Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft
File:                     uVZnsVy6fKp0FSdIRHOE--A7iTo.mft (raw, json)
Hash identifier:          0T5ro3h0E2le2fuipHyb8dzz5PZJzK1GflAZAi81Jak=
Subject key identifier:   31:4C:99:C5:A8:0D:37:BC:87:60:1D:8B:12:F9:DD:94:AC:70:67:AB
Authority key identifier: B9:56:67:B1:5C:BA:7C:AA:74:15:27:48:44:73:84:FB:E0:3B:89:3A
Certificate issuer:       /CN=b95667b15cba7caa74152748447384fbe03b893a
Certificate serial:       01976D3DB6F711D27DFCD4CC8A8690F0F34C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft
Manifest number:          0840
Signing time:             Sat 14 Jun 2025 07:00:50 +0000
Manifest this update:     Sat 14 Jun 2025 07:00:50 +0000
Manifest next update:     Sun 15 Jun 2025 07:00:50 +0000
Files and hashes:         1: uVZnsVy6fKp0FSdIRHOE--A7iTo.crl (hash: xTiYDHrrYG+PAMmgQ5+yKyW1yJRsMF1Pkw/7bBC3v7g=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3d:b6:f7:11:d2:7d:fc:d4:cc:8a:86:90:f0:f3:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b95667b15cba7caa74152748447384fbe03b893a
        Validity
            Not Before: Jun 14 07:00:50 2025 GMT
            Not After : Jun 15 07:00:50 2025 GMT
        Subject: CN=314c99c5a80d37bc87601d8b12f9dd94ac7067ab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:3a:0c:9f:f0:14:fc:dd:5c:17:85:f8:9b:c1:
                    aa:3e:ff:0d:bc:2a:3e:52:50:9e:cd:ff:91:42:ce:
                    64:02:56:8e:15:b1:9f:a4:32:94:45:ab:2b:20:c3:
                    c5:28:11:71:61:c8:ee:e3:96:67:3f:51:b3:91:0c:
                    ba:26:f6:6a:db:ac:d6:60:e8:af:95:75:dd:37:19:
                    d0:0e:46:75:e3:d6:07:2a:ff:97:b9:81:c3:15:bd:
                    a0:65:cd:3f:06:3d:6a:71:29:ac:88:9b:39:e5:31:
                    1e:53:78:d0:40:81:c9:52:8d:1a:8e:c3:6d:ce:6b:
                    a3:3b:d7:39:1f:58:78:a1:bf:0f:96:54:6f:d7:d2:
                    73:95:f0:2e:69:28:5b:ce:38:d9:c2:57:df:59:cd:
                    0d:57:a3:3d:e7:8f:a4:30:74:18:b1:ab:80:81:83:
                    6e:d0:11:96:8c:b0:da:48:02:43:f5:b1:2f:fa:5f:
                    ee:2e:b0:90:76:61:ef:1f:f1:9c:9f:f3:2b:2f:ff:
                    da:9a:17:b2:32:c3:0d:31:9a:72:bd:21:e6:b9:46:
                    7f:77:6d:7f:0c:86:ac:f7:fc:a4:c3:82:d5:49:f0:
                    5d:b6:06:18:73:1d:13:b9:ba:c2:69:4e:59:f6:f7:
                    b5:3f:c9:d8:9f:ed:f9:00:f9:fd:2e:05:7b:88:4a:
                    07:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                31:4C:99:C5:A8:0D:37:BC:87:60:1D:8B:12:F9:DD:94:AC:70:67:AB
            X509v3 Authority Key Identifier:
                keyid:B9:56:67:B1:5C:BA:7C:AA:74:15:27:48:44:73:84:FB:E0:3B:89:3A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uVZnsVy6fKp0FSdIRHOE--A7iTo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/540c03-ba83-4971-8981-744dcd014fa4/1/uVZnsVy6fKp0FSdIRHOE--A7iTo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         79:a5:17:9f:df:ea:0b:9f:f9:8b:3f:ae:70:71:b0:d1:10:9c:
         85:62:52:08:16:00:a1:24:e9:c5:4d:a3:b6:39:c6:87:27:d5:
         ed:5b:69:13:c1:a4:91:39:6c:8a:ff:24:0b:22:83:72:45:17:
         10:da:41:53:7c:98:65:51:c8:30:94:38:52:22:fe:d4:d9:5b:
         7d:ab:49:97:79:e1:88:7d:e2:44:1c:9f:f6:59:f7:35:9e:5a:
         b2:56:40:26:33:c3:86:34:94:83:96:41:3d:58:93:e5:0d:2d:
         63:ee:04:94:f8:10:30:c1:25:d7:2c:9f:b7:3c:34:ed:14:60:
         7c:70:40:8c:77:ff:9e:1c:0d:64:19:c4:60:0c:8f:98:ce:35:
         1f:79:36:dc:ef:53:3d:41:49:77:62:37:ba:64:b4:4c:9f:b8:
         99:85:78:ea:11:99:f3:e3:0e:4a:13:78:55:56:ec:68:57:be:
         52:be:c3:d0:2a:27:33:e4:cc:fe:4b:c4:6e:09:f2:fa:6f:24:
         04:f4:cf:1a:46:56:69:20:b1:c2:bb:9a:c7:12:1d:3d:c8:c1:
         1a:70:08:a8:b2:62:11:44:d5:08:bc:5e:29:90:6d:d3:ca:77:
         ec:75:87:6c:62:c9:e5:ad:cc:2b:0b:69:4a:ea:9b:01:c9:75:
         7b:0d:c0:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtPbb3EdJ9/NTMioaQ8PNMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI5NTY2N2IxNWNiYTdjYWE3NDE1Mjc0ODQ0NzM4NGZiZTAz
Yjg5M2EwHhcNMjUwNjE0MDcwMDUwWhcNMjUwNjE1MDcwMDUwWjAzMTEwLwYDVQQD
EygzMTRjOTljNWE4MGQzN2JjODc2MDFkOGIxMmY5ZGQ5NGFjNzA2N2FiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozoMn/AU/N1cF4X4m8GqPv8NvCo+
UlCezf+RQs5kAlaOFbGfpDKURasrIMPFKBFxYcju45ZnP1GzkQy6JvZq26zWYOiv
lXXdNxnQDkZ149YHKv+XuYHDFb2gZc0/Bj1qcSmsiJs55TEeU3jQQIHJUo0ajsNt
zmujO9c5H1h4ob8PllRv19JzlfAuaShbzjjZwlffWc0NV6M954+kMHQYsauAgYNu
0BGWjLDaSAJD9bEv+l/uLrCQdmHvH/Gcn/MrL//amheyMsMNMZpyvSHmuUZ/d21/
DIas9/ykw4LVSfBdtgYYcx0TubrCaU5Z9ve1P8nYn+35APn9LgV7iEoHPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDFMmcWoDTe8h2AdixL53ZSscGerMB8GA1UdIwQY
MBaAFLlWZ7FcunyqdBUnSERzhPvgO4k6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdVZabnNWeTZmS3AwRlNkSVJIT0UtLUE3aVRvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC81NDBjMDMtYmE4My00OTcxLTg5ODEt
NzQ0ZGNkMDE0ZmE0LzEvdVZabnNWeTZmS3AwRlNkSVJIT0UtLUE3aVRvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC81NDBjMDMtYmE4My00OTcxLTg5ODEtNzQ0ZGNkMDE0ZmE0
LzEvdVZabnNWeTZmS3AwRlNkSVJIT0UtLUE3aVRvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeaUXn9/q
C5/5iz+ucHGw0RCchWJSCBYAoSTpxU2jtjnGhyfV7VtpE8GkkTlsiv8kCyKDckUX
ENpBU3yYZVHIMJQ4UiL+1NlbfatJl3nhiH3iRByf9ln3NZ5aslZAJjPDhjSUg5ZB
PViT5Q0tY+4ElPgQMMEl1yyftzw07RRgfHBAjHf/nhwNZBnEYAyPmM41H3k23O9T
PUFJd2I3umS0TJ+4mYV46hGZ8+MOShN4VVbsaFe+Ur7D0ConM+TM/kvEbgny+m8k
BPTPGkZWaSCxwruaxxIdPcjBGnAIqLJiEUTVCLxeKZBt08p37HWHbGLJ5a3MKwtp
SuqbAcl1ew3AkA==
-----END CERTIFICATE-----