Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.mft
File:                     L5FDTuFsYTNOwnDfVox3oLXeBSo.mft (raw, json)
Hash identifier:          KI16CI7bRiGYWrrH7gEqIS4isBMRsUHqngCvRmOt5S0=
Subject key identifier:   9E:04:DE:60:99:30:C7:B4:53:E6:01:5C:50:18:2C:70:E9:0C:FD:1B
Authority key identifier: 2F:91:43:4E:E1:6C:61:33:4E:C2:70:DF:56:8C:77:A0:B5:DE:05:2A
Certificate issuer:       /CN=2f91434ee16c61334ec270df568c77a0b5de052a
Certificate serial:       0196B823948BF7DE17C85344B7F7E37FD6F0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/L5FDTuFsYTNOwnDfVox3oLXeBSo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.mft
Manifest number:          0C16
Signing time:             Sat 10 May 2025 03:01:01 +0000
Manifest this update:     Sat 10 May 2025 03:01:01 +0000
Manifest next update:     Sun 11 May 2025 03:01:01 +0000
Files and hashes:         1: L5FDTuFsYTNOwnDfVox3oLXeBSo.crl (hash: HSp9f7ZP1IAPvXXqDumA+E1R0sS1SqOUfwCwdfqMPHU=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/L5FDTuFsYTNOwnDfVox3oLXeBSo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 11 May 2025 03:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:b8:23:94:8b:f7:de:17:c8:53:44:b7:f7:e3:7f:d6:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2f91434ee16c61334ec270df568c77a0b5de052a
        Validity
            Not Before: May 10 03:01:01 2025 GMT
            Not After : May 11 03:01:01 2025 GMT
        Subject: CN=9e04de609930c7b453e6015c50182c70e90cfd1b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:3f:f4:a1:fe:f7:60:5b:26:d4:d8:b1:f5:5b:
                    c4:9a:53:d9:83:9c:58:b8:b9:0b:30:43:74:19:27:
                    49:79:ab:b3:cb:0d:96:2f:09:ee:89:b7:1b:5e:e7:
                    ab:3a:8c:58:3a:60:08:02:e2:6f:e1:dc:dd:51:83:
                    86:47:75:5d:da:1c:93:a8:ac:c4:93:51:5e:d2:13:
                    3b:a6:aa:01:3d:81:9d:46:53:0b:ba:2a:99:13:5a:
                    72:66:54:4c:5d:37:dd:95:f2:c6:ae:4e:b9:52:b0:
                    04:02:ca:fd:af:f9:39:e5:32:5c:6d:c1:c5:f4:de:
                    91:33:b6:93:98:6d:09:73:03:64:da:da:e9:04:99:
                    76:16:73:bd:4b:f1:a6:6c:11:83:db:be:dd:f7:f8:
                    a3:11:da:ca:7b:b9:04:78:19:c5:4e:ce:a6:15:e2:
                    bd:35:f5:d2:74:a0:bb:22:15:59:60:97:ac:0b:ec:
                    99:71:b3:47:08:76:eb:21:89:67:f0:99:eb:6f:a3:
                    4c:3c:c2:06:6b:a3:f8:c6:5d:aa:d4:5b:09:3d:60:
                    27:6b:ea:7f:1d:c4:01:bf:d0:44:dd:18:d7:4d:4a:
                    1f:4b:37:fd:ee:2f:29:b8:dc:bc:37:83:67:e5:17:
                    bf:33:a6:d1:5e:80:58:7d:6f:87:0c:e6:e2:04:63:
                    36:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:04:DE:60:99:30:C7:B4:53:E6:01:5C:50:18:2C:70:E9:0C:FD:1B
            X509v3 Authority Key Identifier:
                keyid:2F:91:43:4E:E1:6C:61:33:4E:C2:70:DF:56:8C:77:A0:B5:DE:05:2A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5FDTuFsYTNOwnDfVox3oLXeBSo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/cd41ba-2ea7-474f-8941-5fdb3228fe1f/1/L5FDTuFsYTNOwnDfVox3oLXeBSo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:00:41:f2:84:bb:cd:39:b7:9a:cf:f1:f9:44:8a:a6:a3:d3:
         99:43:ce:9e:c5:0b:b1:3f:d6:d8:cf:0d:4d:9d:58:a8:12:a0:
         ec:f2:75:08:8f:86:91:ff:ec:0b:cf:34:dc:df:4c:2a:aa:f7:
         28:41:8f:46:1f:86:0b:56:a0:a0:93:cc:ef:47:0f:59:97:8d:
         5b:e4:63:d4:6a:70:c1:78:de:17:f4:d1:b5:0b:5b:18:ed:36:
         f6:0a:14:ed:79:cf:58:10:d7:f6:e3:cc:61:7b:ce:09:e0:88:
         aa:16:d2:21:b7:fd:1a:47:08:4f:6e:e6:b9:ef:a8:bd:4e:e7:
         8c:ac:e4:50:47:db:8c:8a:64:55:89:4f:06:5e:dd:f4:1c:78:
         f2:8c:cb:9c:da:b4:7a:2f:76:c8:a0:9e:12:c2:fc:9e:b2:d2:
         61:19:d6:2e:23:68:32:75:a6:ba:7e:11:6b:c9:83:2c:f1:1f:
         33:bb:fc:15:eb:86:28:c5:68:ca:33:8d:e8:ce:56:96:0b:9b:
         3a:2d:c7:df:ae:e1:1d:c5:b1:a2:18:d1:b8:9a:dd:f5:97:02:
         af:db:45:98:ba:4d:d4:bd:d1:59:0b:a4:de:39:19:02:c2:3a:
         cc:01:4a:18:34:61:80:7f:4a:22:35:d8:ce:c6:74:ec:60:ac:
         c6:08:69:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa4I5SL994XyFNEt/fjf9bwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmOTE0MzRlZTE2YzYxMzM0ZWMyNzBkZjU2OGM3N2EwYjVk
ZTA1MmEwHhcNMjUwNTEwMDMwMTAxWhcNMjUwNTExMDMwMTAxWjAzMTEwLwYDVQQD
Eyg5ZTA0ZGU2MDk5MzBjN2I0NTNlNjAxNWM1MDE4MmM3MGU5MGNmZDFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzz/0of73YFsm1Nix9VvEmlPZg5xY
uLkLMEN0GSdJeauzyw2WLwnuibcbXuerOoxYOmAIAuJv4dzdUYOGR3Vd2hyTqKzE
k1Fe0hM7pqoBPYGdRlMLuiqZE1pyZlRMXTfdlfLGrk65UrAEAsr9r/k55TJcbcHF
9N6RM7aTmG0JcwNk2trpBJl2FnO9S/GmbBGD277d9/ijEdrKe7kEeBnFTs6mFeK9
NfXSdKC7IhVZYJesC+yZcbNHCHbrIYln8Jnrb6NMPMIGa6P4xl2q1FsJPWAna+p/
HcQBv9BE3RjXTUofSzf97i8puNy8N4Nn5Re/M6bRXoBYfW+HDObiBGM2/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ4E3mCZMMe0U+YBXFAYLHDpDP0bMB8GA1UdIwQY
MBaAFC+RQ07hbGEzTsJw31aMd6C13gUqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDVGRFR1RnNZVE5Pd25EZlZveDNvTFhlQlNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9jZDQxYmEtMmVhNy00NzRmLTg5NDEt
NWZkYjMyMjhmZTFmLzEvTDVGRFR1RnNZVE5Pd25EZlZveDNvTFhlQlNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi9jZDQxYmEtMmVhNy00NzRmLTg5NDEtNWZkYjMyMjhmZTFm
LzEvTDVGRFR1RnNZVE5Pd25EZlZveDNvTFhlQlNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMABB8oS7
zTm3ms/x+USKpqPTmUPOnsULsT/W2M8NTZ1YqBKg7PJ1CI+Gkf/sC8803N9MKqr3
KEGPRh+GC1agoJPM70cPWZeNW+Rj1GpwwXjeF/TRtQtbGO029goU7XnPWBDX9uPM
YXvOCeCIqhbSIbf9GkcIT27mue+ovU7njKzkUEfbjIpkVYlPBl7d9Bx48ozLnNq0
ei92yKCeEsL8nrLSYRnWLiNoMnWmun4Ra8mDLPEfM7v8FeuGKMVoyjON6M5Wlgub
Oi3H367hHcWxohjRuJrd9ZcCr9tFmLpN1L3RWQuk3jkZAsI6zAFKGDRhgH9KIjXY
zsZ07GCsxghpQQ==
-----END CERTIFICATE-----