Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
File:                     Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft (raw, json)
Hash identifier:          ghkC7WfGs7QFQRdZeB4q0or70JlWuysU37GJ1qCy6GE=
Subject key identifier:   80:FD:3B:E8:82:7E:76:B5:33:6E:4C:4E:D7:BE:9A:C8:DD:B4:C1:61
Authority key identifier: 0E:87:E5:D3:3A:9B:28:BE:7F:1A:F8:BC:9C:13:8B:15:80:90:F1:89
Certificate issuer:       /CN=0e87e5d33a9b28be7f1af8bc9c138b158090f189
Certificate serial:       01976CCFB6015E6EF592834F1FBF0A0A7CCF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
Manifest number:          03FB
Signing time:             Sat 14 Jun 2025 05:00:41 +0000
Manifest this update:     Sat 14 Jun 2025 05:00:41 +0000
Manifest next update:     Sun 15 Jun 2025 05:00:41 +0000
Files and hashes:         1: Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl (hash: sZTXYO8t1NaptE5cAJjLWTti+lI9pqWDcW1dm3uBGvI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:cf:b6:01:5e:6e:f5:92:83:4f:1f:bf:0a:0a:7c:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0e87e5d33a9b28be7f1af8bc9c138b158090f189
        Validity
            Not Before: Jun 14 05:00:41 2025 GMT
            Not After : Jun 15 05:00:41 2025 GMT
        Subject: CN=80fd3be8827e76b5336e4c4ed7be9ac8ddb4c161
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:6c:e0:52:ca:27:4a:c7:be:b4:d6:fe:fd:61:
                    43:71:3b:44:ee:a4:0d:a0:02:e2:8f:97:7a:f8:61:
                    be:55:5b:d7:b6:7e:8c:e2:44:83:29:ae:36:34:b9:
                    1a:31:32:96:67:f2:fa:a1:a4:bf:1a:a1:83:97:27:
                    2c:4c:9f:90:b8:8c:ef:a2:1d:44:5b:85:a4:17:31:
                    12:19:54:2a:4a:f5:d2:74:30:5e:4d:cc:3b:6e:c4:
                    6d:1a:3f:2b:a0:84:24:4d:71:df:d7:42:f0:59:d2:
                    ad:76:06:0c:d3:41:db:f0:6b:b6:16:51:09:58:db:
                    e9:72:aa:e7:36:fc:0b:d5:82:1a:bf:83:ab:f5:e7:
                    cf:c8:74:6a:cc:f1:00:6b:49:f4:e2:9b:87:14:68:
                    dd:db:bd:f0:fc:ed:7a:ee:8a:c7:94:0e:f5:63:7d:
                    7a:05:7d:70:90:6f:f6:b2:a6:92:d4:af:38:5b:21:
                    0a:6b:3b:6d:4e:1e:3b:49:b6:c6:77:a6:28:1e:96:
                    ef:51:62:99:bb:e7:80:16:07:6c:e3:a8:a1:06:af:
                    34:8b:be:a3:0f:80:21:5b:af:6b:c7:88:72:d7:9e:
                    d5:6d:aa:60:b8:89:f2:8e:36:39:4f:69:a5:69:46:
                    a8:d3:ad:9b:be:08:d2:80:eb:59:3b:e8:ce:9e:9c:
                    30:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:FD:3B:E8:82:7E:76:B5:33:6E:4C:4E:D7:BE:9A:C8:DD:B4:C1:61
            X509v3 Authority Key Identifier:
                keyid:0E:87:E5:D3:3A:9B:28:BE:7F:1A:F8:BC:9C:13:8B:15:80:90:F1:89

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/af/e0a25c-d527-4c75-a1bb-3ef640f937c4/1/Dofl0zqbKL5_Gvi8nBOLFYCQ8Yk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         28:6e:df:40:9b:df:2f:08:ea:06:66:6f:48:02:01:42:0f:8a:
         9b:24:db:13:de:cf:bc:65:00:4f:14:82:c3:25:77:52:9f:ec:
         66:86:58:70:8a:33:3f:76:a3:48:f8:f0:22:c9:a7:ca:3f:df:
         f3:39:b4:ff:61:ad:79:90:d9:6b:0a:8b:9e:ac:78:26:86:1f:
         15:aa:aa:6d:96:cb:bc:e0:13:b4:fc:f3:0c:da:16:b4:84:14:
         67:74:bb:8a:ed:d9:3b:1d:19:01:b9:d7:21:a2:4f:87:e8:bb:
         44:7a:2a:46:3d:87:d5:d1:d2:cd:54:95:38:65:22:96:8c:5e:
         e5:83:bd:a2:16:df:75:25:ae:29:cc:f9:f7:e4:d3:15:5d:53:
         87:3d:53:0a:b7:d5:cf:ec:77:3b:cb:43:d3:a5:33:2f:a6:46:
         5b:09:6b:1f:d9:22:db:82:6f:0a:2b:19:57:dc:91:ec:27:7c:
         89:e3:26:4a:51:10:68:b8:99:76:10:32:7c:07:c1:02:3d:ef:
         f7:ff:45:de:93:e1:04:3f:79:1b:e7:73:9f:a0:2f:a2:f4:32:
         03:78:bc:37:d1:00:ea:20:0b:94:92:56:db:92:95:cb:5b:71:
         b1:cf:f1:9b:59:ce:d5:19:a0:8b:a6:0d:3f:17:ac:9a:36:86:
         e6:ff:10:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsz7YBXm71koNPH78KCnzPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlODdlNWQzM2E5YjI4YmU3ZjFhZjhiYzljMTM4YjE1ODA5
MGYxODkwHhcNMjUwNjE0MDUwMDQxWhcNMjUwNjE1MDUwMDQxWjAzMTEwLwYDVQQD
Eyg4MGZkM2JlODgyN2U3NmI1MzM2ZTRjNGVkN2JlOWFjOGRkYjRjMTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGzgUsonSse+tNb+/WFDcTtE7qQN
oALij5d6+GG+VVvXtn6M4kSDKa42NLkaMTKWZ/L6oaS/GqGDlycsTJ+QuIzvoh1E
W4WkFzESGVQqSvXSdDBeTcw7bsRtGj8roIQkTXHf10LwWdKtdgYM00Hb8Gu2FlEJ
WNvpcqrnNvwL1YIav4Or9efPyHRqzPEAa0n04puHFGjd273w/O167orHlA71Y316
BX1wkG/2sqaS1K84WyEKazttTh47SbbGd6YoHpbvUWKZu+eAFgds46ihBq80i76j
D4AhW69rx4hy157VbapguInyjjY5T2mlaUao062bvgjSgOtZO+jOnpww8QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFID9O+iCfna1M25MTte+msjdtMFhMB8GA1UdIwQY
MBaAFA6H5dM6myi+fxr4vJwTixWAkPGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRG9mbDB6cWJLTDVfR3ZpOG5CT0xGWUNROFlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi9lMGEyNWMtZDUyNy00Yzc1LWExYmIt
M2VmNjQwZjkzN2M0LzEvRG9mbDB6cWJLTDVfR3ZpOG5CT0xGWUNROFlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi9lMGEyNWMtZDUyNy00Yzc1LWExYmItM2VmNjQwZjkzN2M0
LzEvRG9mbDB6cWJLTDVfR3ZpOG5CT0xGWUNROFlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKG7fQJvf
LwjqBmZvSAIBQg+KmyTbE97PvGUATxSCwyV3Up/sZoZYcIozP3ajSPjwIsmnyj/f
8zm0/2GteZDZawqLnqx4JoYfFaqqbZbLvOATtPzzDNoWtIQUZ3S7iu3ZOx0ZAbnX
IaJPh+i7RHoqRj2H1dHSzVSVOGUiloxe5YO9ohbfdSWuKcz59+TTFV1Thz1TCrfV
z+x3O8tD06UzL6ZGWwlrH9ki24JvCisZV9yR7Cd8ieMmSlEQaLiZdhAyfAfBAj3v
9/9F3pPhBD95G+dzn6AvovQyA3i8N9EA6iALlJJW25KVy1txsc/xm1nO1Rmgi6YN
PxesmjaG5v8QDQ==
-----END CERTIFICATE-----