Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft
File:                     Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft (raw, json)
Hash identifier:          /EWNSY2P+FqJWRGfwK6lbaTG+g0tum1l0ZWwyXD9Ups=
Subject key identifier:   17:45:A7:08:1C:64:2D:B6:AA:71:1A:AE:C7:DE:E0:74:2A:C2:B6:11
Authority key identifier: 1E:DC:3A:97:F1:CC:AE:F7:F1:08:69:91:CF:7B:10:A4:10:CE:19:42
Certificate issuer:       /CN=1edc3a97f1ccaef7f1086991cf7b10a410ce1942
Certificate serial:       01967567838B2D4039AB137C0FFCFC4D4559
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Htw6l_HMrvfxCGmRz3sQpBDOGUI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft
Manifest number:          1421
Signing time:             Sun 27 Apr 2025 04:00:40 +0000
Manifest this update:     Sun 27 Apr 2025 04:00:40 +0000
Manifest next update:     Mon 28 Apr 2025 04:00:40 +0000
Files and hashes:         1: Htw6l_HMrvfxCGmRz3sQpBDOGUI.crl (hash: gAKKtaoCH9JR1ZglZVjG6a86fJFWW1+328UvcW1Ru/4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Htw6l_HMrvfxCGmRz3sQpBDOGUI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 28 Apr 2025 04:00:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:75:67:83:8b:2d:40:39:ab:13:7c:0f:fc:fc:4d:45:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1edc3a97f1ccaef7f1086991cf7b10a410ce1942
        Validity
            Not Before: Apr 27 04:00:40 2025 GMT
            Not After : Apr 28 04:00:40 2025 GMT
        Subject: CN=1745a7081c642db6aa711aaec7dee0742ac2b611
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:bd:3e:f1:e1:86:c1:92:e7:53:c1:17:bb:b5:
                    ed:49:f8:4d:b4:19:e8:c5:8e:aa:01:57:d3:10:ab:
                    03:62:13:43:00:93:f2:66:c2:b7:49:04:63:fc:7f:
                    8c:ee:52:ae:2e:34:a1:ec:cf:c9:97:06:a0:71:3c:
                    70:98:83:49:d8:f7:27:40:0e:c7:fd:d0:59:75:39:
                    27:d7:d9:e0:58:37:d5:27:f6:bf:e7:cc:e5:ba:53:
                    78:73:73:ca:dd:b7:ea:09:83:61:ce:32:17:23:46:
                    fc:d5:84:ee:72:96:3d:e8:84:4a:ed:cc:da:ba:e8:
                    c4:dc:9d:fb:90:10:05:b3:73:a6:cc:ce:e3:38:f6:
                    4b:06:c8:ab:3a:2e:56:a6:64:59:0e:74:19:33:12:
                    f3:5b:90:2d:14:e0:d2:ee:5c:09:2b:ee:a0:13:22:
                    6d:06:d8:bd:1a:49:19:7a:6f:e2:8b:a8:9e:8a:86:
                    8d:b8:d9:3b:7b:a7:71:b7:05:dd:e9:3c:47:52:47:
                    99:50:f1:8b:46:8c:87:16:a0:9d:be:4e:c8:a2:b7:
                    66:85:9c:4f:bb:45:1d:41:fa:c4:58:65:2a:25:97:
                    8e:11:7d:57:83:67:15:05:75:9b:40:f2:dc:22:9f:
                    0b:ab:4c:7e:1a:e7:4e:84:3c:f4:28:df:68:74:35:
                    f6:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:45:A7:08:1C:64:2D:B6:AA:71:1A:AE:C7:DE:E0:74:2A:C2:B6:11
            X509v3 Authority Key Identifier:
                keyid:1E:DC:3A:97:F1:CC:AE:F7:F1:08:69:91:CF:7B:10:A4:10:CE:19:42

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Htw6l_HMrvfxCGmRz3sQpBDOGUI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/0d0724-55f5-4755-99c2-612651ae3eb3/1/Htw6l_HMrvfxCGmRz3sQpBDOGUI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:24:29:ed:f0:e8:50:ef:5e:7e:68:59:2b:5b:61:94:6e:fd:
         64:e8:4b:d0:db:cc:3f:eb:8c:10:d9:29:7f:60:4e:43:54:2c:
         ed:06:0c:78:60:a2:ee:f3:7b:97:bc:f6:63:32:72:ae:3f:2a:
         73:9b:d7:33:a2:98:ac:f6:a5:80:6c:23:99:d7:1b:f0:34:3c:
         62:f3:83:53:f9:8d:9c:b3:63:6e:a6:53:18:05:09:1a:38:f1:
         a8:c6:eb:46:6b:d5:3e:64:c8:d4:6c:c2:9e:ef:0d:42:88:c7:
         fa:2c:c9:2b:36:6a:33:46:8c:7c:62:1a:e5:16:f0:a5:82:c3:
         77:d8:77:5c:df:97:cf:25:0f:7e:c8:3b:ea:cf:56:c7:62:0d:
         e6:8b:c8:3d:ed:e8:e4:cb:c3:ca:df:66:99:96:51:fe:bc:5f:
         c5:57:3b:87:5f:f6:f1:9e:36:03:c8:93:25:30:b6:d3:be:41:
         0a:9b:1f:48:7b:c9:67:3c:30:34:d5:28:7b:ce:5c:bf:b2:5a:
         07:77:2b:10:fd:36:e6:b7:41:a4:fc:d4:01:96:b8:9a:9c:bf:
         0d:1e:2e:a0:75:76:82:bb:17:b9:d9:89:fb:d6:74:5c:ae:91:
         ae:3f:34:e6:48:b9:eb:44:72:97:95:7c:87:2b:6b:9f:af:f4:
         18:88:6f:ce
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ1Z4OLLUA5qxN8D/z8TUVZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlZGMzYTk3ZjFjY2FlZjdmMTA4Njk5MWNmN2IxMGE0MTBj
ZTE5NDIwHhcNMjUwNDI3MDQwMDQwWhcNMjUwNDI4MDQwMDQwWjAzMTEwLwYDVQQD
EygxNzQ1YTcwODFjNjQyZGI2YWE3MTFhYWVjN2RlZTA3NDJhYzJiNjExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmL0+8eGGwZLnU8EXu7XtSfhNtBno
xY6qAVfTEKsDYhNDAJPyZsK3SQRj/H+M7lKuLjSh7M/JlwagcTxwmINJ2PcnQA7H
/dBZdTkn19ngWDfVJ/a/58zlulN4c3PK3bfqCYNhzjIXI0b81YTucpY96IRK7cza
uujE3J37kBAFs3OmzM7jOPZLBsirOi5WpmRZDnQZMxLzW5AtFODS7lwJK+6gEyJt
Bti9GkkZem/ii6ieioaNuNk7e6dxtwXd6TxHUkeZUPGLRoyHFqCdvk7IordmhZxP
u0UdQfrEWGUqJZeOEX1Xg2cVBXWbQPLcIp8Lq0x+GudOhDz0KN9odDX20QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBdFpwgcZC22qnEarsfe4HQqwrYRMB8GA1UdIwQY
MBaAFB7cOpfxzK738Qhpkc97EKQQzhlCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHR3NmxfSE1ydmZ4Q0dtUnozc1FwQkRPR1VJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8wZDA3MjQtNTVmNS00NzU1LTk5YzIt
NjEyNjUxYWUzZWIzLzEvSHR3NmxfSE1ydmZ4Q0dtUnozc1FwQkRPR1VJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy8wZDA3MjQtNTVmNS00NzU1LTk5YzItNjEyNjUxYWUzZWIz
LzEvSHR3NmxfSE1ydmZ4Q0dtUnozc1FwQkRPR1VJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIiQp7fDo
UO9efmhZK1thlG79ZOhL0NvMP+uMENkpf2BOQ1Qs7QYMeGCi7vN7l7z2YzJyrj8q
c5vXM6KYrPalgGwjmdcb8DQ8YvODU/mNnLNjbqZTGAUJGjjxqMbrRmvVPmTI1GzC
nu8NQojH+izJKzZqM0aMfGIa5RbwpYLDd9h3XN+XzyUPfsg76s9Wx2IN5ovIPe3o
5MvDyt9mmZZR/rxfxVc7h1/28Z42A8iTJTC2075BCpsfSHvJZzwwNNUoe85cv7Ja
B3crEP025rdBpPzUAZa4mpy/DR4uoHV2grsXudmJ+9Z0XK6Rrj805ki560Ryl5V8
hytrn6/0GIhvzg==
-----END CERTIFICATE-----