Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/01bdae-86c5-4c15-a998-5c9f9bb2db11/1/hJm2aiaZbr1cqwwuw7Z8AlvxCU4.mft
File:                     hJm2aiaZbr1cqwwuw7Z8AlvxCU4.mft (raw, json)
Hash identifier:          6PkaVh60fMFI2fwAvZfrFaVIgUId8+VtcU4a50BCYYo=
Subject key identifier:   7F:92:16:D1:39:9B:B7:32:D6:68:E2:2C:10:FB:71:06:04:2C:36:95
Authority key identifier: 84:99:B6:6A:26:99:6E:BD:5C:AB:0C:2E:C3:B6:7C:02:5B:F1:09:4E
Certificate issuer:       /CN=8499b66a26996ebd5cab0c2ec3b67c025bf1094e
Certificate serial:       01976E8702365EACB125EA70058425865649
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hJm2aiaZbr1cqwwuw7Z8AlvxCU4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/84/01bdae-86c5-4c15-a998-5c9f9bb2db11/1/hJm2aiaZbr1cqwwuw7Z8AlvxCU4.mft
Manifest number:          C1
Signing time:             Sat 14 Jun 2025 13:00:31 +0000
Manifest this update:     Sat 14 Jun 2025 13:00:31 +0000
Manifest next update:     Sun 15 Jun 2025 13:00:31 +0000
Files and hashes:         1: hJm2aiaZbr1cqwwuw7Z8AlvxCU4.crl (hash: z+oixn0YaxW7iWgrqQjjjU6LyuJhi8CS+FLYeRfzVc4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/84/01bdae-86c5-4c15-a998-5c9f9bb2db11/1/hJm2aiaZbr1cqwwuw7Z8AlvxCU4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/84/01bdae-86c5-4c15-a998-5c9f9bb2db11/1/hJm2aiaZbr1cqwwuw7Z8AlvxCU4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/hJm2aiaZbr1cqwwuw7Z8AlvxCU4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 12:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6e:87:02:36:5e:ac:b1:25:ea:70:05:84:25:86:56:49
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8499b66a26996ebd5cab0c2ec3b67c025bf1094e
        Validity
            Not Before: Jun 14 13:00:31 2025 GMT
            Not After : Jun 15 13:00:31 2025 GMT
        Subject: CN=7f9216d1399bb732d668e22c10fb7106042c3695
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:5b:f6:42:c3:ad:ce:67:8a:e5:db:96:87:22:
                    03:eb:b9:fd:0d:7c:08:bc:0b:fe:ef:b4:97:b1:03:
                    ed:27:a0:c2:b9:b2:63:9d:25:e0:3a:71:f9:6f:5b:
                    57:d9:f2:50:22:15:bb:45:48:2d:08:88:f2:65:66:
                    20:78:24:71:24:cc:a8:db:d2:ca:a2:0f:eb:e5:d6:
                    16:fc:72:31:ab:af:47:b4:0f:ac:04:48:53:94:fd:
                    0e:42:0a:9f:af:0d:2b:85:71:f0:d9:f2:85:63:eb:
                    d4:a0:95:c9:c7:52:06:bf:b6:c4:85:9d:71:04:35:
                    25:92:80:62:b3:26:fc:9d:2e:87:3a:6f:7e:1c:8f:
                    cc:35:b3:58:f3:f8:f8:d6:03:85:04:5f:dc:72:13:
                    4f:45:77:73:42:16:0e:54:35:99:42:60:eb:a8:3b:
                    a7:a2:bd:92:bc:b6:ae:4d:9f:ba:3e:f3:ae:44:18:
                    41:bf:c9:e3:3e:30:b1:97:79:46:26:7d:e5:21:e9:
                    2d:db:07:2c:bf:b8:35:1c:5c:a8:5d:24:ad:21:dc:
                    51:54:70:29:d2:7f:06:ad:ba:fa:e6:bf:00:41:65:
                    2f:fe:e8:36:6f:75:c2:fe:45:38:b1:a0:b9:d0:86:
                    b6:43:c6:ff:36:ad:79:0f:63:bc:58:ac:27:f0:96:
                    08:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:92:16:D1:39:9B:B7:32:D6:68:E2:2C:10:FB:71:06:04:2C:36:95
            X509v3 Authority Key Identifier:
                keyid:84:99:B6:6A:26:99:6E:BD:5C:AB:0C:2E:C3:B6:7C:02:5B:F1:09:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJm2aiaZbr1cqwwuw7Z8AlvxCU4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/01bdae-86c5-4c15-a998-5c9f9bb2db11/1/hJm2aiaZbr1cqwwuw7Z8AlvxCU4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/84/01bdae-86c5-4c15-a998-5c9f9bb2db11/1/hJm2aiaZbr1cqwwuw7Z8AlvxCU4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:db:6d:44:c8:f8:90:36:71:5e:f1:ac:b8:de:05:69:59:e5:
         1a:69:31:91:fc:34:88:e9:72:4d:a9:7d:4e:a9:cf:74:ee:80:
         71:8f:00:eb:45:ff:6b:43:7e:96:40:d9:ed:8e:98:f7:5a:7f:
         1e:fd:30:e1:30:ce:3a:4a:62:a5:32:bf:f7:39:0f:4c:5c:06:
         11:4f:33:9e:93:77:4f:81:ce:c0:7d:72:2a:92:1b:68:78:0e:
         0a:5e:5e:bf:d4:5c:44:6c:8c:d3:8f:8d:65:79:ee:78:6e:1a:
         97:88:bf:d7:2f:8a:b2:90:ff:c0:4f:69:f0:c8:b5:eb:cb:c6:
         05:07:fd:f2:25:de:b3:45:f5:a2:1a:25:50:33:c5:a8:07:c8:
         7c:50:47:20:07:05:7f:36:09:90:ce:3b:78:9b:14:d2:ec:cb:
         0a:cc:2d:06:5f:de:91:ae:34:49:20:55:82:1f:c2:f5:bb:b1:
         c4:44:98:b8:e4:20:f5:eb:57:22:e1:0d:68:8a:19:84:7b:04:
         db:e6:cd:ed:10:fb:b5:6d:1b:53:8c:89:d6:9a:34:c7:fc:63:
         e8:97:ff:a7:42:a3:6f:c5:56:ac:e2:fa:82:a1:a9:16:16:e0:
         a1:ae:41:f3:7a:ac:d6:58:dd:ca:2b:fd:fc:43:e2:ec:9c:d4:
         c4:07:05:da
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZduhwI2XqyxJepwBYQlhlZJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0OTliNjZhMjY5OTZlYmQ1Y2FiMGMyZWMzYjY3YzAyNWJm
MTA5NGUwHhcNMjUwNjE0MTMwMDMxWhcNMjUwNjE1MTMwMDMxWjAzMTEwLwYDVQQD
Eyg3ZjkyMTZkMTM5OWJiNzMyZDY2OGUyMmMxMGZiNzEwNjA0MmMzNjk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1v2QsOtzmeK5duWhyID67n9DXwI
vAv+77SXsQPtJ6DCubJjnSXgOnH5b1tX2fJQIhW7RUgtCIjyZWYgeCRxJMyo29LK
og/r5dYW/HIxq69HtA+sBEhTlP0OQgqfrw0rhXHw2fKFY+vUoJXJx1IGv7bEhZ1x
BDUlkoBisyb8nS6HOm9+HI/MNbNY8/j41gOFBF/cchNPRXdzQhYOVDWZQmDrqDun
or2SvLauTZ+6PvOuRBhBv8njPjCxl3lGJn3lIekt2wcsv7g1HFyoXSStIdxRVHAp
0n8Grbr65r8AQWUv/ug2b3XC/kU4saC50Ia2Q8b/Nq15D2O8WKwn8JYIfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH+SFtE5m7cy1mjiLBD7cQYELDaVMB8GA1UdIwQY
MBaAFISZtmommW69XKsMLsO2fAJb8QlOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaEptMmFpYVpicjFjcXd3dXc3WjhBbHZ4Q1U0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC8wMWJkYWUtODZjNS00YzE1LWE5OTgt
NWM5ZjliYjJkYjExLzEvaEptMmFpYVpicjFjcXd3dXc3WjhBbHZ4Q1U0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC8wMWJkYWUtODZjNS00YzE1LWE5OTgtNWM5ZjliYjJkYjEx
LzEvaEptMmFpYVpicjFjcXd3dXc3WjhBbHZ4Q1U0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOdttRMj4
kDZxXvGsuN4FaVnlGmkxkfw0iOlyTal9TqnPdO6AcY8A60X/a0N+lkDZ7Y6Y91p/
Hv0w4TDOOkpipTK/9zkPTFwGEU8znpN3T4HOwH1yKpIbaHgOCl5ev9RcRGyM04+N
ZXnueG4al4i/1y+KspD/wE9p8Mi168vGBQf98iXes0X1oholUDPFqAfIfFBHIAcF
fzYJkM47eJsU0uzLCswtBl/eka40SSBVgh/C9buxxESYuOQg9etXIuENaIoZhHsE
2+bN7RD7tW0bU4yJ1po0x/xj6Jf/p0Kjb8VWrOL6gqGpFhbgoa5B83qs1ljdyiv9
/EPi7JzUxAcF2g==
-----END CERTIFICATE-----