Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
File:                     Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft (raw, json)
Hash identifier:          m/p1c9woM4A86zmQBc2dFs0nWJoZReyMmEpDM605la4=
Subject key identifier:   92:12:B3:36:61:E2:AA:09:98:86:03:14:55:C5:1E:55:8D:9D:4F:10
Authority key identifier: 02:3C:39:71:09:34:0B:76:7B:CB:32:45:15:F6:D1:F8:2C:8C:C7:CF
Certificate issuer:       /CN=023c397109340b767bcb324515f6d1f82c8cc7cf
Certificate serial:       01976F99B111756A4FEE96FB8BB6CBE1227E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
Manifest number:          11FC
Signing time:             Sat 14 Jun 2025 18:00:32 +0000
Manifest this update:     Sat 14 Jun 2025 18:00:32 +0000
Manifest next update:     Sun 15 Jun 2025 18:00:32 +0000
Files and hashes:         1: Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl (hash: fXFovtfHf73eIF+wsYGc7ndeqbmLboeqr/BcodHRbd0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 18:00:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:99:b1:11:75:6a:4f:ee:96:fb:8b:b6:cb:e1:22:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=023c397109340b767bcb324515f6d1f82c8cc7cf
        Validity
            Not Before: Jun 14 18:00:32 2025 GMT
            Not After : Jun 15 18:00:32 2025 GMT
        Subject: CN=9212b33661e2aa099886031455c51e558d9d4f10
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:32:13:0a:2a:12:57:fd:a4:64:6f:84:b9:d0:
                    f0:af:69:bc:f7:78:9f:46:dc:7c:17:a7:d6:1d:0b:
                    78:88:38:fb:aa:6a:96:5a:d6:86:91:74:c7:90:04:
                    21:4d:16:05:85:76:b5:27:88:36:2b:ff:59:6a:74:
                    df:9e:d5:29:8d:8a:d2:c1:c9:db:ec:8a:52:2d:2a:
                    51:11:47:6f:21:3e:b0:4f:70:4e:8f:eb:ed:56:cb:
                    2d:4e:8a:31:f0:ca:ed:3a:39:a7:60:9c:f9:8d:c5:
                    4c:4b:e2:79:9e:dc:63:b4:13:b1:37:28:90:86:a9:
                    1a:ed:68:93:37:93:1b:8b:6e:3e:27:48:03:16:98:
                    a4:82:07:09:d9:7e:a9:5a:20:d5:c9:a2:39:58:63:
                    38:03:e2:e6:aa:64:7a:e3:94:ec:8c:d0:a3:77:a8:
                    78:58:8c:82:8b:55:64:53:4a:d4:8b:8c:d5:84:d5:
                    ca:e7:85:69:ac:ed:d5:64:48:af:4e:49:e3:43:1b:
                    de:90:e6:6c:51:90:4d:21:c7:cb:be:89:5b:2d:2f:
                    18:08:44:1b:6b:7f:10:24:f9:c9:56:98:98:29:b4:
                    d3:95:97:8b:d6:b7:06:00:08:81:98:99:a2:28:06:
                    1c:b4:a8:7d:40:12:de:78:16:f2:ed:df:12:4c:fc:
                    aa:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:12:B3:36:61:E2:AA:09:98:86:03:14:55:C5:1E:55:8D:9D:4F:10
            X509v3 Authority Key Identifier:
                keyid:02:3C:39:71:09:34:0B:76:7B:CB:32:45:15:F6:D1:F8:2C:8C:C7:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/57/a55935-52bf-4d6f-8b90-e90eefdb3ac5/1/Ajw5cQk0C3Z7yzJFFfbR-CyMx88.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:58:1d:a0:c1:c1:a9:f0:00:8e:f4:0c:39:8a:8c:2a:c3:c0:
         77:25:bb:a8:73:51:42:de:5d:c8:0b:70:a7:bc:c9:bc:b4:38:
         16:c2:a0:87:c1:71:79:ef:4d:04:cb:66:b4:8b:52:94:62:2e:
         fe:a7:0e:94:3f:5e:ce:ce:5b:e7:27:31:f3:fd:86:6c:3d:ad:
         96:ab:1c:2d:ba:17:68:8c:fb:84:34:0b:f2:ea:d7:c8:f1:9d:
         fc:fa:3c:1a:d7:f5:97:7f:ad:e5:14:1b:9d:d9:aa:e6:4e:96:
         36:88:57:b2:e8:53:35:49:79:9d:dc:ed:b4:ab:ad:31:77:6d:
         fb:3d:9d:8d:f3:9a:28:27:17:80:0f:bb:6f:00:32:87:16:95:
         ca:15:99:ce:ac:6e:5b:37:86:7b:aa:bd:e0:cf:c9:f8:7c:da:
         69:a3:25:20:48:dc:8a:1d:54:22:6d:23:91:cf:25:49:a8:ac:
         47:69:54:87:cc:46:d8:31:62:ff:d8:05:38:38:24:6e:0a:ce:
         dc:2a:50:bd:13:3e:b7:a2:7a:bb:0c:91:4e:8c:1a:2b:c7:11:
         cb:49:64:7a:14:73:a4:a2:9b:0c:f7:04:d6:1f:b4:4a:94:9c:
         26:b5:e4:43:39:3e:50:84:23:1e:1c:6f:24:72:5b:65:71:92:
         58:90:43:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvmbERdWpP7pb7i7bL4SJ+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAyM2MzOTcxMDkzNDBiNzY3YmNiMzI0NTE1ZjZkMWY4MmM4
Y2M3Y2YwHhcNMjUwNjE0MTgwMDMyWhcNMjUwNjE1MTgwMDMyWjAzMTEwLwYDVQQD
Eyg5MjEyYjMzNjYxZTJhYTA5OTg4NjAzMTQ1NWM1MWU1NThkOWQ0ZjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTITCioSV/2kZG+EudDwr2m893if
Rtx8F6fWHQt4iDj7qmqWWtaGkXTHkAQhTRYFhXa1J4g2K/9ZanTfntUpjYrSwcnb
7IpSLSpREUdvIT6wT3BOj+vtVsstToox8MrtOjmnYJz5jcVMS+J5ntxjtBOxNyiQ
hqka7WiTN5Mbi24+J0gDFpikggcJ2X6pWiDVyaI5WGM4A+LmqmR645TsjNCjd6h4
WIyCi1VkU0rUi4zVhNXK54VprO3VZEivTknjQxvekOZsUZBNIcfLvolbLS8YCEQb
a38QJPnJVpiYKbTTlZeL1rcGAAiBmJmiKAYctKh9QBLeeBby7d8STPyqcQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJISszZh4qoJmIYDFFXFHlWNnU8QMB8GA1UdIwQY
MBaAFAI8OXEJNAt2e8syRRX20fgsjMfPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQWp3NWNRazBDM1o3eXpKRkZmYlItQ3lNeDg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny9hNTU5MzUtNTJiZi00ZDZmLThiOTAt
ZTkwZWVmZGIzYWM1LzEvQWp3NWNRazBDM1o3eXpKRkZmYlItQ3lNeDg4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny9hNTU5MzUtNTJiZi00ZDZmLThiOTAtZTkwZWVmZGIzYWM1
LzEvQWp3NWNRazBDM1o3eXpKRkZmYlItQ3lNeDg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACFgdoMHB
qfAAjvQMOYqMKsPAdyW7qHNRQt5dyAtwp7zJvLQ4FsKgh8Fxee9NBMtmtItSlGIu
/qcOlD9ezs5b5ycx8/2GbD2tlqscLboXaIz7hDQL8urXyPGd/Po8Gtf1l3+t5RQb
ndmq5k6WNohXsuhTNUl5ndzttKutMXdt+z2djfOaKCcXgA+7bwAyhxaVyhWZzqxu
WzeGe6q94M/J+HzaaaMlIEjcih1UIm0jkc8lSaisR2lUh8xG2DFi/9gFODgkbgrO
3CpQvRM+t6J6uwyRTowaK8cRy0lkehRzpKKbDPcE1h+0SpScJrXkQzk+UIQjHhxv
JHJbZXGSWJBD6A==
-----END CERTIFICATE-----