Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft
File:                     kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft (raw, json)
Hash identifier:          YxTw8upARelLuVzeRG1P4/kG9iD2rNoVMJizg7GaOVI=
Subject key identifier:   DE:BB:26:2A:6B:1A:13:F9:6C:D4:07:16:D2:46:36:72:2A:BA:ED:14
Authority key identifier: 91:53:53:98:EA:57:F6:AC:8C:02:E6:59:E9:2F:18:B1:38:E1:36:19
Certificate issuer:       /CN=91535398ea57f6ac8c02e659e92f18b138e13619
Certificate serial:       0197827BD34EBE843FFFE14118FEAD28F9D3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft
Manifest number:          1302
Signing time:             Wed 18 Jun 2025 10:00:42 +0000
Manifest this update:     Wed 18 Jun 2025 10:00:42 +0000
Manifest next update:     Thu 19 Jun 2025 10:00:42 +0000
Files and hashes:         1: kVNTmOpX9qyMAuZZ6S8YsTjhNhk.crl (hash: aWarF/5EDEGakV6j7MBEwt8i1T3Yp6/S2X+4ktQlr0w=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 19 Jun 2025 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:82:7b:d3:4e:be:84:3f:ff:e1:41:18:fe:ad:28:f9:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=91535398ea57f6ac8c02e659e92f18b138e13619
        Validity
            Not Before: Jun 18 10:00:42 2025 GMT
            Not After : Jun 19 10:00:42 2025 GMT
        Subject: CN=debb262a6b1a13f96cd40716d24636722abaed14
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:fa:7f:d9:58:a0:b4:6c:b8:df:83:13:87:de:
                    43:01:aa:09:76:92:ce:81:fb:22:1d:a2:07:63:f9:
                    61:0a:d0:aa:92:1d:c3:7b:ff:1c:91:68:66:97:7c:
                    7e:55:eb:22:e1:9b:af:6d:ba:c5:22:d5:1d:22:7a:
                    92:fb:b0:e8:29:4a:03:61:31:a8:87:67:7b:06:61:
                    1d:f6:96:dc:76:43:9a:2c:d6:4c:44:f6:ce:52:3a:
                    f7:06:ee:0b:61:ea:0b:b7:0f:f9:f5:6e:78:d6:19:
                    8b:74:58:9f:bc:5b:f3:f7:8a:73:d4:18:55:d3:07:
                    d8:61:80:52:4d:79:48:94:c0:01:45:61:74:8a:3e:
                    ff:f6:16:3f:bb:92:ce:f7:02:49:62:ec:d4:32:67:
                    67:f3:52:8d:73:31:41:34:04:3c:31:f9:8d:15:ce:
                    fc:88:d1:40:94:92:90:bc:5e:66:27:c3:5c:d9:6b:
                    25:8f:1b:26:e3:cd:6f:dd:60:92:ed:6e:68:b2:c0:
                    8c:f9:17:24:2b:fd:20:b8:80:c6:b5:c1:9e:8f:c0:
                    80:42:5f:7c:5d:25:69:43:da:d1:39:b0:75:ca:b6:
                    e3:ed:ce:dc:68:f2:b5:be:15:a3:61:49:23:22:1b:
                    f8:a2:ac:37:33:ee:ca:da:4e:f7:73:67:18:52:78:
                    8b:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:BB:26:2A:6B:1A:13:F9:6C:D4:07:16:D2:46:36:72:2A:BA:ED:14
            X509v3 Authority Key Identifier:
                keyid:91:53:53:98:EA:57:F6:AC:8C:02:E6:59:E9:2F:18:B1:38:E1:36:19

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bc:b5:e7:26:0a:40:26:2a:9a:9b:8a:11:c8:62:3d:7d:17:52:
         0b:38:fb:9c:20:49:6d:2a:43:09:37:f5:2e:61:17:c0:6f:0c:
         6e:b2:72:6d:c4:15:55:e8:10:92:19:83:52:e6:db:98:69:e0:
         05:5d:66:09:49:87:8c:09:d6:ca:33:3b:44:6b:26:df:28:e0:
         2c:05:af:16:2a:4d:89:0b:5a:71:45:a6:28:34:01:4b:37:f5:
         c8:79:58:56:58:36:b4:e6:71:fa:20:8d:d6:da:f4:71:84:34:
         51:6a:98:3b:09:f8:66:7e:46:fc:96:20:39:93:5c:41:1a:a5:
         5a:9d:d3:87:0b:cf:a1:24:40:84:f8:4b:b6:ce:d6:cf:f3:03:
         62:fe:b5:dd:b6:f0:58:83:69:2d:e0:e7:74:4a:a0:b4:08:09:
         86:6d:d0:f3:c7:1d:2b:40:03:c8:c9:66:cb:15:72:22:9b:d2:
         2f:4f:d6:fa:13:18:b5:c0:c5:f2:79:0d:89:75:fb:e9:10:df:
         e6:45:c2:63:5c:51:a5:44:2f:1b:19:b8:d2:0b:1d:d1:a7:bd:
         fd:22:da:b5:be:64:12:cd:18:da:73:cc:ae:8b:ee:49:29:5f:
         00:7e:43:04:9b:20:8c:63:8d:13:10:1d:0c:d2:0a:34:93:0d:
         19:59:3b:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeCe9NOvoQ//+FBGP6tKPnTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxNTM1Mzk4ZWE1N2Y2YWM4YzAyZTY1OWU5MmYxOGIxMzhl
MTM2MTkwHhcNMjUwNjE4MTAwMDQyWhcNMjUwNjE5MTAwMDQyWjAzMTEwLwYDVQQD
EyhkZWJiMjYyYTZiMWExM2Y5NmNkNDA3MTZkMjQ2MzY3MjJhYmFlZDE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2vp/2VigtGy434MTh95DAaoJdpLO
gfsiHaIHY/lhCtCqkh3De/8ckWhml3x+Vesi4ZuvbbrFItUdInqS+7DoKUoDYTGo
h2d7BmEd9pbcdkOaLNZMRPbOUjr3Bu4LYeoLtw/59W541hmLdFifvFvz94pz1BhV
0wfYYYBSTXlIlMABRWF0ij7/9hY/u5LO9wJJYuzUMmdn81KNczFBNAQ8MfmNFc78
iNFAlJKQvF5mJ8Nc2Wsljxsm481v3WCS7W5ossCM+RckK/0guIDGtcGej8CAQl98
XSVpQ9rRObB1yrbj7c7caPK1vhWjYUkjIhv4oqw3M+7K2k73c2cYUniLcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFN67JiprGhP5bNQHFtJGNnIquu0UMB8GA1UdIwQY
MBaAFJFTU5jqV/asjALmWekvGLE44TYZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1ZOVG1PcFg5cXlNQXVaWjZTOFlzVGpoTmhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8wY2ExNzUtODk1YS00NTJhLWJhZDQt
YzU5OWYwOTc4N2Y5LzEva1ZOVG1PcFg5cXlNQXVaWjZTOFlzVGpoTmhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8wY2ExNzUtODk1YS00NTJhLWJhZDQtYzU5OWYwOTc4N2Y5
LzEva1ZOVG1PcFg5cXlNQXVaWjZTOFlzVGpoTmhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvLXnJgpA
Jiqam4oRyGI9fRdSCzj7nCBJbSpDCTf1LmEXwG8MbrJybcQVVegQkhmDUubbmGng
BV1mCUmHjAnWyjM7RGsm3yjgLAWvFipNiQtacUWmKDQBSzf1yHlYVlg2tOZx+iCN
1tr0cYQ0UWqYOwn4Zn5G/JYgOZNcQRqlWp3ThwvPoSRAhPhLts7Wz/MDYv613bbw
WINpLeDndEqgtAgJhm3Q88cdK0ADyMlmyxVyIpvSL0/W+hMYtcDF8nkNiXX76RDf
5kXCY1xRpUQvGxm40gsd0ae9/SLatb5kEs0Y2nPMrovuSSlfAH5DBJsgjGONExAd
DNIKNJMNGVk7cQ==
-----END CERTIFICATE-----