Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft
File:                     vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft (raw, json)
Hash identifier:          Ink6VVeZA+t9k9FLb0T9wOq9ds7/GjFAxO5W63ifnfg=
Subject key identifier:   58:0E:BB:2A:39:84:2A:30:31:30:ED:33:44:11:9D:22:9A:98:B7:C7
Authority key identifier: BE:18:68:20:5B:3D:13:73:55:AA:71:F2:46:72:95:CD:87:19:52:C8
Certificate issuer:       /CN=be1868205b3d137355aa71f2467295cd871952c8
Certificate serial:       018F8823E6828068702EDB0DCE9FB4F2C6C1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vhhoIFs9E3NVqnHyRnKVzYcZUsg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft
Manifest number:          0779
Signing time:             Fri 17 May 2024 20:00:04 +0000
Manifest this update:     Fri 17 May 2024 20:00:04 +0000
Manifest next update:     Sat 18 May 2024 20:00:04 +0000
Files and hashes:         1: vhhoIFs9E3NVqnHyRnKVzYcZUsg.crl (hash: H3aGQKca909RQN3seDtdcjr2cYiFtHGRWMEKRSAWt10=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vhhoIFs9E3NVqnHyRnKVzYcZUsg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:88:23:e6:82:80:68:70:2e:db:0d:ce:9f:b4:f2:c6:c1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=be1868205b3d137355aa71f2467295cd871952c8
        Validity
            Not Before: May 17 20:00:04 2024 GMT
            Not After : May 18 20:00:04 2024 GMT
        Subject: CN=580ebb2a39842a303130ed3344119d229a98b7c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:9b:16:9c:77:56:b4:dd:8d:7c:f1:7d:b9:b5:
                    12:16:ee:1d:38:b0:a4:15:3b:b0:9a:d4:f3:e1:fd:
                    ca:50:aa:67:a5:6b:66:24:f9:31:0c:06:ac:fc:ec:
                    de:6c:05:a6:48:68:6c:11:78:31:0f:54:48:40:f5:
                    7f:ad:0b:cb:e3:31:bd:b3:c5:7b:42:4f:86:72:db:
                    b4:46:a8:96:6c:29:c7:ad:d0:90:23:5f:bd:6a:80:
                    59:fe:10:cf:15:34:53:5a:ed:64:43:f4:63:21:89:
                    7f:66:77:24:b8:fd:f5:d6:0c:a9:34:8c:89:5f:51:
                    72:84:2f:bc:50:0a:09:06:64:7b:96:2f:be:1d:e2:
                    ef:dd:26:ee:30:b5:d7:19:b6:00:a6:c3:39:08:49:
                    39:8f:35:40:35:0b:c5:6b:4d:f4:5f:1f:f5:f8:20:
                    60:fb:66:76:14:c0:19:74:49:bd:b1:7e:18:6a:4d:
                    af:6d:64:bb:2f:06:5e:37:12:ed:67:2d:46:fe:c5:
                    32:be:7c:ee:3f:91:f7:ee:5c:29:fd:53:d3:08:9d:
                    4b:ba:af:1f:83:79:8e:4e:c6:e5:51:07:46:9c:22:
                    41:d3:ef:67:0b:4c:36:d0:d9:8a:d3:8e:6f:71:58:
                    ad:eb:23:b0:03:8a:67:10:62:bd:33:a5:17:5d:94:
                    8b:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                58:0E:BB:2A:39:84:2A:30:31:30:ED:33:44:11:9D:22:9A:98:B7:C7
            X509v3 Authority Key Identifier:
                keyid:BE:18:68:20:5B:3D:13:73:55:AA:71:F2:46:72:95:CD:87:19:52:C8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhhoIFs9E3NVqnHyRnKVzYcZUsg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b7:ca:ef:20:65:36:ab:ad:0d:6f:59:0a:55:27:68:85:a6:75:
         4c:1b:bb:f7:98:e0:27:13:5e:6e:5b:e8:31:69:87:c9:dd:70:
         42:f8:11:8f:6c:37:03:b0:a8:90:13:ed:0e:fc:dc:b8:77:12:
         b9:f8:43:77:91:5c:9e:a4:6b:1f:6d:26:5a:ab:cb:2d:67:2d:
         74:75:4c:a6:c9:8d:8d:72:bc:89:dc:fa:fd:89:79:ae:ca:e7:
         02:09:1d:34:8b:f9:e0:d9:ff:71:95:4e:fe:b1:01:15:f3:70:
         d8:8c:2d:3f:dc:40:cb:73:43:bb:53:9c:d9:50:8a:ee:40:fe:
         dc:c2:ce:97:78:f6:2c:13:be:d4:49:70:7e:d0:27:54:d1:7e:
         50:bf:91:b7:71:f8:08:a1:1e:14:fc:33:02:6d:79:09:7f:fe:
         7c:a7:7a:86:70:83:80:63:e3:cc:e1:85:6c:03:a8:ce:ad:bd:
         cb:4c:a6:4d:7f:34:b7:24:91:8b:51:08:63:fb:aa:2e:4c:d3:
         6d:2e:19:05:a9:23:83:6d:71:08:4f:58:b1:d0:9e:49:d9:33:
         79:05:5f:c9:1d:91:b0:a3:0c:8a:f8:e6:6e:11:34:07:52:2d:
         f2:60:16:f4:ad:61:9d:17:73:ad:62:db:e6:8d:db:45:a4:77:
         b3:33:77:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+II+aCgGhwLtsNzp+08sbBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlMTg2ODIwNWIzZDEzNzM1NWFhNzFmMjQ2NzI5NWNkODcx
OTUyYzgwHhcNMjQwNTE3MjAwMDA0WhcNMjQwNTE4MjAwMDA0WjAzMTEwLwYDVQQD
Eyg1ODBlYmIyYTM5ODQyYTMwMzEzMGVkMzM0NDExOWQyMjlhOThiN2M3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZsWnHdWtN2NfPF9ubUSFu4dOLCk
FTuwmtTz4f3KUKpnpWtmJPkxDAas/OzebAWmSGhsEXgxD1RIQPV/rQvL4zG9s8V7
Qk+Gctu0RqiWbCnHrdCQI1+9aoBZ/hDPFTRTWu1kQ/RjIYl/ZnckuP311gypNIyJ
X1FyhC+8UAoJBmR7li++HeLv3SbuMLXXGbYApsM5CEk5jzVANQvFa030Xx/1+CBg
+2Z2FMAZdEm9sX4Yak2vbWS7LwZeNxLtZy1G/sUyvnzuP5H37lwp/VPTCJ1Luq8f
g3mOTsblUQdGnCJB0+9nC0w20NmK045vcVit6yOwA4pnEGK9M6UXXZSLLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFgOuyo5hCowMTDtM0QRnSKamLfHMB8GA1UdIwQY
MBaAFL4YaCBbPRNzVapx8kZylc2HGVLIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmhob0lGczlFM05WcW5IeVJuS1Z6WWNaVXNnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9kOTgwZDEtOTJjOC00NGI0LWE1YWIt
NzU3Zjk5OTI3NTcxLzEvdmhob0lGczlFM05WcW5IeVJuS1Z6WWNaVXNnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9kOTgwZDEtOTJjOC00NGI0LWE1YWItNzU3Zjk5OTI3NTcx
LzEvdmhob0lGczlFM05WcW5IeVJuS1Z6WWNaVXNnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAt8rvIGU2
q60Nb1kKVSdohaZ1TBu795jgJxNeblvoMWmHyd1wQvgRj2w3A7CokBPtDvzcuHcS
ufhDd5FcnqRrH20mWqvLLWctdHVMpsmNjXK8idz6/Yl5rsrnAgkdNIv54Nn/cZVO
/rEBFfNw2IwtP9xAy3NDu1Oc2VCK7kD+3MLOl3j2LBO+1ElwftAnVNF+UL+Rt3H4
CKEeFPwzAm15CX/+fKd6hnCDgGPjzOGFbAOozq29y0ymTX80tySRi1EIY/uqLkzT
bS4ZBakjg21xCE9YsdCeSdkzeQVfyR2RsKMMivjmbhE0B1It8mAW9K1hnRdzrWLb
5o3bRaR3szN3Pg==
-----END CERTIFICATE-----