Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.mft
File:                     PKE4ItxLDjEIGkhX_QQHDW2svgw.mft (raw, json)
Hash identifier:          1M4AmMJn4EV4wK8Lt7jXYc/Z4cPxonqQnLZLY6eU8Og=
Subject key identifier:   59:1F:E9:E1:89:4E:EC:2C:03:32:46:52:2D:48:5D:C9:1B:59:5F:B3
Authority key identifier: 3C:A1:38:22:DC:4B:0E:31:08:1A:48:57:FD:04:07:0D:6D:AC:BE:0C
Certificate issuer:       /CN=3ca13822dc4b0e31081a4857fd04070d6dacbe0c
Certificate serial:       0194C4D13CA3717AA388F76F9120DBB17257
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PKE4ItxLDjEIGkhX_QQHDW2svgw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.mft
Manifest number:          142B
Signing time:             Sun 02 Feb 2025 04:00:34 +0000
Manifest this update:     Sun 02 Feb 2025 04:00:34 +0000
Manifest next update:     Mon 03 Feb 2025 04:00:34 +0000
Files and hashes:         1: PKE4ItxLDjEIGkhX_QQHDW2svgw.crl (hash: qrEkFSoQPpHDJ9SajLBL4voUSY7W7AFDCp5MoIzrT3k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PKE4ItxLDjEIGkhX_QQHDW2svgw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 03 Feb 2025 00:00:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:c4:d1:3c:a3:71:7a:a3:88:f7:6f:91:20:db:b1:72:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3ca13822dc4b0e31081a4857fd04070d6dacbe0c
        Validity
            Not Before: Feb  2 04:00:34 2025 GMT
            Not After : Feb  3 04:00:34 2025 GMT
        Subject: CN=591fe9e1894eec2c033246522d485dc91b595fb3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:48:4b:5b:c0:35:ef:83:ca:a6:99:67:1c:f5:
                    5a:36:30:0e:93:bd:51:4d:85:72:08:6e:d0:61:6a:
                    52:6f:d8:33:e1:77:4f:02:2e:7d:a7:8d:9d:63:d5:
                    df:43:b6:00:66:8e:c8:fe:83:54:96:18:f9:37:e8:
                    24:be:2d:e2:95:2d:ee:1a:18:40:18:08:6e:1f:47:
                    1f:d8:fa:0c:98:33:ab:46:fc:6e:9c:c9:b1:d1:d9:
                    e9:5a:02:17:c1:b2:ca:25:86:4a:12:35:40:bd:92:
                    58:0b:84:83:48:37:45:bc:3a:de:b2:78:2d:19:74:
                    80:2c:37:38:45:4a:6b:07:7b:2b:aa:14:4d:f8:8c:
                    4b:b3:33:85:3d:25:f5:c3:85:81:75:5b:c9:9d:0f:
                    5a:4f:c2:f2:8a:72:05:67:64:4c:c7:a0:63:e1:85:
                    7c:a0:1f:ed:d4:1e:2a:99:67:a2:97:dc:93:a8:8a:
                    cd:9c:fe:5d:06:45:bd:7b:08:5e:8e:32:c2:b0:10:
                    39:2f:54:16:b0:41:e4:84:b9:b9:18:be:03:ae:35:
                    0a:41:dc:8f:dc:eb:39:b7:01:04:7b:80:9a:28:13:
                    14:5f:dc:b8:15:d5:c5:15:64:e6:13:e1:b4:a0:e2:
                    6f:10:6d:d6:6d:fc:fd:0c:f3:06:d2:bc:f4:ef:a5:
                    21:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:1F:E9:E1:89:4E:EC:2C:03:32:46:52:2D:48:5D:C9:1B:59:5F:B3
            X509v3 Authority Key Identifier:
                keyid:3C:A1:38:22:DC:4B:0E:31:08:1A:48:57:FD:04:07:0D:6D:AC:BE:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKE4ItxLDjEIGkhX_QQHDW2svgw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/37/37f0bd-ad1a-42f9-b948-b294f6bf8137/1/PKE4ItxLDjEIGkhX_QQHDW2svgw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         08:1e:ad:9e:55:d7:c3:5d:c6:86:0a:ca:5b:31:61:28:e4:34:
         f0:24:1c:41:c1:c7:78:fc:fd:cc:01:8b:a9:4a:38:03:3f:9a:
         bc:b4:e5:0e:0c:6e:83:2c:38:d0:67:4a:17:7f:aa:19:fa:12:
         51:37:98:53:df:8c:f7:b9:16:1c:b2:39:ad:f7:dd:fe:50:b5:
         a6:ec:8d:55:b8:b9:16:07:96:d4:70:76:ee:b4:e6:97:5c:03:
         ea:94:7c:82:7c:74:e4:c7:c6:04:9d:07:17:eb:72:e1:0a:32:
         3b:17:b3:24:d4:89:c4:30:5a:55:09:82:57:a1:fa:39:59:26:
         0f:72:b0:d3:ca:b0:e2:2d:d5:5c:1d:fd:af:de:0b:5a:6f:ff:
         d8:02:85:30:1b:c6:5d:0b:75:c4:1f:fb:c2:07:94:81:56:2c:
         8e:8a:e8:b3:5f:24:0e:64:09:5a:51:a5:82:1a:01:e5:6c:23:
         ab:50:40:f3:28:24:86:95:ca:66:ad:7b:11:9c:8d:b5:24:b1:
         65:56:8d:77:ac:43:a3:a4:72:38:69:03:39:40:47:d3:e3:7b:
         85:b3:c5:c0:6d:01:47:30:f3:14:26:c5:d6:cd:b3:d0:42:db:
         d9:45:a0:ed:69:be:cd:0c:48:0a:2a:67:de:ae:d8:1f:76:bc:
         47:bc:02:52
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTE0TyjcXqjiPdvkSDbsXJXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNjYTEzODIyZGM0YjBlMzEwODFhNDg1N2ZkMDQwNzBkNmRh
Y2JlMGMwHhcNMjUwMjAyMDQwMDM0WhcNMjUwMjAzMDQwMDM0WjAzMTEwLwYDVQQD
Eyg1OTFmZTllMTg5NGVlYzJjMDMzMjQ2NTIyZDQ4NWRjOTFiNTk1ZmIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEhLW8A174PKpplnHPVaNjAOk71R
TYVyCG7QYWpSb9gz4XdPAi59p42dY9XfQ7YAZo7I/oNUlhj5N+gkvi3ilS3uGhhA
GAhuH0cf2PoMmDOrRvxunMmx0dnpWgIXwbLKJYZKEjVAvZJYC4SDSDdFvDresngt
GXSALDc4RUprB3srqhRN+IxLszOFPSX1w4WBdVvJnQ9aT8LyinIFZ2RMx6Bj4YV8
oB/t1B4qmWeil9yTqIrNnP5dBkW9ewhejjLCsBA5L1QWsEHkhLm5GL4DrjUKQdyP
3Os5twEEe4CaKBMUX9y4FdXFFWTmE+G0oOJvEG3Wbfz9DPMG0rz076UhTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFkf6eGJTuwsAzJGUi1IXckbWV+zMB8GA1UdIwQY
MBaAFDyhOCLcSw4xCBpIV/0EBw1trL4MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUEtFNEl0eExEakVJR2toWF9RUUhEVzJzdmd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy8zN2YwYmQtYWQxYS00MmY5LWI5NDgt
YjI5NGY2YmY4MTM3LzEvUEtFNEl0eExEakVJR2toWF9RUUhEVzJzdmd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy8zN2YwYmQtYWQxYS00MmY5LWI5NDgtYjI5NGY2YmY4MTM3
LzEvUEtFNEl0eExEakVJR2toWF9RUUhEVzJzdmd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACB6tnlXX
w13GhgrKWzFhKOQ08CQcQcHHePz9zAGLqUo4Az+avLTlDgxugyw40GdKF3+qGfoS
UTeYU9+M97kWHLI5rffd/lC1puyNVbi5FgeW1HB27rTml1wD6pR8gnx05MfGBJ0H
F+ty4QoyOxezJNSJxDBaVQmCV6H6OVkmD3Kw08qw4i3VXB39r94LWm//2AKFMBvG
XQt1xB/7wgeUgVYsjoros18kDmQJWlGlghoB5Wwjq1BA8ygkhpXKZq17EZyNtSSx
ZVaNd6xDo6RyOGkDOUBH0+N7hbPFwG0BRzDzFCbF1s2z0ELb2UWg7Wm+zQxICipn
3q7YH3a8R7wCUg==
-----END CERTIFICATE-----