Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft
File:                     FyesE93M6XjmP3r186adq0mS1kU.mft (raw, json)
Hash identifier:          cXPFauW2RTDXTxRNsIWmqu6j/U1Rx0V8lkDgxTg7AcU=
Subject key identifier:   D6:13:AC:DC:E0:34:08:82:B2:31:88:11:B5:E7:F7:A6:5C:F0:64:79
Authority key identifier: 17:27:AC:13:DD:CC:E9:78:E6:3F:7A:F5:F3:A6:9D:AB:49:92:D6:45
Certificate issuer:       /CN=1727ac13ddcce978e63f7af5f3a69dab4992d645
Certificate serial:       01977B9E1228893BAAFCA5E0E674CEA7856A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/FyesE93M6XjmP3r186adq0mS1kU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft
Manifest number:          08F5
Signing time:             Tue 17 Jun 2025 02:00:46 +0000
Manifest this update:     Tue 17 Jun 2025 02:00:46 +0000
Manifest next update:     Wed 18 Jun 2025 02:00:46 +0000
Files and hashes:         1: FyesE93M6XjmP3r186adq0mS1kU.crl (hash: pLlOOrgY3zqnFdSAw4T76SAeBslJTQzLzUx4R7fG6Fg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/FyesE93M6XjmP3r186adq0mS1kU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Jun 2025 21:51:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:7b:9e:12:28:89:3b:aa:fc:a5:e0:e6:74:ce:a7:85:6a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1727ac13ddcce978e63f7af5f3a69dab4992d645
        Validity
            Not Before: Jun 17 02:00:46 2025 GMT
            Not After : Jun 18 02:00:46 2025 GMT
        Subject: CN=d613acdce0340882b2318811b5e7f7a65cf06479
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:58:67:db:65:99:18:2c:f6:6b:88:8f:96:86:
                    71:e0:72:a9:5d:da:53:0d:e2:31:cf:00:26:9d:f8:
                    13:bb:c0:74:ac:e0:2a:aa:37:9a:e0:7f:41:f4:da:
                    3d:62:bc:ec:f6:25:6c:01:44:36:39:e2:69:32:76:
                    81:a2:4a:f5:ab:e8:9b:ed:40:55:85:81:0c:85:77:
                    67:a4:6a:b7:42:45:df:d5:21:ab:10:13:ff:76:3f:
                    8d:d2:f2:64:55:14:19:d9:6d:28:bd:a4:5b:b5:b6:
                    64:a8:81:93:d2:92:a5:61:68:c4:42:c3:5c:0e:8a:
                    54:6d:7f:ca:2a:b9:75:49:78:af:12:42:c3:df:3f:
                    db:08:a7:dd:47:e2:79:07:c7:8c:1e:16:31:67:92:
                    d8:3d:ad:bb:8d:67:40:91:37:da:12:0c:af:8d:1d:
                    83:ef:ef:83:19:5c:63:a4:be:e9:ad:ad:ad:bb:e1:
                    62:80:38:4f:c7:d0:27:67:32:d8:37:65:68:47:93:
                    4c:9c:e9:fc:74:ca:e2:83:4d:d6:2f:ce:c6:13:60:
                    f3:ed:67:fc:a5:44:b3:dc:2b:8f:f8:b2:35:dc:82:
                    fb:93:91:70:95:63:77:72:05:ff:27:2e:6c:46:8c:
                    f5:76:2e:43:6b:7d:0e:73:3a:a3:5a:1c:74:60:0a:
                    f7:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:13:AC:DC:E0:34:08:82:B2:31:88:11:B5:E7:F7:A6:5C:F0:64:79
            X509v3 Authority Key Identifier:
                keyid:17:27:AC:13:DD:CC:E9:78:E6:3F:7A:F5:F3:A6:9D:AB:49:92:D6:45

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyesE93M6XjmP3r186adq0mS1kU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/a7573b-7fe4-4de8-8882-43bcdb740323/1/FyesE93M6XjmP3r186adq0mS1kU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:6b:f7:f1:70:f7:62:66:c7:b0:fe:a3:04:10:be:88:06:4c:
         7a:4f:8f:15:c7:74:87:bd:65:08:97:53:06:bf:8f:a1:e2:ec:
         b1:04:23:36:78:6d:5e:55:63:27:3f:a3:5b:ee:62:d4:d6:f1:
         d8:59:d1:e1:13:b5:f1:ee:29:91:c3:d1:99:51:db:33:1e:df:
         3c:d2:6a:ec:6e:3b:fb:a6:45:04:b6:e5:79:85:31:98:d4:0f:
         0c:04:8d:93:f1:06:53:4c:e1:2c:42:d0:e2:db:7b:f4:d0:46:
         c6:f1:1a:61:fa:52:b9:5b:ac:4b:da:50:a4:20:b4:90:68:d1:
         c1:7e:6d:ca:1a:90:61:3c:9a:ef:2e:80:5a:f6:2c:c1:b5:c0:
         5a:f6:ff:ab:bd:7f:e7:31:e0:78:4f:cb:1c:82:4a:d7:75:e2:
         0f:80:3c:f4:50:1d:44:5f:aa:42:e6:e3:50:74:e3:43:ef:20:
         c6:93:c4:bd:7c:f5:37:0a:7b:d4:52:38:42:8c:42:da:0a:e3:
         93:60:38:3b:99:5a:a5:53:e3:40:70:3f:99:b5:ed:86:e2:5d:
         78:2b:a9:6e:c2:16:7e:4e:ea:7a:13:7e:9d:39:67:fc:44:bf:
         5b:e1:22:92:23:9c:82:8e:47:0d:d8:35:e7:f6:54:70:1a:54:
         24:4d:7e:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd7nhIoiTuq/KXg5nTOp4VqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MjdhYzEzZGRjY2U5NzhlNjNmN2FmNWYzYTY5ZGFiNDk5
MmQ2NDUwHhcNMjUwNjE3MDIwMDQ2WhcNMjUwNjE4MDIwMDQ2WjAzMTEwLwYDVQQD
EyhkNjEzYWNkY2UwMzQwODgyYjIzMTg4MTFiNWU3ZjdhNjVjZjA2NDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp1hn22WZGCz2a4iPloZx4HKpXdpT
DeIxzwAmnfgTu8B0rOAqqjea4H9B9No9Yrzs9iVsAUQ2OeJpMnaBokr1q+ib7UBV
hYEMhXdnpGq3QkXf1SGrEBP/dj+N0vJkVRQZ2W0ovaRbtbZkqIGT0pKlYWjEQsNc
DopUbX/KKrl1SXivEkLD3z/bCKfdR+J5B8eMHhYxZ5LYPa27jWdAkTfaEgyvjR2D
7++DGVxjpL7pra2tu+FigDhPx9AnZzLYN2VoR5NMnOn8dMrig03WL87GE2Dz7Wf8
pUSz3CuP+LI13IL7k5FwlWN3cgX/Jy5sRoz1di5Da30OczqjWhx0YAr30wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNYTrNzgNAiCsjGIEbXn96Zc8GR5MB8GA1UdIwQY
MBaAFBcnrBPdzOl45j969fOmnatJktZFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnllc0U5M002WGptUDNyMTg2YWRxMG1TMWtVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9hNzU3M2ItN2ZlNC00ZGU4LTg4ODIt
NDNiY2RiNzQwMzIzLzEvRnllc0U5M002WGptUDNyMTg2YWRxMG1TMWtVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9hNzU3M2ItN2ZlNC00ZGU4LTg4ODItNDNiY2RiNzQwMzIz
LzEvRnllc0U5M002WGptUDNyMTg2YWRxMG1TMWtVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATGv38XD3
YmbHsP6jBBC+iAZMek+PFcd0h71lCJdTBr+PoeLssQQjNnhtXlVjJz+jW+5i1Nbx
2FnR4RO18e4pkcPRmVHbMx7fPNJq7G47+6ZFBLbleYUxmNQPDASNk/EGU0zhLELQ
4tt79NBGxvEaYfpSuVusS9pQpCC0kGjRwX5tyhqQYTya7y6AWvYswbXAWvb/q71/
5zHgeE/LHIJK13XiD4A89FAdRF+qQubjUHTjQ+8gxpPEvXz1Nwp71FI4QoxC2grj
k2A4O5lapVPjQHA/mbXthuJdeCupbsIWfk7qehN+nTln/ES/W+EikiOcgo5HDdg1
5/ZUcBpUJE1+5Q==
-----END CERTIFICATE-----