Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft
File:                     FK5SmozFunaS25UmkqCLVCJLvzY.mft (raw, json)
Hash identifier:          XoH4ITn7EE0W3Ur3FpMph1TUUP4H/aDlIKdDsKiYG2M=
Subject key identifier:   EE:84:78:0D:B6:EE:2C:1B:6E:ED:D5:37:55:CA:53:60:DC:7C:61:33
Authority key identifier: 14:AE:52:9A:8C:C5:BA:76:92:DB:95:26:92:A0:8B:54:22:4B:BF:36
Certificate issuer:       /CN=14ae529a8cc5ba7692db952692a08b54224bbf36
Certificate serial:       0197B6D73440870D754F664198A44EBD28D0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FK5SmozFunaS25UmkqCLVCJLvzY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft
Manifest number:          15B1
Signing time:             Sat 28 Jun 2025 14:00:46 +0000
Manifest this update:     Sat 28 Jun 2025 14:00:46 +0000
Manifest next update:     Sun 29 Jun 2025 14:00:46 +0000
Files and hashes:         1: FK5SmozFunaS25UmkqCLVCJLvzY.crl (hash: CKvH4h48VjbT0Pdttt+Cg+kRNJM1htxaEvvkOFjowYU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FK5SmozFunaS25UmkqCLVCJLvzY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 14:00:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b6:d7:34:40:87:0d:75:4f:66:41:98:a4:4e:bd:28:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14ae529a8cc5ba7692db952692a08b54224bbf36
        Validity
            Not Before: Jun 28 14:00:46 2025 GMT
            Not After : Jun 29 14:00:46 2025 GMT
        Subject: CN=ee84780db6ee2c1b6eedd53755ca5360dc7c6133
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:7d:4a:a3:19:df:a2:e4:cf:04:f0:57:2b:02:
                    f8:92:9b:f9:9c:d3:87:a7:fd:67:ec:81:8d:ce:a0:
                    2e:94:9d:c2:9e:d8:6a:b1:64:80:7d:4c:3d:51:e4:
                    9a:d1:7b:67:e3:63:5d:c8:f4:f6:c5:db:8c:04:fd:
                    42:df:22:45:b3:19:31:ba:03:62:05:26:08:b2:7c:
                    ea:91:9b:e5:a7:bf:1a:36:68:36:04:04:5d:9d:49:
                    af:4b:9e:94:14:72:7e:68:32:b8:87:ed:35:dc:97:
                    f2:94:7d:d7:73:07:71:2d:3a:99:c4:9d:7e:7a:83:
                    78:49:aa:f8:b2:7b:79:7e:99:39:f7:37:cf:90:28:
                    ac:0f:ec:98:7a:4b:5f:5c:62:0b:72:7d:8d:d6:25:
                    5b:b1:54:b5:e0:43:c1:b0:60:b9:e3:fb:f5:db:52:
                    35:8d:56:a4:bd:21:10:f9:de:b0:d7:32:6d:43:d2:
                    13:3d:40:d9:02:e9:7c:ae:ce:d4:f8:ef:a5:eb:23:
                    66:9c:80:e2:6a:7e:3e:b2:67:39:64:fa:b8:89:8b:
                    28:51:13:60:39:f5:6e:44:77:cc:7e:d2:08:be:2e:
                    27:4c:ad:a9:76:e2:61:83:a0:5d:16:b5:ce:f0:e5:
                    2b:7e:01:cb:00:91:fb:76:33:c0:fa:ac:7a:bc:f6:
                    63:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:84:78:0D:B6:EE:2C:1B:6E:ED:D5:37:55:CA:53:60:DC:7C:61:33
            X509v3 Authority Key Identifier:
                keyid:14:AE:52:9A:8C:C5:BA:76:92:DB:95:26:92:A0:8B:54:22:4B:BF:36

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FK5SmozFunaS25UmkqCLVCJLvzY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/76ea77-1757-4db2-a083-d218fb3c137b/1/FK5SmozFunaS25UmkqCLVCJLvzY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:53:09:04:d9:3a:69:b7:23:95:50:79:96:03:5c:22:25:e6:
         ed:44:8d:a8:97:0e:60:cd:b8:da:5f:c4:88:7a:f4:49:92:b6:
         5c:bf:21:e4:47:4f:d3:78:b8:45:5a:d2:8e:41:b5:d9:1a:08:
         3b:ac:8d:07:30:16:1d:c3:9c:76:ba:ff:87:99:4d:75:78:49:
         b7:86:5a:86:b4:00:17:95:f5:d4:5f:35:0e:29:65:47:d9:1e:
         18:ce:26:73:08:6c:e1:20:5a:91:29:d7:8d:33:b9:f3:0a:c4:
         8f:33:d2:1c:25:be:82:21:54:07:2f:41:55:9b:ba:bd:7f:8e:
         1b:86:f2:17:82:f2:35:d9:9e:4e:76:d1:76:67:15:dd:90:db:
         47:a3:c2:b9:78:5a:ea:16:77:d2:6a:1c:4e:39:a2:c3:1b:46:
         31:0f:4a:e8:57:33:e0:97:2a:b0:36:83:d9:90:b3:75:63:09:
         79:ff:d7:5d:d1:bf:9e:51:9e:18:eb:1a:5e:31:2b:99:60:4d:
         f7:31:cf:87:71:c0:9e:78:b1:2a:5d:b9:26:17:92:c2:d8:9c:
         4a:c7:c1:e8:07:bc:9c:2f:65:11:b9:5a:3c:f0:eb:ab:5a:36:
         d5:a5:dd:1e:3d:0e:b2:af:99:ca:5e:7e:ce:6d:30:49:9a:2e:
         92:00:bd:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe21zRAhw11T2ZBmKROvSjQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0YWU1MjlhOGNjNWJhNzY5MmRiOTUyNjkyYTA4YjU0MjI0
YmJmMzYwHhcNMjUwNjI4MTQwMDQ2WhcNMjUwNjI5MTQwMDQ2WjAzMTEwLwYDVQQD
EyhlZTg0NzgwZGI2ZWUyYzFiNmVlZGQ1Mzc1NWNhNTM2MGRjN2M2MTMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsH1KoxnfouTPBPBXKwL4kpv5nNOH
p/1n7IGNzqAulJ3CnthqsWSAfUw9UeSa0Xtn42NdyPT2xduMBP1C3yJFsxkxugNi
BSYIsnzqkZvlp78aNmg2BARdnUmvS56UFHJ+aDK4h+013JfylH3XcwdxLTqZxJ1+
eoN4Sar4snt5fpk59zfPkCisD+yYektfXGILcn2N1iVbsVS14EPBsGC54/v121I1
jVakvSEQ+d6w1zJtQ9ITPUDZAul8rs7U+O+l6yNmnIDian4+smc5ZPq4iYsoURNg
OfVuRHfMftIIvi4nTK2pduJhg6BdFrXO8OUrfgHLAJH7djPA+qx6vPZj4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO6EeA227iwbbu3VN1XKU2DcfGEzMB8GA1UdIwQY
MBaAFBSuUpqMxbp2ktuVJpKgi1QiS782MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRks1U21vekZ1bmFTMjVVbWtxQ0xWQ0pMdnpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OS83NmVhNzctMTc1Ny00ZGIyLWEwODMt
ZDIxOGZiM2MxMzdiLzEvRks1U21vekZ1bmFTMjVVbWtxQ0xWQ0pMdnpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OS83NmVhNzctMTc1Ny00ZGIyLWEwODMtZDIxOGZiM2MxMzdi
LzEvRks1U21vekZ1bmFTMjVVbWtxQ0xWQ0pMdnpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA1MJBNk6
abcjlVB5lgNcIiXm7USNqJcOYM242l/EiHr0SZK2XL8h5EdP03i4RVrSjkG12RoI
O6yNBzAWHcOcdrr/h5lNdXhJt4ZahrQAF5X11F81DillR9keGM4mcwhs4SBakSnX
jTO58wrEjzPSHCW+giFUBy9BVZu6vX+OG4byF4LyNdmeTnbRdmcV3ZDbR6PCuXha
6hZ30mocTjmiwxtGMQ9K6Fcz4JcqsDaD2ZCzdWMJef/XXdG/nlGeGOsaXjErmWBN
9zHPh3HAnnixKl25JheSwticSsfB6Ae8nC9lEblaPPDrq1o21aXdHj0Osq+Zyl5+
zm0wSZoukgC9Ig==
-----END CERTIFICATE-----