Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
File:                     Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft (raw, json)
Hash identifier:          D2TC3Ul6ys30s+43NyAMEsnwlbBhmmI0k+c8RrHo0SI=
Subject key identifier:   77:2D:30:2B:05:4E:E9:F0:63:C4:F7:CF:AA:1D:B5:7B:17:16:89:2D
Authority key identifier: 4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC
Certificate issuer:       /CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
Certificate serial:       01976FD12F752FE85D9A50FB4A587D33EB10
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
Manifest number:          158F
Signing time:             Sat 14 Jun 2025 19:01:09 +0000
Manifest this update:     Sat 14 Jun 2025 19:01:09 +0000
Manifest next update:     Sun 15 Jun 2025 19:01:09 +0000
Files and hashes:         1: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl (hash: QnuZ+MVigF1gltQPbibtOPfzyvi00WUQopYQqnN0pEc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 12:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:d1:2f:75:2f:e8:5d:9a:50:fb:4a:58:7d:33:eb:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
        Validity
            Not Before: Jun 14 19:01:09 2025 GMT
            Not After : Jun 15 19:01:09 2025 GMT
        Subject: CN=772d302b054ee9f063c4f7cfaa1db57b1716892d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:10:65:94:0c:ef:e2:3d:8d:ec:d4:54:55:93:
                    84:01:22:e4:d5:45:03:08:68:19:8e:d7:fa:58:3d:
                    e6:82:5c:a3:84:72:1e:5a:ae:d5:50:ef:c4:24:f7:
                    ca:aa:a0:6c:3d:01:40:48:98:00:7e:c1:b9:78:d4:
                    be:f6:1f:c6:17:c5:4b:d0:b9:d6:a4:3c:23:c7:b9:
                    9c:65:6f:93:15:b5:33:3c:5f:41:03:43:a7:11:b8:
                    cf:58:77:0e:f2:32:2c:bd:7a:41:10:8e:02:3a:ed:
                    11:2d:c4:50:a7:7c:d9:7c:91:61:76:20:8e:be:1f:
                    38:67:52:e8:dd:36:0e:ca:06:4e:ab:5c:63:ee:c8:
                    72:90:bb:7e:ca:eb:fb:bf:c6:ae:44:14:5a:cc:ce:
                    24:42:30:c2:36:da:00:74:d0:50:95:8e:18:ba:fe:
                    6f:1a:99:f9:40:73:7e:99:69:95:82:b5:d5:75:99:
                    a6:e8:8f:72:c4:c3:d0:1a:1d:a2:40:13:a8:1a:6b:
                    eb:39:a0:83:14:e2:b5:82:23:19:0d:35:93:66:d8:
                    34:0f:c5:44:3e:6d:74:87:55:9c:db:ac:64:7e:a1:
                    01:f9:84:b4:b0:34:f8:09:ef:18:20:c3:3c:d8:58:
                    ea:b1:57:70:90:4c:d6:52:6d:30:5b:e7:7d:68:5b:
                    95:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:2D:30:2B:05:4E:E9:F0:63:C4:F7:CF:AA:1D:B5:7B:17:16:89:2D
            X509v3 Authority Key Identifier:
                keyid:4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:1e:20:89:20:ef:30:95:dc:01:c4:24:8b:ee:22:b0:34:cf:
         cd:52:b5:d0:9b:f0:01:bb:50:66:1c:00:22:2f:10:f6:27:cb:
         95:ec:46:58:99:80:18:d9:10:8c:b1:84:df:92:d3:ee:94:9e:
         a8:6c:cd:e8:a5:53:c1:eb:a9:ec:22:9d:c6:a2:b8:4c:f9:9b:
         d3:97:48:d6:47:2b:bb:dc:8a:14:bd:4f:10:41:2b:0a:b7:10:
         ae:12:17:24:77:ca:b0:c3:bb:a6:ab:6e:36:6e:52:b8:23:f3:
         22:17:2e:74:03:d7:97:50:f8:6a:6d:58:a5:14:45:a8:ab:a6:
         19:9f:a3:4b:82:1b:b5:f6:ac:2d:4b:9f:01:d2:52:5e:6f:de:
         50:fa:68:b1:83:24:79:9b:3a:18:36:72:53:59:72:6d:0a:ee:
         6f:ea:60:87:91:82:85:d9:7a:06:34:53:28:1b:e6:58:0e:d0:
         55:b2:b0:29:cf:62:f5:40:30:ff:49:49:dd:d2:55:4a:b7:62:
         9b:05:df:ff:9e:2f:ea:62:b4:fa:72:db:a4:cc:6b:53:25:39:
         3d:e9:56:d4:52:94:f4:bf:de:f0:37:cf:81:58:14:bc:72:17:
         c4:16:9d:b8:59:2d:b8:a6:d6:3c:31:e3:cb:8f:64:05:28:3a:
         df:0b:44:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdv0S91L+hdmlD7Slh9M+sQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhMWVkNGJmNTAyYzBmMmQ4YmM4NzAyNmMxOGFjOTg1OWIw
ZjFkZWMwHhcNMjUwNjE0MTkwMTA5WhcNMjUwNjE1MTkwMTA5WjAzMTEwLwYDVQQD
Eyg3NzJkMzAyYjA1NGVlOWYwNjNjNGY3Y2ZhYTFkYjU3YjE3MTY4OTJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6BBllAzv4j2N7NRUVZOEASLk1UUD
CGgZjtf6WD3mglyjhHIeWq7VUO/EJPfKqqBsPQFASJgAfsG5eNS+9h/GF8VL0LnW
pDwjx7mcZW+TFbUzPF9BA0OnEbjPWHcO8jIsvXpBEI4COu0RLcRQp3zZfJFhdiCO
vh84Z1Lo3TYOygZOq1xj7shykLt+yuv7v8auRBRazM4kQjDCNtoAdNBQlY4Yuv5v
Gpn5QHN+mWmVgrXVdZmm6I9yxMPQGh2iQBOoGmvrOaCDFOK1giMZDTWTZtg0D8VE
Pm10h1Wc26xkfqEB+YS0sDT4Ce8YIMM82FjqsVdwkEzWUm0wW+d9aFuVAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHctMCsFTunwY8T3z6odtXsXFoktMB8GA1UdIwQY
MBaAFEoe1L9QLA8ti8hwJsGKyYWbDx3sMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2g3VXYxQXNEeTJMeUhBbXdZckpoWnNQSGV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC85N2M5MTYtODFiMS00YjNhLTlmZWUt
MzU2YTE5ZjU1NTA2LzEvU2g3VXYxQXNEeTJMeUhBbXdZckpoWnNQSGV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC85N2M5MTYtODFiMS00YjNhLTlmZWUtMzU2YTE5ZjU1NTA2
LzEvU2g3VXYxQXNEeTJMeUhBbXdZckpoWnNQSGV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmx4giSDv
MJXcAcQki+4isDTPzVK10JvwAbtQZhwAIi8Q9ifLlexGWJmAGNkQjLGE35LT7pSe
qGzN6KVTweup7CKdxqK4TPmb05dI1kcru9yKFL1PEEErCrcQrhIXJHfKsMO7pqtu
Nm5SuCPzIhcudAPXl1D4am1YpRRFqKumGZ+jS4IbtfasLUufAdJSXm/eUPposYMk
eZs6GDZyU1lybQrub+pgh5GChdl6BjRTKBvmWA7QVbKwKc9i9UAw/0lJ3dJVSrdi
mwXf/54v6mK0+nLbpMxrUyU5PelW1FKU9L/e8DfPgVgUvHIXxBaduFktuKbWPDHj
y49kBSg63wtERw==
-----END CERTIFICATE-----