Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft
File:                     g2elJH2fTpT3vVcc8T01q0iwHSQ.mft (raw, json)
Hash identifier:          mHdXtXRlXGAL4lmWJieqMWYqyVL8bw/A+UMvCm1qQgQ=
Subject key identifier:   00:9C:5C:67:17:5C:15:7B:D5:65:27:73:FA:71:C1:B5:F0:72:50:AE
Authority key identifier: 83:67:A5:24:7D:9F:4E:94:F7:BD:57:1C:F1:3D:35:AB:48:B0:1D:24
Certificate issuer:       /CN=8367a5247d9f4e94f7bd571cf13d35ab48b01d24
Certificate serial:       01976C2B26084ABD39D030CDC3F4672A26F7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/g2elJH2fTpT3vVcc8T01q0iwHSQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft
Manifest number:          051D
Signing time:             Sat 14 Jun 2025 02:00:56 +0000
Manifest this update:     Sat 14 Jun 2025 02:00:56 +0000
Manifest next update:     Sun 15 Jun 2025 02:00:56 +0000
Files and hashes:         1: g2elJH2fTpT3vVcc8T01q0iwHSQ.crl (hash: 5lHp91DelhTKZWWFFAV0Ah5iEbi64Oud9ei4qUM+xkE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/g2elJH2fTpT3vVcc8T01q0iwHSQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:2b:26:08:4a:bd:39:d0:30:cd:c3:f4:67:2a:26:f7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8367a5247d9f4e94f7bd571cf13d35ab48b01d24
        Validity
            Not Before: Jun 14 02:00:56 2025 GMT
            Not After : Jun 15 02:00:56 2025 GMT
        Subject: CN=009c5c67175c157bd5652773fa71c1b5f07250ae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:e3:f5:a6:01:d5:1b:73:91:69:eb:97:f4:8a:
                    5e:d7:c0:90:e2:e4:27:d8:e5:fa:2c:95:17:95:f6:
                    94:cf:f5:91:d3:da:30:98:90:77:de:de:b3:76:d3:
                    79:d0:a1:df:da:09:9e:e8:6a:ea:0d:d6:ca:a8:b3:
                    20:db:70:2b:99:33:d3:57:9a:a8:1a:fa:42:3d:46:
                    d9:a0:9b:e9:7b:48:99:ba:3b:41:89:f6:4d:2c:01:
                    59:41:10:35:03:83:1a:36:61:70:bc:0d:f1:be:4a:
                    fa:d9:cd:74:06:2e:1a:a2:d2:b5:c3:f8:20:f4:8f:
                    0c:b5:1d:2a:93:0f:a9:20:d2:19:c6:31:83:45:b3:
                    b7:e7:9d:0b:4f:c8:6f:92:16:ad:44:da:2b:4c:68:
                    d8:e6:90:0f:a1:f9:25:51:04:e0:1c:59:07:39:2f:
                    85:05:d0:10:39:e1:cf:99:7c:21:2b:bc:77:82:57:
                    07:24:47:12:ea:a7:11:13:c3:a6:37:0e:5b:7d:40:
                    f0:cf:22:16:72:b5:8f:ac:f9:5d:6b:6e:7b:83:9b:
                    a5:ca:e9:75:6f:5a:44:4e:8f:d7:91:83:77:b2:51:
                    df:9d:85:5c:4c:8c:ec:a5:28:55:b1:c3:b8:7d:72:
                    cf:19:d7:3f:e3:be:52:f9:5a:2d:fa:2e:41:26:1a:
                    f7:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:9C:5C:67:17:5C:15:7B:D5:65:27:73:FA:71:C1:B5:F0:72:50:AE
            X509v3 Authority Key Identifier:
                keyid:83:67:A5:24:7D:9F:4E:94:F7:BD:57:1C:F1:3D:35:AB:48:B0:1D:24

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g2elJH2fTpT3vVcc8T01q0iwHSQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f8be9b-58f0-4544-b23f-6354ef0771c9/1/g2elJH2fTpT3vVcc8T01q0iwHSQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:cb:8c:d6:73:7b:d2:15:d0:24:ec:2f:22:15:c3:cf:18:d0:
         e8:b5:47:78:e3:3d:06:c0:59:54:14:93:c8:89:cd:b8:18:6e:
         82:1f:d0:3e:4f:22:d4:e8:0d:8d:28:97:da:ac:5b:fe:df:7f:
         37:71:59:a8:a6:01:d3:6b:ea:aa:ec:e5:1c:ca:e8:f9:af:28:
         6a:f3:79:bb:e3:8e:19:22:72:ae:f0:f7:27:db:5a:73:5c:7e:
         77:ac:15:d9:65:ab:ef:5f:21:ce:08:5f:c8:f3:60:46:66:0f:
         01:61:b7:08:36:2f:07:e7:c9:22:f7:7f:5f:20:8d:63:fd:c4:
         59:c0:11:96:b6:d6:83:5b:e4:53:ff:48:c7:5e:ee:19:52:b0:
         99:0b:4e:d7:7d:8a:99:a1:43:d1:7a:9d:03:4e:cb:87:13:54:
         07:60:cf:e5:8e:8f:70:0b:42:66:63:39:72:71:e2:c9:a8:89:
         2c:64:fa:a3:c5:43:c4:ae:dc:b4:9a:1e:38:b5:2d:6b:ec:7b:
         8c:19:9f:23:65:0b:6e:a7:c5:73:97:07:76:b1:00:cc:2a:ee:
         e1:dc:cd:2f:ca:fb:8f:f0:d0:50:47:2d:9a:4c:80:65:01:7b:
         0d:b6:48:63:0a:05:7e:dd:d5:8d:19:70:b5:63:e7:a0:e6:89:
         fb:3e:9c:76
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsKyYISr050DDNw/RnKib3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzNjdhNTI0N2Q5ZjRlOTRmN2JkNTcxY2YxM2QzNWFiNDhi
MDFkMjQwHhcNMjUwNjE0MDIwMDU2WhcNMjUwNjE1MDIwMDU2WjAzMTEwLwYDVQQD
EygwMDljNWM2NzE3NWMxNTdiZDU2NTI3NzNmYTcxYzFiNWYwNzI1MGFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAheP1pgHVG3ORaeuX9Ipe18CQ4uQn
2OX6LJUXlfaUz/WR09owmJB33t6zdtN50KHf2gme6GrqDdbKqLMg23ArmTPTV5qo
GvpCPUbZoJvpe0iZujtBifZNLAFZQRA1A4MaNmFwvA3xvkr62c10Bi4aotK1w/gg
9I8MtR0qkw+pINIZxjGDRbO3550LT8hvkhatRNorTGjY5pAPofklUQTgHFkHOS+F
BdAQOeHPmXwhK7x3glcHJEcS6qcRE8OmNw5bfUDwzyIWcrWPrPlda257g5ulyul1
b1pETo/XkYN3slHfnYVcTIzspShVscO4fXLPGdc/475S+Vot+i5BJhr3XwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFACcXGcXXBV71WUnc/pxwbXwclCuMB8GA1UdIwQY
MBaAFINnpSR9n06U971XHPE9NatIsB0kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZzJlbEpIMmZUcFQzdlZjYzhUMDFxMGl3SFNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9mOGJlOWItNThmMC00NTQ0LWIyM2Yt
NjM1NGVmMDc3MWM5LzEvZzJlbEpIMmZUcFQzdlZjYzhUMDFxMGl3SFNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9mOGJlOWItNThmMC00NTQ0LWIyM2YtNjM1NGVmMDc3MWM5
LzEvZzJlbEpIMmZUcFQzdlZjYzhUMDFxMGl3SFNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARsuM1nN7
0hXQJOwvIhXDzxjQ6LVHeOM9BsBZVBSTyInNuBhugh/QPk8i1OgNjSiX2qxb/t9/
N3FZqKYB02vqquzlHMro+a8oavN5u+OOGSJyrvD3J9tac1x+d6wV2WWr718hzghf
yPNgRmYPAWG3CDYvB+fJIvd/XyCNY/3EWcARlrbWg1vkU/9Ix17uGVKwmQtO132K
maFD0XqdA07LhxNUB2DP5Y6PcAtCZmM5cnHiyaiJLGT6o8VDxK7ctJoeOLUta+x7
jBmfI2ULbqfFc5cHdrEAzCru4dzNL8r7j/DQUEctmkyAZQF7DbZIYwoFft3VjRlw
tWPnoOaJ+z6cdg==
-----END CERTIFICATE-----