Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.mft
File:                     9efoeENmtHGmpODICA-PENrmalA.mft (raw, json)
Hash identifier:          mdToSfTxmlM6FlCwe8OahDRNA9ZMVt0SBNxpTaoCD8s=
Subject key identifier:   AE:F3:73:21:70:DE:C8:D9:4B:55:C2:4C:2D:E9:89:AD:BC:EA:88:58
Authority key identifier: F5:E7:E8:78:43:66:B4:71:A6:A4:E0:C8:08:0F:8F:10:DA:E6:6A:50
Certificate issuer:       /CN=f5e7e8784366b471a6a4e0c8080f8f10dae66a50
Certificate serial:       019893A46F236F52A805C1CCB9D520347604
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9efoeENmtHGmpODICA-PENrmalA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.mft
Manifest number:          0E2C
Signing time:             Sun 10 Aug 2025 11:01:23 +0000
Manifest this update:     Sun 10 Aug 2025 11:01:23 +0000
Manifest next update:     Mon 11 Aug 2025 11:01:23 +0000
Files and hashes:         1: 9efoeENmtHGmpODICA-PENrmalA.crl (hash: iPVifNpLyoOTKp1Ex8OpjNyCwFC9pxgakOLnZY8qWGM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9efoeENmtHGmpODICA-PENrmalA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 11:01:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:93:a4:6f:23:6f:52:a8:05:c1:cc:b9:d5:20:34:76:04
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f5e7e8784366b471a6a4e0c8080f8f10dae66a50
        Validity
            Not Before: Aug 10 11:01:23 2025 GMT
            Not After : Aug 11 11:01:23 2025 GMT
        Subject: CN=aef3732170dec8d94b55c24c2de989adbcea8858
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:10:04:ca:16:0f:a9:87:f2:18:2b:77:ec:03:
                    26:b1:8f:d8:6c:8e:ef:13:11:e6:c8:2c:9e:9f:97:
                    f5:28:bb:cd:38:9e:09:79:8e:45:d8:44:8f:22:fc:
                    6f:d0:8f:ce:ea:11:e1:cd:7b:f7:df:89:1f:bd:6b:
                    4f:7e:21:c6:a6:63:d6:6a:f6:ca:f1:eb:18:ad:6c:
                    a2:7f:fe:23:c5:3c:f8:26:a7:a9:98:ec:60:8d:73:
                    e1:3c:5c:15:5a:a4:e5:6a:14:b1:f1:71:50:49:fb:
                    55:46:ad:86:4c:3a:5a:45:07:d8:58:f9:5e:f3:45:
                    8e:f2:6f:ff:43:73:7c:ef:57:c8:59:31:c8:56:22:
                    29:70:af:88:a4:d5:a6:d1:7b:72:a1:1d:82:f6:51:
                    d7:5c:dd:a9:39:82:37:a2:18:a3:ec:06:b9:95:2c:
                    58:98:d3:88:3d:b3:10:94:9c:b6:75:2c:fe:80:52:
                    53:15:ab:83:07:e6:32:ac:d9:3a:3a:fe:35:9e:4e:
                    64:e4:3a:97:fa:36:8e:2f:75:ea:92:19:b9:db:0c:
                    8d:5b:dd:8a:c2:74:7b:ca:d7:14:91:ab:61:b6:ee:
                    2e:fa:9e:9f:5d:24:0a:cc:7e:d7:57:59:a8:2b:2a:
                    4d:04:63:2d:27:fb:62:0a:1e:81:dc:f4:e2:f4:89:
                    d5:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:F3:73:21:70:DE:C8:D9:4B:55:C2:4C:2D:E9:89:AD:BC:EA:88:58
            X509v3 Authority Key Identifier:
                keyid:F5:E7:E8:78:43:66:B4:71:A6:A4:E0:C8:08:0F:8F:10:DA:E6:6A:50

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9efoeENmtHGmpODICA-PENrmalA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/e0201f-8d18-48fd-a677-0d270462b7d7/1/9efoeENmtHGmpODICA-PENrmalA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         97:7b:9f:7c:11:a6:c1:e2:42:41:af:49:68:58:bc:0b:c8:14:
         ce:de:3f:ff:a6:48:d1:95:6b:a4:09:05:65:b3:02:42:10:bf:
         77:1d:f6:26:9e:9a:bb:41:94:7a:a7:6e:3f:a4:03:5c:48:2b:
         bb:e9:a2:d8:fe:f9:d3:f6:0a:67:54:71:98:83:5e:08:0d:f9:
         f9:d0:93:35:d4:b3:ae:bc:1b:0e:46:7e:7d:09:70:4e:09:6a:
         29:ae:e6:ad:3f:96:f0:3e:ae:8e:30:78:58:84:86:6f:71:2d:
         49:8b:a5:48:d1:1f:e7:00:47:1c:e3:1e:30:95:5c:9c:ad:48:
         f8:da:d9:2f:9c:ff:6d:81:47:af:b7:f9:28:30:42:4b:60:ce:
         e7:ca:3a:3b:1d:62:e0:7a:fb:ef:2e:15:ba:aa:db:6d:ca:79:
         d4:af:bc:13:86:e1:b8:59:20:4b:01:ba:3b:65:26:69:3b:78:
         5d:46:10:3f:9b:d5:ea:5f:24:2c:f9:c3:77:77:e9:e3:2a:5e:
         aa:95:0c:dd:d5:e9:fc:48:94:d9:61:68:02:38:6f:d8:ab:39:
         9e:a1:c1:a1:b0:6b:2a:16:22:1d:7d:57:95:6b:f9:5a:4c:a8:
         aa:af:f9:b5:d6:83:26:9e:42:2b:ec:9e:32:6a:74:95:c1:d4:
         49:83:b8:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiTpG8jb1KoBcHMudUgNHYEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY1ZTdlODc4NDM2NmI0NzFhNmE0ZTBjODA4MGY4ZjEwZGFl
NjZhNTAwHhcNMjUwODEwMTEwMTIzWhcNMjUwODExMTEwMTIzWjAzMTEwLwYDVQQD
EyhhZWYzNzMyMTcwZGVjOGQ5NGI1NWMyNGMyZGU5ODlhZGJjZWE4ODU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBAEyhYPqYfyGCt37AMmsY/YbI7v
ExHmyCyen5f1KLvNOJ4JeY5F2ESPIvxv0I/O6hHhzXv334kfvWtPfiHGpmPWavbK
8esYrWyif/4jxTz4JqepmOxgjXPhPFwVWqTlahSx8XFQSftVRq2GTDpaRQfYWPle
80WO8m//Q3N871fIWTHIViIpcK+IpNWm0XtyoR2C9lHXXN2pOYI3ohij7Aa5lSxY
mNOIPbMQlJy2dSz+gFJTFauDB+YyrNk6Ov41nk5k5DqX+jaOL3Xqkhm52wyNW92K
wnR7ytcUkathtu4u+p6fXSQKzH7XV1moKypNBGMtJ/tiCh6B3PTi9InV7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK7zcyFw3sjZS1XCTC3pia286ohYMB8GA1UdIwQY
MBaAFPXn6HhDZrRxpqTgyAgPjxDa5mpQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOWVmb2VFTm10SEdtcE9ESUNBLVBFTnJtYWxBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9lMDIwMWYtOGQxOC00OGZkLWE2Nzct
MGQyNzA0NjJiN2Q3LzEvOWVmb2VFTm10SEdtcE9ESUNBLVBFTnJtYWxBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9lMDIwMWYtOGQxOC00OGZkLWE2NzctMGQyNzA0NjJiN2Q3
LzEvOWVmb2VFTm10SEdtcE9ESUNBLVBFTnJtYWxBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl3uffBGm
weJCQa9JaFi8C8gUzt4//6ZI0ZVrpAkFZbMCQhC/dx32Jp6au0GUeqduP6QDXEgr
u+mi2P750/YKZ1RxmINeCA35+dCTNdSzrrwbDkZ+fQlwTglqKa7mrT+W8D6ujjB4
WISGb3EtSYulSNEf5wBHHOMeMJVcnK1I+NrZL5z/bYFHr7f5KDBCS2DO58o6Ox1i
4Hr77y4Vuqrbbcp51K+8E4bhuFkgSwG6O2UmaTt4XUYQP5vV6l8kLPnDd3fp4ype
qpUM3dXp/EiU2WFoAjhv2Ks5nqHBobBrKhYiHX1XlWv5Wkyoqq/5tdaDJp5CK+ye
Mmp0lcHUSYO4fA==
-----END CERTIFICATE-----