Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
File:                     1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft (raw, json)
Hash identifier:          Bu+0xH2Nw0p76NemtSJSd0h89GA3bdhRZpoa82Za1mA=
Subject key identifier:   39:A1:25:53:8F:EB:23:99:1B:43:7F:6F:66:0D:D2:7F:5F:87:46:CD
Authority key identifier: D5:F6:23:DA:4C:D2:EE:DD:C2:C8:7C:51:5C:62:51:8C:43:1D:3F:B5
Certificate issuer:       /CN=d5f623da4cd2eeddc2c87c515c62518c431d3fb5
Certificate serial:       019368FD13E555781AE36722D74AB736BC5C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
Manifest number:          92
Signing time:             Tue 26 Nov 2024 15:00:36 +0000
Manifest this update:     Tue 26 Nov 2024 15:00:36 +0000
Manifest next update:     Wed 27 Nov 2024 15:00:36 +0000
Files and hashes:         1: 1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl (hash: jJJBND4oZ99FhKOZVnCYhQB7hEYExUoxPfR54idZTkk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 15:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:68:fd:13:e5:55:78:1a:e3:67:22:d7:4a:b7:36:bc:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d5f623da4cd2eeddc2c87c515c62518c431d3fb5
        Validity
            Not Before: Nov 26 15:00:36 2024 GMT
            Not After : Nov 27 15:00:36 2024 GMT
        Subject: CN=39a125538feb23991b437f6f660dd27f5f8746cd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:e7:75:70:ae:0e:32:ca:ae:fc:be:e1:72:32:
                    7e:a8:fc:7c:78:2c:8f:1e:5b:d8:a6:d3:6f:24:4e:
                    f8:22:4b:ea:48:3e:de:8b:15:85:91:09:e1:9f:ac:
                    e0:42:97:4e:79:a7:b5:93:78:80:24:7c:a8:45:8f:
                    f9:48:bd:ed:31:09:3d:d5:bf:c3:78:c5:c7:c3:3f:
                    44:55:fc:04:7d:08:8f:f0:39:54:76:38:6b:f2:d9:
                    64:95:2c:50:8f:f9:88:1f:55:2f:e4:32:87:eb:c9:
                    08:2d:88:26:d1:19:e1:ae:e7:f5:05:18:b8:f1:01:
                    15:ee:d8:ff:bd:83:c6:c8:d9:c9:4b:97:64:43:fd:
                    1d:c9:eb:66:d8:a9:cc:47:bf:72:4d:f2:9a:75:62:
                    25:ad:09:b1:41:e5:eb:aa:50:cd:2e:fd:a7:2e:d1:
                    57:79:c5:16:06:ba:1c:46:67:aa:68:b4:ea:86:ee:
                    01:c6:60:30:40:27:07:01:f7:b7:c1:c8:71:71:56:
                    d7:1b:25:11:0c:e2:e7:37:a8:35:d7:eb:4e:b1:a8:
                    86:7a:8b:60:a8:f1:a7:af:df:be:44:2c:c0:03:17:
                    d8:77:01:99:0b:71:d9:c2:c6:42:b2:88:98:2b:f8:
                    ee:95:0a:2f:c6:04:83:96:e3:a5:79:d1:e0:e6:15:
                    8b:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:A1:25:53:8F:EB:23:99:1B:43:7F:6F:66:0D:D2:7F:5F:87:46:CD
            X509v3 Authority Key Identifier:
                keyid:D5:F6:23:DA:4C:D2:EE:DD:C2:C8:7C:51:5C:62:51:8C:43:1D:3F:B5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:28:c9:96:45:75:d3:9c:d0:e7:67:2b:14:fd:9d:12:f9:6d:
         32:b4:c4:6d:60:e9:b4:d0:06:ad:b6:c5:ea:1a:d4:6d:82:21:
         ec:4a:08:90:09:ad:86:f9:aa:1e:de:dc:ec:79:98:fb:a2:a1:
         33:78:ac:da:ab:70:52:55:f0:a0:72:00:60:04:7b:03:4a:aa:
         f7:32:03:54:3d:96:61:ef:d3:d3:43:f5:f8:71:a5:b3:26:2b:
         67:8b:e8:bd:11:9e:3f:1b:c4:03:63:11:1a:fc:97:18:65:39:
         24:ea:3c:c4:88:89:8e:24:a5:b8:f2:2e:5f:c8:46:07:43:1d:
         47:bd:75:1b:99:ad:ff:d1:a1:ec:ba:2d:11:30:96:55:0d:c2:
         f3:81:06:6a:29:d6:17:33:88:6f:35:77:53:97:ad:d3:14:26:
         2c:2d:39:d5:6c:c7:71:48:ed:9f:3a:f0:2a:25:c5:8e:07:db:
         39:08:8c:1a:33:f7:54:56:5b:de:29:1f:2d:84:d0:3e:6d:e2:
         9d:3c:22:7f:bb:01:95:1b:23:a4:36:5c:cd:ce:25:f5:c5:fb:
         60:d3:d0:9b:dd:dc:0c:31:c0:18:bb:2c:cb:4e:bd:ba:e8:2b:
         55:9c:d4:25:5b:3a:19:a1:e2:88:78:05:02:f0:ee:e8:c1:00:
         e2:34:82:3b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNo/RPlVXga42ci10q3NrxcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1ZjYyM2RhNGNkMmVlZGRjMmM4N2M1MTVjNjI1MThjNDMx
ZDNmYjUwHhcNMjQxMTI2MTUwMDM2WhcNMjQxMTI3MTUwMDM2WjAzMTEwLwYDVQQD
EygzOWExMjU1MzhmZWIyMzk5MWI0MzdmNmY2NjBkZDI3ZjVmODc0NmNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+d1cK4OMsqu/L7hcjJ+qPx8eCyP
HlvYptNvJE74IkvqSD7eixWFkQnhn6zgQpdOeae1k3iAJHyoRY/5SL3tMQk91b/D
eMXHwz9EVfwEfQiP8DlUdjhr8tlklSxQj/mIH1Uv5DKH68kILYgm0Rnhruf1BRi4
8QEV7tj/vYPGyNnJS5dkQ/0dyetm2KnMR79yTfKadWIlrQmxQeXrqlDNLv2nLtFX
ecUWBrocRmeqaLTqhu4BxmAwQCcHAfe3wchxcVbXGyURDOLnN6g11+tOsaiGeotg
qPGnr9++RCzAAxfYdwGZC3HZwsZCsoiYK/julQovxgSDluOledHg5hWL0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDmhJVOP6yOZG0N/b2YN0n9fh0bNMB8GA1UdIwQY
MBaAFNX2I9pM0u7dwsh8UVxiUYxDHT+1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWZZajJrelM3dDNDeUh4UlhHSlJqRU1kUDdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8zMTNjMTEtZGY4Ny00ZDc3LTg3Mzkt
MDRmMWRjZWMzMjBlLzEvMWZZajJrelM3dDNDeUh4UlhHSlJqRU1kUDdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC8zMTNjMTEtZGY4Ny00ZDc3LTg3MzktMDRmMWRjZWMzMjBl
LzEvMWZZajJrelM3dDNDeUh4UlhHSlJqRU1kUDdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABCjJlkV1
05zQ52crFP2dEvltMrTEbWDptNAGrbbF6hrUbYIh7EoIkAmthvmqHt7c7HmY+6Kh
M3is2qtwUlXwoHIAYAR7A0qq9zIDVD2WYe/T00P1+HGlsyYrZ4vovRGePxvEA2MR
GvyXGGU5JOo8xIiJjiSluPIuX8hGB0MdR711G5mt/9Gh7LotETCWVQ3C84EGainW
FzOIbzV3U5et0xQmLC051WzHcUjtnzrwKiXFjgfbOQiMGjP3VFZb3ikfLYTQPm3i
nTwif7sBlRsjpDZczc4l9cX7YNPQm93cDDHAGLssy069uugrVZzUJVs6GaHiiHgF
AvDu6MEA4jSCOw==
-----END CERTIFICATE-----