Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
File:                     eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft (raw, json)
Hash identifier:          HoNpQ9yYbO4/WABDsI/BAUd1JngiJemTcntPX0gk4x0=
Subject key identifier:   9F:0A:EA:92:90:4B:57:E6:6E:C8:9E:E2:62:35:68:6E:8F:79:5C:5B
Authority key identifier: 78:59:66:9C:2B:7C:0B:25:C0:7E:79:32:B8:A1:F9:8B:0B:BE:DC:4C
Certificate issuer:       /CN=7859669c2b7c0b25c07e7932b8a1f98b0bbedc4c
Certificate serial:       019369DA80D5EFEBA3C8BE3EC4172B36A770
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
Manifest number:          1379
Signing time:             Tue 26 Nov 2024 19:02:27 +0000
Manifest this update:     Tue 26 Nov 2024 19:02:27 +0000
Manifest next update:     Wed 27 Nov 2024 19:02:27 +0000
Files and hashes:         1: eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl (hash: /VkKHDO9NO59uNBEBI2MPFvQ4wAWCDlaOZrgI5PizcA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:da:80:d5:ef:eb:a3:c8:be:3e:c4:17:2b:36:a7:70
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7859669c2b7c0b25c07e7932b8a1f98b0bbedc4c
        Validity
            Not Before: Nov 26 19:02:27 2024 GMT
            Not After : Nov 27 19:02:27 2024 GMT
        Subject: CN=9f0aea92904b57e66ec89ee26235686e8f795c5b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:ec:55:52:1e:8f:3d:0a:84:64:23:75:fe:1d:
                    e9:6d:eb:49:e0:fe:b0:3e:56:4d:a5:b9:a8:70:32:
                    57:d4:e3:95:e8:8c:2f:79:f6:3a:ec:d6:27:ab:00:
                    94:e4:31:eb:78:5d:d5:0c:22:c1:7e:22:c2:ab:8c:
                    a5:89:5e:10:92:81:5e:01:bb:ee:1c:80:77:df:af:
                    0a:81:63:44:1d:2e:61:12:5e:8c:45:df:f9:46:0b:
                    fe:1b:41:5f:18:a3:d3:5e:ff:8e:0f:a5:6f:d3:96:
                    8f:1c:54:49:e2:0a:f8:90:8b:de:e2:b8:10:fe:64:
                    2e:c0:26:b9:a1:86:5b:13:6d:dc:2d:f4:cc:0f:df:
                    c9:59:98:cd:9b:e4:c8:2b:5b:8e:a1:5a:a1:93:e1:
                    fb:34:37:64:7f:03:07:b3:ab:11:70:2f:c7:f5:79:
                    7d:ea:9d:e2:ce:7a:fe:94:8c:c0:50:ca:cb:a7:a2:
                    c7:0c:9a:ac:49:c5:c3:e1:24:03:f4:58:d3:22:03:
                    fb:83:54:b2:6c:1c:66:fd:62:1f:80:18:c6:4c:41:
                    d7:ec:90:48:d5:cc:2a:b3:ae:1c:7b:a3:94:5d:9b:
                    c6:e3:97:e2:c5:08:45:87:4c:e5:d4:9b:d6:86:e7:
                    59:89:f6:39:02:c9:97:90:d2:8e:19:b7:fb:50:82:
                    3e:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:0A:EA:92:90:4B:57:E6:6E:C8:9E:E2:62:35:68:6E:8F:79:5C:5B
            X509v3 Authority Key Identifier:
                keyid:78:59:66:9C:2B:7C:0B:25:C0:7E:79:32:B8:A1:F9:8B:0B:BE:DC:4C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/4b5495-1072-4ef3-8669-fc3559696246/1/eFlmnCt8CyXAfnkyuKH5iwu-3Ew.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b4:c7:42:63:c9:0a:7c:69:a4:f5:28:24:f0:b3:b3:02:a8:1d:
         7b:40:48:3f:ae:b4:50:36:85:ec:5c:1d:f1:00:b5:92:91:0d:
         4f:95:9d:cc:61:03:ec:4a:d3:94:4c:7f:08:f1:e3:eb:08:17:
         80:c9:b3:7c:43:77:04:0e:45:bd:9a:60:0c:54:60:b8:30:52:
         f8:f5:20:c8:16:01:0a:3b:43:d8:0c:0e:92:42:2d:24:95:eb:
         63:f0:4c:fc:84:29:2d:95:40:40:a1:81:36:d9:52:40:df:13:
         fa:0b:60:92:24:16:6b:ac:43:e6:4f:22:ed:51:dd:ef:69:d1:
         95:8c:09:29:27:a4:c8:26:f5:75:0c:60:e2:80:d7:6f:df:f3:
         59:f0:34:5a:41:41:8e:e5:de:fe:52:d6:ec:35:80:01:2c:e3:
         c3:8b:d8:48:75:8a:cc:ab:d3:1a:83:17:2e:db:b1:4b:d8:2e:
         09:70:17:53:59:62:0d:49:22:e9:4d:bd:23:07:6a:7e:9c:64:
         11:13:7f:94:1f:bf:6a:cb:5a:b1:0e:c6:54:3d:a8:be:36:6a:
         7b:f1:b9:5a:50:23:eb:c7:af:a8:b2:ea:10:f3:51:1e:6d:4c:
         83:3c:1d:e4:a2:ce:7e:0e:93:f7:15:7f:90:1b:45:24:0b:02:
         66:36:5b:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2oDV7+ujyL4+xBcrNqdwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc4NTk2NjljMmI3YzBiMjVjMDdlNzkzMmI4YTFmOThiMGJi
ZWRjNGMwHhcNMjQxMTI2MTkwMjI3WhcNMjQxMTI3MTkwMjI3WjAzMTEwLwYDVQQD
Eyg5ZjBhZWE5MjkwNGI1N2U2NmVjODllZTI2MjM1Njg2ZThmNzk1YzViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu+xVUh6PPQqEZCN1/h3pbetJ4P6w
PlZNpbmocDJX1OOV6IwvefY67NYnqwCU5DHreF3VDCLBfiLCq4yliV4QkoFeAbvu
HIB3368KgWNEHS5hEl6MRd/5Rgv+G0FfGKPTXv+OD6Vv05aPHFRJ4gr4kIve4rgQ
/mQuwCa5oYZbE23cLfTMD9/JWZjNm+TIK1uOoVqhk+H7NDdkfwMHs6sRcC/H9Xl9
6p3iznr+lIzAUMrLp6LHDJqsScXD4SQD9FjTIgP7g1SybBxm/WIfgBjGTEHX7JBI
1cwqs64ce6OUXZvG45fixQhFh0zl1JvWhudZifY5AsmXkNKOGbf7UII+FQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ8K6pKQS1fmbsie4mI1aG6PeVxbMB8GA1UdIwQY
MBaAFHhZZpwrfAslwH55Mrih+YsLvtxMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZUZsbW5DdDhDeVhBZm5reXVLSDVpd3UtM0V3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS80YjU0OTUtMTA3Mi00ZWYzLTg2Njkt
ZmMzNTU5Njk2MjQ2LzEvZUZsbW5DdDhDeVhBZm5reXVLSDVpd3UtM0V3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS80YjU0OTUtMTA3Mi00ZWYzLTg2NjktZmMzNTU5Njk2MjQ2
LzEvZUZsbW5DdDhDeVhBZm5reXVLSDVpd3UtM0V3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtMdCY8kK
fGmk9Sgk8LOzAqgde0BIP660UDaF7Fwd8QC1kpENT5WdzGED7ErTlEx/CPHj6wgX
gMmzfEN3BA5FvZpgDFRguDBS+PUgyBYBCjtD2AwOkkItJJXrY/BM/IQpLZVAQKGB
NtlSQN8T+gtgkiQWa6xD5k8i7VHd72nRlYwJKSekyCb1dQxg4oDXb9/zWfA0WkFB
juXe/lLW7DWAASzjw4vYSHWKzKvTGoMXLtuxS9guCXAXU1liDUki6U29Iwdqfpxk
ERN/lB+/astasQ7GVD2ovjZqe/G5WlAj68evqLLqEPNRHm1Mgzwd5KLOfg6T9xV/
kBtFJAsCZjZbZw==
-----END CERTIFICATE-----