Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft
File:                     7fBEw2PXiOdDNOE24DzH_R5JohY.mft (raw, json)
Hash identifier:          slvtFMAKR+ZJ38iTVwb3gzrw2jWnUiac3Iwz8KFyab0=
Subject key identifier:   2E:FB:C5:C2:92:61:DA:A3:AD:B4:4F:30:CC:FF:B2:47:0E:9D:23:64
Authority key identifier: ED:F0:44:C3:63:D7:88:E7:43:34:E1:36:E0:3C:C7:FD:1E:49:A2:16
Certificate issuer:       /CN=edf044c363d788e74334e136e03cc7fd1e49a216
Certificate serial:       01976D3D588FED81B248A1E3C15A4648863B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft
Manifest number:          0805
Signing time:             Sat 14 Jun 2025 07:00:26 +0000
Manifest this update:     Sat 14 Jun 2025 07:00:26 +0000
Manifest next update:     Sun 15 Jun 2025 07:00:26 +0000
Files and hashes:         1: 7fBEw2PXiOdDNOE24DzH_R5JohY.crl (hash: RcEVTHAS1hjXrfP6D7pt7xwkIlt/zz8bRCYFPtWlA+0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6d:3d:58:8f:ed:81:b2:48:a1:e3:c1:5a:46:48:86:3b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=edf044c363d788e74334e136e03cc7fd1e49a216
        Validity
            Not Before: Jun 14 07:00:26 2025 GMT
            Not After : Jun 15 07:00:26 2025 GMT
        Subject: CN=2efbc5c29261daa3adb44f30ccffb2470e9d2364
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:56:68:72:cf:95:d2:bb:95:45:5f:5b:58:21:
                    40:29:73:09:47:8f:f9:f2:aa:82:0b:8f:3e:8a:76:
                    e3:70:d1:9a:07:ae:18:8e:6a:c4:6a:4e:6c:58:6f:
                    20:d8:2c:cb:7a:af:09:a7:62:ed:42:2a:86:82:50:
                    53:4c:84:2f:d4:c7:11:d5:29:e1:e5:60:47:f8:58:
                    71:72:b9:fc:7b:f5:09:1f:0d:f3:68:5c:ae:16:ee:
                    6d:51:53:7d:b9:73:4e:21:42:42:4f:41:58:96:b7:
                    42:0e:62:71:32:32:4c:5b:c3:33:ef:a8:59:af:3f:
                    ae:70:a2:fa:35:85:69:e9:a9:fa:8e:02:0d:56:6c:
                    43:5b:00:24:db:58:d8:1b:43:75:2f:9a:dd:c5:cc:
                    94:3b:be:38:40:41:c6:d8:74:97:c2:ef:c5:a2:d9:
                    45:d5:ac:77:74:c0:87:83:03:d8:76:d2:16:0a:13:
                    5a:40:30:2b:bd:95:16:75:91:34:bb:4d:51:02:64:
                    9e:2c:36:48:76:45:39:b0:42:84:ca:a1:a0:0a:67:
                    ae:c0:6f:08:df:af:e1:f3:61:40:d3:bf:3c:81:f3:
                    df:60:ce:ba:b3:52:98:74:3e:d2:31:29:12:5d:2f:
                    01:14:34:89:c8:aa:68:63:d2:79:5c:24:30:da:e6:
                    b8:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:FB:C5:C2:92:61:DA:A3:AD:B4:4F:30:CC:FF:B2:47:0E:9D:23:64
            X509v3 Authority Key Identifier:
                keyid:ED:F0:44:C3:63:D7:88:E7:43:34:E1:36:E0:3C:C7:FD:1E:49:A2:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7fBEw2PXiOdDNOE24DzH_R5JohY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/340491-d1d2-432c-956d-2fe1594ddc9c/1/7fBEw2PXiOdDNOE24DzH_R5JohY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:04:ee:b1:c9:0f:35:3b:39:ef:b3:71:b3:57:e8:45:0c:32:
         7c:70:5a:83:b1:9b:39:24:52:b6:39:2a:77:a5:a3:46:6e:cd:
         53:8a:07:92:61:da:2a:40:72:8e:cb:eb:f7:15:a7:11:a6:10:
         0a:75:41:b0:0e:f8:85:42:9c:4c:54:67:37:e4:b2:03:41:1a:
         e4:7d:d6:b5:87:47:43:1c:5c:aa:5c:aa:ad:bf:d7:52:aa:80:
         28:17:6a:69:7f:be:ed:a2:5a:cb:e0:aa:a3:13:46:38:8f:bd:
         8e:1a:d4:94:f4:d2:6e:f3:fc:3c:44:7d:3b:47:00:49:44:c9:
         8e:22:2d:e7:c1:ca:ae:37:25:23:32:ca:25:08:7f:f6:49:ff:
         8b:a1:a2:c4:56:cd:66:39:6f:b5:80:11:5a:1a:29:b0:ad:c2:
         2e:b0:26:22:3f:e3:ca:0f:32:9d:08:4c:e7:a8:f2:8d:e0:02:
         17:95:23:8c:b9:d6:5c:b4:e7:17:7c:d5:d8:f5:7a:43:d3:e7:
         1d:bb:bf:9f:44:40:87:0f:d1:46:a8:db:eb:85:59:1b:3c:2b:
         28:39:64:46:0e:f0:ff:52:23:57:6c:68:1e:5c:23:e7:48:8f:
         ff:57:81:87:45:21:ea:19:46:2a:bd:92:67:cf:00:b4:f1:92:
         2c:37:0b:b6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdtPViP7YGySKHjwVpGSIY7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkZjA0NGMzNjNkNzg4ZTc0MzM0ZTEzNmUwM2NjN2ZkMWU0
OWEyMTYwHhcNMjUwNjE0MDcwMDI2WhcNMjUwNjE1MDcwMDI2WjAzMTEwLwYDVQQD
EygyZWZiYzVjMjkyNjFkYWEzYWRiNDRmMzBjY2ZmYjI0NzBlOWQyMzY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVZocs+V0ruVRV9bWCFAKXMJR4/5
8qqCC48+inbjcNGaB64YjmrEak5sWG8g2CzLeq8Jp2LtQiqGglBTTIQv1McR1Snh
5WBH+Fhxcrn8e/UJHw3zaFyuFu5tUVN9uXNOIUJCT0FYlrdCDmJxMjJMW8Mz76hZ
rz+ucKL6NYVp6an6jgINVmxDWwAk21jYG0N1L5rdxcyUO744QEHG2HSXwu/FotlF
1ax3dMCHgwPYdtIWChNaQDArvZUWdZE0u01RAmSeLDZIdkU5sEKEyqGgCmeuwG8I
36/h82FA0788gfPfYM66s1KYdD7SMSkSXS8BFDSJyKpoY9J5XCQw2ua4OwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFC77xcKSYdqjrbRPMMz/skcOnSNkMB8GA1UdIwQY
MBaAFO3wRMNj14jnQzThNuA8x/0eSaIWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN2ZCRXcyUFhpT2RETk9FMjREekhfUjVKb2hZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8zNDA0OTEtZDFkMi00MzJjLTk1NmQt
MmZlMTU5NGRkYzljLzEvN2ZCRXcyUFhpT2RETk9FMjREekhfUjVKb2hZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYi8zNDA0OTEtZDFkMi00MzJjLTk1NmQtMmZlMTU5NGRkYzlj
LzEvN2ZCRXcyUFhpT2RETk9FMjREekhfUjVKb2hZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABgTusckP
NTs577Nxs1foRQwyfHBag7GbOSRStjkqd6WjRm7NU4oHkmHaKkByjsvr9xWnEaYQ
CnVBsA74hUKcTFRnN+SyA0Ea5H3WtYdHQxxcqlyqrb/XUqqAKBdqaX++7aJay+Cq
oxNGOI+9jhrUlPTSbvP8PER9O0cASUTJjiIt58HKrjclIzLKJQh/9kn/i6GixFbN
ZjlvtYARWhopsK3CLrAmIj/jyg8ynQhM56jyjeACF5UjjLnWXLTnF3zV2PV6Q9Pn
Hbu/n0RAhw/RRqjb64VZGzwrKDlkRg7w/1IjV2xoHlwj50iP/1eBh0Uh6hlGKr2S
Z88AtPGSLDcLtg==
-----END CERTIFICATE-----