Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
File:                     o_60EOB9CI-2UbkTdJuBJX47mVI.mft (raw, json)
Hash identifier:          mJMuGqpn3/1+hL8ep+KIlV2Rr5j/sFxl0vvznhHteDA=
Subject key identifier:   23:99:3B:97:EA:2E:99:27:B0:83:1F:4D:79:09:3C:47:16:DB:AC:42
Authority key identifier: A3:FE:B4:10:E0:7D:08:8F:B6:51:B9:13:74:9B:81:25:7E:3B:99:52
Certificate issuer:       /CN=a3feb410e07d088fb651b913749b81257e3b9952
Certificate serial:       0196AFFC3822AE33B4C880D9DEA92A4A19F0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
Manifest number:          0F77
Signing time:             Thu 08 May 2025 13:01:04 +0000
Manifest this update:     Thu 08 May 2025 13:01:04 +0000
Manifest next update:     Fri 09 May 2025 13:01:04 +0000
Files and hashes:         1: o_60EOB9CI-2UbkTdJuBJX47mVI.crl (hash: a3Q0aJsuE0qq1dMNhWxxLwox34CZTZdATaG0gws/jlE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 09 May 2025 13:01:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:af:fc:38:22:ae:33:b4:c8:80:d9:de:a9:2a:4a:19:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a3feb410e07d088fb651b913749b81257e3b9952
        Validity
            Not Before: May  8 13:01:04 2025 GMT
            Not After : May  9 13:01:04 2025 GMT
        Subject: CN=23993b97ea2e9927b0831f4d79093c4716dbac42
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:e5:12:21:6e:1f:4c:7a:af:50:29:37:2c:62:
                    53:bb:f8:61:78:68:f8:72:99:04:4d:db:01:c3:4f:
                    50:c2:0f:1b:17:7e:e3:24:86:11:6b:8a:71:58:b1:
                    1f:3e:8d:85:62:86:42:46:73:7d:f1:0c:bc:a2:be:
                    38:0f:63:26:fe:1d:04:ba:47:8d:c0:f8:de:89:93:
                    1e:64:ba:c7:1e:7a:90:f1:05:ae:ad:89:d2:3f:4b:
                    a5:3e:92:a4:a7:75:42:80:59:6c:8e:45:89:9d:7f:
                    6c:92:69:fb:0a:92:07:12:56:20:03:70:02:11:39:
                    88:44:d5:03:a4:15:b2:f9:55:29:b3:38:4d:14:02:
                    03:41:15:11:c4:c9:16:4d:92:d5:7e:83:8f:44:a4:
                    2c:61:e8:71:fe:b2:c8:fd:3d:74:80:f5:aa:d6:22:
                    81:03:a5:48:5c:93:45:dd:a4:27:9c:d8:1d:58:e2:
                    a1:1c:b3:fe:72:de:02:11:29:db:b2:8c:22:a1:0a:
                    42:01:56:7e:15:e0:f8:75:86:51:88:96:09:ab:2a:
                    e7:a0:9a:fb:bc:a2:02:61:e2:63:d7:6b:9f:c1:51:
                    53:ba:85:2b:34:7e:1e:60:cc:49:a9:35:1c:53:51:
                    63:ac:b6:eb:b2:00:c9:ed:3e:b4:56:7c:66:20:ca:
                    53:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:99:3B:97:EA:2E:99:27:B0:83:1F:4D:79:09:3C:47:16:DB:AC:42
            X509v3 Authority Key Identifier:
                keyid:A3:FE:B4:10:E0:7D:08:8F:B6:51:B9:13:74:9B:81:25:7E:3B:99:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2f:db:41:74:10:75:b7:4b:5e:72:48:fa:c9:5c:ef:a7:07:39:
         a4:7e:b8:a5:f3:42:ed:76:f7:85:99:a5:ad:0f:20:34:97:7d:
         29:d2:42:17:c8:93:cb:d1:86:97:4b:48:e6:8a:e7:05:4b:ff:
         3a:11:d8:95:9d:d8:98:dc:2c:22:1d:81:6b:d5:01:4a:f6:a8:
         0b:32:77:d7:84:ed:d7:e4:5d:3b:b5:40:15:50:5e:56:eb:82:
         47:59:14:2b:20:83:f9:40:8e:0d:8e:79:c3:64:e0:84:d5:e0:
         5a:e8:4c:2d:b4:0d:d1:d5:76:18:18:6f:48:3c:10:5d:e0:71:
         f0:d9:0f:23:6e:19:d3:5a:03:29:c4:cb:48:37:19:33:f6:73:
         dc:2d:31:a8:92:ae:2f:b5:48:64:a8:7f:fd:44:23:4a:67:7c:
         0a:17:43:6e:c5:33:f0:b6:40:a5:bc:4c:97:e9:df:2d:68:fe:
         67:fa:bc:db:12:d8:24:8d:68:43:8f:51:0f:ff:15:76:0f:55:
         a3:5a:d1:41:55:75:7f:4b:17:73:bd:d7:89:97:b0:a8:9a:fb:
         2d:c1:67:99:98:4f:a0:d6:97:77:4d:aa:a1:52:bc:aa:11:07:
         be:af:82:b2:de:ff:d7:3b:d3:0b:b9:ac:c5:47:a1:5b:a4:32:
         22:a3:56:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZav/DgirjO0yIDZ3qkqShnwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzZmViNDEwZTA3ZDA4OGZiNjUxYjkxMzc0OWI4MTI1N2Uz
Yjk5NTIwHhcNMjUwNTA4MTMwMTA0WhcNMjUwNTA5MTMwMTA0WjAzMTEwLwYDVQQD
EygyMzk5M2I5N2VhMmU5OTI3YjA4MzFmNGQ3OTA5M2M0NzE2ZGJhYzQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+USIW4fTHqvUCk3LGJTu/hheGj4
cpkETdsBw09Qwg8bF37jJIYRa4pxWLEfPo2FYoZCRnN98Qy8or44D2Mm/h0EukeN
wPjeiZMeZLrHHnqQ8QWurYnSP0ulPpKkp3VCgFlsjkWJnX9skmn7CpIHElYgA3AC
ETmIRNUDpBWy+VUpszhNFAIDQRURxMkWTZLVfoOPRKQsYehx/rLI/T10gPWq1iKB
A6VIXJNF3aQnnNgdWOKhHLP+ct4CESnbsowioQpCAVZ+FeD4dYZRiJYJqyrnoJr7
vKICYeJj12ufwVFTuoUrNH4eYMxJqTUcU1FjrLbrsgDJ7T60VnxmIMpT9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCOZO5fqLpknsIMfTXkJPEcW26xCMB8GA1UdIwQY
MBaAFKP+tBDgfQiPtlG5E3SbgSV+O5lSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb182MEVPQjlDSS0yVWJrVGRKdUJKWDQ3bVZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNC85ZjA2OGEtMTdmNC00MzExLThiYmMt
MjM0YjMyMmEwY2ZlLzEvb182MEVPQjlDSS0yVWJrVGRKdUJKWDQ3bVZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNC85ZjA2OGEtMTdmNC00MzExLThiYmMtMjM0YjMyMmEwY2Zl
LzEvb182MEVPQjlDSS0yVWJrVGRKdUJKWDQ3bVZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL9tBdBB1
t0teckj6yVzvpwc5pH64pfNC7Xb3hZmlrQ8gNJd9KdJCF8iTy9GGl0tI5ornBUv/
OhHYlZ3YmNwsIh2Ba9UBSvaoCzJ314Tt1+RdO7VAFVBeVuuCR1kUKyCD+UCODY55
w2TghNXgWuhMLbQN0dV2GBhvSDwQXeBx8NkPI24Z01oDKcTLSDcZM/Zz3C0xqJKu
L7VIZKh//UQjSmd8ChdDbsUz8LZApbxMl+nfLWj+Z/q82xLYJI1oQ49RD/8Vdg9V
o1rRQVV1f0sXc73XiZewqJr7LcFnmZhPoNaXd02qoVK8qhEHvq+Cst7/1zvTC7ms
xUehW6QyIqNW4A==
-----END CERTIFICATE-----