Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft
File:                     dgynIUsW9YyV1i3vAFkVhtvSPKo.mft (raw, json)
Hash identifier:          C3b391mi0B1ytmdHnxK25vH7nsJcYw/LjXd9z4LznBQ=
Subject key identifier:   E4:F6:18:D7:69:BE:98:F8:92:28:47:E3:CD:C1:01:D3:4E:D0:78:5F
Authority key identifier: 76:0C:A7:21:4B:16:F5:8C:95:D6:2D:EF:00:59:15:86:DB:D2:3C:AA
Certificate issuer:       /CN=760ca7214b16f58c95d62def00591586dbd23caa
Certificate serial:       01963FFA1C49B6C4E0EE5552656C271C29B5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dgynIUsW9YyV1i3vAFkVhtvSPKo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft
Manifest number:          0765
Signing time:             Wed 16 Apr 2025 19:01:17 +0000
Manifest this update:     Wed 16 Apr 2025 19:01:17 +0000
Manifest next update:     Thu 17 Apr 2025 19:01:17 +0000
Files and hashes:         1: dgynIUsW9YyV1i3vAFkVhtvSPKo.crl (hash: SYaCxlS1IzgW6lsBzLbgpUXXJ1jqt8D3q/6KSMyssqo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dgynIUsW9YyV1i3vAFkVhtvSPKo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 17 Apr 2025 19:01:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:96:3f:fa:1c:49:b6:c4:e0:ee:55:52:65:6c:27:1c:29:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=760ca7214b16f58c95d62def00591586dbd23caa
        Validity
            Not Before: Apr 16 19:01:17 2025 GMT
            Not After : Apr 17 19:01:17 2025 GMT
        Subject: CN=e4f618d769be98f8922847e3cdc101d34ed0785f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:bf:a3:fe:b2:9e:f6:16:29:55:00:0a:e7:dd:
                    2b:bf:e9:1a:0a:9a:dd:0b:f4:23:ed:81:99:82:d5:
                    e1:dc:d6:0e:a9:ee:c1:3c:f0:a1:4d:a6:f7:26:c3:
                    e7:f3:bb:ea:e0:bd:e1:a4:20:13:8a:ab:24:0d:96:
                    13:5e:ac:5c:8b:ab:52:18:41:e9:0a:ad:e2:52:33:
                    ff:70:b9:34:2b:72:58:b0:b1:1c:3a:66:2a:e6:ff:
                    fe:60:7b:a6:7d:75:04:c3:dc:8a:4a:93:e4:f1:e7:
                    9b:cb:bf:d4:ca:16:31:5d:27:d9:0a:01:00:4a:39:
                    f0:24:f9:8b:7c:f4:42:6a:6f:2a:22:5b:be:2f:0b:
                    e0:0c:06:f9:91:2f:fa:bd:e0:e9:f2:13:48:39:6d:
                    39:3f:35:e7:f0:15:a8:50:90:37:37:86:fa:82:33:
                    b5:d7:26:50:d4:3c:bd:d5:f3:bf:a3:5e:31:34:f2:
                    8d:7e:c2:69:31:57:68:59:54:e5:08:ed:dc:d5:02:
                    42:ea:aa:4f:fa:28:60:18:49:fb:47:60:0e:3d:14:
                    6f:b2:3c:87:ac:e6:0e:b3:d1:de:28:f3:1e:53:a2:
                    dc:47:fc:d9:65:29:84:1e:5b:40:7e:85:b0:5a:53:
                    b3:ea:3e:c4:0a:46:6d:59:77:66:6a:1e:52:92:10:
                    ab:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:F6:18:D7:69:BE:98:F8:92:28:47:E3:CD:C1:01:D3:4E:D0:78:5F
            X509v3 Authority Key Identifier:
                keyid:76:0C:A7:21:4B:16:F5:8C:95:D6:2D:EF:00:59:15:86:DB:D2:3C:AA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dgynIUsW9YyV1i3vAFkVhtvSPKo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/364413-a6dd-4a37-889c-8aeb38751f12/1/dgynIUsW9YyV1i3vAFkVhtvSPKo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:e6:83:0f:b0:69:6f:7c:16:76:9d:e1:ec:1c:d3:86:d2:00:
         87:9d:99:00:6e:77:3e:43:51:d3:c4:8d:cd:b4:34:da:12:ba:
         ba:7f:2b:d9:13:ed:f3:f5:85:b8:ad:78:d9:8a:04:3d:89:60:
         57:14:9f:26:1b:04:e8:d4:b4:24:a1:72:e4:eb:6c:8a:08:d8:
         db:2e:e5:7c:4f:30:de:5d:16:e1:39:56:32:1f:d8:fa:80:bb:
         8d:5f:9e:85:b4:80:8b:38:fa:db:2b:3a:51:8c:80:38:70:77:
         dd:c8:ab:aa:91:42:89:c0:1d:74:d7:f5:f2:91:51:b0:a4:e7:
         76:4a:49:28:78:5d:08:d6:b3:c8:59:0e:ba:86:25:d9:cd:23:
         e3:1e:0e:6a:bd:33:8a:51:49:a1:a9:35:c3:c5:c0:46:e6:5c:
         f5:e2:69:73:1c:93:01:64:4e:0f:68:ad:e6:ab:22:9d:dc:26:
         b1:0e:a4:e8:3a:57:f4:64:12:8c:eb:7f:b7:f1:b5:5b:d2:9b:
         36:f8:04:89:06:ed:c9:08:62:45:a2:19:6e:35:f4:97:da:c7:
         80:05:4f:55:f0:2a:f9:ff:d7:03:be:7a:cb:11:96:d0:5c:44:
         e8:0c:95:b0:8d:c6:3a:71:aa:ef:f7:7d:da:f3:02:d4:6d:e7:
         75:3b:6a:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZY/+hxJtsTg7lVSZWwnHCm1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2MGNhNzIxNGIxNmY1OGM5NWQ2MmRlZjAwNTkxNTg2ZGJk
MjNjYWEwHhcNMjUwNDE2MTkwMTE3WhcNMjUwNDE3MTkwMTE3WjAzMTEwLwYDVQQD
EyhlNGY2MThkNzY5YmU5OGY4OTIyODQ3ZTNjZGMxMDFkMzRlZDA3ODVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA17+j/rKe9hYpVQAK590rv+kaCprd
C/Qj7YGZgtXh3NYOqe7BPPChTab3JsPn87vq4L3hpCATiqskDZYTXqxci6tSGEHp
Cq3iUjP/cLk0K3JYsLEcOmYq5v/+YHumfXUEw9yKSpPk8eeby7/UyhYxXSfZCgEA
SjnwJPmLfPRCam8qIlu+LwvgDAb5kS/6veDp8hNIOW05PzXn8BWoUJA3N4b6gjO1
1yZQ1Dy91fO/o14xNPKNfsJpMVdoWVTlCO3c1QJC6qpP+ihgGEn7R2AOPRRvsjyH
rOYOs9HeKPMeU6LcR/zZZSmEHltAfoWwWlOz6j7ECkZtWXdmah5SkhCrywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOT2GNdpvpj4kihH483BAdNO0HhfMB8GA1UdIwQY
MBaAFHYMpyFLFvWMldYt7wBZFYbb0jyqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGd5bklVc1c5WXlWMWkzdkFGa1ZodHZTUEtvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi8zNjQ0MTMtYTZkZC00YTM3LTg4OWMt
OGFlYjM4NzUxZjEyLzEvZGd5bklVc1c5WXlWMWkzdkFGa1ZodHZTUEtvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi8zNjQ0MTMtYTZkZC00YTM3LTg4OWMtOGFlYjM4NzUxZjEy
LzEvZGd5bklVc1c5WXlWMWkzdkFGa1ZodHZTUEtvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEeaDD7Bp
b3wWdp3h7BzThtIAh52ZAG53PkNR08SNzbQ02hK6un8r2RPt8/WFuK142YoEPYlg
VxSfJhsE6NS0JKFy5OtsigjY2y7lfE8w3l0W4TlWMh/Y+oC7jV+ehbSAizj62ys6
UYyAOHB33cirqpFCicAddNf18pFRsKTndkpJKHhdCNazyFkOuoYl2c0j4x4Oar0z
ilFJoak1w8XARuZc9eJpcxyTAWROD2it5qsindwmsQ6k6DpX9GQSjOt/t/G1W9Kb
NvgEiQbtyQhiRaIZbjX0l9rHgAVPVfAq+f/XA756yxGW0FxE6AyVsI3GOnGq7/d9
2vMC1G3ndTtqyQ==
-----END CERTIFICATE-----