Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
File:                     JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft (raw, json)
Hash identifier:          VV9m7SBTi9RmUTOHUJQ8QaBsBexyDDifKoIuEdiJwEw=
Subject key identifier:   EB:B6:7F:F6:1E:72:47:D2:CF:34:E9:A9:63:58:A2:FF:3C:80:45:D8
Authority key identifier: 27:1B:98:A6:0A:92:68:20:A4:8C:B4:3A:4A:F3:08:C8:8F:F2:72:1A
Certificate issuer:       /CN=271b98a60a926820a48cb43a4af308c88ff2721a
Certificate serial:       019770755DC6C3D9C3EC54D8A582E0ABF559
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
Manifest number:          0E55
Signing time:             Sat 14 Jun 2025 22:00:29 +0000
Manifest this update:     Sat 14 Jun 2025 22:00:29 +0000
Manifest next update:     Sun 15 Jun 2025 22:00:29 +0000
Files and hashes:         1: JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl (hash: hbRItWjzNt1igRUCEBrPbam7TK6XNXIM3KKB4YUnFxY=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 19:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:70:75:5d:c6:c3:d9:c3:ec:54:d8:a5:82:e0:ab:f5:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=271b98a60a926820a48cb43a4af308c88ff2721a
        Validity
            Not Before: Jun 14 22:00:29 2025 GMT
            Not After : Jun 15 22:00:29 2025 GMT
        Subject: CN=ebb67ff61e7247d2cf34e9a96358a2ff3c8045d8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:52:02:02:14:90:5c:2a:de:6c:8d:cb:a4:ea:
                    b9:18:e3:50:90:db:00:a8:f5:86:81:27:e6:7f:72:
                    2a:c1:47:7d:d0:d9:1e:8d:25:95:bf:b1:e8:65:b5:
                    e1:d3:54:9c:21:3f:24:3a:cb:bf:47:4b:e9:b6:7b:
                    9e:36:74:cb:7c:9e:f2:fd:e6:88:af:20:ac:06:66:
                    47:7d:7c:52:62:a3:e0:f9:5a:df:01:74:a3:6f:5c:
                    21:27:39:6a:e3:0c:2a:58:b8:61:ed:7f:52:b9:0a:
                    ed:04:40:13:18:1f:ae:10:a2:50:27:9e:62:ad:eb:
                    a4:cf:4f:32:ea:a4:ac:90:8c:9e:c6:7b:b6:0c:b9:
                    61:7b:6d:d2:93:04:75:37:a3:fc:05:6b:30:4a:3f:
                    f4:8c:e4:e4:b2:98:cf:9f:59:aa:03:e1:b9:e2:97:
                    30:85:2a:df:7b:9a:cf:a0:28:ac:c3:c8:80:29:12:
                    d1:08:ab:22:23:06:16:f4:0f:d5:b5:aa:c1:8a:10:
                    7f:86:20:62:42:a4:6a:a2:db:a0:81:4c:82:0b:8a:
                    6f:f3:91:60:d5:2a:1f:3f:07:9c:85:30:95:a0:f6:
                    15:3c:9b:5b:87:7d:b3:e0:e3:fa:20:92:2e:8d:3b:
                    b4:73:56:bc:fd:08:64:c1:e2:b1:98:b4:06:bf:73:
                    d2:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:B6:7F:F6:1E:72:47:D2:CF:34:E9:A9:63:58:A2:FF:3C:80:45:D8
            X509v3 Authority Key Identifier:
                keyid:27:1B:98:A6:0A:92:68:20:A4:8C:B4:3A:4A:F3:08:C8:8F:F2:72:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxuYpgqSaCCkjLQ6SvMIyI_ycho.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/974d80-d394-4962-a6a3-ce4d845554fd/1/JxuYpgqSaCCkjLQ6SvMIyI_ycho.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:78:c5:fc:4b:6a:73:f3:cb:2c:ec:3f:39:b7:dd:be:96:85:
         92:3e:3c:1f:27:8f:17:80:8c:66:b9:4a:17:54:35:c3:bb:82:
         bf:11:5a:05:4e:6d:d4:fe:3e:3c:ef:ec:13:d5:2f:02:41:d1:
         99:3d:40:37:b7:ec:8c:95:fd:ab:f7:95:0c:d6:94:4b:b1:4f:
         2b:93:78:f3:04:db:65:b0:ca:b8:f9:aa:31:d6:ef:f7:6c:43:
         4b:d2:7b:28:59:c6:d9:5f:39:57:8c:7a:da:6a:3d:f8:3a:a9:
         20:5d:53:19:ff:c2:37:0d:9e:12:1c:88:12:e7:e0:ff:56:83:
         2a:f0:e8:89:7a:53:d1:4c:03:ad:09:b1:9c:a3:ec:a8:80:f9:
         73:11:33:20:b6:05:12:ab:77:62:a5:07:5e:71:65:80:11:d6:
         13:c7:29:44:a8:35:31:cf:b4:64:14:7e:e0:c2:f3:ba:51:4a:
         6a:da:08:3d:23:a0:40:dc:62:a7:a0:08:bc:19:cd:57:a0:44:
         7b:e8:32:83:6f:e2:e8:39:f8:43:b5:b7:3c:19:a7:10:6c:c0:
         ca:07:bc:49:48:c0:f4:d4:27:b9:0f:6d:a7:0d:d0:59:d0:3b:
         f5:cd:cb:7f:41:46:8a:a6:27:01:00:74:75:fc:aa:70:a7:49:
         5d:f9:4b:9f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdwdV3Gw9nD7FTYpYLgq/VZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3MWI5OGE2MGE5MjY4MjBhNDhjYjQzYTRhZjMwOGM4OGZm
MjcyMWEwHhcNMjUwNjE0MjIwMDI5WhcNMjUwNjE1MjIwMDI5WjAzMTEwLwYDVQQD
EyhlYmI2N2ZmNjFlNzI0N2QyY2YzNGU5YTk2MzU4YTJmZjNjODA0NWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0VICAhSQXCrebI3LpOq5GONQkNsA
qPWGgSfmf3IqwUd90NkejSWVv7HoZbXh01ScIT8kOsu/R0vptnueNnTLfJ7y/eaI
ryCsBmZHfXxSYqPg+VrfAXSjb1whJzlq4wwqWLhh7X9SuQrtBEATGB+uEKJQJ55i
reukz08y6qSskIyexnu2DLlhe23SkwR1N6P8BWswSj/0jOTkspjPn1mqA+G54pcw
hSrfe5rPoCisw8iAKRLRCKsiIwYW9A/VtarBihB/hiBiQqRqotuggUyCC4pv85Fg
1SofPwechTCVoPYVPJtbh32z4OP6IJIujTu0c1a8/QhkweKxmLQGv3PSjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOu2f/YeckfSzzTpqWNYov88gEXYMB8GA1UdIwQY
MBaAFCcbmKYKkmggpIy0OkrzCMiP8nIaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSnh1WXBncVNhQ0NrakxRNlN2TUl5SV95Y2hvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi85NzRkODAtZDM5NC00OTYyLWE2YTMt
Y2U0ZDg0NTU1NGZkLzEvSnh1WXBncVNhQ0NrakxRNlN2TUl5SV95Y2hvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi85NzRkODAtZDM5NC00OTYyLWE2YTMtY2U0ZDg0NTU1NGZk
LzEvSnh1WXBncVNhQ0NrakxRNlN2TUl5SV95Y2hvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAXjF/Etq
c/PLLOw/ObfdvpaFkj48HyePF4CMZrlKF1Q1w7uCvxFaBU5t1P4+PO/sE9UvAkHR
mT1AN7fsjJX9q/eVDNaUS7FPK5N48wTbZbDKuPmqMdbv92xDS9J7KFnG2V85V4x6
2mo9+DqpIF1TGf/CNw2eEhyIEufg/1aDKvDoiXpT0UwDrQmxnKPsqID5cxEzILYF
Eqt3YqUHXnFlgBHWE8cpRKg1Mc+0ZBR+4MLzulFKatoIPSOgQNxip6AIvBnNV6BE
e+gyg2/i6Dn4Q7W3PBmnEGzAyge8SUjA9NQnuQ9tpw3QWdA79c3Lf0FGiqYnAQB0
dfyqcKdJXflLnw==
-----END CERTIFICATE-----