Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/ffca18-9d76-409c-a0ec-7c4504982030/1/R8aO1Qu1PcroV-TIW8r9UT8ndNo.mft
File:                     R8aO1Qu1PcroV-TIW8r9UT8ndNo.mft (raw, json)
Hash identifier:          9bX0seVpuErnRPsvTBtvAuZ496F1faQ3e7PD+wivVYI=
Subject key identifier:   E4:7D:58:3C:4F:CD:8C:5B:94:3C:84:97:45:A9:BD:71:29:E1:C5:D7
Authority key identifier: 47:C6:8E:D5:0B:B5:3D:CA:E8:57:E4:C8:5B:CA:FD:51:3F:27:74:DA
Certificate issuer:       /CN=47c68ed50bb53dcae857e4c85bcafd513f2774da
Certificate serial:       018F874A3CCF0803F1027DBE4AF1B9111D41
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/R8aO1Qu1PcroV-TIW8r9UT8ndNo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/00/ffca18-9d76-409c-a0ec-7c4504982030/1/R8aO1Qu1PcroV-TIW8r9UT8ndNo.mft
Manifest number:          1174
Signing time:             Fri 17 May 2024 16:02:20 +0000
Manifest this update:     Fri 17 May 2024 16:02:20 +0000
Manifest next update:     Sat 18 May 2024 16:02:20 +0000
Files and hashes:         1: R8aO1Qu1PcroV-TIW8r9UT8ndNo.crl (hash: 623nv9Hs33hEJBd6q88w3PBcIa06ZadxwjyYlYyvA88=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/00/ffca18-9d76-409c-a0ec-7c4504982030/1/R8aO1Qu1PcroV-TIW8r9UT8ndNo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/00/ffca18-9d76-409c-a0ec-7c4504982030/1/R8aO1Qu1PcroV-TIW8r9UT8ndNo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/R8aO1Qu1PcroV-TIW8r9UT8ndNo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:02:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4a:3c:cf:08:03:f1:02:7d:be:4a:f1:b9:11:1d:41
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=47c68ed50bb53dcae857e4c85bcafd513f2774da
        Validity
            Not Before: May 17 16:02:20 2024 GMT
            Not After : May 18 16:02:20 2024 GMT
        Subject: CN=e47d583c4fcd8c5b943c849745a9bd7129e1c5d7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dc:d7:20:bf:0b:ec:35:20:b1:7b:10:22:0b:9a:
                    d4:1c:90:0d:dd:a3:83:0f:8e:b7:2a:01:3f:9e:55:
                    a5:a7:24:ba:55:3f:67:c5:f1:8b:fb:5a:ae:35:eb:
                    b8:eb:f9:1e:91:cb:a4:82:72:e2:d3:99:b9:a3:52:
                    c1:f9:fd:af:b5:37:0a:3b:17:40:c5:71:02:d0:c1:
                    01:ee:34:80:94:1e:98:bf:80:d5:d4:38:d1:5b:c0:
                    0f:7c:8c:b0:a7:c6:8f:c1:20:a0:45:81:2a:32:48:
                    7b:43:db:23:5e:dc:c3:fd:c5:61:78:cf:49:3f:4a:
                    1b:26:58:42:01:aa:b4:83:c4:d7:76:8d:83:48:19:
                    50:78:d3:1b:75:f4:75:fd:ac:37:ce:af:b7:0a:45:
                    53:35:48:94:d4:86:1a:c7:fc:f7:5c:4a:ec:d0:6c:
                    4e:85:52:37:96:0c:61:f1:99:1d:c3:48:a1:09:ef:
                    5d:03:0f:ff:1a:42:58:f9:f2:9e:e8:36:90:34:1f:
                    b6:0f:1f:05:42:2e:c1:b5:4c:b4:eb:2e:2f:fe:86:
                    ad:4a:c4:8e:07:de:60:f2:33:4d:b3:16:67:29:6e:
                    23:34:7b:23:1e:ab:ad:ab:9c:dd:10:a1:c0:04:8b:
                    05:60:b9:a7:df:79:03:17:bc:22:05:c7:93:4b:9b:
                    13:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:7D:58:3C:4F:CD:8C:5B:94:3C:84:97:45:A9:BD:71:29:E1:C5:D7
            X509v3 Authority Key Identifier:
                keyid:47:C6:8E:D5:0B:B5:3D:CA:E8:57:E4:C8:5B:CA:FD:51:3F:27:74:DA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R8aO1Qu1PcroV-TIW8r9UT8ndNo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ffca18-9d76-409c-a0ec-7c4504982030/1/R8aO1Qu1PcroV-TIW8r9UT8ndNo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/00/ffca18-9d76-409c-a0ec-7c4504982030/1/R8aO1Qu1PcroV-TIW8r9UT8ndNo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8f:b7:cf:49:22:00:6a:df:58:5a:1d:52:1d:d0:39:7d:00:fa:
         5f:a9:dd:ac:45:de:ba:a0:4a:94:eb:96:b8:f9:33:11:36:0d:
         96:ca:75:45:f8:0e:a2:36:5d:84:df:fa:70:fd:54:b0:de:d4:
         57:67:fc:90:07:a3:92:7c:e4:06:04:42:ba:a4:d1:89:ec:9b:
         02:27:82:28:2a:fd:0c:5c:6e:52:e8:d9:b5:cb:70:00:ea:60:
         1a:cd:7c:ab:e3:85:41:42:a2:50:c1:96:0e:a7:bf:ac:f7:22:
         15:41:3c:63:9f:29:b1:b3:4b:55:8d:f3:c8:c6:43:43:b6:70:
         5b:8f:4a:80:47:e4:9f:b2:fc:87:86:a4:6b:e3:e6:92:ae:f9:
         ce:45:4d:ae:1a:2b:ef:34:37:7b:cf:68:c1:b5:03:d2:88:29:
         16:a5:3f:eb:59:bf:34:b7:c6:af:40:9b:05:60:a7:3c:27:fc:
         4f:a7:71:e2:e4:d9:02:e4:2f:b9:cd:28:aa:ba:09:08:82:d6:
         14:0c:f6:2a:60:d7:b2:c3:31:b4:1e:3a:3f:f8:35:25:a4:ca:
         b6:63:dd:b6:fd:12:95:de:5e:f3:45:bb:4e:21:f3:c6:5c:f9:
         21:d9:12:17:fb:1c:09:73:86:98:e0:2d:d6:d6:5f:35:7a:e6:
         19:57:79:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSjzPCAPxAn2+SvG5ER1BMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ3YzY4ZWQ1MGJiNTNkY2FlODU3ZTRjODViY2FmZDUxM2Yy
Nzc0ZGEwHhcNMjQwNTE3MTYwMjIwWhcNMjQwNTE4MTYwMjIwWjAzMTEwLwYDVQQD
EyhlNDdkNTgzYzRmY2Q4YzViOTQzYzg0OTc0NWE5YmQ3MTI5ZTFjNWQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3NcgvwvsNSCxexAiC5rUHJAN3aOD
D463KgE/nlWlpyS6VT9nxfGL+1quNeu46/kekcukgnLi05m5o1LB+f2vtTcKOxdA
xXEC0MEB7jSAlB6Yv4DV1DjRW8APfIywp8aPwSCgRYEqMkh7Q9sjXtzD/cVheM9J
P0obJlhCAaq0g8TXdo2DSBlQeNMbdfR1/aw3zq+3CkVTNUiU1IYax/z3XErs0GxO
hVI3lgxh8Zkdw0ihCe9dAw//GkJY+fKe6DaQNB+2Dx8FQi7BtUy06y4v/oatSsSO
B95g8jNNsxZnKW4jNHsjHqutq5zdEKHABIsFYLmn33kDF7wiBceTS5sT4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOR9WDxPzYxblDyEl0WpvXEp4cXXMB8GA1UdIwQY
MBaAFEfGjtULtT3K6FfkyFvK/VE/J3TaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUjhhTzFRdTFQY3JvVi1USVc4cjlVVDhuZE5vLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC9mZmNhMTgtOWQ3Ni00MDljLWEwZWMt
N2M0NTA0OTgyMDMwLzEvUjhhTzFRdTFQY3JvVi1USVc4cjlVVDhuZE5vLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC9mZmNhMTgtOWQ3Ni00MDljLWEwZWMtN2M0NTA0OTgyMDMw
LzEvUjhhTzFRdTFQY3JvVi1USVc4cjlVVDhuZE5vLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj7fPSSIA
at9YWh1SHdA5fQD6X6ndrEXeuqBKlOuWuPkzETYNlsp1RfgOojZdhN/6cP1UsN7U
V2f8kAejknzkBgRCuqTRieybAieCKCr9DFxuUujZtctwAOpgGs18q+OFQUKiUMGW
Dqe/rPciFUE8Y58psbNLVY3zyMZDQ7ZwW49KgEfkn7L8h4aka+Pmkq75zkVNrhor
7zQ3e89owbUD0ogpFqU/61m/NLfGr0CbBWCnPCf8T6dx4uTZAuQvuc0oqroJCILW
FAz2KmDXssMxtB46P/g1JaTKtmPdtv0Sld5e80W7TiHzxlz5IdkSF/scCXOGmOAt
1tZfNXrmGVd57w==
-----END CERTIFICATE-----