Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
File:                     iX81rEgorqlfpdLYBNM6ewz_RYo.mft (raw, json)
Hash identifier:          EzqoXRGJwuAcP/rJ8v+VLEYbNCx3LOuWXZh2Qwfbq7U=
Subject key identifier:   E5:5E:D8:74:F2:1E:6D:69:06:90:50:8F:30:6C:24:E9:BE:A8:71:70
Authority key identifier: 89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A
Certificate issuer:       /CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
Certificate serial:       0197B820EA932D33D2922882A88B53508788
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
Manifest number:          0477
Signing time:             Sat 28 Jun 2025 20:00:54 +0000
Manifest this update:     Sat 28 Jun 2025 20:00:54 +0000
Manifest next update:     Sun 29 Jun 2025 20:00:54 +0000
Files and hashes:         1: iX81rEgorqlfpdLYBNM6ewz_RYo.crl (hash: 3vSYbYf2RUE2t79ZjbvTS/QwunlWim1627i+yFqBHWM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b8:20:ea:93:2d:33:d2:92:28:82:a8:8b:53:50:87:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=897f35ac4828aea95fa5d2d804d33a7b0cff458a
        Validity
            Not Before: Jun 28 20:00:54 2025 GMT
            Not After : Jun 29 20:00:54 2025 GMT
        Subject: CN=e55ed874f21e6d690690508f306c24e9bea87170
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:54:0a:4c:04:a0:95:4b:ee:bf:be:e0:3c:98:
                    10:0c:89:e7:91:7d:52:20:a6:f9:3f:d4:bc:2a:ac:
                    fc:c9:eb:68:55:bb:21:52:84:d1:df:30:3e:2d:57:
                    8e:d7:6c:90:a0:17:44:ac:e0:ce:ee:76:98:4e:32:
                    70:f3:7f:db:b8:39:86:ce:d1:7e:08:3c:e5:c5:03:
                    fe:0b:ee:b8:f0:e4:33:d0:d8:ba:e1:4d:0f:83:52:
                    2f:b8:9b:4f:a2:e9:a8:8e:87:bb:88:67:e8:b5:44:
                    65:c5:7b:b6:03:46:55:d4:cf:57:c2:f3:aa:32:01:
                    9e:31:af:45:59:4b:c4:ff:8e:84:dd:a9:b4:57:7b:
                    96:b8:e8:cc:16:09:67:c8:95:ae:b7:c5:2c:b0:71:
                    f5:eb:71:6f:2a:0e:cd:d4:f8:97:e1:3a:65:ce:16:
                    79:72:56:0e:e0:42:52:bc:aa:5c:28:57:a9:88:f4:
                    2c:0c:2c:c1:45:70:14:9b:63:20:3e:7c:7d:58:8d:
                    f4:5f:3b:b2:17:84:9c:92:55:21:62:75:78:b5:cb:
                    d6:f0:d0:5b:37:8f:62:9d:d9:51:78:9b:97:15:58:
                    52:d7:ee:f9:73:c8:25:d5:a0:10:8a:15:a9:e8:aa:
                    c7:f8:4e:c1:e0:65:7f:ca:2a:82:ee:8a:75:08:43:
                    f1:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:5E:D8:74:F2:1E:6D:69:06:90:50:8F:30:6C:24:E9:BE:A8:71:70
            X509v3 Authority Key Identifier:
                keyid:89:7F:35:AC:48:28:AE:A9:5F:A5:D2:D8:04:D3:3A:7B:0C:FF:45:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iX81rEgorqlfpdLYBNM6ewz_RYo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/dba2f7-7c2b-4670-a1df-b0e4103f4962/1/iX81rEgorqlfpdLYBNM6ewz_RYo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:f9:4d:b0:cd:c3:e5:b3:85:80:bf:cc:ee:03:d2:78:60:cf:
         c6:1e:f2:6d:6b:7a:67:58:11:fb:a8:c7:58:0e:14:d0:51:d3:
         15:c9:5d:12:54:77:4a:5c:9c:e1:a7:84:4e:1a:5f:28:b6:ea:
         93:80:01:34:7a:75:64:d1:09:be:c0:aa:96:67:6e:21:31:16:
         87:16:c7:52:e3:b8:12:16:75:fc:9d:2b:9a:f7:fe:f4:dd:11:
         a1:41:22:5a:c2:f2:62:ea:72:ff:45:ec:58:10:b7:ff:82:7a:
         b1:a8:0c:73:05:17:d7:64:f6:3f:0f:b3:69:08:a5:84:da:77:
         04:67:1e:96:a6:73:7e:12:b0:03:00:9f:2f:2d:5d:4e:ee:1b:
         66:f7:dc:22:1a:15:b7:9a:53:52:06:1a:72:51:4b:e4:d7:68:
         9d:d4:d4:49:ce:23:b8:4c:90:d6:01:99:56:ee:5c:a5:73:a7:
         1b:a0:3c:14:55:51:aa:95:be:fa:b1:ce:a9:4d:b6:49:d3:07:
         aa:9d:4f:56:5a:e3:7e:25:e2:de:2c:02:9e:bd:00:cb:f2:e3:
         3b:de:b2:ad:3f:09:47:55:03:51:29:b1:2f:2d:44:75:78:fc:
         d9:3c:bc:40:44:dd:75:4b:cb:94:c3:5f:d3:31:8e:7e:81:18:
         50:10:f7:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe4IOqTLTPSkiiCqItTUIeIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5N2YzNWFjNDgyOGFlYTk1ZmE1ZDJkODA0ZDMzYTdiMGNm
ZjQ1OGEwHhcNMjUwNjI4MjAwMDU0WhcNMjUwNjI5MjAwMDU0WjAzMTEwLwYDVQQD
EyhlNTVlZDg3NGYyMWU2ZDY5MDY5MDUwOGYzMDZjMjRlOWJlYTg3MTcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxFQKTASglUvuv77gPJgQDInnkX1S
IKb5P9S8Kqz8yetoVbshUoTR3zA+LVeO12yQoBdErODO7naYTjJw83/buDmGztF+
CDzlxQP+C+648OQz0Ni64U0Pg1IvuJtPoumojoe7iGfotURlxXu2A0ZV1M9XwvOq
MgGeMa9FWUvE/46E3am0V3uWuOjMFglnyJWut8UssHH163FvKg7N1PiX4TplzhZ5
clYO4EJSvKpcKFepiPQsDCzBRXAUm2MgPnx9WI30XzuyF4ScklUhYnV4tcvW8NBb
N49indlReJuXFVhS1+75c8gl1aAQihWp6KrH+E7B4GV/yiqC7op1CEPx5QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOVe2HTyHm1pBpBQjzBsJOm+qHFwMB8GA1UdIwQY
MBaAFIl/NaxIKK6pX6XS2ATTOnsM/0WKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYt
YjBlNDEwM2Y0OTYyLzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi9kYmEyZjctN2MyYi00NjcwLWExZGYtYjBlNDEwM2Y0OTYy
LzEvaVg4MXJFZ29ycWxmcGRMWUJOTTZld3pfUllvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALvlNsM3D
5bOFgL/M7gPSeGDPxh7ybWt6Z1gR+6jHWA4U0FHTFcldElR3Slyc4aeEThpfKLbq
k4ABNHp1ZNEJvsCqlmduITEWhxbHUuO4EhZ1/J0rmvf+9N0RoUEiWsLyYupy/0Xs
WBC3/4J6sagMcwUX12T2Pw+zaQilhNp3BGcelqZzfhKwAwCfLy1dTu4bZvfcIhoV
t5pTUgYaclFL5NdondTUSc4juEyQ1gGZVu5cpXOnG6A8FFVRqpW++rHOqU22SdMH
qp1PVlrjfiXi3iwCnr0Ay/LjO96yrT8JR1UDUSmxLy1EdXj82Ty8QETddUvLlMNf
0zGOfoEYUBD3VQ==
-----END CERTIFICATE-----