Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
File:                     TStBlpVqQxU0D4J9mSoPeikoTD4.mft (raw, json)
Hash identifier:          k+ABRGE4jsUgfNofGPQ7hV2OlsYzjhI7gcyOZBs8b28=
Subject key identifier:   ED:98:4A:35:24:C9:E4:6A:52:3E:05:A7:2B:75:45:E9:4C:B0:D3:E5
Authority key identifier: 4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E
Certificate issuer:       /CN=4d2b4196956a4315340f827d992a0f7a29284c3e
Certificate serial:       018F8891F40417BC9B35EC7B579471A598A9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
Manifest number:          0E08
Signing time:             Fri 17 May 2024 22:00:17 +0000
Manifest this update:     Fri 17 May 2024 22:00:17 +0000
Manifest next update:     Sat 18 May 2024 22:00:17 +0000
Files and hashes:         1: TStBlpVqQxU0D4J9mSoPeikoTD4.crl (hash: 0R9SfrwuuAualk4t8/3IJzqbGfdDJJrTzmB1hW2z/Qo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:88:91:f4:04:17:bc:9b:35:ec:7b:57:94:71:a5:98:a9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4d2b4196956a4315340f827d992a0f7a29284c3e
        Validity
            Not Before: May 17 22:00:17 2024 GMT
            Not After : May 18 22:00:17 2024 GMT
        Subject: CN=ed984a3524c9e46a523e05a72b7545e94cb0d3e5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:55:5b:f7:6e:83:66:06:ee:c5:d2:31:ae:c4:
                    a2:4a:8d:57:f6:d8:fd:d8:77:bf:cb:cb:19:6b:58:
                    f2:65:b7:c9:64:58:a8:ce:5c:f2:84:62:2b:30:7c:
                    33:15:57:ec:5a:c2:23:7a:dd:2a:67:ad:df:33:ba:
                    d2:fc:81:41:f9:94:04:ce:96:73:af:5f:4f:06:0d:
                    c2:2f:b2:ce:f3:eb:73:c3:b9:11:c1:85:8e:94:b1:
                    4e:fc:6b:0a:b4:71:6e:0a:a4:f2:db:a0:d8:a3:66:
                    23:67:98:9f:e4:88:a8:60:77:06:69:af:f7:21:88:
                    dd:2a:d8:6a:29:90:db:2b:0f:9c:a0:6a:f6:dd:29:
                    4d:29:51:b4:90:cb:89:3d:87:a0:8a:18:cc:3d:6e:
                    6c:81:46:bf:ad:70:76:ea:62:06:1f:ec:dd:8b:9a:
                    ca:b2:f4:ae:8b:73:0e:19:51:cd:70:97:12:eb:ba:
                    60:7f:ad:54:a5:8e:0d:19:0a:4f:87:75:68:dd:c2:
                    3a:4a:d3:1d:fe:7a:9f:9f:93:42:8e:66:3f:75:5c:
                    44:d3:5c:ea:7d:e1:7f:e9:b6:9a:65:ae:c9:bd:ac:
                    97:9d:7c:bc:e5:c0:89:f3:4d:e7:bc:4a:04:48:a7:
                    75:ae:5f:50:fc:14:3f:2b:4b:ac:28:83:18:e9:4a:
                    ef:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:98:4A:35:24:C9:E4:6A:52:3E:05:A7:2B:75:45:E9:4C:B0:D3:E5
            X509v3 Authority Key Identifier:
                keyid:4D:2B:41:96:95:6A:43:15:34:0F:82:7D:99:2A:0F:7A:29:28:4C:3E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TStBlpVqQxU0D4J9mSoPeikoTD4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3c02b9-25c4-488f-a975-455a0a61f1ea/1/TStBlpVqQxU0D4J9mSoPeikoTD4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:c6:46:1a:f5:31:74:7d:1e:47:9d:84:5b:81:f0:49:1f:e9:
         a7:1b:3d:72:3f:59:1f:4f:f3:32:3a:0f:7a:b9:6d:ba:55:3e:
         9a:79:ed:a7:9e:5f:4b:1f:1a:c9:aa:a8:bb:df:e4:69:bb:1a:
         1c:9d:7c:9e:04:02:0a:21:f4:aa:38:19:f3:0e:d4:bc:f1:b6:
         4e:c9:05:80:4c:dc:1c:a7:59:72:8a:b8:41:7c:b5:48:17:94:
         6b:9a:0a:e4:47:c1:ac:21:50:04:7f:bb:72:bd:37:66:dd:ea:
         7d:01:0e:9c:fc:b2:c5:eb:e5:e5:a8:e1:44:07:64:96:fb:ce:
         37:04:bb:d8:52:bf:03:a3:7d:62:4d:16:61:c7:41:09:ed:be:
         7e:d9:2b:c5:d1:37:78:c4:0f:e9:77:90:20:40:14:2a:0f:01:
         ac:04:c6:e7:ee:f8:29:a7:95:df:80:8d:67:ef:c5:0d:3e:d2:
         00:d0:16:cd:24:6d:38:b3:dc:01:e5:32:15:f7:31:2c:a9:f7:
         39:f9:a7:6a:75:3e:58:b7:ca:b7:57:87:35:dd:48:d6:60:93:
         e6:64:79:ce:bc:b9:df:99:3d:8c:a0:8c:7f:fd:73:58:ac:9c:
         ab:18:db:e1:62:8f:46:83:69:92:3f:42:ee:3c:50:32:b8:9e:
         f2:8c:1d:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+IkfQEF7ybNex7V5RxpZipMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRkMmI0MTk2OTU2YTQzMTUzNDBmODI3ZDk5MmEwZjdhMjky
ODRjM2UwHhcNMjQwNTE3MjIwMDE3WhcNMjQwNTE4MjIwMDE3WjAzMTEwLwYDVQQD
EyhlZDk4NGEzNTI0YzllNDZhNTIzZTA1YTcyYjc1NDVlOTRjYjBkM2U1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlFVb926DZgbuxdIxrsSiSo1X9tj9
2He/y8sZa1jyZbfJZFiozlzyhGIrMHwzFVfsWsIjet0qZ63fM7rS/IFB+ZQEzpZz
r19PBg3CL7LO8+tzw7kRwYWOlLFO/GsKtHFuCqTy26DYo2YjZ5if5IioYHcGaa/3
IYjdKthqKZDbKw+coGr23SlNKVG0kMuJPYegihjMPW5sgUa/rXB26mIGH+zdi5rK
svSui3MOGVHNcJcS67pgf61UpY4NGQpPh3Vo3cI6StMd/nqfn5NCjmY/dVxE01zq
feF/6baaZa7JvayXnXy85cCJ803nvEoESKd1rl9Q/BQ/K0usKIMY6UrvRQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO2YSjUkyeRqUj4Fpyt1RelMsNPlMB8GA1UdIwQY
MBaAFE0rQZaVakMVNA+CfZkqD3opKEw+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVFN0QmxwVnFReFUwRDRKOW1Tb1BlaWtvVEQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8zYzAyYjktMjVjNC00ODhmLWE5NzUt
NDU1YTBhNjFmMWVhLzEvVFN0QmxwVnFReFUwRDRKOW1Tb1BlaWtvVEQ0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMy8zYzAyYjktMjVjNC00ODhmLWE5NzUtNDU1YTBhNjFmMWVh
LzEvVFN0QmxwVnFReFUwRDRKOW1Tb1BlaWtvVEQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkMZGGvUx
dH0eR52EW4HwSR/ppxs9cj9ZH0/zMjoPerltulU+mnntp55fSx8ayaqou9/kabsa
HJ18ngQCCiH0qjgZ8w7UvPG2TskFgEzcHKdZcoq4QXy1SBeUa5oK5EfBrCFQBH+7
cr03Zt3qfQEOnPyyxevl5ajhRAdklvvONwS72FK/A6N9Yk0WYcdBCe2+ftkrxdE3
eMQP6XeQIEAUKg8BrATG5+74KaeV34CNZ+/FDT7SANAWzSRtOLPcAeUyFfcxLKn3
OfmnanU+WLfKt1eHNd1I1mCT5mR5zry535k9jKCMf/1zWKycqxjb4WKPRoNpkj9C
7jxQMrie8owdug==
-----END CERTIFICATE-----