Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
File:                     oMWM0HH3gLesNAwBROsE-1DMu_E.mft (raw, json)
Hash identifier:          UnZalCtbCoxhXGkLovhKTaW072DwLmU9xI9WsdCuniQ=
Subject key identifier:   F5:13:D4:D4:75:E8:2D:E5:D7:A4:50:FA:F5:F4:22:57:96:87:99:1A
Authority key identifier: A0:C5:8C:D0:71:F7:80:B7:AC:34:0C:01:44:EB:04:FB:50:CC:BB:F1
Certificate issuer:       /CN=a0c58cd071f780b7ac340c0144eb04fb50ccbbf1
Certificate serial:       0198880D5DA73BBEC506E96F11B116D6A263
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
Manifest number:          1612
Signing time:             Fri 08 Aug 2025 05:00:33 +0000
Manifest this update:     Fri 08 Aug 2025 05:00:33 +0000
Manifest next update:     Sat 09 Aug 2025 05:00:33 +0000
Files and hashes:         1: oMWM0HH3gLesNAwBROsE-1DMu_E.crl (hash: kvsnBXxFT3NWT4UhpIvtRDEHzQw8vc9ehmOn9pHtorc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 02:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:88:0d:5d:a7:3b:be:c5:06:e9:6f:11:b1:16:d6:a2:63
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a0c58cd071f780b7ac340c0144eb04fb50ccbbf1
        Validity
            Not Before: Aug  8 05:00:33 2025 GMT
            Not After : Aug  9 05:00:33 2025 GMT
        Subject: CN=f513d4d475e82de5d7a450faf5f422579687991a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:35:c2:59:0c:40:1a:66:19:9d:5c:12:ca:b0:
                    30:29:31:c8:ff:54:b1:71:c3:c0:0c:19:46:7e:c0:
                    06:e1:82:26:b6:15:53:ff:54:9f:f5:27:fb:bc:fb:
                    90:c0:39:a4:4c:74:86:0f:58:65:09:ba:cd:7e:07:
                    88:e7:d8:41:8c:86:83:c5:c4:b4:c9:90:f5:9f:bb:
                    d3:a2:d1:07:c0:fe:3a:b8:6b:a2:5f:73:35:58:8a:
                    7b:0b:c6:30:ef:36:f3:2e:43:18:31:b8:dc:cd:3d:
                    16:1b:92:87:10:99:1a:7e:46:cb:26:e4:73:b6:de:
                    83:e9:e7:a1:34:51:42:85:77:ee:33:9b:2b:e6:98:
                    85:21:9c:c8:26:33:52:e6:c0:9f:3f:fd:3e:af:68:
                    4b:d6:14:2d:84:d6:38:f8:5c:e2:bd:6b:87:bb:bf:
                    98:e2:5d:ad:2d:fc:ec:21:ef:77:52:08:02:76:fb:
                    2a:b8:58:4a:b0:97:d8:0d:67:fc:92:e0:6e:dc:53:
                    f9:3e:2f:af:52:15:86:f6:4b:1d:ee:47:0d:2d:97:
                    4d:f5:6c:4f:4d:77:a8:2f:64:1b:4e:ac:1f:3d:24:
                    36:af:2a:c1:53:a8:fc:a3:c0:ff:8a:e3:35:5f:dd:
                    2f:6b:5e:6c:69:78:39:85:9e:45:87:f0:f8:ea:8c:
                    41:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:13:D4:D4:75:E8:2D:E5:D7:A4:50:FA:F5:F4:22:57:96:87:99:1A
            X509v3 Authority Key Identifier:
                keyid:A0:C5:8C:D0:71:F7:80:B7:AC:34:0C:01:44:EB:04:FB:50:CC:BB:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMWM0HH3gLesNAwBROsE-1DMu_E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/6c9722-2608-44af-8c79-66b2f99c0b45/1/oMWM0HH3gLesNAwBROsE-1DMu_E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:28:86:e7:53:ff:64:32:ed:1f:32:6e:24:59:c9:ce:28:eb:
         f7:a8:d2:bc:4e:40:0f:91:dc:c8:05:cb:b0:ff:98:01:41:a7:
         c0:88:3e:1b:76:94:ef:f9:4b:33:0a:3b:d8:4b:85:f7:e8:b9:
         17:65:7e:23:48:91:c3:8d:37:f6:77:5d:2f:a0:20:a6:90:b1:
         f1:fb:e6:e4:28:c8:bf:78:b6:8d:24:8c:2e:cd:c8:3a:b2:2b:
         a5:be:d3:3e:46:17:67:45:ad:19:2f:7c:d5:d2:98:ac:fd:07:
         08:0b:ca:3c:ee:31:db:de:a8:e9:dd:94:4d:bc:15:54:7f:e2:
         85:8b:5b:7d:8d:55:94:36:9a:03:cf:8d:6f:db:65:5b:56:b7:
         e1:e4:02:46:2e:1f:9c:b8:69:76:f5:6c:51:61:54:81:2d:80:
         31:cf:99:43:b4:7d:74:bc:13:5d:d0:82:e8:39:0c:cf:0c:49:
         29:99:dc:82:8e:a3:90:44:cf:4e:80:7d:3c:60:0c:06:59:10:
         fe:ca:ff:8a:7f:6f:bb:7c:f9:47:39:1f:e4:19:2a:ad:f0:9f:
         e3:82:eb:ba:e3:40:ef:76:47:cd:38:26:28:fc:16:52:c7:07:
         f4:89:37:e6:d5:e0:be:11:60:ae:ed:ad:b0:62:77:72:e8:b0:
         26:c6:f8:34
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiIDV2nO77FBulvEbEW1qJjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwYzU4Y2QwNzFmNzgwYjdhYzM0MGMwMTQ0ZWIwNGZiNTBj
Y2JiZjEwHhcNMjUwODA4MDUwMDMzWhcNMjUwODA5MDUwMDMzWjAzMTEwLwYDVQQD
EyhmNTEzZDRkNDc1ZTgyZGU1ZDdhNDUwZmFmNWY0MjI1Nzk2ODc5OTFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3jXCWQxAGmYZnVwSyrAwKTHI/1Sx
ccPADBlGfsAG4YImthVT/1Sf9Sf7vPuQwDmkTHSGD1hlCbrNfgeI59hBjIaDxcS0
yZD1n7vTotEHwP46uGuiX3M1WIp7C8Yw7zbzLkMYMbjczT0WG5KHEJkafkbLJuRz
tt6D6eehNFFChXfuM5sr5piFIZzIJjNS5sCfP/0+r2hL1hQthNY4+FzivWuHu7+Y
4l2tLfzsIe93UggCdvsquFhKsJfYDWf8kuBu3FP5Pi+vUhWG9ksd7kcNLZdN9WxP
TXeoL2QbTqwfPSQ2ryrBU6j8o8D/iuM1X90va15saXg5hZ5Fh/D46oxBbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPUT1NR16C3l16RQ+vX0IleWh5kaMB8GA1UdIwQY
MBaAFKDFjNBx94C3rDQMAUTrBPtQzLvxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb01XTTBISDNnTGVzTkF3QlJPc0UtMURNdV9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZC82Yzk3MjItMjYwOC00NGFmLThjNzkt
NjZiMmY5OWMwYjQ1LzEvb01XTTBISDNnTGVzTkF3QlJPc0UtMURNdV9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZC82Yzk3MjItMjYwOC00NGFmLThjNzktNjZiMmY5OWMwYjQ1
LzEvb01XTTBISDNnTGVzTkF3QlJPc0UtMURNdV9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAyiG51P/
ZDLtHzJuJFnJzijr96jSvE5AD5HcyAXLsP+YAUGnwIg+G3aU7/lLMwo72EuF9+i5
F2V+I0iRw4039nddL6AgppCx8fvm5CjIv3i2jSSMLs3IOrIrpb7TPkYXZ0WtGS98
1dKYrP0HCAvKPO4x296o6d2UTbwVVH/ihYtbfY1VlDaaA8+Nb9tlW1a34eQCRi4f
nLhpdvVsUWFUgS2AMc+ZQ7R9dLwTXdCC6DkMzwxJKZncgo6jkETPToB9PGAMBlkQ
/sr/in9vu3z5Rzkf5BkqrfCf44LruuNA73ZHzTgmKPwWUscH9Ik35tXgvhFgru2t
sGJ3cuiwJsb4NA==
-----END CERTIFICATE-----