Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
File:                     EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft (raw, json)
Hash identifier:          +bAbKIbMJ6Yp51fhYToE+ZxtV/mgUA36+HMk2FW+e/E=
Subject key identifier:   C0:E1:0F:0A:07:57:A8:30:2E:7F:9B:7F:72:00:F8:FE:C5:12:75:4E
Authority key identifier: 11:0F:05:3A:6D:B5:4B:1B:F3:96:F8:50:63:A6:FC:CA:0A:34:6E:C3
Certificate issuer:       /CN=110f053a6db54b1bf396f85063a6fcca0a346ec3
Certificate serial:       01968B4A8E735A3B347D81454B721BA79986
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EQ8FOm21SxvzlvhQY6b8ygo0bsM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
Manifest number:          1519
Signing time:             Thu 01 May 2025 10:00:41 +0000
Manifest this update:     Thu 01 May 2025 10:00:41 +0000
Manifest next update:     Fri 02 May 2025 10:00:41 +0000
Files and hashes:         1: EQ8FOm21SxvzlvhQY6b8ygo0bsM.crl (hash: 8JzaqLtbe0WZrCRwO5gviiscBcHJub8FFSSw9yT2Y70=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/EQ8FOm21SxvzlvhQY6b8ygo0bsM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 02 May 2025 07:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:8b:4a:8e:73:5a:3b:34:7d:81:45:4b:72:1b:a7:99:86
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=110f053a6db54b1bf396f85063a6fcca0a346ec3
        Validity
            Not Before: May  1 10:00:41 2025 GMT
            Not After : May  2 10:00:41 2025 GMT
        Subject: CN=c0e10f0a0757a8302e7f9b7f7200f8fec512754e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:78:f7:f2:95:92:3b:cb:09:e6:d8:dc:6d:78:
                    8d:bd:ee:51:15:34:40:9a:a4:37:fd:39:9c:9d:44:
                    44:bd:9d:17:35:15:a3:0a:29:00:a3:bc:37:61:7e:
                    29:d8:68:83:63:1d:26:8a:f9:a0:7e:8d:9d:12:73:
                    35:3d:51:d7:b4:b7:96:95:2e:7f:f4:99:bb:62:05:
                    a3:bf:1f:a5:cc:9a:ae:36:66:12:34:31:e8:30:a8:
                    2b:52:5e:e7:52:58:ed:b6:5d:2d:d2:c9:1a:ab:26:
                    f4:41:0b:77:56:38:86:2f:49:0f:91:90:9e:1e:76:
                    b3:0b:bd:fc:6d:71:bf:7d:81:fe:94:1a:89:13:17:
                    7d:62:82:16:d0:ce:b9:7c:40:ea:0f:17:82:7f:f5:
                    86:4c:b0:a1:c5:a1:7b:9f:ed:32:12:20:55:3d:3d:
                    5d:43:88:a6:2f:7e:1e:5c:50:cd:e4:f0:d8:18:b9:
                    a4:41:88:4f:78:76:0e:83:11:f8:4a:d4:53:4a:29:
                    61:65:ec:e2:50:fb:d2:a3:e5:3b:1a:8c:90:37:23:
                    97:26:a7:c0:0e:b7:2e:38:fc:e5:18:e0:53:cf:0c:
                    51:ed:b6:38:de:69:e7:96:8a:3c:da:a6:05:a2:08:
                    0c:7b:81:2d:9e:55:0b:68:97:5d:04:c5:29:c4:ec:
                    c7:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:E1:0F:0A:07:57:A8:30:2E:7F:9B:7F:72:00:F8:FE:C5:12:75:4E
            X509v3 Authority Key Identifier:
                keyid:11:0F:05:3A:6D:B5:4B:1B:F3:96:F8:50:63:A6:FC:CA:0A:34:6E:C3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EQ8FOm21SxvzlvhQY6b8ygo0bsM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/66/53d18e-cace-4ea4-9a08-38bfbd34799e/1/EQ8FOm21SxvzlvhQY6b8ygo0bsM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a9:4a:fa:b3:6e:55:ff:38:ec:24:04:5b:d3:fb:1e:f6:e7:9f:
         d6:c0:71:27:7c:1d:1b:b1:cb:af:ce:07:e5:b1:a8:0b:98:7c:
         8b:8a:77:a6:01:ef:8e:c2:92:a5:f0:15:81:d9:53:c6:96:4d:
         61:b5:08:47:e9:00:16:72:9b:30:81:8d:8d:dc:a5:02:2f:f9:
         3f:19:48:80:75:cf:54:e5:79:91:af:f5:21:88:d9:93:2f:6f:
         04:af:01:97:61:d6:f2:21:b4:62:f2:84:f3:76:8a:c3:de:b7:
         ba:4d:f9:80:27:c9:b2:31:ae:b9:4f:36:9b:7b:47:ac:e2:6b:
         22:d5:41:96:7c:0f:e1:cf:58:6b:d8:e6:a5:cd:66:4a:31:2a:
         67:93:3e:a2:e2:83:e1:c7:70:6e:88:5b:00:00:2b:3e:c0:00:
         cb:60:b6:72:e0:e1:8e:b6:2a:07:44:63:c9:d7:ab:6c:f7:16:
         ac:04:7a:94:d3:89:77:94:76:ae:be:4a:2b:24:86:27:3a:01:
         58:ba:36:ce:50:6f:8a:d2:80:7c:23:01:0b:67:6f:97:52:81:
         9b:27:92:c6:1a:70:89:10:f0:4f:35:7f:d8:76:46:55:2d:c7:
         2f:ad:b4:ef:4c:85:90:23:35:06:f4:a1:1a:11:6c:c5:26:e3:
         1f:92:d3:47
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaLSo5zWjs0fYFFS3Ibp5mGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExMGYwNTNhNmRiNTRiMWJmMzk2Zjg1MDYzYTZmY2NhMGEz
NDZlYzMwHhcNMjUwNTAxMTAwMDQxWhcNMjUwNTAyMTAwMDQxWjAzMTEwLwYDVQQD
EyhjMGUxMGYwYTA3NTdhODMwMmU3ZjliN2Y3MjAwZjhmZWM1MTI3NTRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Hj38pWSO8sJ5tjcbXiNve5RFTRA
mqQ3/TmcnUREvZ0XNRWjCikAo7w3YX4p2GiDYx0mivmgfo2dEnM1PVHXtLeWlS5/
9Jm7YgWjvx+lzJquNmYSNDHoMKgrUl7nUljttl0t0skaqyb0QQt3VjiGL0kPkZCe
HnazC738bXG/fYH+lBqJExd9YoIW0M65fEDqDxeCf/WGTLChxaF7n+0yEiBVPT1d
Q4imL34eXFDN5PDYGLmkQYhPeHYOgxH4StRTSilhZeziUPvSo+U7GoyQNyOXJqfA
DrcuOPzlGOBTzwxR7bY43mnnloo82qYFoggMe4EtnlULaJddBMUpxOzHFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMDhDwoHV6gwLn+bf3IA+P7FEnVOMB8GA1UdIwQY
MBaAFBEPBTpttUsb85b4UGOm/MoKNG7DMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVE4Rk9tMjFTeHZ6bHZoUVk2Yjh5Z28wYnNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni81M2QxOGUtY2FjZS00ZWE0LTlhMDgt
MzhiZmJkMzQ3OTllLzEvRVE4Rk9tMjFTeHZ6bHZoUVk2Yjh5Z28wYnNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni81M2QxOGUtY2FjZS00ZWE0LTlhMDgtMzhiZmJkMzQ3OTll
LzEvRVE4Rk9tMjFTeHZ6bHZoUVk2Yjh5Z28wYnNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqUr6s25V
/zjsJARb0/se9uef1sBxJ3wdG7HLr84H5bGoC5h8i4p3pgHvjsKSpfAVgdlTxpZN
YbUIR+kAFnKbMIGNjdylAi/5PxlIgHXPVOV5ka/1IYjZky9vBK8Bl2HW8iG0YvKE
83aKw963uk35gCfJsjGuuU82m3tHrOJrItVBlnwP4c9Ya9jmpc1mSjEqZ5M+ouKD
4cdwbohbAAArPsAAy2C2cuDhjrYqB0RjyderbPcWrAR6lNOJd5R2rr5KKySGJzoB
WLo2zlBvitKAfCMBC2dvl1KBmyeSxhpwiRDwTzV/2HZGVS3HL62070yFkCM1BvSh
GhFsxSbjH5LTRw==
-----END CERTIFICATE-----