Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.mft
File:                     zaBUR0-v2QsOpHxVdlu-bzdjdTE.mft (raw, json)
Hash identifier:          tv0zbahJuzi/22JOIbOn8TugWHNWr83lAEAGi/T0IwY=
Subject key identifier:   14:D5:EB:67:64:D7:44:8F:F1:CE:2F:DA:CA:97:9E:31:E7:09:9B:63
Authority key identifier: CD:A0:54:47:4F:AF:D9:0B:0E:A4:7C:55:76:5B:BE:6F:37:63:75:31
Certificate issuer:       /CN=cda054474fafd90b0ea47c55765bbe6f37637531
Certificate serial:       0197CF4D7BF61D0499EDFB571DA01D593DA5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/zaBUR0-v2QsOpHxVdlu-bzdjdTE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.mft
Manifest number:          76
Signing time:             Thu 03 Jul 2025 08:00:50 +0000
Manifest this update:     Thu 03 Jul 2025 08:00:50 +0000
Manifest next update:     Fri 04 Jul 2025 08:00:50 +0000
Files and hashes:         1: zaBUR0-v2QsOpHxVdlu-bzdjdTE.crl (hash: 183P44tElqdQ42+q2tB/g2gO+l9EOVppKwxXd07p8HM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/zaBUR0-v2QsOpHxVdlu-bzdjdTE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 04 Jul 2025 05:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:cf:4d:7b:f6:1d:04:99:ed:fb:57:1d:a0:1d:59:3d:a5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cda054474fafd90b0ea47c55765bbe6f37637531
        Validity
            Not Before: Jul  3 08:00:50 2025 GMT
            Not After : Jul  4 08:00:50 2025 GMT
        Subject: CN=14d5eb6764d7448ff1ce2fdaca979e31e7099b63
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:b0:cf:64:e4:65:7a:c3:c0:f4:4a:17:4b:5f:
                    20:6d:67:19:4f:49:da:e7:eb:00:d8:1a:9b:41:7b:
                    5f:ca:b1:87:6e:24:28:c0:a5:b5:fa:5a:bd:9a:b5:
                    e9:e3:b7:c9:f3:3c:2c:a3:a5:05:d0:36:34:b5:2a:
                    a1:43:0c:b0:c7:c0:07:49:d1:4f:1c:5e:f9:9f:8a:
                    14:51:3b:a3:5d:7e:d2:38:90:d1:f4:8c:8c:f2:43:
                    17:27:82:b2:f9:4d:99:13:37:28:27:4a:38:a3:95:
                    db:21:4f:44:8f:c5:4d:b8:69:f5:2c:5d:ee:ed:dd:
                    37:30:a0:af:46:80:bc:6f:93:97:c9:d3:b0:47:c8:
                    42:58:ad:6d:f6:1e:33:9a:92:d4:f5:7f:68:00:24:
                    31:bb:76:a1:92:43:34:77:88:a9:86:30:6f:64:a0:
                    3c:1d:25:9f:b6:e8:3c:51:de:a5:cb:8d:89:e5:54:
                    92:80:91:37:f3:93:d1:6b:00:b4:c5:14:61:a8:e9:
                    ff:78:78:76:90:6a:85:d6:ff:43:cb:6f:8c:70:c1:
                    23:d2:f1:d5:76:8d:57:87:3d:09:9b:26:60:6b:28:
                    3e:b1:c8:ad:bb:ce:ac:49:c7:51:38:aa:21:8d:44:
                    ed:73:eb:da:da:39:71:2a:ff:fc:d6:8b:fb:0c:fe:
                    c4:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:D5:EB:67:64:D7:44:8F:F1:CE:2F:DA:CA:97:9E:31:E7:09:9B:63
            X509v3 Authority Key Identifier:
                keyid:CD:A0:54:47:4F:AF:D9:0B:0E:A4:7C:55:76:5B:BE:6F:37:63:75:31

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaBUR0-v2QsOpHxVdlu-bzdjdTE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/df/bac904-2802-436e-ab40-8137c5299aee/1/zaBUR0-v2QsOpHxVdlu-bzdjdTE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:2f:b2:ea:d3:74:42:d3:40:b5:8f:35:2b:15:5a:3a:4e:80:
         5e:69:0e:2e:5c:17:9b:eb:bc:e9:35:c3:3d:9f:9d:2f:87:4e:
         92:85:f7:4f:7b:5d:1b:18:b5:e4:13:75:21:d6:ab:4b:90:ca:
         2f:33:b5:b2:92:e3:87:3f:d6:8e:29:41:b6:48:cb:9e:76:02:
         75:9f:a9:ae:e4:4c:2d:38:e2:1a:f0:ed:31:81:b0:31:85:9d:
         15:3f:d8:f0:dd:ba:cd:1b:bb:dd:e1:c1:8c:37:ad:7c:56:94:
         8e:6e:17:ef:bf:bb:ca:ba:83:d9:61:0e:77:13:d0:61:dd:65:
         d9:20:a8:22:be:9e:33:e6:9e:37:d7:dc:71:4f:94:3f:9e:f6:
         ec:13:9e:1e:51:c3:aa:c5:59:7c:05:6a:cd:dd:a5:e1:16:73:
         0d:66:70:ec:a8:36:70:e9:6e:23:1f:0e:13:c2:1b:8d:11:a1:
         ca:e3:58:1f:7c:c9:4e:7e:c3:d0:9f:7f:b3:69:e0:f0:ac:0c:
         05:8c:c0:80:b9:20:65:58:35:40:1c:2b:e6:d1:c4:81:ed:e2:
         86:5f:e4:88:5a:9c:17:68:32:53:c9:19:49:2c:bd:5e:9c:f8:
         47:28:84:22:f8:82:5a:69:57:90:a0:66:a3:3e:4f:65:7d:38:
         2a:d4:28:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZfPTXv2HQSZ7ftXHaAdWT2lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYTA1NDQ3NGZhZmQ5MGIwZWE0N2M1NTc2NWJiZTZmMzc2
Mzc1MzEwHhcNMjUwNzAzMDgwMDUwWhcNMjUwNzA0MDgwMDUwWjAzMTEwLwYDVQQD
EygxNGQ1ZWI2NzY0ZDc0NDhmZjFjZTJmZGFjYTk3OWUzMWU3MDk5YjYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk7DPZORlesPA9EoXS18gbWcZT0na
5+sA2BqbQXtfyrGHbiQowKW1+lq9mrXp47fJ8zwso6UF0DY0tSqhQwywx8AHSdFP
HF75n4oUUTujXX7SOJDR9IyM8kMXJ4Ky+U2ZEzcoJ0o4o5XbIU9Ej8VNuGn1LF3u
7d03MKCvRoC8b5OXydOwR8hCWK1t9h4zmpLU9X9oACQxu3ahkkM0d4iphjBvZKA8
HSWftug8Ud6ly42J5VSSgJE385PRawC0xRRhqOn/eHh2kGqF1v9Dy2+McMEj0vHV
do1Xhz0JmyZgayg+scitu86sScdROKohjUTtc+va2jlxKv/81ov7DP7EZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBTV62dk10SP8c4v2sqXnjHnCZtjMB8GA1UdIwQY
MBaAFM2gVEdPr9kLDqR8VXZbvm83Y3UxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemFCVVIwLXYyUXNPcEh4VmRsdS1iemRqZFRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9iYWM5MDQtMjgwMi00MzZlLWFiNDAt
ODEzN2M1Mjk5YWVlLzEvemFCVVIwLXYyUXNPcEh4VmRsdS1iemRqZFRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9iYWM5MDQtMjgwMi00MzZlLWFiNDAtODEzN2M1Mjk5YWVl
LzEvemFCVVIwLXYyUXNPcEh4VmRsdS1iemRqZFRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeC+y6tN0
QtNAtY81KxVaOk6AXmkOLlwXm+u86TXDPZ+dL4dOkoX3T3tdGxi15BN1IdarS5DK
LzO1spLjhz/WjilBtkjLnnYCdZ+pruRMLTjiGvDtMYGwMYWdFT/Y8N26zRu73eHB
jDetfFaUjm4X77+7yrqD2WEOdxPQYd1l2SCoIr6eM+aeN9fccU+UP5727BOeHlHD
qsVZfAVqzd2l4RZzDWZw7Kg2cOluIx8OE8IbjRGhyuNYH3zJTn7D0J9/s2ng8KwM
BYzAgLkgZVg1QBwr5tHEge3ihl/kiFqcF2gyU8kZSSy9Xpz4RyiEIviCWmlXkKBm
oz5PZX04KtQoNA==
-----END CERTIFICATE-----