Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.mft
File:                     1j-OQvuEQqSKfUfvTAtuFHUUv8Q.mft (raw, json)
Hash identifier:          jkmob3kPxw+9vqi6nTmWmUbwkWEVy3YbVlJbP84mH1A=
Subject key identifier:   0E:14:B6:33:F2:E9:3C:57:EA:DA:40:42:27:43:8C:E8:51:6A:B7:07
Authority key identifier: D6:3F:8E:42:FB:84:42:A4:8A:7D:47:EF:4C:0B:6E:14:75:14:BF:C4
Certificate issuer:       /CN=d63f8e42fb8442a48a7d47ef4c0b6e147514bfc4
Certificate serial:       0196C2A71348A7978B1EE0CC698728E02E97
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.mft
Manifest number:          0C82
Signing time:             Mon 12 May 2025 04:00:51 +0000
Manifest this update:     Mon 12 May 2025 04:00:51 +0000
Manifest next update:     Tue 13 May 2025 04:00:51 +0000
Files and hashes:         1: 1j-OQvuEQqSKfUfvTAtuFHUUv8Q.crl (hash: KNeJPhDNltk1sKcP0rKD0yeQr9eOU18MMryZny4c9ps=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 13 May 2025 01:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:c2:a7:13:48:a7:97:8b:1e:e0:cc:69:87:28:e0:2e:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d63f8e42fb8442a48a7d47ef4c0b6e147514bfc4
        Validity
            Not Before: May 12 04:00:51 2025 GMT
            Not After : May 13 04:00:51 2025 GMT
        Subject: CN=0e14b633f2e93c57eada404227438ce8516ab707
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:e3:1d:60:42:72:9b:9d:a8:7a:c6:ee:65:c9:
                    cf:da:2b:31:d0:fa:5b:4d:65:47:e9:43:9a:3d:0f:
                    48:7c:83:99:00:ef:26:1b:1e:ee:22:64:a3:5d:68:
                    bc:66:dc:a0:c0:f6:2c:5d:07:7b:ac:6f:1f:b8:e9:
                    fd:4b:11:46:6b:da:1d:5e:cd:3d:60:16:5d:08:3a:
                    bf:10:b3:a7:b0:b1:00:c1:c8:37:4d:da:75:0b:35:
                    b6:81:97:2c:73:9d:51:05:6f:8c:eb:3f:a5:04:d3:
                    c9:4e:93:d9:5b:22:66:c3:66:36:bf:db:3f:9c:65:
                    bb:f6:10:52:94:7c:81:1b:00:af:1e:63:fd:39:9f:
                    8b:44:5c:60:b4:b6:97:0c:b6:73:57:d4:e7:bd:11:
                    9b:c1:10:3f:5e:f9:05:ac:65:69:2d:50:09:e1:d9:
                    2c:4e:ce:28:f4:da:71:78:c8:89:5c:c9:51:ec:e1:
                    8c:21:f1:1a:a8:fe:d5:df:e0:34:95:3b:4d:19:c6:
                    72:f5:69:0b:48:b0:27:81:07:16:57:66:b9:11:e9:
                    a4:79:e5:cf:02:38:ca:0a:37:b8:42:9e:15:8e:5d:
                    23:98:c2:87:12:18:c5:8a:af:53:53:58:5b:e4:3e:
                    18:17:77:59:6f:55:0f:37:bb:47:89:72:80:2c:47:
                    06:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:14:B6:33:F2:E9:3C:57:EA:DA:40:42:27:43:8C:E8:51:6A:B7:07
            X509v3 Authority Key Identifier:
                keyid:D6:3F:8E:42:FB:84:42:A4:8A:7D:47:EF:4C:0B:6E:14:75:14:BF:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ee5f33-b1eb-4d08-9e87-2ed7a715f8d7/1/1j-OQvuEQqSKfUfvTAtuFHUUv8Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         97:ba:4c:4b:09:13:97:48:e6:a7:79:10:28:1d:c9:40:1f:42:
         f7:d2:0c:78:ba:90:40:9d:4b:64:ca:e2:4d:93:33:c0:1c:2d:
         08:d9:06:3f:c8:3e:c6:62:38:7a:1b:37:71:ce:7c:b9:29:1a:
         30:38:4d:2e:f3:4e:5b:43:8f:c1:16:44:f6:10:9f:5b:3f:c1:
         78:e4:e7:08:d1:cd:b2:43:08:2b:a5:cb:c8:cb:64:be:e0:7f:
         ee:3a:71:37:9e:0c:1b:9f:82:f4:a1:5b:32:8a:27:2a:35:15:
         58:58:ec:14:79:06:a9:25:ff:c3:d7:9e:12:53:88:c6:cc:d5:
         b9:72:95:b4:7a:38:7f:9d:cb:a6:9b:0a:98:e4:1b:45:8d:02:
         25:5d:4e:4b:47:30:ac:2a:34:d2:0f:88:08:1b:b9:66:0e:7b:
         32:e4:6c:a1:53:c6:3f:6b:36:ce:d7:06:aa:83:88:ad:e9:24:
         cf:45:7a:11:23:7d:3b:62:0e:5f:0b:00:64:bc:e1:91:db:76:
         22:bd:e5:65:35:e3:c8:54:d5:68:27:0d:17:04:c1:97:e5:e4:
         ce:f6:85:6a:c7:66:9c:7a:e4:e9:0e:97:2c:30:c3:60:70:84:
         0d:7d:5b:0d:7a:03:9a:0c:c3:b0:ed:1e:16:cf:c7:26:30:da:
         e1:b6:dd:7f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbCpxNIp5eLHuDMaYco4C6XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2M2Y4ZTQyZmI4NDQyYTQ4YTdkNDdlZjRjMGI2ZTE0NzUx
NGJmYzQwHhcNMjUwNTEyMDQwMDUxWhcNMjUwNTEzMDQwMDUxWjAzMTEwLwYDVQQD
EygwZTE0YjYzM2YyZTkzYzU3ZWFkYTQwNDIyNzQzOGNlODUxNmFiNzA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1OMdYEJym52oesbuZcnP2isx0Ppb
TWVH6UOaPQ9IfIOZAO8mGx7uImSjXWi8ZtygwPYsXQd7rG8fuOn9SxFGa9odXs09
YBZdCDq/ELOnsLEAwcg3Tdp1CzW2gZcsc51RBW+M6z+lBNPJTpPZWyJmw2Y2v9s/
nGW79hBSlHyBGwCvHmP9OZ+LRFxgtLaXDLZzV9TnvRGbwRA/XvkFrGVpLVAJ4dks
Ts4o9NpxeMiJXMlR7OGMIfEaqP7V3+A0lTtNGcZy9WkLSLAngQcWV2a5EemkeeXP
AjjKCje4Qp4Vjl0jmMKHEhjFiq9TU1hb5D4YF3dZb1UPN7tHiXKALEcGrwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA4UtjPy6TxX6tpAQidDjOhRarcHMB8GA1UdIwQY
MBaAFNY/jkL7hEKkin1H70wLbhR1FL/EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWotT1F2dUVRcVNLZlVmdlRBdHVGSFVVdjhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lZTVmMzMtYjFlYi00ZDA4LTllODct
MmVkN2E3MTVmOGQ3LzEvMWotT1F2dUVRcVNLZlVmdlRBdHVGSFVVdjhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9lZTVmMzMtYjFlYi00ZDA4LTllODctMmVkN2E3MTVmOGQ3
LzEvMWotT1F2dUVRcVNLZlVmdlRBdHVGSFVVdjhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl7pMSwkT
l0jmp3kQKB3JQB9C99IMeLqQQJ1LZMriTZMzwBwtCNkGP8g+xmI4ehs3cc58uSka
MDhNLvNOW0OPwRZE9hCfWz/BeOTnCNHNskMIK6XLyMtkvuB/7jpxN54MG5+C9KFb
MoonKjUVWFjsFHkGqSX/w9eeElOIxszVuXKVtHo4f53LppsKmOQbRY0CJV1OS0cw
rCo00g+ICBu5Zg57MuRsoVPGP2s2ztcGqoOIrekkz0V6ESN9O2IOXwsAZLzhkdt2
Ir3lZTXjyFTVaCcNFwTBl+XkzvaFasdmnHrk6Q6XLDDDYHCEDX1bDXoDmgzDsO0e
Fs/HJjDa4bbdfw==
-----END CERTIFICATE-----