Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
File:                     lsgslDmkFHsuorWXz_xRALqNMnw.mft (raw, json)
Hash identifier:          3vYoFXK3v1LrTfLSsE1CSIW5blfumiUHjLGNxQp+OCQ=
Subject key identifier:   47:0E:C7:52:F3:40:94:12:5D:A4:A2:FB:5A:8C:0C:8D:F5:AB:68:E3
Authority key identifier: 96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C
Certificate issuer:       /CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
Certificate serial:       01901DEB3B6320C0DF6595AD22DCF423DE19
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
Manifest number:          0D86
Signing time:             Sat 15 Jun 2024 22:01:13 +0000
Manifest this update:     Sat 15 Jun 2024 22:01:13 +0000
Manifest next update:     Sun 16 Jun 2024 22:01:13 +0000
Files and hashes:         1: lsgslDmkFHsuorWXz_xRALqNMnw.crl (hash: Uu6bgaMIlMqxGEXkbFM9N64UhP1buY4KRX0cFmGx08M=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:01:13 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:eb:3b:63:20:c0:df:65:95:ad:22:dc:f4:23:de:19
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=96c82c9439a4147b2ea2b597cffc5100ba8d327c
        Validity
            Not Before: Jun 15 22:01:13 2024 GMT
            Not After : Jun 16 22:01:13 2024 GMT
        Subject: CN=470ec752f34094125da4a2fb5a8c0c8df5ab68e3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:f6:d1:9c:05:1a:d8:90:15:85:82:25:1d:b7:
                    53:70:dd:5a:70:eb:cd:5c:5f:ec:29:fd:d9:b3:5f:
                    46:63:f2:d1:58:b4:9c:fb:73:c2:de:8b:c6:08:24:
                    78:4b:5a:c2:4c:91:1f:9f:fd:ad:0f:8e:99:bd:21:
                    86:5f:4a:e6:bb:2a:fb:d5:2c:ee:12:63:bb:43:ed:
                    f7:42:c5:24:1e:24:f4:08:a9:a0:60:69:ac:ce:bd:
                    06:fc:a9:40:b1:88:a5:07:a4:d0:f5:1e:c8:6f:b8:
                    77:d1:0b:13:e6:67:78:c6:a2:c3:6f:32:5e:35:fc:
                    b7:57:8a:ec:de:06:ab:98:24:c2:27:57:c6:a4:7f:
                    69:da:15:25:5e:d2:32:4c:ea:07:f0:22:c6:d4:cb:
                    0e:3d:8f:54:f2:e8:32:f9:83:98:5c:fa:c0:a8:8b:
                    33:28:6f:ae:70:14:01:76:7c:cd:a2:11:a2:3f:52:
                    ac:7c:9b:ad:5e:7e:90:59:48:e3:4e:98:20:17:a9:
                    a4:03:e8:b0:f1:0f:87:3e:2d:bd:f5:05:8a:9a:33:
                    4d:01:e8:50:77:d1:93:1c:83:8c:22:9a:de:98:32:
                    3f:a3:3b:88:62:bf:a4:f2:0b:ea:43:7b:cb:f7:8b:
                    a4:14:a6:d3:d1:dc:76:ad:19:93:ae:3e:a5:1f:8f:
                    66:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:0E:C7:52:F3:40:94:12:5D:A4:A2:FB:5A:8C:0C:8D:F5:AB:68:E3
            X509v3 Authority Key Identifier:
                keyid:96:C8:2C:94:39:A4:14:7B:2E:A2:B5:97:CF:FC:51:00:BA:8D:32:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lsgslDmkFHsuorWXz_xRALqNMnw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b3c41a-492c-45e4-89d6-dcc4c45bf162/1/lsgslDmkFHsuorWXz_xRALqNMnw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         aa:8d:ec:37:4a:4e:5d:7a:24:e9:4c:fa:5a:f1:0e:02:b3:1a:
         8b:38:e9:c0:f5:2f:c9:c0:de:48:a5:7b:c2:5a:54:14:ac:42:
         bf:60:15:04:35:c4:e6:2f:ab:30:3a:ad:f5:dc:a3:4c:5e:aa:
         1b:3d:a5:8d:81:e5:3e:8a:ba:e9:bd:f0:e5:fa:fc:f2:e7:bf:
         82:8f:de:93:94:6c:2e:e7:87:7f:cd:ce:2b:18:ff:7b:b7:02:
         de:17:f7:1d:d5:2c:f7:a7:e9:75:8d:3f:97:fc:4f:73:c7:cb:
         3e:4f:f6:f8:66:fd:e8:1d:f3:c1:82:a8:62:ff:3e:01:7f:22:
         66:31:59:8b:ac:67:69:43:71:94:69:98:97:f6:61:c8:6a:c5:
         1a:80:4e:42:23:f8:20:83:e1:90:8f:70:62:70:a0:35:ca:10:
         0a:d3:83:bd:50:f9:06:66:d2:d0:f7:17:22:14:2a:c4:f8:46:
         74:7c:5a:c7:ce:6b:d4:f6:08:a5:af:75:23:ce:44:01:1c:08:
         72:d7:d3:5a:a9:36:bd:0b:87:d8:e2:2a:c5:26:8a:b2:57:3e:
         83:bf:96:3f:2a:f9:af:b2:1e:44:90:c2:61:2e:75:5f:fe:1c:
         61:05:04:d0:a2:fa:bd:44:6c:cd:64:63:9f:3b:08:ac:9e:93:
         ad:a8:fd:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd6ztjIMDfZZWtItz0I94ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2YzgyYzk0MzlhNDE0N2IyZWEyYjU5N2NmZmM1MTAwYmE4
ZDMyN2MwHhcNMjQwNjE1MjIwMTEzWhcNMjQwNjE2MjIwMTEzWjAzMTEwLwYDVQQD
Eyg0NzBlYzc1MmYzNDA5NDEyNWRhNGEyZmI1YThjMGM4ZGY1YWI2OGUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyPbRnAUa2JAVhYIlHbdTcN1acOvN
XF/sKf3Zs19GY/LRWLSc+3PC3ovGCCR4S1rCTJEfn/2tD46ZvSGGX0rmuyr71Szu
EmO7Q+33QsUkHiT0CKmgYGmszr0G/KlAsYilB6TQ9R7Ib7h30QsT5md4xqLDbzJe
Nfy3V4rs3garmCTCJ1fGpH9p2hUlXtIyTOoH8CLG1MsOPY9U8ugy+YOYXPrAqIsz
KG+ucBQBdnzNohGiP1KsfJutXn6QWUjjTpggF6mkA+iw8Q+HPi299QWKmjNNAehQ
d9GTHIOMIpremDI/ozuIYr+k8gvqQ3vL94ukFKbT0dx2rRmTrj6lH49m6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEcOx1LzQJQSXaSi+1qMDI31q2jjMB8GA1UdIwQY
MBaAFJbILJQ5pBR7LqK1l8/8UQC6jTJ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbHNnc2xEbWtGSHN1b3JXWHpfeFJBTHFOTW53LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS9iM2M0MWEtNDkyYy00NWU0LTg5ZDYt
ZGNjNGM0NWJmMTYyLzEvbHNnc2xEbWtGSHN1b3JXWHpfeFJBTHFOTW53Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS9iM2M0MWEtNDkyYy00NWU0LTg5ZDYtZGNjNGM0NWJmMTYy
LzEvbHNnc2xEbWtGSHN1b3JXWHpfeFJBTHFOTW53LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqo3sN0pO
XXok6Uz6WvEOArMaizjpwPUvycDeSKV7wlpUFKxCv2AVBDXE5i+rMDqt9dyjTF6q
Gz2ljYHlPoq66b3w5fr88ue/go/ek5RsLueHf83OKxj/e7cC3hf3HdUs96fpdY0/
l/xPc8fLPk/2+Gb96B3zwYKoYv8+AX8iZjFZi6xnaUNxlGmYl/ZhyGrFGoBOQiP4
IIPhkI9wYnCgNcoQCtODvVD5BmbS0PcXIhQqxPhGdHxax85r1PYIpa91I85EARwI
ctfTWqk2vQuH2OIqxSaKslc+g7+WPyr5r7IeRJDCYS51X/4cYQUE0KL6vURszWRj
nzsIrJ6Traj9iw==
-----END CERTIFICATE-----