Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft
File:                     mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft (raw, json)
Hash identifier:          yMoyoTqjEZYq3tQaQkEJn9v5W3/SlbkDwSZ8KEEOOjk=
Subject key identifier:   5B:E7:0F:76:B9:00:8A:D8:F3:67:35:5B:01:94:CD:D9:21:E0:70:A8
Authority key identifier: 99:C1:3C:B5:8D:2F:D3:1E:12:C5:E1:46:CC:6B:4F:2C:74:78:16:F4
Certificate issuer:       /CN=99c13cb58d2fd31e12c5e146cc6b4f2c747816f4
Certificate serial:       018F8749DCAB5C84111954F08E320BC07EBE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft
Manifest number:          04A3
Signing time:             Fri 17 May 2024 16:01:55 +0000
Manifest this update:     Fri 17 May 2024 16:01:55 +0000
Manifest next update:     Sat 18 May 2024 16:01:55 +0000
Files and hashes:         1: mcE8tY0v0x4SxeFGzGtPLHR4FvQ.crl (hash: Jl1Vp4Ki2flEiOUvAwXdy7Xezwpu7LwxqcKsLtZ7tOc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:01:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:49:dc:ab:5c:84:11:19:54:f0:8e:32:0b:c0:7e:be
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=99c13cb58d2fd31e12c5e146cc6b4f2c747816f4
        Validity
            Not Before: May 17 16:01:55 2024 GMT
            Not After : May 18 16:01:55 2024 GMT
        Subject: CN=5be70f76b9008ad8f367355b0194cdd921e070a8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:58:ad:25:5b:b0:bc:2d:cf:15:8c:97:07:fd:
                    6f:62:e9:8c:1e:9f:76:58:5e:29:d0:81:41:2f:7e:
                    eb:23:3f:87:7b:0a:63:4c:60:fc:01:b5:9f:a2:02:
                    76:1a:44:15:15:da:dd:73:a9:e4:e8:42:c8:a1:4a:
                    c9:9c:c5:7c:d8:f4:0a:2b:74:39:21:cd:b1:2b:27:
                    e9:9a:95:46:e7:50:df:81:43:cc:bb:b7:c3:30:0d:
                    d4:fc:49:c0:06:9b:34:52:bf:31:db:2b:fc:8f:ed:
                    3e:97:09:1d:5c:a9:d3:7b:47:9d:c3:71:24:26:f5:
                    83:98:6b:f0:1e:9a:31:7d:88:a5:8a:b2:d8:e4:25:
                    2c:8b:81:63:fb:c8:f1:ab:e6:bd:e4:fa:76:d0:b0:
                    23:b6:e4:57:1d:ed:2b:3b:94:ce:fe:13:55:8a:35:
                    25:8e:90:c2:0f:46:52:fe:5f:4f:7b:a9:4e:42:e0:
                    7e:83:41:d8:4e:a1:da:94:ac:a0:c1:8b:b1:26:6c:
                    37:ef:00:b5:31:67:30:90:c9:ca:db:1d:aa:cd:1a:
                    60:3c:9e:21:7a:df:8c:9d:e0:5f:61:b8:df:82:5c:
                    52:4e:81:30:01:04:40:66:5e:11:17:a0:e9:0f:4a:
                    63:b7:e8:91:9f:0e:78:fc:5e:71:a4:ee:77:a9:ea:
                    df:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:E7:0F:76:B9:00:8A:D8:F3:67:35:5B:01:94:CD:D9:21:E0:70:A8
            X509v3 Authority Key Identifier:
                keyid:99:C1:3C:B5:8D:2F:D3:1E:12:C5:E1:46:CC:6B:4F:2C:74:78:16:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/19/b92b30-8ada-475c-aa2a-567dc9a79fdd/1/mcE8tY0v0x4SxeFGzGtPLHR4FvQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:bf:7c:a8:d0:4f:9b:49:5d:3b:43:c3:2b:1f:d6:d6:58:5e:
         c9:dd:5f:d9:b9:9d:b2:51:6d:52:0c:5d:11:73:0b:fa:18:25:
         7e:1a:a4:b1:a7:bb:63:75:45:4e:8f:50:70:ee:4e:bf:83:e2:
         f4:0b:5e:68:12:6d:a6:89:2c:3b:12:71:04:e3:06:4c:9c:a0:
         4f:b1:95:d7:d3:81:2c:32:5c:38:88:ca:e0:00:f3:7d:0a:fd:
         07:14:e2:12:4b:91:9a:76:44:c0:d0:df:ef:3b:37:f4:f5:0c:
         60:16:98:4d:7a:71:62:df:b3:58:cb:95:d8:c6:30:26:45:17:
         3f:9a:32:f9:56:83:99:5c:c1:2b:3a:e9:7e:d7:ec:1a:f1:2f:
         13:4c:ca:65:05:3f:b3:26:73:a5:ac:86:d2:03:f8:5a:35:6c:
         c1:6f:20:53:ad:c4:23:dc:43:3f:96:cf:5d:f5:9b:f0:33:32:
         be:3a:b4:54:3c:3e:51:28:60:26:6e:e9:ed:f8:2d:98:4d:1c:
         b8:01:9d:15:da:57:e8:2f:56:6a:7f:bb:dc:41:fb:3d:5d:56:
         6c:a2:04:9e:3e:48:0d:2f:c0:9a:9b:67:94:0c:cc:e2:dd:a4:
         7a:c4:c7:d9:ad:cd:5c:cc:45:e9:a3:8a:6f:18:09:bb:fd:0b:
         f4:f2:9d:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSdyrXIQRGVTwjjILwH6+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5YzEzY2I1OGQyZmQzMWUxMmM1ZTE0NmNjNmI0ZjJjNzQ3
ODE2ZjQwHhcNMjQwNTE3MTYwMTU1WhcNMjQwNTE4MTYwMTU1WjAzMTEwLwYDVQQD
Eyg1YmU3MGY3NmI5MDA4YWQ4ZjM2NzM1NWIwMTk0Y2RkOTIxZTA3MGE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1FitJVuwvC3PFYyXB/1vYumMHp92
WF4p0IFBL37rIz+HewpjTGD8AbWfogJ2GkQVFdrdc6nk6ELIoUrJnMV82PQKK3Q5
Ic2xKyfpmpVG51DfgUPMu7fDMA3U/EnABps0Ur8x2yv8j+0+lwkdXKnTe0edw3Ek
JvWDmGvwHpoxfYilirLY5CUsi4Fj+8jxq+a95Pp20LAjtuRXHe0rO5TO/hNVijUl
jpDCD0ZS/l9Pe6lOQuB+g0HYTqHalKygwYuxJmw37wC1MWcwkMnK2x2qzRpgPJ4h
et+MneBfYbjfglxSToEwAQRAZl4RF6DpD0pjt+iRnw54/F5xpO53qerfsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFvnD3a5AIrY82c1WwGUzdkh4HCoMB8GA1UdIwQY
MBaAFJnBPLWNL9MeEsXhRsxrTyx0eBb0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWNFOHRZMHYweDRTeGVGR3pHdFBMSFI0RnZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9iOTJiMzAtOGFkYS00NzVjLWFhMmEt
NTY3ZGM5YTc5ZmRkLzEvbWNFOHRZMHYweDRTeGVGR3pHdFBMSFI0RnZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS9iOTJiMzAtOGFkYS00NzVjLWFhMmEtNTY3ZGM5YTc5ZmRk
LzEvbWNFOHRZMHYweDRTeGVGR3pHdFBMSFI0RnZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAI798qNBP
m0ldO0PDKx/W1lheyd1f2bmdslFtUgxdEXML+hglfhqksae7Y3VFTo9QcO5Ov4Pi
9AteaBJtpoksOxJxBOMGTJygT7GV19OBLDJcOIjK4ADzfQr9BxTiEkuRmnZEwNDf
7zs39PUMYBaYTXpxYt+zWMuV2MYwJkUXP5oy+VaDmVzBKzrpftfsGvEvE0zKZQU/
syZzpayG0gP4WjVswW8gU63EI9xDP5bPXfWb8DMyvjq0VDw+UShgJm7p7fgtmE0c
uAGdFdpX6C9Wan+73EH7PV1WbKIEnj5IDS/AmptnlAzM4t2kesTH2a3NXMxF6aOK
bxgJu/0L9PKdlw==
-----END CERTIFICATE-----