Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
File:                     tWpL1vXr8vf_2ajRzZparN5iKFw.mft (raw, json)
Hash identifier:          YXrJ3p0sEKO5k5KDuoVfkJqUCYzWyplGpxbxVIsbqLY=
Subject key identifier:   81:E6:A0:EC:12:3E:9B:0C:AC:50:B2:08:36:F7:D5:28:F2:3E:8F:D1
Authority key identifier: B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C
Certificate issuer:       /CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
Certificate serial:       0197B7459BC36AA6FF2F580C12212131030C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
Manifest number:          076F
Signing time:             Sat 28 Jun 2025 16:01:21 +0000
Manifest this update:     Sat 28 Jun 2025 16:01:21 +0000
Manifest next update:     Sun 29 Jun 2025 16:01:21 +0000
Files and hashes:         1: tWpL1vXr8vf_2ajRzZparN5iKFw.crl (hash: KYrnlzMyrAzXzMrsjA1scFa3iL1iQsjrSAdbuI+pqIs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 29 Jun 2025 15:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:b7:45:9b:c3:6a:a6:ff:2f:58:0c:12:21:21:31:03:0c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b56a4bd6f5ebf2f7ffd9a8d1cd9a5aacde62285c
        Validity
            Not Before: Jun 28 16:01:21 2025 GMT
            Not After : Jun 29 16:01:21 2025 GMT
        Subject: CN=81e6a0ec123e9b0cac50b20836f7d528f23e8fd1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:5b:e4:4a:b7:fc:aa:ca:3c:e1:0e:43:55:1a:
                    f2:31:c0:d2:bb:5a:90:65:a6:ce:ab:5b:26:b0:40:
                    fd:fa:b9:c8:c1:36:f0:ca:b7:90:7e:b2:3a:26:35:
                    6d:bf:5a:6f:6b:ec:c8:bf:74:13:67:ab:25:98:79:
                    e4:74:86:61:a0:16:ab:14:68:f7:55:90:6f:52:94:
                    de:e0:33:ed:e9:55:36:3d:8e:67:8a:21:18:54:8b:
                    0d:80:47:ca:4a:49:a8:eb:a6:8c:2d:ba:73:ba:11:
                    fd:ad:45:0c:5f:55:10:f5:1a:60:ef:e6:8b:dc:da:
                    27:85:15:5b:8e:c5:e1:06:27:51:a4:b7:5f:5b:35:
                    e2:78:26:fe:5b:53:c2:6c:48:bc:c5:b0:a8:d2:e5:
                    4b:09:48:57:56:6d:64:98:86:c2:4f:41:92:2e:e7:
                    15:19:0c:81:28:17:20:a2:17:84:bb:c9:5b:ff:75:
                    e2:a0:b8:c8:5f:be:89:1d:10:b1:b6:35:51:f1:c1:
                    7a:08:3b:e8:bd:02:e1:96:8c:12:4f:83:e6:82:35:
                    4f:d7:f7:7d:03:dc:3f:86:41:c4:ee:3e:6a:60:3a:
                    e4:1a:f1:0d:d1:0a:c9:9f:23:ce:cf:0b:9f:c3:75:
                    2c:7f:fe:76:75:c9:88:c9:cd:b6:01:18:8e:ff:46:
                    f0:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:E6:A0:EC:12:3E:9B:0C:AC:50:B2:08:36:F7:D5:28:F2:3E:8F:D1
            X509v3 Authority Key Identifier:
                keyid:B5:6A:4B:D6:F5:EB:F2:F7:FF:D9:A8:D1:CD:9A:5A:AC:DE:62:28:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tWpL1vXr8vf_2ajRzZparN5iKFw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dde736-2730-4bfe-a5b3-082e11363f0a/1/tWpL1vXr8vf_2ajRzZparN5iKFw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:e2:9f:60:36:ef:20:fc:d8:47:79:66:d2:60:88:ba:17:af:
         05:ad:03:97:d9:c5:38:e3:d9:cc:3f:7b:f4:99:b9:22:1f:38:
         d7:8e:f1:0f:35:c9:f9:18:3d:fd:eb:5a:6d:f3:fa:ea:03:c3:
         7f:97:e5:90:a9:c6:1a:7b:d5:f1:80:66:0a:b6:5a:fc:77:2c:
         a7:c2:6d:26:2d:b8:67:d6:67:ac:02:8b:bc:59:55:91:a4:c7:
         2b:79:e3:a3:a3:9b:b1:51:88:cf:c8:87:e8:6d:39:ab:76:56:
         b9:58:01:2d:91:de:d4:83:d6:48:d9:8e:c2:4c:cb:f6:01:d3:
         3b:c4:7e:00:6e:6c:b9:a5:5c:dd:38:fa:c0:8c:7f:f5:1c:98:
         9f:25:bf:ce:9e:d2:ae:43:c4:6c:0d:1a:37:0b:d9:ad:e8:1b:
         2c:01:a3:e1:e7:98:0c:e0:f4:f8:6e:e0:81:2d:2f:bc:3e:c8:
         7e:09:4c:5f:23:71:87:4b:86:07:c0:dd:b6:4a:f2:34:68:ce:
         ee:e1:36:c8:73:62:3a:cd:50:63:91:89:d5:7c:ea:89:53:1c:
         88:c5:71:36:c9:9f:4c:98:f2:91:c2:84:18:15:7f:4e:d7:35:
         c0:a4:ca:b0:03:c9:c0:70:72:27:8a:75:5d:1d:07:ab:5f:84:
         1f:5a:a4:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RZvDaqb/L1gMEiEhMQMMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NmE0YmQ2ZjVlYmYyZjdmZmQ5YThkMWNkOWE1YWFjZGU2
MjI4NWMwHhcNMjUwNjI4MTYwMTIxWhcNMjUwNjI5MTYwMTIxWjAzMTEwLwYDVQQD
Eyg4MWU2YTBlYzEyM2U5YjBjYWM1MGIyMDgzNmY3ZDUyOGYyM2U4ZmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzVvkSrf8qso84Q5DVRryMcDSu1qQ
ZabOq1smsED9+rnIwTbwyreQfrI6JjVtv1pva+zIv3QTZ6slmHnkdIZhoBarFGj3
VZBvUpTe4DPt6VU2PY5niiEYVIsNgEfKSkmo66aMLbpzuhH9rUUMX1UQ9Rpg7+aL
3NonhRVbjsXhBidRpLdfWzXieCb+W1PCbEi8xbCo0uVLCUhXVm1kmIbCT0GSLucV
GQyBKBcgoheEu8lb/3XioLjIX76JHRCxtjVR8cF6CDvovQLhlowST4PmgjVP1/d9
A9w/hkHE7j5qYDrkGvEN0QrJnyPOzwufw3Usf/52dcmIyc22ARiO/0bwBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIHmoOwSPpsMrFCyCDb31SjyPo/RMB8GA1UdIwQY
MBaAFLVqS9b16/L3/9mo0c2aWqzeYihcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMt
MDgyZTExMzYzZjBhLzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNy9kZGU3MzYtMjczMC00YmZlLWE1YjMtMDgyZTExMzYzZjBh
LzEvdFdwTDF2WHI4dmZfMmFqUnpacGFyTjVpS0Z3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY+KfYDbv
IPzYR3lm0mCIuhevBa0Dl9nFOOPZzD979Jm5Ih84147xDzXJ+Rg9/etabfP66gPD
f5flkKnGGnvV8YBmCrZa/Hcsp8JtJi24Z9ZnrAKLvFlVkaTHK3njo6ObsVGIz8iH
6G05q3ZWuVgBLZHe1IPWSNmOwkzL9gHTO8R+AG5suaVc3Tj6wIx/9RyYnyW/zp7S
rkPEbA0aNwvZregbLAGj4eeYDOD0+G7ggS0vvD7IfglMXyNxh0uGB8DdtkryNGjO
7uE2yHNiOs1QY5GJ1XzqiVMciMVxNsmfTJjykcKEGBV/Ttc1wKTKsAPJwHByJ4p1
XR0Hq1+EH1qkPg==
-----END CERTIFICATE-----