Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/4e3fc3-048d-4b66-a951-3e2534583611/1/epHmw2HvM-JQ3YijH32Sfq03Xtk.mft
File:                     epHmw2HvM-JQ3YijH32Sfq03Xtk.mft (raw, json)
Hash identifier:          9uHwA5tKt+fhP8X4FTt3B4Fjr2tElSFTAzwv9iA8MzQ=
Subject key identifier:   62:EE:1C:6D:BA:12:E9:D6:69:67:B5:6A:BE:AA:8D:C5:C7:7F:39:B0
Authority key identifier: 7A:91:E6:C3:61:EF:33:E2:50:DD:88:A3:1F:7D:92:7E:AD:37:5E:D9
Certificate issuer:       /CN=7a91e6c361ef33e250dd88a31f7d927ead375ed9
Certificate serial:       01976F2CA08BE0BB4CA8F8D1648FF08315D3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/epHmw2HvM-JQ3YijH32Sfq03Xtk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a9/4e3fc3-048d-4b66-a951-3e2534583611/1/epHmw2HvM-JQ3YijH32Sfq03Xtk.mft
Manifest number:          050C
Signing time:             Sat 14 Jun 2025 16:01:24 +0000
Manifest this update:     Sat 14 Jun 2025 16:01:24 +0000
Manifest next update:     Sun 15 Jun 2025 16:01:24 +0000
Files and hashes:         1: epHmw2HvM-JQ3YijH32Sfq03Xtk.crl (hash: +sxGYjmWUqf75c1RwDMT5Yxs4swOKY/bhFlbjasJaFM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a9/4e3fc3-048d-4b66-a951-3e2534583611/1/epHmw2HvM-JQ3YijH32Sfq03Xtk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a9/4e3fc3-048d-4b66-a951-3e2534583611/1/epHmw2HvM-JQ3YijH32Sfq03Xtk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/epHmw2HvM-JQ3YijH32Sfq03Xtk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 12:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6f:2c:a0:8b:e0:bb:4c:a8:f8:d1:64:8f:f0:83:15:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7a91e6c361ef33e250dd88a31f7d927ead375ed9
        Validity
            Not Before: Jun 14 16:01:24 2025 GMT
            Not After : Jun 15 16:01:24 2025 GMT
        Subject: CN=62ee1c6dba12e9d66967b56abeaa8dc5c77f39b0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:40:37:b8:06:a6:d7:ab:ad:14:5a:0c:fb:1b:
                    e3:96:92:da:d4:45:33:03:d2:6c:28:19:59:88:65:
                    0a:23:06:3b:e0:87:1f:59:d9:2a:e6:67:33:08:f1:
                    24:00:6d:44:25:10:6a:dd:26:a2:60:99:03:c7:52:
                    a8:5e:a9:74:25:9f:c8:9c:8c:73:cc:e6:79:e6:bd:
                    34:0d:27:48:82:e8:fb:81:76:aa:88:63:d2:60:e8:
                    23:c4:25:9e:86:6d:e9:e2:f0:83:48:ba:46:97:6a:
                    57:92:6a:90:ca:26:1c:08:dd:c3:82:4e:8e:5b:e2:
                    c0:f1:f6:aa:4a:67:d5:3a:17:b4:65:d3:9d:21:51:
                    ad:b2:be:d6:2a:d2:bb:80:76:71:24:f0:8d:b9:48:
                    12:b0:91:fd:65:de:df:e3:3e:72:c6:43:ac:8f:93:
                    bb:c0:15:5a:c4:ea:e9:55:cf:81:aa:e3:04:dd:04:
                    a0:ea:ce:d0:f3:bb:b7:b2:95:3a:99:c1:64:55:72:
                    c6:42:c9:5f:70:36:a2:70:36:fd:9b:11:5f:43:b4:
                    c0:dd:20:ce:1f:d7:bb:6d:37:22:db:03:ca:c4:65:
                    a8:cd:2b:59:81:59:e3:48:8c:e6:39:79:60:75:22:
                    ff:68:6f:0a:3b:6a:cb:c0:b8:ba:26:96:3e:8e:02:
                    b9:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:EE:1C:6D:BA:12:E9:D6:69:67:B5:6A:BE:AA:8D:C5:C7:7F:39:B0
            X509v3 Authority Key Identifier:
                keyid:7A:91:E6:C3:61:EF:33:E2:50:DD:88:A3:1F:7D:92:7E:AD:37:5E:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/epHmw2HvM-JQ3YijH32Sfq03Xtk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/4e3fc3-048d-4b66-a951-3e2534583611/1/epHmw2HvM-JQ3YijH32Sfq03Xtk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/4e3fc3-048d-4b66-a951-3e2534583611/1/epHmw2HvM-JQ3YijH32Sfq03Xtk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         26:ee:22:18:33:ee:b0:ca:f3:f7:0b:5d:25:87:a4:57:a1:9f:
         31:58:b3:68:61:4e:05:29:70:15:31:e7:49:64:47:b8:f8:86:
         8d:e2:02:91:28:f8:ec:2a:91:10:d7:e9:ea:c1:76:ee:91:18:
         6f:52:ea:6a:fa:66:03:b8:8d:eb:48:6d:b2:5d:98:62:bc:10:
         04:8e:84:8e:9f:82:73:a6:95:5c:da:33:e3:31:42:a5:dd:7c:
         67:88:ed:fd:87:ca:7b:f5:81:44:67:fe:6b:00:bb:d9:1a:c6:
         23:e5:9c:84:af:67:8f:f5:86:75:0b:81:02:9e:a8:34:80:b8:
         07:76:df:89:15:35:a0:de:20:10:46:64:69:5f:05:a4:aa:94:
         e2:0a:d5:d7:92:da:6a:f9:f4:a2:06:fb:36:8c:a6:06:c8:d8:
         a3:c7:26:b7:57:33:e7:7a:82:6a:39:b3:8d:92:e0:13:40:20:
         7b:08:c3:76:fd:53:5a:31:a7:31:9d:2a:0b:6d:c9:9f:b8:52:
         a0:04:79:ef:be:65:74:79:ba:d0:d9:be:71:4f:c4:b7:69:5f:
         e1:8f:77:e1:62:de:5e:39:77:50:ff:db:94:4a:08:87:67:6b:
         0b:1f:d7:6e:af:46:11:dc:a0:30:cd:b8:80:c9:de:0f:88:98:
         15:41:73:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdvLKCL4LtMqPjRZI/wgxXTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdhOTFlNmMzNjFlZjMzZTI1MGRkODhhMzFmN2Q5MjdlYWQz
NzVlZDkwHhcNMjUwNjE0MTYwMTI0WhcNMjUwNjE1MTYwMTI0WjAzMTEwLwYDVQQD
Eyg2MmVlMWM2ZGJhMTJlOWQ2Njk2N2I1NmFiZWFhOGRjNWM3N2YzOWIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0A3uAam16utFFoM+xvjlpLa1EUz
A9JsKBlZiGUKIwY74IcfWdkq5mczCPEkAG1EJRBq3SaiYJkDx1KoXql0JZ/InIxz
zOZ55r00DSdIguj7gXaqiGPSYOgjxCWehm3p4vCDSLpGl2pXkmqQyiYcCN3Dgk6O
W+LA8faqSmfVOhe0ZdOdIVGtsr7WKtK7gHZxJPCNuUgSsJH9Zd7f4z5yxkOsj5O7
wBVaxOrpVc+BquME3QSg6s7Q87u3spU6mcFkVXLGQslfcDaicDb9mxFfQ7TA3SDO
H9e7bTci2wPKxGWozStZgVnjSIzmOXlgdSL/aG8KO2rLwLi6JpY+jgK5fwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGLuHG26EunWaWe1ar6qjcXHfzmwMB8GA1UdIwQY
MBaAFHqR5sNh7zPiUN2Iox99kn6tN17ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZXBIbXcySHZNLUpRM1lpakgzMlNmcTAzWHRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS80ZTNmYzMtMDQ4ZC00YjY2LWE5NTEt
M2UyNTM0NTgzNjExLzEvZXBIbXcySHZNLUpRM1lpakgzMlNmcTAzWHRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS80ZTNmYzMtMDQ4ZC00YjY2LWE5NTEtM2UyNTM0NTgzNjEx
LzEvZXBIbXcySHZNLUpRM1lpakgzMlNmcTAzWHRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJu4iGDPu
sMrz9wtdJYekV6GfMVizaGFOBSlwFTHnSWRHuPiGjeICkSj47CqRENfp6sF27pEY
b1LqavpmA7iN60htsl2YYrwQBI6Ejp+Cc6aVXNoz4zFCpd18Z4jt/YfKe/WBRGf+
awC72RrGI+WchK9nj/WGdQuBAp6oNIC4B3bfiRU1oN4gEEZkaV8FpKqU4grV15La
avn0ogb7NoymBsjYo8cmt1cz53qCajmzjZLgE0AgewjDdv1TWjGnMZ0qC23Jn7hS
oAR5775ldHm60Nm+cU/Et2lf4Y934WLeXjl3UP/blEoIh2drCx/Xbq9GEdygMM24
gMneD4iYFUFzNQ==
-----END CERTIFICATE-----