Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
File:                     iqrwV67ry_cGh34qqnSjljgL4hU.mft (raw, json)
Hash identifier:          lxJ1yo3H3Ye6j1p8u0X8ZVJCMDUC1iObetzKyRBKB5c=
Subject key identifier:   A0:53:F6:C4:4B:E5:73:DC:4C:39:CF:06:12:13:E2:2C:8D:A4:10:30
Authority key identifier: 8A:AA:F0:57:AE:EB:CB:F7:06:87:7E:2A:AA:74:A3:96:38:0B:E2:15
Certificate issuer:       /CN=8aaaf057aeebcbf706877e2aaa74a396380be215
Certificate serial:       01976A05C1B5B6D0DDFBB5F682EBFD60855A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
Manifest number:          031F
Signing time:             Fri 13 Jun 2025 16:00:51 +0000
Manifest this update:     Fri 13 Jun 2025 16:00:51 +0000
Manifest next update:     Sat 14 Jun 2025 16:00:51 +0000
Files and hashes:         1: iqrwV67ry_cGh34qqnSjljgL4hU.crl (hash: pPlkuOxBdFiDOCJWgq6jFz3wUf30on8p9Z9IYH7VUNk=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:05:c1:b5:b6:d0:dd:fb:b5:f6:82:eb:fd:60:85:5a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8aaaf057aeebcbf706877e2aaa74a396380be215
        Validity
            Not Before: Jun 13 16:00:51 2025 GMT
            Not After : Jun 14 16:00:51 2025 GMT
        Subject: CN=a053f6c44be573dc4c39cf061213e22c8da41030
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:47:86:5b:22:f7:f1:76:85:04:1e:2b:17:af:
                    29:e7:d9:d1:e5:64:c3:96:73:fe:fb:05:98:22:70:
                    88:64:ec:b0:0d:ff:af:82:7d:23:4a:a9:81:da:40:
                    ce:22:3b:9e:14:45:fa:21:cf:f7:4d:48:6c:60:66:
                    88:ec:54:04:5a:27:d6:37:e5:38:de:9e:98:46:18:
                    39:32:42:00:52:30:4a:95:8b:20:c3:d5:e9:67:0b:
                    c9:93:5e:9e:d5:8d:78:9e:24:e2:22:c7:1b:15:b1:
                    e7:5a:42:95:2c:ea:c1:9a:b0:77:72:37:6b:2d:4e:
                    89:bb:c4:44:70:d3:89:12:c4:c8:4c:ff:e6:95:7d:
                    a2:d2:86:ac:72:b5:e4:0d:3f:d6:f2:fe:2c:0b:e4:
                    95:58:84:fd:8c:fc:5b:be:f7:6e:a0:7c:60:42:2c:
                    8d:08:27:b6:7e:13:59:4a:3e:b2:1a:27:6d:49:05:
                    1f:99:e9:94:5d:00:8c:ef:91:19:af:66:78:98:e9:
                    83:52:46:f6:0d:fe:6a:1a:3e:4e:b2:7b:b4:fe:7d:
                    e8:7e:43:e7:84:bc:b9:6f:b3:56:fd:c2:f5:8f:f5:
                    e9:bc:1e:cb:af:24:a7:fa:ac:d9:e3:9d:df:b9:0c:
                    41:22:0d:2c:0f:e0:03:ee:d0:14:8d:9a:56:ab:56:
                    37:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:53:F6:C4:4B:E5:73:DC:4C:39:CF:06:12:13:E2:2C:8D:A4:10:30
            X509v3 Authority Key Identifier:
                keyid:8A:AA:F0:57:AE:EB:CB:F7:06:87:7E:2A:AA:74:A3:96:38:0B:E2:15

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iqrwV67ry_cGh34qqnSjljgL4hU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/2240a9-54d5-4b82-8731-53090b3baa81/1/iqrwV67ry_cGh34qqnSjljgL4hU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:df:d0:4d:01:89:c7:28:b4:0b:dd:8e:21:b3:0c:76:2a:74:
         4a:7b:e5:8d:58:d4:db:ed:31:0f:b3:dc:47:34:95:5c:bb:b9:
         b4:c0:cd:bd:04:e2:bf:45:00:5d:0f:1b:13:f4:b3:cf:7e:4a:
         14:1e:78:2b:bf:97:4f:d4:d9:ae:c2:6e:f9:5f:7a:25:60:7e:
         df:8a:3e:53:47:5f:40:8a:a5:14:68:17:a6:3a:31:86:7c:9f:
         bc:5d:21:c6:bf:0f:72:63:c6:f2:43:c8:1e:aa:82:f8:36:ba:
         e6:25:f1:e4:46:9f:b0:b1:20:ab:9a:d6:b7:4c:f7:81:a7:e0:
         c9:af:7e:2e:34:75:87:a4:58:ef:87:89:a5:01:d5:fd:1d:c2:
         f8:50:4e:5c:ea:bf:81:b7:2c:2b:cc:38:28:41:f5:14:d1:a8:
         17:52:4b:05:4c:b3:45:74:2e:8f:f3:b6:d6:73:cb:d7:db:2f:
         49:62:f4:2a:89:c8:da:4d:53:c2:31:7d:a1:48:83:cb:c8:e3:
         cf:aa:9c:e6:12:cc:78:07:49:7b:7e:91:f4:03:17:4b:cc:a4:
         f3:74:60:67:71:93:10:13:93:9c:e0:64:3a:bb:21:ea:26:c5:
         c3:0d:bd:27:22:0e:86:15:93:22:e8:46:b1:b2:30:f0:bc:9b:
         44:74:e3:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdqBcG1ttDd+7X2guv9YIVaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYWFmMDU3YWVlYmNiZjcwNjg3N2UyYWFhNzRhMzk2Mzgw
YmUyMTUwHhcNMjUwNjEzMTYwMDUxWhcNMjUwNjE0MTYwMDUxWjAzMTEwLwYDVQQD
EyhhMDUzZjZjNDRiZTU3M2RjNGMzOWNmMDYxMjEzZTIyYzhkYTQxMDMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnUeGWyL38XaFBB4rF68p59nR5WTD
lnP++wWYInCIZOywDf+vgn0jSqmB2kDOIjueFEX6Ic/3TUhsYGaI7FQEWifWN+U4
3p6YRhg5MkIAUjBKlYsgw9XpZwvJk16e1Y14niTiIscbFbHnWkKVLOrBmrB3cjdr
LU6Ju8REcNOJEsTITP/mlX2i0oascrXkDT/W8v4sC+SVWIT9jPxbvvduoHxgQiyN
CCe2fhNZSj6yGidtSQUfmemUXQCM75EZr2Z4mOmDUkb2Df5qGj5Osnu0/n3ofkPn
hLy5b7NW/cL1j/XpvB7LrySn+qzZ453fuQxBIg0sD+AD7tAUjZpWq1Y3NwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKBT9sRL5XPcTDnPBhIT4iyNpBAwMB8GA1UdIwQY
MBaAFIqq8Feu68v3Bod+Kqp0o5Y4C+IVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXFyd1Y2N3J5X2NHaDM0cXFuU2psamdMNGhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC8yMjQwYTktNTRkNS00YjgyLTg3MzEt
NTMwOTBiM2JhYTgxLzEvaXFyd1Y2N3J5X2NHaDM0cXFuU2psamdMNGhVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC8yMjQwYTktNTRkNS00YjgyLTg3MzEtNTMwOTBiM2JhYTgx
LzEvaXFyd1Y2N3J5X2NHaDM0cXFuU2psamdMNGhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU9/QTQGJ
xyi0C92OIbMMdip0SnvljVjU2+0xD7PcRzSVXLu5tMDNvQTiv0UAXQ8bE/Szz35K
FB54K7+XT9TZrsJu+V96JWB+34o+U0dfQIqlFGgXpjoxhnyfvF0hxr8PcmPG8kPI
HqqC+Da65iXx5EafsLEgq5rWt0z3gafgya9+LjR1h6RY74eJpQHV/R3C+FBOXOq/
gbcsK8w4KEH1FNGoF1JLBUyzRXQuj/O21nPL19svSWL0KonI2k1TwjF9oUiDy8jj
z6qc5hLMeAdJe36R9AMXS8yk83RgZ3GTEBOTnOBkOrsh6ibFww29JyIOhhWTIuhG
sbIw8LybRHTj4g==
-----END CERTIFICATE-----