Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.mft
File:                     s5hg55nVMGYfFSE1RiKOmSmlPJw.mft (raw, json)
Hash identifier:          fCn+4BvKqd5tA1pEvXGq7rVY5OaWwhcNRhH/qqoWNIA=
Subject key identifier:   FE:7D:20:D1:FB:6B:79:CE:43:65:83:BF:32:21:D4:3A:34:28:21:DB
Authority key identifier: B3:98:60:E7:99:D5:30:66:1F:15:21:35:46:22:8E:99:29:A5:3C:9C
Certificate issuer:       /CN=b39860e799d530661f15213546228e9929a53c9c
Certificate serial:       0191FA7E063C1F8F6624E2AD79FA12CDBEEA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/s5hg55nVMGYfFSE1RiKOmSmlPJw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.mft
Manifest number:          C3
Signing time:             Mon 16 Sep 2024 11:00:48 +0000
Manifest this update:     Mon 16 Sep 2024 11:00:48 +0000
Manifest next update:     Tue 17 Sep 2024 11:00:48 +0000
Files and hashes:         1: s5hg55nVMGYfFSE1RiKOmSmlPJw.crl (hash: x5rIX05s6+/yafLphHt7zGGpyCr3SpIndNti8onM9N4=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/s5hg55nVMGYfFSE1RiKOmSmlPJw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Sep 2024 11:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:91:fa:7e:06:3c:1f:8f:66:24:e2:ad:79:fa:12:cd:be:ea
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b39860e799d530661f15213546228e9929a53c9c
        Validity
            Not Before: Sep 16 11:00:48 2024 GMT
            Not After : Sep 17 11:00:48 2024 GMT
        Subject: CN=fe7d20d1fb6b79ce436583bf3221d43a342821db
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:58:8b:86:2f:5c:8e:e2:22:65:37:26:60:a8:
                    53:97:2b:ab:7d:0a:91:c1:87:cb:bb:bd:17:cb:18:
                    35:38:83:5b:fc:55:6e:96:34:a5:ef:a7:c0:c1:d6:
                    a2:f7:eb:fb:c4:16:f7:22:50:40:86:22:0e:27:08:
                    ea:43:6c:01:fc:9f:11:39:83:c1:a2:36:44:e5:2f:
                    9f:92:8b:63:d9:eb:55:f8:d4:e5:27:f4:ec:bd:6b:
                    fc:69:29:74:78:36:c7:41:40:d0:f7:8d:be:b0:e1:
                    87:40:ea:ef:39:fb:6e:a7:6d:5a:2b:5c:39:4a:0e:
                    da:ea:4d:4f:15:ae:01:5f:f7:1f:c1:b0:ac:a8:13:
                    37:b5:ee:a6:c5:a7:48:06:61:e7:d2:7a:b6:1e:5a:
                    6f:fa:4a:6c:8b:9e:75:d8:57:b5:62:80:c6:d5:2a:
                    04:6d:c3:b7:d1:5d:b7:17:33:69:85:10:cd:85:89:
                    9c:ec:d8:45:db:eb:1c:6d:a0:bb:22:de:ff:ba:41:
                    50:35:86:c1:fe:e1:47:4f:5e:ee:1e:02:68:e3:b9:
                    c7:cb:77:c2:89:9c:93:d6:ac:8c:0d:4f:49:77:69:
                    be:85:7e:d8:0c:ec:b4:1d:41:26:26:7f:94:a3:74:
                    27:ac:ef:10:f4:d4:2e:96:ce:4d:f3:bf:a5:ec:3e:
                    0a:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:7D:20:D1:FB:6B:79:CE:43:65:83:BF:32:21:D4:3A:34:28:21:DB
            X509v3 Authority Key Identifier:
                keyid:B3:98:60:E7:99:D5:30:66:1F:15:21:35:46:22:8E:99:29:A5:3C:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5hg55nVMGYfFSE1RiKOmSmlPJw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/35/4e206e-0c95-4c8e-847d-c13f30fdcadd/1/s5hg55nVMGYfFSE1RiKOmSmlPJw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:70:d4:dc:63:85:ec:4b:6f:20:eb:16:2f:a0:99:45:1d:fd:
         c2:27:9c:9b:7e:3e:b5:12:5f:f0:d6:45:31:ce:80:30:08:21:
         e8:77:f9:b4:2f:e7:37:0b:db:a0:e8:2c:de:19:63:11:61:31:
         29:13:80:ea:77:eb:97:c2:4e:56:19:b9:3d:4e:c3:2e:5e:0b:
         7a:f2:ed:8d:29:39:e7:52:78:73:d9:96:8d:91:17:4f:81:05:
         19:f8:7b:5a:4d:09:a0:f5:7a:42:e3:ec:53:5e:40:c1:a3:4d:
         2a:b8:c3:62:2a:0c:ad:e4:65:dc:42:ac:4b:29:60:6a:e9:59:
         a8:48:77:96:f4:cd:31:fc:85:82:4b:7d:c8:bf:b6:af:11:5f:
         61:6a:f1:67:fe:6f:50:0c:94:e7:87:6a:47:b3:d9:11:77:15:
         de:59:f0:bd:96:9b:90:92:6e:41:63:e9:49:58:e9:03:e7:a3:
         4e:31:9d:8c:40:a3:6f:f8:1d:cb:04:f7:18:74:6d:a0:cd:32:
         6e:fa:2a:51:32:fd:ec:3f:31:f0:bf:df:75:57:20:a1:c7:b8:
         53:df:aa:9b:6c:5c:8a:89:61:3a:64:1a:23:c8:cb:47:a3:7f:
         5e:7f:f9:d2:11:b5:90:41:af:e1:26:56:73:8e:1d:61:4b:de:
         48:c3:02:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZH6fgY8H49mJOKtefoSzb7qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzOTg2MGU3OTlkNTMwNjYxZjE1MjEzNTQ2MjI4ZTk5Mjlh
NTNjOWMwHhcNMjQwOTE2MTEwMDQ4WhcNMjQwOTE3MTEwMDQ4WjAzMTEwLwYDVQQD
EyhmZTdkMjBkMWZiNmI3OWNlNDM2NTgzYmYzMjIxZDQzYTM0MjgyMWRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwFiLhi9cjuIiZTcmYKhTlyurfQqR
wYfLu70Xyxg1OINb/FVuljSl76fAwdai9+v7xBb3IlBAhiIOJwjqQ2wB/J8ROYPB
ojZE5S+fkotj2etV+NTlJ/TsvWv8aSl0eDbHQUDQ942+sOGHQOrvOftup21aK1w5
Sg7a6k1PFa4BX/cfwbCsqBM3te6mxadIBmHn0nq2Hlpv+kpsi5512Fe1YoDG1SoE
bcO30V23FzNphRDNhYmc7NhF2+scbaC7It7/ukFQNYbB/uFHT17uHgJo47nHy3fC
iZyT1qyMDU9Jd2m+hX7YDOy0HUEmJn+Uo3QnrO8Q9NQuls5N87+l7D4KGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP59INH7a3nOQ2WDvzIh1Do0KCHbMB8GA1UdIwQY
MBaAFLOYYOeZ1TBmHxUhNUYijpkppTycMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczVoZzU1blZNR1lmRlNFMVJpS09tU21sUEp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS80ZTIwNmUtMGM5NS00YzhlLTg0N2Qt
YzEzZjMwZmRjYWRkLzEvczVoZzU1blZNR1lmRlNFMVJpS09tU21sUEp3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS80ZTIwNmUtMGM5NS00YzhlLTg0N2QtYzEzZjMwZmRjYWRk
LzEvczVoZzU1blZNR1lmRlNFMVJpS09tU21sUEp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGXDU3GOF
7EtvIOsWL6CZRR39wiecm34+tRJf8NZFMc6AMAgh6Hf5tC/nNwvboOgs3hljEWEx
KROA6nfrl8JOVhm5PU7DLl4LevLtjSk551J4c9mWjZEXT4EFGfh7Wk0JoPV6QuPs
U15AwaNNKrjDYioMreRl3EKsSylgaulZqEh3lvTNMfyFgkt9yL+2rxFfYWrxZ/5v
UAyU54dqR7PZEXcV3lnwvZabkJJuQWPpSVjpA+ejTjGdjECjb/gdywT3GHRtoM0y
bvoqUTL97D8x8L/fdVcgoce4U9+qm2xciolhOmQaI8jLR6N/Xn/50hG1kEGv4SZW
c44dYUveSMMCfA==
-----END CERTIFICATE-----