Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
File:                     sxU2q-49e1S4MDubxpqKq76XAOQ.mft (raw, json)
Hash identifier:          TBh8qFhDwxiYd4EW7yQzyTsFechYfjd1Bm/RP8m7YLI=
Subject key identifier:   40:74:6F:77:1B:B1:4B:E6:33:42:92:60:28:DD:FA:73:1E:01:DF:15
Authority key identifier: B3:15:36:AB:EE:3D:7B:54:B8:30:3B:9B:C6:9A:8A:AB:BE:97:00:E4
Certificate issuer:       /CN=b31536abee3d7b54b8303b9bc69a8aabbe9700e4
Certificate serial:       01901DED26C7AA2AAF7EFB4FA093E7C40363
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
Manifest number:          03DB
Signing time:             Sat 15 Jun 2024 22:03:19 +0000
Manifest this update:     Sat 15 Jun 2024 22:03:19 +0000
Manifest next update:     Sun 16 Jun 2024 22:03:19 +0000
Files and hashes:         1: sxU2q-49e1S4MDubxpqKq76XAOQ.crl (hash: Bp5jO83UrNQWvFds319f/T2Vgk/RawgqHsBxpo3h+cA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:03:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ed:26:c7:aa:2a:af:7e:fb:4f:a0:93:e7:c4:03:63
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b31536abee3d7b54b8303b9bc69a8aabbe9700e4
        Validity
            Not Before: Jun 15 22:03:19 2024 GMT
            Not After : Jun 16 22:03:19 2024 GMT
        Subject: CN=40746f771bb14be63342926028ddfa731e01df15
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:05:90:db:c9:f2:50:2e:8f:ed:77:89:27:a7:
                    da:21:02:93:9f:f3:95:35:3b:f1:4e:83:7a:62:8c:
                    67:9c:6f:96:67:c6:fa:7d:87:3e:fc:24:d5:81:a0:
                    c2:c9:85:e3:f2:50:c6:6c:7d:36:b2:3b:73:07:f5:
                    ac:e2:79:ed:7b:be:f3:1b:b8:7d:0a:1e:22:b7:98:
                    9a:f0:ed:d5:86:90:0d:89:a7:8c:04:c0:8c:a9:03:
                    78:56:f1:e4:81:b7:85:26:75:af:37:75:2d:a9:c3:
                    8b:ed:42:da:a1:d4:65:ab:71:3c:05:b5:3e:da:af:
                    80:1d:5a:3d:0f:40:f3:bb:06:96:8d:38:07:03:7f:
                    dc:13:0c:46:cf:2f:bb:c6:22:da:8e:c2:1d:56:4e:
                    3e:bb:71:9c:2f:d6:ab:d5:61:41:87:42:35:fc:eb:
                    1a:1c:cf:a8:f5:86:c4:d5:57:99:f1:87:db:9f:3f:
                    38:4a:05:29:c2:0a:69:dd:dd:64:ab:c1:f9:35:ed:
                    82:c3:e0:20:ce:04:84:f0:45:6a:d1:89:e8:68:0f:
                    21:67:c1:32:75:dc:41:11:d6:72:97:54:9b:85:e3:
                    9b:62:b2:4a:77:18:d5:10:f5:b6:82:34:88:9a:4e:
                    fc:21:46:27:3c:18:6a:40:4d:0a:af:6e:cf:31:66:
                    cd:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:74:6F:77:1B:B1:4B:E6:33:42:92:60:28:DD:FA:73:1E:01:DF:15
            X509v3 Authority Key Identifier:
                keyid:B3:15:36:AB:EE:3D:7B:54:B8:30:3B:9B:C6:9A:8A:AB:BE:97:00:E4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:b5:03:b5:c9:74:47:ad:e8:46:d9:bf:b7:4b:00:5d:a5:17:
         97:45:dc:20:3a:68:cb:af:3a:51:57:ad:7a:b4:29:23:87:c2:
         8f:2d:17:e2:3a:47:0c:0d:83:28:4c:48:91:8b:f9:f5:e1:cf:
         c5:2c:da:52:a3:eb:14:ed:93:84:10:3a:18:a8:48:d7:31:2a:
         37:53:41:f7:22:89:0c:6a:ad:7b:0b:71:a3:e5:42:9f:23:76:
         27:4b:a6:4c:b2:83:de:ad:e7:35:f1:74:98:28:95:fc:46:6b:
         1b:a5:49:40:cb:c4:0a:73:a3:23:32:f2:25:06:70:26:49:49:
         70:6a:aa:4a:a9:78:a1:24:68:d4:75:27:b6:7c:35:0c:60:a8:
         19:6b:69:8d:77:12:39:2e:13:b6:b4:37:42:bf:65:61:71:27:
         44:74:56:95:c3:ab:9c:e6:16:f6:42:2b:87:3b:1c:a7:4d:8d:
         f1:89:1a:9b:d3:b8:66:af:6e:8a:2c:00:f1:3b:42:f1:d3:20:
         fc:15:63:2c:74:46:45:79:06:92:17:e8:b7:03:c7:fb:c3:4a:
         a1:05:12:54:75:0f:32:ad:1d:6c:28:86:70:4c:16:12:56:19:
         c3:c0:d0:be:28:e5:c8:52:da:67:a2:a6:63:93:0e:b9:f2:aa:
         00:0d:46:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd7SbHqiqvfvtPoJPnxANjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMTUzNmFiZWUzZDdiNTRiODMwM2I5YmM2OWE4YWFiYmU5
NzAwZTQwHhcNMjQwNjE1MjIwMzE5WhcNMjQwNjE2MjIwMzE5WjAzMTEwLwYDVQQD
Eyg0MDc0NmY3NzFiYjE0YmU2MzM0MjkyNjAyOGRkZmE3MzFlMDFkZjE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQWQ28nyUC6P7XeJJ6faIQKTn/OV
NTvxToN6YoxnnG+WZ8b6fYc+/CTVgaDCyYXj8lDGbH02sjtzB/Ws4nnte77zG7h9
Ch4it5ia8O3VhpANiaeMBMCMqQN4VvHkgbeFJnWvN3UtqcOL7ULaodRlq3E8BbU+
2q+AHVo9D0DzuwaWjTgHA3/cEwxGzy+7xiLajsIdVk4+u3GcL9ar1WFBh0I1/Osa
HM+o9YbE1VeZ8Yfbnz84SgUpwgpp3d1kq8H5Ne2Cw+AgzgSE8EVq0YnoaA8hZ8Ey
ddxBEdZyl1SbheObYrJKdxjVEPW2gjSImk78IUYnPBhqQE0Kr27PMWbNLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEB0b3cbsUvmM0KSYCjd+nMeAd8VMB8GA1UdIwQY
MBaAFLMVNqvuPXtUuDA7m8aaiqu+lwDkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3hVMnEtNDllMVM0TUR1YnhwcUtxNzZYQU9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9kY2YzMmYtMzI2ZC00ZTQwLTg1YTMt
Y2NjODc3YjVhMzc1LzEvc3hVMnEtNDllMVM0TUR1YnhwcUtxNzZYQU9RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC9kY2YzMmYtMzI2ZC00ZTQwLTg1YTMtY2NjODc3YjVhMzc1
LzEvc3hVMnEtNDllMVM0TUR1YnhwcUtxNzZYQU9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEbUDtcl0
R63oRtm/t0sAXaUXl0XcIDpoy686UVeterQpI4fCjy0X4jpHDA2DKExIkYv59eHP
xSzaUqPrFO2ThBA6GKhI1zEqN1NB9yKJDGqtewtxo+VCnyN2J0umTLKD3q3nNfF0
mCiV/EZrG6VJQMvECnOjIzLyJQZwJklJcGqqSql4oSRo1HUntnw1DGCoGWtpjXcS
OS4TtrQ3Qr9lYXEnRHRWlcOrnOYW9kIrhzscp02N8Ykam9O4Zq9uiiwA8TtC8dMg
/BVjLHRGRXkGkhfotwPH+8NKoQUSVHUPMq0dbCiGcEwWElYZw8DQvijlyFLaZ6Km
Y5MOufKqAA1G6w==
-----END CERTIFICATE-----