Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft
File:                     3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft (raw, json)
Hash identifier:          M5YucBgTfzhlYT+VOJYO1aFiODGh/C2PoX8ywKUGNyE=
Subject key identifier:   06:77:FB:B2:58:12:AA:A3:80:96:6D:05:65:07:52:18:7D:50:5D:99
Authority key identifier: DE:11:CC:6D:F1:33:66:FC:59:5A:6E:72:ED:03:C5:38:00:79:2B:4B
Certificate issuer:       /CN=de11cc6df13366fc595a6e72ed03c53800792b4b
Certificate serial:       0197B70E7105283192A57AF4FBA6967EA444
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3hHMbfEzZvxZWm5y7QPFOAB5K0s.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft
Manifest number:          0D18
Signing time:             Sat 28 Jun 2025 15:01:06 +0000
Manifest this update:     Sat 28 Jun 2025 15:01:06 +0000
Manifest next update:     Sun 29 Jun 2025 15:01:06 +0000
Files and hashes:         1: 3hHMbfEzZvxZWm5y7QPFOAB5K0s.crl (hash: oJqSdu2omJhFcRX+pjQQ+WciIlLxP+ouE1VwXmb9Yb0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3hHMbfEzZvxZWm5y7QPFOAB5K0s.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 10:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:0e:71:05:28:31:92:a5:7a:f4:fb:a6:96:7e:a4:44
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=de11cc6df13366fc595a6e72ed03c53800792b4b
        Validity
            Not Before: Jun 28 15:01:06 2025 GMT
            Not After : Jun 29 15:01:06 2025 GMT
        Subject: CN=0677fbb25812aaa380966d05650752187d505d99
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:a2:ad:ae:22:a7:c8:67:d3:26:45:ac:f2:f4:
                    f3:03:28:c6:03:06:c2:3c:93:f9:75:72:75:fa:6c:
                    21:04:f8:a1:eb:6d:ab:ce:b8:09:15:ac:93:06:ce:
                    bc:f5:c3:32:9c:60:20:cd:7f:21:cf:1f:0e:5e:36:
                    2d:fc:84:99:17:6f:4e:f1:89:4a:2e:f4:d5:91:bd:
                    f4:af:c5:08:b3:8f:73:23:8b:d0:e8:54:60:c4:bd:
                    df:42:9b:df:01:6c:fb:47:90:4c:fb:7b:b9:59:39:
                    7f:ce:5c:d9:d4:2c:f6:b9:20:90:03:1b:0c:2f:c8:
                    dd:86:cc:41:05:53:ed:23:d7:c2:94:54:58:23:27:
                    0f:3c:99:4d:70:ec:68:f8:33:1a:d1:5a:ec:0f:c8:
                    b0:ca:9a:05:06:50:b1:cd:2d:6b:1a:97:af:7f:45:
                    5e:7b:31:2e:68:11:e3:01:de:35:98:0d:1b:75:32:
                    fe:af:8c:f5:d1:c4:f6:7f:05:26:f9:52:2d:ae:25:
                    c9:8c:89:44:72:36:47:46:8f:eb:57:f9:3e:8a:64:
                    e1:22:6e:75:e6:73:b7:23:75:9d:b3:93:1a:78:dc:
                    d7:64:95:ea:7c:8a:3b:21:92:18:68:56:14:e9:c2:
                    80:f2:b9:6e:54:06:dc:cd:cf:62:e8:17:2d:99:fb:
                    94:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:77:FB:B2:58:12:AA:A3:80:96:6D:05:65:07:52:18:7D:50:5D:99
            X509v3 Authority Key Identifier:
                keyid:DE:11:CC:6D:F1:33:66:FC:59:5A:6E:72:ED:03:C5:38:00:79:2B:4B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hHMbfEzZvxZWm5y7QPFOAB5K0s.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c6494d-fc66-453c-bc83-e6c4df46f04d/1/3hHMbfEzZvxZWm5y7QPFOAB5K0s.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         51:0e:c1:9d:e8:5c:c5:3d:ee:7e:02:0a:4a:8d:23:dd:d7:ae:
         47:ef:13:95:1c:cf:16:23:34:06:ca:26:41:bb:b4:63:f6:c1:
         eb:d6:09:61:03:59:2c:b4:76:8f:3e:61:e9:c6:b3:de:f3:17:
         ad:7f:78:90:e9:a0:62:90:73:8e:7b:cf:8c:65:a5:21:9b:3a:
         81:df:75:7f:cb:fa:14:10:0c:3b:95:63:c8:1c:87:ff:5f:1c:
         99:33:7b:4f:69:42:83:0a:74:c7:8a:9d:cf:f8:44:11:44:4d:
         fc:55:c8:65:31:f0:1f:ff:9c:06:2f:d0:a7:e0:67:a2:02:34:
         2b:38:d3:bb:e8:0e:78:c1:53:72:cc:3c:09:26:22:1a:cf:19:
         2d:85:2b:6a:7d:32:6b:29:fb:5d:1d:3d:e1:69:61:30:bf:a4:
         28:f7:32:b5:55:c6:b0:bd:fb:d2:ea:24:6e:71:5b:ba:62:82:
         35:7f:ea:41:89:bb:35:96:91:1b:e1:1f:55:a2:6e:29:2b:ab:
         1b:c5:36:3a:38:b6:64:aa:ee:ef:7b:5e:59:d2:b7:e3:87:c5:
         bd:1a:8a:1c:a4:a8:99:21:34:e7:48:88:53:03:30:aa:2b:27:
         c4:d8:82:48:c0:12:88:d4:be:78:a9:37:81:6e:20:cb:e1:d4:
         03:95:fb:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DnEFKDGSpXr0+6aWfqREMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMTFjYzZkZjEzMzY2ZmM1OTVhNmU3MmVkMDNjNTM4MDA3
OTJiNGIwHhcNMjUwNjI4MTUwMTA2WhcNMjUwNjI5MTUwMTA2WjAzMTEwLwYDVQQD
EygwNjc3ZmJiMjU4MTJhYWEzODA5NjZkMDU2NTA3NTIxODdkNTA1ZDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyKKtriKnyGfTJkWs8vTzAyjGAwbC
PJP5dXJ1+mwhBPih622rzrgJFayTBs689cMynGAgzX8hzx8OXjYt/ISZF29O8YlK
LvTVkb30r8UIs49zI4vQ6FRgxL3fQpvfAWz7R5BM+3u5WTl/zlzZ1Cz2uSCQAxsM
L8jdhsxBBVPtI9fClFRYIycPPJlNcOxo+DMa0VrsD8iwypoFBlCxzS1rGpevf0Ve
ezEuaBHjAd41mA0bdTL+r4z10cT2fwUm+VItriXJjIlEcjZHRo/rV/k+imThIm51
5nO3I3Wds5MaeNzXZJXqfIo7IZIYaFYU6cKA8rluVAbczc9i6BctmfuUFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAZ3+7JYEqqjgJZtBWUHUhh9UF2ZMB8GA1UdIwQY
MBaAFN4RzG3xM2b8WVpucu0DxTgAeStLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2hITWJmRXpadnhaV201eTdRUEZPQUI1SzBzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9jNjQ5NGQtZmM2Ni00NTNjLWJjODMt
ZTZjNGRmNDZmMDRkLzEvM2hITWJmRXpadnhaV201eTdRUEZPQUI1SzBzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS9jNjQ5NGQtZmM2Ni00NTNjLWJjODMtZTZjNGRmNDZmMDRk
LzEvM2hITWJmRXpadnhaV201eTdRUEZPQUI1SzBzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUQ7Bnehc
xT3ufgIKSo0j3deuR+8TlRzPFiM0BsomQbu0Y/bB69YJYQNZLLR2jz5h6caz3vMX
rX94kOmgYpBzjnvPjGWlIZs6gd91f8v6FBAMO5VjyByH/18cmTN7T2lCgwp0x4qd
z/hEEURN/FXIZTHwH/+cBi/Qp+BnogI0KzjTu+gOeMFTcsw8CSYiGs8ZLYUran0y
ayn7XR094WlhML+kKPcytVXGsL370uokbnFbumKCNX/qQYm7NZaRG+EfVaJuKSur
G8U2Oji2ZKru73teWdK344fFvRqKHKSomSE050iIUwMwqisnxNiCSMASiNS+eKk3
gW4gy+HUA5X7xw==
-----END CERTIFICATE-----