Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
File:                     sTI2xNBokx4LRMmLKQqPqlVKA7k.mft (raw, json)
Hash identifier:          FxiTCjqQs1Yuyi5LaKMZJu/nIc2gZ6IKc6RsrLMF3P8=
Subject key identifier:   57:C8:1C:5C:9E:E1:F6:41:CC:0B:6F:CA:BB:8E:36:81:D6:49:F2:E8
Authority key identifier: B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9
Certificate issuer:       /CN=b13236c4d068931e0b44c98b290a8faa554a03b9
Certificate serial:       01976BBD1E75AE731087CEFA652C384E72D1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
Manifest number:          0355
Signing time:             Sat 14 Jun 2025 00:00:45 +0000
Manifest this update:     Sat 14 Jun 2025 00:00:45 +0000
Manifest next update:     Sun 15 Jun 2025 00:00:45 +0000
Files and hashes:         1: sTI2xNBokx4LRMmLKQqPqlVKA7k.crl (hash: R05OY+7IQiClp2yP07cPPku0wQvrRAbgB6J5z0Ae83Y=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 00:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6b:bd:1e:75:ae:73:10:87:ce:fa:65:2c:38:4e:72:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b13236c4d068931e0b44c98b290a8faa554a03b9
        Validity
            Not Before: Jun 14 00:00:45 2025 GMT
            Not After : Jun 15 00:00:45 2025 GMT
        Subject: CN=57c81c5c9ee1f641cc0b6fcabb8e3681d649f2e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:ab:62:db:38:2f:cc:b4:39:e9:31:97:4d:c2:
                    79:29:ad:45:49:83:92:e5:da:b7:17:95:ec:53:be:
                    55:a8:f7:b1:a8:f8:6d:da:1a:85:75:f4:e9:65:61:
                    3d:42:54:0e:4c:86:56:3a:cd:8d:bb:88:59:90:52:
                    d3:c5:9b:7a:51:fa:01:a9:bd:b8:f5:f7:ef:3c:dc:
                    e4:b9:93:66:b0:14:35:d8:42:54:e4:87:38:83:8a:
                    fe:23:bb:d0:82:0f:6a:f5:12:34:de:a7:1e:32:4c:
                    15:4a:e5:94:05:1a:0e:ec:71:6e:a4:77:1f:45:61:
                    50:57:0f:a6:58:21:02:ac:c2:c1:a6:d8:3f:4c:f2:
                    c5:7b:ed:e5:f9:7c:8e:d6:ca:5a:fc:16:1c:d2:9e:
                    85:bd:a1:cb:b7:16:be:f7:99:e4:f8:52:d1:af:bb:
                    df:7e:4d:15:ff:d2:94:c1:b3:1d:3f:60:48:92:8f:
                    85:b4:95:88:d3:2d:4a:28:26:4f:33:18:bf:a9:72:
                    75:3c:3e:9b:68:2f:23:d4:ac:5c:81:59:f7:b0:56:
                    29:03:d7:ff:53:c9:8a:7c:3d:db:86:5a:d6:fc:80:
                    60:6a:ce:42:4f:8b:1c:6d:7c:01:bf:1a:c2:4c:a7:
                    7c:5a:4b:35:17:4e:f5:3e:58:5b:0c:7a:6c:56:9b:
                    20:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:C8:1C:5C:9E:E1:F6:41:CC:0B:6F:CA:BB:8E:36:81:D6:49:F2:E8
            X509v3 Authority Key Identifier:
                keyid:B1:32:36:C4:D0:68:93:1E:0B:44:C9:8B:29:0A:8F:AA:55:4A:03:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sTI2xNBokx4LRMmLKQqPqlVKA7k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/5729fa-59dd-4346-8c00-2dd11984b35f/1/sTI2xNBokx4LRMmLKQqPqlVKA7k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:05:19:4d:3d:3d:6d:41:df:4d:04:24:a1:c1:1c:01:b1:fd:
         da:14:75:74:75:69:4e:f4:4b:02:5e:ee:e7:45:22:de:b3:98:
         23:ae:79:3d:92:a0:1d:cd:36:46:53:14:76:f9:10:e6:8b:3f:
         44:4d:35:0f:52:9d:59:d0:fe:8c:7c:c3:cb:15:23:3a:79:de:
         06:0c:86:35:40:40:3b:1a:84:c1:6c:4d:cc:ce:c4:d0:1d:8e:
         aa:f7:2a:47:c5:67:2f:45:2b:2a:a4:a5:16:33:7c:23:64:11:
         21:a1:9b:d4:75:7a:f8:52:96:c2:bd:42:c9:bb:bc:51:e0:a8:
         05:30:e6:0f:ef:19:93:84:3a:1f:8b:34:7f:56:b8:cf:fd:67:
         ef:d2:6f:90:6a:51:fa:62:95:94:0c:a9:f8:42:7d:52:1e:39:
         2d:5f:dc:cb:ec:63:88:26:de:47:59:7e:c3:4b:c2:6e:a9:fc:
         a2:d6:d5:a9:09:d9:b3:78:cc:fd:d5:d2:23:fa:d8:93:4a:64:
         42:81:64:ff:48:e6:93:50:86:38:34:cf:5e:27:e6:00:a9:d1:
         9b:e4:07:05:b9:ac:c0:9d:a0:64:d2:a2:af:03:6c:1d:6b:41:
         dd:ee:f9:84:55:45:99:fb:0d:8b:3a:a2:40:77:ce:fe:c1:17:
         f4:e0:2e:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdrvR51rnMQh876ZSw4TnLRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxMzIzNmM0ZDA2ODkzMWUwYjQ0Yzk4YjI5MGE4ZmFhNTU0
YTAzYjkwHhcNMjUwNjE0MDAwMDQ1WhcNMjUwNjE1MDAwMDQ1WjAzMTEwLwYDVQQD
Eyg1N2M4MWM1YzllZTFmNjQxY2MwYjZmY2FiYjhlMzY4MWQ2NDlmMmU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu6ti2zgvzLQ56TGXTcJ5Ka1FSYOS
5dq3F5XsU75VqPexqPht2hqFdfTpZWE9QlQOTIZWOs2Nu4hZkFLTxZt6UfoBqb24
9ffvPNzkuZNmsBQ12EJU5Ic4g4r+I7vQgg9q9RI03qceMkwVSuWUBRoO7HFupHcf
RWFQVw+mWCECrMLBptg/TPLFe+3l+XyO1spa/BYc0p6FvaHLtxa+95nk+FLRr7vf
fk0V/9KUwbMdP2BIko+FtJWI0y1KKCZPMxi/qXJ1PD6baC8j1KxcgVn3sFYpA9f/
U8mKfD3bhlrW/IBgas5CT4scbXwBvxrCTKd8Wks1F071PlhbDHpsVpsgSwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFfIHFye4fZBzAtvyruONoHWSfLoMB8GA1UdIwQY
MBaAFLEyNsTQaJMeC0TJiykKj6pVSgO5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1RJMnhOQm9reDRMUk1tTEtRcVBxbFZLQTdrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS81NzI5ZmEtNTlkZC00MzQ2LThjMDAt
MmRkMTE5ODRiMzVmLzEvc1RJMnhOQm9reDRMUk1tTEtRcVBxbFZLQTdrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS81NzI5ZmEtNTlkZC00MzQ2LThjMDAtMmRkMTE5ODRiMzVm
LzEvc1RJMnhOQm9reDRMUk1tTEtRcVBxbFZLQTdrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGAUZTT09
bUHfTQQkocEcAbH92hR1dHVpTvRLAl7u50Ui3rOYI655PZKgHc02RlMUdvkQ5os/
RE01D1KdWdD+jHzDyxUjOnneBgyGNUBAOxqEwWxNzM7E0B2OqvcqR8VnL0UrKqSl
FjN8I2QRIaGb1HV6+FKWwr1Cybu8UeCoBTDmD+8Zk4Q6H4s0f1a4z/1n79JvkGpR
+mKVlAyp+EJ9Uh45LV/cy+xjiCbeR1l+w0vCbqn8otbVqQnZs3jM/dXSI/rYk0pk
QoFk/0jmk1CGODTPXifmAKnRm+QHBbmswJ2gZNKirwNsHWtB3e75hFVFmfsNizqi
QHfO/sEX9OAuaw==
-----END CERTIFICATE-----