Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft
File:                     t38R7tTnnIXMxWLfPR8oPjOdou0.mft (raw, json)
Hash identifier:          64npRfwXkfqgAkxUipTdgwcT8t55sF1hf8egr3JMIkM=
Subject key identifier:   B7:E0:03:49:11:D7:4B:46:E8:E6:FC:EC:75:56:A2:D3:E9:55:2F:A4
Authority key identifier: B7:7F:11:EE:D4:E7:9C:85:CC:C5:62:DF:3D:1F:28:3E:33:9D:A2:ED
Certificate issuer:       /CN=b77f11eed4e79c85ccc562df3d1f283e339da2ed
Certificate serial:       0197846AB3C8C303E2D272C7CD587987878E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/t38R7tTnnIXMxWLfPR8oPjOdou0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft
Manifest number:          0C3D
Signing time:             Wed 18 Jun 2025 19:01:14 +0000
Manifest this update:     Wed 18 Jun 2025 19:01:14 +0000
Manifest next update:     Thu 19 Jun 2025 19:01:14 +0000
Files and hashes:         1: t38R7tTnnIXMxWLfPR8oPjOdou0.crl (hash: +7j411kDcnaBdbP0Q1sz7qkFzS/wLG2XkqMb8rNAeV0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/t38R7tTnnIXMxWLfPR8oPjOdou0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 19 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:84:6a:b3:c8:c3:03:e2:d2:72:c7:cd:58:79:87:87:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b77f11eed4e79c85ccc562df3d1f283e339da2ed
        Validity
            Not Before: Jun 18 19:01:14 2025 GMT
            Not After : Jun 19 19:01:14 2025 GMT
        Subject: CN=b7e0034911d74b46e8e6fcec7556a2d3e9552fa4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:74:8e:fa:71:ab:61:dc:d1:88:5c:b1:ea:d4:
                    d3:82:2e:5d:c0:9b:5d:7f:1c:06:7d:25:70:8e:29:
                    49:46:f4:b5:f3:91:9e:0f:67:eb:0f:db:32:94:d1:
                    89:67:76:ab:47:de:bb:93:b4:bb:d7:5c:6a:e2:b9:
                    06:91:94:9a:80:d7:8b:87:b7:7e:d0:1a:d0:c4:8a:
                    af:c8:b2:26:1a:6a:4e:0a:43:0d:ca:53:b3:d3:7a:
                    ae:b2:85:62:6b:c6:d6:d5:0e:99:4d:23:de:38:37:
                    30:9f:f2:8e:33:66:be:3d:75:44:75:1e:de:02:1a:
                    9b:45:6d:01:75:a6:08:52:9e:c8:d2:62:4b:1e:68:
                    7a:c8:28:50:aa:4c:0d:99:2f:ec:64:7c:2e:2f:64:
                    a6:42:34:d0:17:b0:bd:d0:d8:08:d3:4c:b3:40:5c:
                    59:fa:6c:1a:cc:ab:07:56:9d:c6:4a:29:51:26:34:
                    ed:51:3a:cc:da:50:da:b5:ab:c7:b7:b4:8c:8d:07:
                    51:c4:97:2c:7a:39:9d:33:0d:73:f7:a2:b7:af:55:
                    21:83:dd:70:af:a2:23:53:08:a7:f6:62:b2:ef:4c:
                    ae:70:bf:ff:de:13:6b:b9:32:0c:ad:70:ce:7f:4a:
                    5b:71:7d:71:5b:ac:80:89:fc:af:a6:0f:70:60:65:
                    84:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:E0:03:49:11:D7:4B:46:E8:E6:FC:EC:75:56:A2:D3:E9:55:2F:A4
            X509v3 Authority Key Identifier:
                keyid:B7:7F:11:EE:D4:E7:9C:85:CC:C5:62:DF:3D:1F:28:3E:33:9D:A2:ED

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t38R7tTnnIXMxWLfPR8oPjOdou0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/62/975030-43b2-400b-8dc9-0c77559d9db0/1/t38R7tTnnIXMxWLfPR8oPjOdou0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:e3:53:a8:93:61:d5:3d:5e:e7:9e:b0:15:38:99:dd:ee:b8:
         b9:ed:c3:d2:25:31:59:4a:9a:8e:e8:73:51:57:d4:38:e6:9b:
         2d:0d:09:99:3f:e6:31:0d:eb:10:3c:82:ba:32:81:61:b5:1f:
         b0:67:13:6f:ff:2e:1d:2b:75:7b:98:01:cf:d7:27:35:49:52:
         48:76:7e:9a:2c:0d:5d:06:ac:04:53:66:5b:a4:b9:2a:4a:75:
         50:ac:94:41:68:c5:b3:3b:ca:a0:35:75:0c:e9:6b:2f:46:64:
         59:34:e4:d4:ca:d5:27:53:83:5d:33:47:8e:96:34:86:68:3d:
         9d:1e:fb:65:93:27:c2:de:43:87:33:ad:68:8e:ff:c3:d7:0c:
         d1:d5:e1:da:c9:5d:69:62:b1:6d:9e:94:e1:8d:f1:d8:aa:6a:
         7b:87:46:f8:6e:fb:ef:a9:f4:65:54:2e:79:2c:ca:15:d9:b8:
         fb:f5:9c:49:72:cc:ea:b3:cf:97:1c:09:30:80:08:6a:5e:0d:
         c1:12:b4:f1:84:2e:79:63:a6:8c:4c:79:87:cd:41:d4:13:e9:
         4b:2d:30:35:44:a2:4a:59:ab:c0:af:38:49:63:b0:0e:74:59:
         17:ba:5a:e1:85:29:c4:1a:76:29:bc:75:80:79:9b:40:56:cd:
         bb:3a:14:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeEarPIwwPi0nLHzVh5h4eOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3N2YxMWVlZDRlNzljODVjY2M1NjJkZjNkMWYyODNlMzM5
ZGEyZWQwHhcNMjUwNjE4MTkwMTE0WhcNMjUwNjE5MTkwMTE0WjAzMTEwLwYDVQQD
EyhiN2UwMDM0OTExZDc0YjQ2ZThlNmZjZWM3NTU2YTJkM2U5NTUyZmE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArnSO+nGrYdzRiFyx6tTTgi5dwJtd
fxwGfSVwjilJRvS185GeD2frD9sylNGJZ3arR967k7S711xq4rkGkZSagNeLh7d+
0BrQxIqvyLImGmpOCkMNylOz03qusoVia8bW1Q6ZTSPeODcwn/KOM2a+PXVEdR7e
AhqbRW0BdaYIUp7I0mJLHmh6yChQqkwNmS/sZHwuL2SmQjTQF7C90NgI00yzQFxZ
+mwazKsHVp3GSilRJjTtUTrM2lDatavHt7SMjQdRxJcsejmdMw1z96K3r1Uhg91w
r6IjUwin9mKy70yucL//3hNruTIMrXDOf0pbcX1xW6yAifyvpg9wYGWE7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLfgA0kR10tG6Ob87HVWotPpVS+kMB8GA1UdIwQY
MBaAFLd/Ee7U55yFzMVi3z0fKD4znaLtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdDM4Ujd0VG5uSVhNeFdMZlBSOG9Qak9kb3UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi85NzUwMzAtNDNiMi00MDBiLThkYzkt
MGM3NzU1OWQ5ZGIwLzEvdDM4Ujd0VG5uSVhNeFdMZlBSOG9Qak9kb3UwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi85NzUwMzAtNDNiMi00MDBiLThkYzktMGM3NzU1OWQ5ZGIw
LzEvdDM4Ujd0VG5uSVhNeFdMZlBSOG9Qak9kb3UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABuNTqJNh
1T1e556wFTiZ3e64ue3D0iUxWUqajuhzUVfUOOabLQ0JmT/mMQ3rEDyCujKBYbUf
sGcTb/8uHSt1e5gBz9cnNUlSSHZ+miwNXQasBFNmW6S5Kkp1UKyUQWjFszvKoDV1
DOlrL0ZkWTTk1MrVJ1ODXTNHjpY0hmg9nR77ZZMnwt5DhzOtaI7/w9cM0dXh2sld
aWKxbZ6U4Y3x2Kpqe4dG+G7776n0ZVQueSzKFdm4+/WcSXLM6rPPlxwJMIAIal4N
wRK08YQueWOmjEx5h81B1BPpSy0wNUSiSlmrwK84SWOwDnRZF7pa4YUpxBp2Kbx1
gHmbQFbNuzoURw==
-----END CERTIFICATE-----