:47:e9:2f:40:0d:f7:2c:f6:
                    69:c4:8e:56:01:47:18:6d:12:ab:1d:89:27:00:79:
                    fd:09:b5:43:c3:93:c4:6a:bc:d1:c7:2c:6c:f6:fe:
                    32:75:7d:60:29:6b:92:89:97:aa:03:0a:8c:88:10:
                    0a:d1:94:6b:7a:a4:d7:b1:47:ba:09:ee:7f:de:de:
                    6b:37:57:1b:02:e4:1b:f0:c3:f4:4e:27:3d:35:aa:
                    b3:eb:f4:33:22:92:73:fd:bd:79:c5:5c:33:42:02:
                    d0:52:d9:27:f7:60:84:0d:3c:f9:bd:7e:15:0a:c5:
                    c7:d5:b2:87:4d:7b:00:47:f7:0b:1d:fa:c2:74:96:
                    b5:c1:2f:b9:6b:fc:0a:a9:e4:2a:80:2b:28:bd:6c:
                    3c:3f:9a:4b:fc:cc:0d:aa:91:81:cb:a5:87:32:56:
                    c5:4e:1d:49:f9:42:70:3c:2b:df:c4:fe:e3:23:d1:
                    1d:31:09:66:61:b3:9b:76:0d:22:59:1f:e9:97:58:
                    bd:69:79:f0:2e:de:f8:92:4b:a3:0d:6b:14:b2:fc:
                    ff:4c:df:3d:fd:d2:a5:fb:c4:82:1c:eb:0b:94:bc:
                    86:a1:5f:dd:49:93:b7:4f:89:4b:6b:9f:a0:e7:68:
                    48:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:39:27:F8:80:83:85:21:11:05:CF:5A:78:C5:EB:3D:CC:52:91:52
            X509v3 Authority Key Identifier:
                keyid:2F:DE:C6:70:B7:80:C3:BF:94:01:EF:1C:11:5A:1D:87:FE:8F:7C:7A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L97GcLeAw7-UAe8cEVodh_6PfHo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/76/4e19c5-0082-4844-b6bd-ab1d8e9844af/1/L97GcLeAw7-UAe8cEVodh_6PfHo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:d6:e8:87:36:4b:c0:2f:cd:14:bf:23:91:26:0b:92:86:6e:
         b4:50:72:11:2e:35:44:a7:4f:79:bb:e2:11:27:37:c2:81:02:
         7a:7f:6c:c9:ce:36:08:00:d9:7d:3f:e3:15:66:a5:15:ca:30:
         a4:2e:54:02:e5:a7:73:fd:45:b2:2b:fe:3f:1e:15:b4:0e:1f:
         23:07:85:59:4a:05:68:49:62:f9:e5:0e:ac:ae:94:1e:a1:71:
         c2:f8:9d:e7:7d:a1:75:26:15:bf:00:84:6e:3c:cb:a6:a0:e5:
         2e:99:22:35:22:82:a9:89:fd:6c:dc:64:0e:9d:7a:1a:61:c8:
         84:90:d9:8a:52:ea:55:65:ab:39:f7:47:b3:f8:3d:cd:47:42:
         92:63:fe:b0:d5:42:e3:b6:22:14:53:05:43:4f:29:1b:a0:a8:
         36:37:ea:af:27:75:71:d9:b9:24:f3:a1:3b:bf:1b:b8:74:0e:
         fc:5a:9d:76:f8:d8:6d:b2:35:49:c0:20:70:70:89:43:c2:6b:
         64:20:22:e5:ac:76:ae:11:8a:62:31:51:fe:2d:cd:67:74:67:
         c2:77:5e:b2:d0:27:19:94:4f:c7:40:eb:89:12:8f:78:2b:17:
         1d:ee:48:63:f0:86:30:d2:08:5a:4d:d3:cc:22:2a:92:06:90:
         23:20:76:09
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4/MGkqAZEeg+91XeWR0S5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmZGVjNjcwYjc4MGMzYmY5NDAxZWYxYzExNWExZDg3ZmU4
ZjdjN2EwHhcNMjUwNjI5MDAwMTAxWhcNMjUwNjMwMDAwMTAxWjAzMTEwLwYDVQQD
Eyg1NTM5MjdmODgwODM4NTIxMTEwNWNmNWE3OGM1ZWIzZGNjNTI5MTUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA19AePiwZAPmt8KtmLBB7h0v0OPK7
R+kvQA33LPZpxI5WAUcYbRKrHYknAHn9CbVDw5PEarzRxyxs9v4ydX1gKWuSiZeq
AwqMiBAK0ZRreqTXsUe6Ce5/3t5rN1cbAuQb8MP0Tic9Naqz6/QzIpJz/b15xVwz
QgLQUtkn92CEDTz5vX4VCsXH1bKHTXsAR/cLHfrCdJa1wS+5a/wKqeQqgCsovWw8
P5pL/MwNqpGBy6WHMlbFTh1J+UJwPCvfxP7jI9EdMQlmYbObdg0iWR/pl1i9aXnw
Lt74kkujDWsUsvz/TN89/dKl+8SCHOsLlLyGoV/dSZO3T4lLa5+g52hIswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFU5J/iAg4UhEQXPWnjF6z3MUpFSMB8GA1UdIwQY
MBaAFC/exnC3gMO/lAHvHBFaHYf+j3x6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDk3R2NMZUF3Ny1VQWU4Y0VWb2RoXzZQZkhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni80ZTE5YzUtMDA4Mi00ODQ0LWI2YmQt
YWIxZDhlOTg0NGFmLzEvTDk3R2NMZUF3Ny1VQWU4Y0VWb2RoXzZQZkhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni80ZTE5YzUtMDA4Mi00ODQ0LWI2YmQtYWIxZDhlOTg0NGFm
LzEvTDk3R2NMZUF3Ny1VQWU4Y0VWb2RoXzZQZkhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANdbohzZL
wC/NFL8jkSYLkoZutFByES41RKdPebviESc3woECen9syc42CADZfT/jFWalFcow
pC5UAuWnc/1Fsiv+Px4VtA4fIweFWUoFaEli+eUOrK6UHqFxwvid532hdSYVvwCE
bjzLpqDlLpkiNSKCqYn9bNxkDp16GmHIhJDZilLqVWWrOfdHs/g9zUdCkmP+sNVC
47YiFFMFQ08pG6CoNjfqryd1cdm5JPOhO78buHQO/FqddvjYbbI1ScAgcHCJQ8Jr
ZCAi5ax2rhGKYjFR/i3NZ3RnwndestAnGZRPx0DriRKPeCsXHe5IY/CGMNIIWk3T
zCIqkgaQIyB2CQ==
-----END CERTIFICATE-----