Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c8e419-0346-433f-9309-de81f9ad779c/1/RNvjYmp2sEoSCIlwSViGPUJjLw8.mft
File:                     RNvjYmp2sEoSCIlwSViGPUJjLw8.mft (raw, json)
Hash identifier:          A5A05ViLAvALxvUI6y81B6OnY6lKuQTaQniqFe5Zn54=
Subject key identifier:   0E:C6:9D:DD:9F:5E:FC:06:D6:01:68:3A:8D:F8:EE:C9:E1:1E:EE:C7
Authority key identifier: 44:DB:E3:62:6A:76:B0:4A:12:08:89:70:49:58:86:3D:42:63:2F:0F
Certificate issuer:       /CN=44dbe3626a76b04a120889704958863d42632f0f
Certificate serial:       01976997C6A888ECAF3D4FD8268FC05E5D89
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/RNvjYmp2sEoSCIlwSViGPUJjLw8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/c8e419-0346-433f-9309-de81f9ad779c/1/RNvjYmp2sEoSCIlwSViGPUJjLw8.mft
Manifest number:          039C
Signing time:             Fri 13 Jun 2025 14:00:43 +0000
Manifest this update:     Fri 13 Jun 2025 14:00:43 +0000
Manifest next update:     Sat 14 Jun 2025 14:00:43 +0000
Files and hashes:         1: RNvjYmp2sEoSCIlwSViGPUJjLw8.crl (hash: f52JMypEZ+n6HetYqvSU5m5UUfQUgam7oXGWrK3mZyk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/c8e419-0346-433f-9309-de81f9ad779c/1/RNvjYmp2sEoSCIlwSViGPUJjLw8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/c8e419-0346-433f-9309-de81f9ad779c/1/RNvjYmp2sEoSCIlwSViGPUJjLw8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/RNvjYmp2sEoSCIlwSViGPUJjLw8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:69:97:c6:a8:88:ec:af:3d:4f:d8:26:8f:c0:5e:5d:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=44dbe3626a76b04a120889704958863d42632f0f
        Validity
            Not Before: Jun 13 14:00:43 2025 GMT
            Not After : Jun 14 14:00:43 2025 GMT
        Subject: CN=0ec69ddd9f5efc06d601683a8df8eec9e11eeec7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:82:f3:90:54:51:a5:79:b6:1c:75:e9:79:2a:
                    a9:e6:f4:13:d8:f2:d1:c9:88:68:ee:4c:13:58:53:
                    7d:35:fd:65:b0:67:34:ee:e5:85:89:98:d3:7c:df:
                    52:ac:88:b2:fe:31:3e:3e:88:19:7c:24:b0:a6:22:
                    64:84:f2:b8:9c:af:f8:a3:aa:ae:d9:c5:5b:fc:d9:
                    fa:c4:fa:32:59:39:21:9f:2c:72:4c:a1:70:41:da:
                    5f:a2:61:4f:0c:b2:d4:4e:7d:eb:30:f2:a3:04:cd:
                    e7:f9:1f:45:b4:73:83:c0:63:50:51:66:e7:99:83:
                    7c:74:9b:79:69:aa:9f:2d:5a:88:d5:f9:79:4b:8c:
                    44:3c:3a:53:f5:5b:40:46:1b:ef:ef:c5:80:6d:53:
                    f7:5e:cd:04:9e:c1:58:b1:1f:98:07:02:07:c0:73:
                    0e:2d:fa:40:70:2d:7f:8b:ab:e2:76:f5:a3:35:2b:
                    58:d4:bd:e0:48:62:4d:4e:72:25:53:7c:7b:da:3a:
                    bd:5e:8d:98:28:45:97:66:1b:18:38:99:69:a1:58:
                    6f:37:ab:01:c1:f6:58:b1:46:b6:9e:cb:53:4a:d1:
                    da:d6:31:af:e3:4c:2e:2b:98:ce:07:05:2a:8a:ae:
                    c9:61:89:7b:49:93:17:96:75:00:9c:18:40:56:c9:
                    5f:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:C6:9D:DD:9F:5E:FC:06:D6:01:68:3A:8D:F8:EE:C9:E1:1E:EE:C7
            X509v3 Authority Key Identifier:
                keyid:44:DB:E3:62:6A:76:B0:4A:12:08:89:70:49:58:86:3D:42:63:2F:0F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RNvjYmp2sEoSCIlwSViGPUJjLw8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c8e419-0346-433f-9309-de81f9ad779c/1/RNvjYmp2sEoSCIlwSViGPUJjLw8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c8e419-0346-433f-9309-de81f9ad779c/1/RNvjYmp2sEoSCIlwSViGPUJjLw8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         70:fa:c4:da:f6:5c:9c:61:4c:04:5e:2c:87:b7:d1:97:f0:fa:
         e2:ce:9b:59:00:4e:e7:ed:08:9d:03:0b:80:fc:c8:2c:ab:5b:
         23:19:d8:51:42:4d:02:0c:d3:29:41:91:88:c6:a0:28:d8:5b:
         03:77:f8:18:2d:e4:2d:98:e0:05:7e:cb:19:e5:8a:57:66:04:
         a2:ea:38:f4:ed:81:49:36:f2:5f:cd:4b:a6:54:47:d0:97:8e:
         3d:5a:b2:03:a4:d5:d9:7d:e0:10:a4:8c:d8:83:ad:9d:e9:df:
         88:cb:a8:c8:ef:80:f3:ce:d3:d4:8c:b9:e5:d5:4f:c9:79:f3:
         46:bd:be:25:95:76:63:67:a6:56:06:b2:ca:46:2f:28:bb:54:
         cd:36:17:90:ae:1c:4f:0f:f0:ab:b4:c5:be:ba:05:a7:0a:68:
         9f:e1:5d:e1:1b:44:23:35:fa:a4:3f:6f:90:28:b5:1b:8f:1f:
         1a:2e:af:c1:34:d2:07:81:c7:47:2d:e6:97:8a:68:30:78:fc:
         66:10:3b:ff:17:ad:01:dd:18:2a:64:20:7c:0a:74:4b:54:29:
         5c:f2:5b:77:6e:8e:be:c9:2b:6b:ba:7e:49:b9:4f:3a:8a:37:
         25:28:82:84:73:98:9f:54:aa:9e:a8:55:ac:87:42:2c:fc:1f:
         4f:27:47:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdpl8aoiOyvPU/YJo/AXl2JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ0ZGJlMzYyNmE3NmIwNGExMjA4ODk3MDQ5NTg4NjNkNDI2
MzJmMGYwHhcNMjUwNjEzMTQwMDQzWhcNMjUwNjE0MTQwMDQzWjAzMTEwLwYDVQQD
EygwZWM2OWRkZDlmNWVmYzA2ZDYwMTY4M2E4ZGY4ZWVjOWUxMWVlZWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5YLzkFRRpXm2HHXpeSqp5vQT2PLR
yYho7kwTWFN9Nf1lsGc07uWFiZjTfN9SrIiy/jE+PogZfCSwpiJkhPK4nK/4o6qu
2cVb/Nn6xPoyWTkhnyxyTKFwQdpfomFPDLLUTn3rMPKjBM3n+R9FtHODwGNQUWbn
mYN8dJt5aaqfLVqI1fl5S4xEPDpT9VtARhvv78WAbVP3Xs0EnsFYsR+YBwIHwHMO
LfpAcC1/i6vidvWjNStY1L3gSGJNTnIlU3x72jq9Xo2YKEWXZhsYOJlpoVhvN6sB
wfZYsUa2nstTStHa1jGv40wuK5jOBwUqiq7JYYl7SZMXlnUAnBhAVslfxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA7Gnd2fXvwG1gFoOo347snhHu7HMB8GA1UdIwQY
MBaAFETb42JqdrBKEgiJcElYhj1CYy8PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUk52alltcDJzRW9TQ0lsd1NWaUdQVUpqTHc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9jOGU0MTktMDM0Ni00MzNmLTkzMDkt
ZGU4MWY5YWQ3NzljLzEvUk52alltcDJzRW9TQ0lsd1NWaUdQVUpqTHc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9jOGU0MTktMDM0Ni00MzNmLTkzMDktZGU4MWY5YWQ3Nzlj
LzEvUk52alltcDJzRW9TQ0lsd1NWaUdQVUpqTHc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcPrE2vZc
nGFMBF4sh7fRl/D64s6bWQBO5+0InQMLgPzILKtbIxnYUUJNAgzTKUGRiMagKNhb
A3f4GC3kLZjgBX7LGeWKV2YEouo49O2BSTbyX81LplRH0JeOPVqyA6TV2X3gEKSM
2IOtnenfiMuoyO+A887T1Iy55dVPyXnzRr2+JZV2Y2emVgayykYvKLtUzTYXkK4c
Tw/wq7TFvroFpwpon+Fd4RtEIzX6pD9vkCi1G48fGi6vwTTSB4HHRy3ml4poMHj8
ZhA7/xetAd0YKmQgfAp0S1QpXPJbd26Ovskra7p+SblPOoo3JSiChHOYn1SqnqhV
rIdCLPwfTydHyw==
-----END CERTIFICATE-----