Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
File:                     YjqxggzkjFedpAxm2FJl8cLPy04.mft (raw, json)
Hash identifier:          dzAj8tyqbsO/aMriJbSFwqqwTgOc+v9llZFfLhhP5zQ=
Subject key identifier:   71:60:D5:A5:EF:8F:71:AB:3C:D6:3B:C5:71:BB:72:34:CB:F3:0C:F3
Authority key identifier: 62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E
Certificate issuer:       /CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
Certificate serial:       0197B96A8048CB56BE4F3CC174410196A8B9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
Manifest number:          063B
Signing time:             Sun 29 Jun 2025 02:00:53 +0000
Manifest this update:     Sun 29 Jun 2025 02:00:53 +0000
Manifest next update:     Mon 30 Jun 2025 02:00:53 +0000
Files and hashes:         1: YjqxggzkjFedpAxm2FJl8cLPy04.crl (hash: ZROhDl8Iozu26LBfQDareDu1MjdaSk3Su3LjvCziWXQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Jun 2025 02:00:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b9:6a:80:48:cb:56:be:4f:3c:c1:74:41:01:96:a8:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=623ab1820ce48c579da40c66d85265f1c2cfcb4e
        Validity
            Not Before: Jun 29 02:00:53 2025 GMT
            Not After : Jun 30 02:00:53 2025 GMT
        Subject: CN=7160d5a5ef8f71ab3cd63bc571bb7234cbf30cf3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:66:9e:9e:cd:41:bc:35:e2:ad:cc:86:70:1e:
                    f3:0c:b1:17:3b:0d:42:67:ac:66:53:a5:77:2d:31:
                    9a:a0:ff:c7:7a:da:85:8a:50:92:a5:55:b8:2d:a2:
                    e3:0f:84:25:6d:0a:f5:c6:f2:ee:16:d3:b7:65:a1:
                    d4:06:76:38:34:13:47:57:e2:e7:27:b8:98:28:c8:
                    fc:55:20:51:59:2d:b4:a7:b6:10:2d:ed:7e:0b:50:
                    2d:5c:c9:de:c1:30:82:46:39:ec:a9:c0:2d:fa:31:
                    aa:43:e0:ad:6d:de:23:19:c8:26:d9:23:dd:34:f6:
                    41:88:ba:ff:58:0b:c1:6f:b1:8b:36:33:fc:ec:c7:
                    51:96:13:63:02:df:1e:82:96:34:ef:e4:0b:22:da:
                    6e:7d:5c:62:67:bb:ec:7c:57:fa:a7:10:c7:b7:3f:
                    b3:04:fc:71:18:54:a8:94:98:54:90:47:88:74:48:
                    dd:47:89:c4:63:80:94:ba:18:a6:92:8c:d9:e9:40:
                    93:f2:4b:f1:37:4c:e4:36:ff:ce:36:ce:65:d8:3c:
                    51:18:db:7c:73:32:96:25:81:c8:74:20:fa:7e:39:
                    5a:46:3a:73:66:4c:7e:ab:a2:19:1a:e2:84:10:a6:
                    6e:6f:74:af:ca:54:21:43:dc:2f:1a:39:ac:87:b9:
                    b3:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:60:D5:A5:EF:8F:71:AB:3C:D6:3B:C5:71:BB:72:34:CB:F3:0C:F3
            X509v3 Authority Key Identifier:
                keyid:62:3A:B1:82:0C:E4:8C:57:9D:A4:0C:66:D8:52:65:F1:C2:CF:CB:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YjqxggzkjFedpAxm2FJl8cLPy04.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/b4c9d5-e27f-44bf-ba42-6c3d11d40d78/1/YjqxggzkjFedpAxm2FJl8cLPy04.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:a5:c2:fc:a4:df:8d:38:8c:ba:86:a7:ef:f8:71:2b:59:a6:
         33:0c:f6:20:00:71:d8:ff:85:55:be:d0:34:6d:45:11:93:62:
         65:59:f3:83:07:47:31:45:bf:29:ff:cf:58:3f:c6:25:39:94:
         6c:da:57:80:9d:34:f5:07:1e:72:a4:0a:97:b6:fc:8b:82:73:
         4a:1a:cf:c9:a7:ac:9e:0e:8d:92:81:f6:2a:71:d6:d4:d3:bd:
         ea:4b:37:b8:8e:01:09:fe:e6:7a:f6:dc:25:fb:d5:49:b8:9c:
         b5:79:6b:c2:d8:08:c1:1e:8e:b5:4b:ca:61:0b:82:6b:28:85:
         5d:c6:8f:92:7a:8c:8f:98:2f:f4:c6:97:3b:82:7a:bc:26:d1:
         1a:3b:f7:a6:40:8a:f8:73:cd:f3:9a:2f:06:be:52:97:4d:ce:
         18:fc:0a:af:11:30:fc:a1:7d:8e:72:ac:6c:3e:04:be:88:f8:
         e2:8c:26:d9:40:b4:47:8b:57:22:07:f8:44:d1:e9:89:68:b1:
         86:ec:e7:82:cb:7c:61:22:26:ee:0f:ef:7b:53:ea:cb:8a:44:
         3c:55:c7:09:b9:27:fe:2f:b0:03:4c:bb:63:68:06:d7:e6:e4:
         1a:45:d9:92:a2:ab:fb:23:3a:58:42:69:b3:7d:00:ee:3a:67:
         1c:c1:4b:c4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe5aoBIy1a+TzzBdEEBlqi5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyM2FiMTgyMGNlNDhjNTc5ZGE0MGM2NmQ4NTI2NWYxYzJj
ZmNiNGUwHhcNMjUwNjI5MDIwMDUzWhcNMjUwNjMwMDIwMDUzWjAzMTEwLwYDVQQD
Eyg3MTYwZDVhNWVmOGY3MWFiM2NkNjNiYzU3MWJiNzIzNGNiZjMwY2YzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwGaens1BvDXircyGcB7zDLEXOw1C
Z6xmU6V3LTGaoP/HetqFilCSpVW4LaLjD4QlbQr1xvLuFtO3ZaHUBnY4NBNHV+Ln
J7iYKMj8VSBRWS20p7YQLe1+C1AtXMnewTCCRjnsqcAt+jGqQ+Ctbd4jGcgm2SPd
NPZBiLr/WAvBb7GLNjP87MdRlhNjAt8egpY07+QLItpufVxiZ7vsfFf6pxDHtz+z
BPxxGFSolJhUkEeIdEjdR4nEY4CUuhimkozZ6UCT8kvxN0zkNv/ONs5l2DxRGNt8
czKWJYHIdCD6fjlaRjpzZkx+q6IZGuKEEKZub3SvylQhQ9wvGjmsh7mzgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHFg1aXvj3GrPNY7xXG7cjTL8wzzMB8GA1UdIwQY
MBaAFGI6sYIM5IxXnaQMZthSZfHCz8tOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9iNGM5ZDUtZTI3Zi00NGJmLWJhNDIt
NmMzZDExZDQwZDc4LzEvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS9iNGM5ZDUtZTI3Zi00NGJmLWJhNDItNmMzZDExZDQwZDc4
LzEvWWpxeGdnemtqRmVkcEF4bTJGSmw4Y0xQeTA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtqXC/KTf
jTiMuoan7/hxK1mmMwz2IABx2P+FVb7QNG1FEZNiZVnzgwdHMUW/Kf/PWD/GJTmU
bNpXgJ009QcecqQKl7b8i4JzShrPyaesng6NkoH2KnHW1NO96ks3uI4BCf7mevbc
JfvVSbictXlrwtgIwR6OtUvKYQuCayiFXcaPknqMj5gv9MaXO4J6vCbRGjv3pkCK
+HPN85ovBr5Sl03OGPwKrxEw/KF9jnKsbD4Evoj44owm2UC0R4tXIgf4RNHpiWix
huzngst8YSIm7g/ve1Pqy4pEPFXHCbkn/i+wA0y7Y2gG1+bkGkXZkqKr+yM6WEJp
s30A7jpnHMFLxA==
-----END CERTIFICATE-----