Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
File:                     QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft (raw, json)
Hash identifier:          HEyal6zkavXZQkyQZWasP6J2khJErjJbHDzjEw2UC30=
Subject key identifier:   2F:44:74:6F:24:7E:FD:64:1C:36:60:90:D4:1F:64:A5:0B:65:3B:50
Authority key identifier: 41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5
Certificate issuer:       /CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
Certificate serial:       0196CCF36416DFA104231B5E3B69B29614D1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
Manifest number:          0B28
Signing time:             Wed 14 May 2025 04:00:25 +0000
Manifest this update:     Wed 14 May 2025 04:00:25 +0000
Manifest next update:     Thu 15 May 2025 04:00:25 +0000
Files and hashes:         1: QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl (hash: jcBElLVqzJhFMMniIqLbVesBMUuU34i7BVW7MClX8SM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 15 May 2025 04:00:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:cc:f3:64:16:df:a1:04:23:1b:5e:3b:69:b2:96:14:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=412dad820699f153a31a66ed6783a1de4e0f8cf5
        Validity
            Not Before: May 14 04:00:25 2025 GMT
            Not After : May 15 04:00:25 2025 GMT
        Subject: CN=2f44746f247efd641c366090d41f64a50b653b50
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:54:a5:18:81:be:d9:de:86:77:72:c9:f9:fd:
                    97:f3:61:2f:71:ed:91:dc:9f:85:e6:fc:48:73:d3:
                    ab:08:0f:cf:6d:4a:7f:bc:40:84:35:ee:ba:0c:82:
                    9b:4c:b6:51:18:1d:97:7e:f0:ac:3c:8d:bc:43:a0:
                    d3:fd:d3:d0:cd:a3:3a:d9:f0:c4:13:bf:76:df:b1:
                    cf:c1:d6:d1:7e:2f:8f:11:29:68:03:03:b2:87:91:
                    fa:8b:bd:02:18:cc:24:04:8f:8f:af:4f:dd:95:73:
                    62:b9:ef:f5:fa:ab:a9:07:d3:88:bf:06:c3:a8:b8:
                    cb:91:5c:ff:4b:27:f3:20:ec:75:c7:31:57:65:fa:
                    1b:cb:cf:60:65:8b:2c:bb:df:3f:de:e0:7f:f7:26:
                    8d:f1:ad:93:45:c2:12:58:83:97:a3:a4:67:6f:23:
                    d7:50:bc:70:a6:a6:47:7e:de:1c:ae:d8:34:c2:79:
                    93:e5:e9:e8:30:ab:52:70:f5:a4:e4:30:d4:5e:33:
                    e5:a1:b4:3f:be:b5:53:23:e9:9d:dd:bf:83:b9:53:
                    ff:a1:40:bc:4f:1d:b9:c6:99:7f:f9:01:8b:8c:9e:
                    56:f6:01:bf:93:11:01:7b:ec:18:3b:d4:b0:d3:20:
                    8d:60:dd:b1:d2:96:1e:2a:38:33:ac:b2:c8:39:9e:
                    88:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2F:44:74:6F:24:7E:FD:64:1C:36:60:90:D4:1F:64:A5:0B:65:3B:50
            X509v3 Authority Key Identifier:
                keyid:41:2D:AD:82:06:99:F1:53:A3:1A:66:ED:67:83:A1:DE:4E:0F:8C:F5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ba94f4-8a20-4d10-927f-a882da6c0cfc/1/QS2tggaZ8VOjGmbtZ4Oh3k4PjPU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:33:41:3e:4f:b3:89:83:f8:b5:25:ec:21:63:3a:c7:80:07:
         f6:11:6a:74:92:83:dd:b8:c3:a0:82:0a:5e:2b:42:f1:11:aa:
         17:45:b8:92:cd:15:ad:83:a8:2e:96:45:42:20:b4:22:7f:98:
         1c:e0:80:a9:ae:97:59:5e:70:43:d1:1e:6d:67:53:d3:29:e1:
         19:c7:42:13:d5:1c:4c:c1:fa:ea:b1:c7:e8:fa:d7:53:fb:79:
         dd:bd:f6:8c:37:b2:be:8d:83:bc:e4:d6:32:81:30:a3:08:29:
         5c:5d:6f:2c:98:51:c9:9a:09:a3:85:5a:9c:23:55:60:28:2c:
         b0:c9:12:cf:f9:47:27:13:ef:b0:6f:70:61:14:a8:70:71:52:
         ca:50:89:de:74:3f:0d:b6:f9:60:01:22:d9:9b:f5:be:84:26:
         c6:93:31:ba:c2:3c:ef:c5:2e:e2:d2:51:77:3a:2c:68:81:78:
         be:9d:8f:0f:04:14:87:89:c3:06:ed:5b:b1:88:a1:be:c6:bf:
         d7:44:d2:0b:d2:9d:e5:95:94:97:80:8a:32:a5:22:b2:18:fe:
         2d:3f:cf:bb:c7:d5:47:3c:fd:ec:1c:bf:ec:cc:b9:32:fa:9e:
         20:41:b3:ce:7a:d3:e7:6e:e8:48:46:51:f4:7d:ce:af:19:55:
         73:3b:3e:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZbM82QW36EEIxteO2mylhTRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQxMmRhZDgyMDY5OWYxNTNhMzFhNjZlZDY3ODNhMWRlNGUw
ZjhjZjUwHhcNMjUwNTE0MDQwMDI1WhcNMjUwNTE1MDQwMDI1WjAzMTEwLwYDVQQD
EygyZjQ0NzQ2ZjI0N2VmZDY0MWMzNjYwOTBkNDFmNjRhNTBiNjUzYjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFSlGIG+2d6Gd3LJ+f2X82Evce2R
3J+F5vxIc9OrCA/PbUp/vECENe66DIKbTLZRGB2XfvCsPI28Q6DT/dPQzaM62fDE
E79237HPwdbRfi+PESloAwOyh5H6i70CGMwkBI+Pr0/dlXNiue/1+qupB9OIvwbD
qLjLkVz/SyfzIOx1xzFXZfoby89gZYssu98/3uB/9yaN8a2TRcISWIOXo6RnbyPX
ULxwpqZHft4crtg0wnmT5enoMKtScPWk5DDUXjPlobQ/vrVTI+md3b+DuVP/oUC8
Tx25xpl/+QGLjJ5W9gG/kxEBe+wYO9Sw0yCNYN2x0pYeKjgzrLLIOZ6ImQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC9EdG8kfv1kHDZgkNQfZKULZTtQMB8GA1UdIwQY
MBaAFEEtrYIGmfFToxpm7WeDod5OD4z1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9iYTk0ZjQtOGEyMC00ZDEwLTkyN2Yt
YTg4MmRhNmMwY2ZjLzEvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mOC9iYTk0ZjQtOGEyMC00ZDEwLTkyN2YtYTg4MmRhNmMwY2Zj
LzEvUVMydGdnYVo4Vk9qR21idFo0T2gzazRQalBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASTNBPk+z
iYP4tSXsIWM6x4AH9hFqdJKD3bjDoIIKXitC8RGqF0W4ks0VrYOoLpZFQiC0In+Y
HOCAqa6XWV5wQ9EebWdT0ynhGcdCE9UcTMH66rHH6PrXU/t53b32jDeyvo2DvOTW
MoEwowgpXF1vLJhRyZoJo4VanCNVYCgssMkSz/lHJxPvsG9wYRSocHFSylCJ3nQ/
Dbb5YAEi2Zv1voQmxpMxusI878Uu4tJRdzosaIF4vp2PDwQUh4nDBu1bsYihvsa/
10TSC9Kd5ZWUl4CKMqUishj+LT/Pu8fVRzz97By/7My5MvqeIEGzznrT527oSEZR
9H3OrxlVczs+pA==
-----END CERTIFICATE-----