Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/1b1be4-bcc0-4b21-80df-203dcbf7d3fc/1/lPzeRTBb0MyNJdfG7cpxkTb1YG0.mft
File:                     lPzeRTBb0MyNJdfG7cpxkTb1YG0.mft (raw, json)
Hash identifier:          iQ7rp/YJAFJxpGfTeR48IGfkw2YIUCy2TE7s9kHqiIY=
Subject key identifier:   5E:2A:98:04:9F:09:1F:FE:12:23:C3:6C:3C:12:45:8B:7F:F3:47:EB
Authority key identifier: 94:FC:DE:45:30:5B:D0:CC:8D:25:D7:C6:ED:CA:71:91:36:F5:60:6D
Certificate issuer:       /CN=94fcde45305bd0cc8d25d7c6edca719136f5606d
Certificate serial:       01901CD869B64477C749AAFF181C358C650A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lPzeRTBb0MyNJdfG7cpxkTb1YG0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/56/1b1be4-bcc0-4b21-80df-203dcbf7d3fc/1/lPzeRTBb0MyNJdfG7cpxkTb1YG0.mft
Manifest number:          0F73
Signing time:             Sat 15 Jun 2024 17:01:03 +0000
Manifest this update:     Sat 15 Jun 2024 17:01:03 +0000
Manifest next update:     Sun 16 Jun 2024 17:01:03 +0000
Files and hashes:         1: lPzeRTBb0MyNJdfG7cpxkTb1YG0.crl (hash: M1iA+vCBUOqi5idttSuAUR4Uo11gX4t1P3T27JvihvQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/56/1b1be4-bcc0-4b21-80df-203dcbf7d3fc/1/lPzeRTBb0MyNJdfG7cpxkTb1YG0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/56/1b1be4-bcc0-4b21-80df-203dcbf7d3fc/1/lPzeRTBb0MyNJdfG7cpxkTb1YG0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lPzeRTBb0MyNJdfG7cpxkTb1YG0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1c:d8:69:b6:44:77:c7:49:aa:ff:18:1c:35:8c:65:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=94fcde45305bd0cc8d25d7c6edca719136f5606d
        Validity
            Not Before: Jun 15 17:01:03 2024 GMT
            Not After : Jun 16 17:01:03 2024 GMT
        Subject: CN=5e2a98049f091ffe1223c36c3c12458b7ff347eb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:ce:e2:86:cf:bb:63:13:6c:ba:56:0a:b9:0d:
                    44:94:94:61:fa:f6:1e:a0:27:42:1e:50:c9:f2:51:
                    4b:0f:29:d6:b5:77:e3:3c:a6:14:72:d5:8e:32:ac:
                    36:ee:f7:e9:77:54:ec:4b:d2:b0:7a:8f:df:d7:fe:
                    dc:e7:a1:a2:3f:96:b1:84:64:6c:e3:1c:b9:5b:7c:
                    a1:1b:e4:1c:41:ce:40:ec:3d:0d:b3:c9:6f:10:c1:
                    13:51:a1:bb:c8:e2:36:bb:92:73:1a:cb:85:ab:a0:
                    ec:ad:07:8a:47:ed:19:61:20:6c:9e:72:86:8a:4d:
                    60:45:22:33:31:fa:30:8b:a4:ba:9d:39:95:a1:55:
                    a6:1b:17:6f:6b:a9:46:d9:f9:30:9d:e2:b1:3c:ef:
                    0c:98:2f:3f:4d:99:9b:18:35:f9:81:ba:50:56:56:
                    21:00:74:86:c8:fe:1d:31:0d:4d:2b:cd:bf:23:77:
                    29:6f:8e:c2:06:f0:62:4a:b9:08:10:17:a7:fb:a3:
                    e6:9b:0f:25:8c:3f:84:d6:c9:86:ed:59:04:cb:f3:
                    e3:6e:52:78:b1:52:ae:61:64:5f:b1:24:85:b3:e3:
                    15:db:43:90:84:07:63:dc:68:25:f8:d3:7f:a2:ec:
                    43:ef:c6:b1:68:e7:01:b3:29:92:83:5d:05:de:2a:
                    d0:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:2A:98:04:9F:09:1F:FE:12:23:C3:6C:3C:12:45:8B:7F:F3:47:EB
            X509v3 Authority Key Identifier:
                keyid:94:FC:DE:45:30:5B:D0:CC:8D:25:D7:C6:ED:CA:71:91:36:F5:60:6D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lPzeRTBb0MyNJdfG7cpxkTb1YG0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/1b1be4-bcc0-4b21-80df-203dcbf7d3fc/1/lPzeRTBb0MyNJdfG7cpxkTb1YG0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/56/1b1be4-bcc0-4b21-80df-203dcbf7d3fc/1/lPzeRTBb0MyNJdfG7cpxkTb1YG0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:02:81:c4:1d:e2:27:64:27:e1:d8:a9:66:f0:c9:45:6d:ba:
         b8:9d:2d:10:b5:b1:c8:0b:5f:31:11:fc:86:c5:e7:61:7f:b7:
         78:be:1a:d5:5e:a2:d7:fe:fa:b6:38:ac:4e:6e:d6:4d:57:3c:
         02:b0:97:7d:a8:cd:c6:3d:3e:6c:20:49:6c:ad:a9:ec:d6:4a:
         32:bf:86:1b:91:62:dd:49:e4:ef:e3:f2:a7:9f:b4:d8:27:a9:
         95:81:76:64:25:be:19:07:7e:d2:3b:61:b5:c9:a9:5d:84:37:
         e4:2c:9b:81:6d:c2:f8:d0:69:0e:43:bc:a4:81:9e:db:a7:ef:
         f6:4e:74:e1:35:cd:10:5b:45:13:6c:d8:36:76:79:dd:2c:db:
         f3:33:5a:24:e7:28:5f:07:c0:be:02:9f:83:fc:0f:cb:b1:ce:
         70:d2:fb:0a:27:97:a5:9f:ec:bd:61:b4:cd:51:ef:0e:fb:ac:
         e0:90:c7:c5:9a:51:9c:1f:74:93:5a:c7:eb:b8:f7:a1:d9:7f:
         90:da:c5:5e:66:74:76:fd:5f:60:fa:c5:71:2a:bb:fc:c6:cd:
         8a:cc:c4:31:e2:54:9f:07:e0:ae:59:d7:bd:d2:56:e0:da:69:
         fb:c9:6b:ab:df:73:e4:6a:33:c1:9c:7c:f8:46:6f:07:27:da:
         83:69:dc:9b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAc2Gm2RHfHSar/GBw1jGUKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0ZmNkZTQ1MzA1YmQwY2M4ZDI1ZDdjNmVkY2E3MTkxMzZm
NTYwNmQwHhcNMjQwNjE1MTcwMTAzWhcNMjQwNjE2MTcwMTAzWjAzMTEwLwYDVQQD
Eyg1ZTJhOTgwNDlmMDkxZmZlMTIyM2MzNmMzYzEyNDU4YjdmZjM0N2ViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlc7ihs+7YxNsulYKuQ1ElJRh+vYe
oCdCHlDJ8lFLDynWtXfjPKYUctWOMqw27vfpd1TsS9Kweo/f1/7c56GiP5axhGRs
4xy5W3yhG+QcQc5A7D0Ns8lvEMETUaG7yOI2u5JzGsuFq6DsrQeKR+0ZYSBsnnKG
ik1gRSIzMfowi6S6nTmVoVWmGxdva6lG2fkwneKxPO8MmC8/TZmbGDX5gbpQVlYh
AHSGyP4dMQ1NK82/I3cpb47CBvBiSrkIEBen+6Pmmw8ljD+E1smG7VkEy/PjblJ4
sVKuYWRfsSSFs+MV20OQhAdj3Ggl+NN/ouxD78axaOcBsymSg10F3irQWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF4qmASfCR/+EiPDbDwSRYt/80frMB8GA1UdIwQY
MBaAFJT83kUwW9DMjSXXxu3KcZE29WBtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbFB6ZVJUQmIwTXlOSmRmRzdjcHhrVGIxWUcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8xYjFiZTQtYmNjMC00YjIxLTgwZGYt
MjAzZGNiZjdkM2ZjLzEvbFB6ZVJUQmIwTXlOSmRmRzdjcHhrVGIxWUcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ni8xYjFiZTQtYmNjMC00YjIxLTgwZGYtMjAzZGNiZjdkM2Zj
LzEvbFB6ZVJUQmIwTXlOSmRmRzdjcHhrVGIxWUcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjwKBxB3i
J2Qn4dipZvDJRW26uJ0tELWxyAtfMRH8hsXnYX+3eL4a1V6i1/76tjisTm7WTVc8
ArCXfajNxj0+bCBJbK2p7NZKMr+GG5Fi3Unk7+Pyp5+02CeplYF2ZCW+GQd+0jth
tcmpXYQ35CybgW3C+NBpDkO8pIGe26fv9k504TXNEFtFE2zYNnZ53Szb8zNaJOco
XwfAvgKfg/wPy7HOcNL7CieXpZ/svWG0zVHvDvus4JDHxZpRnB90k1rH67j3odl/
kNrFXmZ0dv1fYPrFcSq7/MbNiszEMeJUnwfgrlnXvdJW4Npp+8lrq99z5GozwZx8
+EZvByfag2ncmw==
-----END CERTIFICATE-----