Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
File:                     KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft (raw, json)
Hash identifier:          WDEJlhm9Fyw9UfvL17lrdpruIX0VbuU1pq0ntbSlKX0=
Subject key identifier:   CC:3C:A5:B4:65:21:1C:19:97:5E:DF:8C:D2:D8:94:D1:17:BF:42:A7
Authority key identifier: 28:FA:45:6D:1C:23:67:86:21:95:4F:FB:F4:93:A3:23:DE:2C:44:84
Certificate issuer:       /CN=28fa456d1c23678621954ffbf493a323de2c4484
Certificate serial:       01901DED8FACEA948F1274EFC7D957CC03DC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
Manifest number:          0701
Signing time:             Sat 15 Jun 2024 22:03:46 +0000
Manifest this update:     Sat 15 Jun 2024 22:03:46 +0000
Manifest next update:     Sun 16 Jun 2024 22:03:46 +0000
Files and hashes:         1: KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl (hash: 2Ky1iEf9A7aILcbipWcPcKDxnWnUD99XjIJIrcKrt3E=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ed:8f:ac:ea:94:8f:12:74:ef:c7:d9:57:cc:03:dc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=28fa456d1c23678621954ffbf493a323de2c4484
        Validity
            Not Before: Jun 15 22:03:46 2024 GMT
            Not After : Jun 16 22:03:46 2024 GMT
        Subject: CN=cc3ca5b465211c19975edf8cd2d894d117bf42a7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:d7:71:a6:b7:98:86:67:6b:69:b9:cb:b7:95:
                    6d:ff:7a:da:ad:7d:a3:83:a4:26:f4:b1:14:c8:3a:
                    f2:b0:7a:83:b4:0b:72:e8:cf:c4:2b:16:95:bf:b5:
                    7f:47:1c:db:83:b1:d4:fd:9a:3a:99:ae:db:38:84:
                    e3:c4:17:07:50:6f:8a:90:af:f0:f7:72:c2:94:bf:
                    db:54:24:0b:7c:7b:13:29:53:5b:b5:aa:7f:ff:f8:
                    17:6b:cf:bd:24:c5:29:e2:89:99:ad:1e:15:29:a8:
                    86:3c:1d:31:8a:12:84:41:55:41:88:0d:7e:73:2b:
                    05:15:fe:39:8f:ec:aa:32:7a:14:08:46:16:f0:aa:
                    01:60:02:a4:2c:63:34:cd:dd:bc:b3:d6:68:15:5d:
                    22:41:df:0f:df:d3:60:44:08:42:57:da:70:71:38:
                    18:e0:95:69:f0:44:cf:dc:55:2e:bb:b0:a3:0d:0e:
                    66:24:46:d7:0d:a3:90:78:49:05:94:14:17:49:3c:
                    0e:3a:65:a8:37:1c:35:d8:02:aa:87:b8:34:b1:91:
                    41:b7:a0:6d:19:6e:e2:82:71:7a:08:28:68:8b:41:
                    ba:8c:33:1d:9e:d7:1c:8d:a0:cb:c4:20:b8:b2:8b:
                    d9:84:c7:42:7b:b0:db:1c:43:bb:6b:5d:d7:dc:98:
                    15:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:3C:A5:B4:65:21:1C:19:97:5E:DF:8C:D2:D8:94:D1:17:BF:42:A7
            X509v3 Authority Key Identifier:
                keyid:28:FA:45:6D:1C:23:67:86:21:95:4F:FB:F4:93:A3:23:DE:2C:44:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPpFbRwjZ4YhlU_79JOjI94sRIQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/b1acab-9a8b-423e-b0bc-f45a2a634704/1/KPpFbRwjZ4YhlU_79JOjI94sRIQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         da:28:e0:a5:3d:bf:f6:0b:a1:36:9a:ac:32:7c:a1:32:8e:cf:
         34:c6:5e:31:3b:0d:fd:2c:a0:14:1f:cb:62:f4:dd:d6:57:3a:
         62:e0:7c:b9:3c:14:70:2e:66:9a:39:50:e5:3a:12:a8:89:f6:
         42:95:eb:76:42:b7:75:8c:6a:c8:fc:7d:49:8d:ea:c8:9f:dc:
         8c:b0:0e:db:51:9e:0f:f5:82:d3:82:9d:a1:3b:38:54:e2:4e:
         0d:7e:5a:c5:bb:81:88:22:c4:32:a4:b3:bc:ba:1f:43:b3:b8:
         1c:d2:c8:12:a7:61:98:a4:0f:85:07:84:59:d4:11:37:ed:7c:
         d5:6a:7b:f1:f9:4e:6c:84:02:3e:65:61:38:56:77:9d:5a:9a:
         27:ef:36:4c:fe:92:14:56:97:e1:7c:92:d0:8a:9b:4d:8b:6c:
         2a:7c:fa:92:00:94:16:96:aa:c9:74:65:ab:c2:05:4e:40:bb:
         1d:2a:6f:5f:5c:bf:27:32:37:47:b2:7d:eb:8b:ba:60:e6:b6:
         99:33:85:1e:28:2e:af:05:29:ec:ac:a5:a7:83:ac:fc:7e:18:
         01:74:56:dd:65:9c:03:31:bb:2a:de:80:4c:9a:1a:76:0c:60:
         2f:76:4f:c5:4c:c2:73:d1:85:00:21:4b:f2:da:5d:6c:60:16:
         a8:a3:9d:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd7Y+s6pSPEnTvx9lXzAPcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ZmE0NTZkMWMyMzY3ODYyMTk1NGZmYmY0OTNhMzIzZGUy
YzQ0ODQwHhcNMjQwNjE1MjIwMzQ2WhcNMjQwNjE2MjIwMzQ2WjAzMTEwLwYDVQQD
EyhjYzNjYTViNDY1MjExYzE5OTc1ZWRmOGNkMmQ4OTRkMTE3YmY0MmE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkNdxpreYhmdrabnLt5Vt/3rarX2j
g6Qm9LEUyDrysHqDtAty6M/EKxaVv7V/Rxzbg7HU/Zo6ma7bOITjxBcHUG+KkK/w
93LClL/bVCQLfHsTKVNbtap///gXa8+9JMUp4omZrR4VKaiGPB0xihKEQVVBiA1+
cysFFf45j+yqMnoUCEYW8KoBYAKkLGM0zd28s9ZoFV0iQd8P39NgRAhCV9pwcTgY
4JVp8ETP3FUuu7CjDQ5mJEbXDaOQeEkFlBQXSTwOOmWoNxw12AKqh7g0sZFBt6Bt
GW7ignF6CChoi0G6jDMdntccjaDLxCC4sovZhMdCe7DbHEO7a13X3JgVawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMw8pbRlIRwZl17fjNLYlNEXv0KnMB8GA1UdIwQY
MBaAFCj6RW0cI2eGIZVP+/SToyPeLESEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy9iMWFjYWItOWE4Yi00MjNlLWIwYmMt
ZjQ1YTJhNjM0NzA0LzEvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy9iMWFjYWItOWE4Yi00MjNlLWIwYmMtZjQ1YTJhNjM0NzA0
LzEvS1BwRmJSd2paNFlobFVfNzlKT2pJOTRzUklRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2ijgpT2/
9guhNpqsMnyhMo7PNMZeMTsN/SygFB/LYvTd1lc6YuB8uTwUcC5mmjlQ5ToSqIn2
QpXrdkK3dYxqyPx9SY3qyJ/cjLAO21GeD/WC04KdoTs4VOJODX5axbuBiCLEMqSz
vLofQ7O4HNLIEqdhmKQPhQeEWdQRN+181Wp78flObIQCPmVhOFZ3nVqaJ+82TP6S
FFaX4XyS0IqbTYtsKnz6kgCUFpaqyXRlq8IFTkC7HSpvX1y/JzI3R7J964u6YOa2
mTOFHigurwUp7Kylp4Os/H4YAXRW3WWcAzG7Kt6ATJoadgxgL3ZPxUzCc9GFACFL
8tpdbGAWqKOdFg==
-----END CERTIFICATE-----