Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft
File:                     ba7zApYp3gKduYq3tOm9IhwomRw.mft (raw, json)
Hash identifier:          /yN6EfGxjO+Nh2d9loq3xbLR1zocLop7SeZUUl50f5Y=
Subject key identifier:   F6:40:EC:35:78:C9:B5:E7:3F:7C:38:ED:48:5F:C9:F1:7C:1B:CC:33
Authority key identifier: 6D:AE:F3:02:96:29:DE:02:9D:B9:8A:B7:B4:E9:BD:22:1C:28:99:1C
Certificate issuer:       /CN=6daef3029629de029db98ab7b4e9bd221c28991c
Certificate serial:       018F874B297E3332C83CFA1A921008AE8B8C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ba7zApYp3gKduYq3tOm9IhwomRw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft
Manifest number:          0761
Signing time:             Fri 17 May 2024 16:03:20 +0000
Manifest this update:     Fri 17 May 2024 16:03:20 +0000
Manifest next update:     Sat 18 May 2024 16:03:20 +0000
Files and hashes:         1: ba7zApYp3gKduYq3tOm9IhwomRw.crl (hash: gH6Jm42BT1Nw6oPsFR5DTNCFjvL50al887l9Mcj/4Bg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ba7zApYp3gKduYq3tOm9IhwomRw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:03:20 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4b:29:7e:33:32:c8:3c:fa:1a:92:10:08:ae:8b:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6daef3029629de029db98ab7b4e9bd221c28991c
        Validity
            Not Before: May 17 16:03:20 2024 GMT
            Not After : May 18 16:03:20 2024 GMT
        Subject: CN=f640ec3578c9b5e73f7c38ed485fc9f17c1bcc33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:e6:ad:b8:c3:1f:3f:2c:4f:d1:d7:07:0d:d0:
                    54:99:3f:78:5a:c3:b7:53:6b:65:31:96:36:ac:bb:
                    5d:16:89:9e:6f:a5:f4:76:25:bb:35:af:49:c1:ea:
                    3d:6f:a9:4c:a1:e2:08:be:9a:1b:d7:5b:2f:1c:a9:
                    c1:8a:81:68:46:d9:51:f3:0d:06:95:cf:fc:cd:90:
                    3e:64:1f:f8:5f:25:06:4d:e8:22:da:87:7a:0c:7c:
                    44:e7:3c:28:e0:3f:77:3c:d9:2d:5f:d0:30:2d:76:
                    92:45:62:aa:a9:ba:6a:a1:61:61:db:12:11:b2:12:
                    e0:37:c2:51:63:9c:cc:ad:bb:7c:15:df:f5:eb:ff:
                    0d:0e:4f:1a:8b:fe:7c:c3:ae:65:58:e0:ec:75:50:
                    f3:3e:44:f0:58:33:0b:06:db:34:6e:8f:89:bd:03:
                    22:38:74:60:a3:d7:af:96:4c:87:24:1d:0a:6b:35:
                    68:bb:ad:1c:92:d3:f8:14:cb:a1:39:ad:c1:99:70:
                    f1:17:e8:4f:ca:af:ca:d1:5d:30:42:22:94:47:14:
                    47:73:24:e7:bc:e3:40:4d:6a:a0:34:82:ee:95:d2:
                    85:ab:e1:50:4e:77:eb:9b:07:de:94:57:51:28:f3:
                    1b:49:74:07:41:6e:9f:11:0a:2d:1c:aa:62:44:f1:
                    0e:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:40:EC:35:78:C9:B5:E7:3F:7C:38:ED:48:5F:C9:F1:7C:1B:CC:33
            X509v3 Authority Key Identifier:
                keyid:6D:AE:F3:02:96:29:DE:02:9D:B9:8A:B7:B4:E9:BD:22:1C:28:99:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba7zApYp3gKduYq3tOm9IhwomRw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/b73411-cf4e-4999-9f42-cde404805b10/1/ba7zApYp3gKduYq3tOm9IhwomRw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:11:39:5e:3d:cb:b7:47:77:07:6e:3f:60:e4:8f:45:f0:0c:
         7c:ce:e1:9b:60:6f:0a:86:02:d9:14:f5:d3:cd:8a:8b:5b:95:
         71:8a:0e:89:99:c8:d4:8f:a3:0a:e6:a6:64:9a:ed:be:b0:e4:
         1a:b0:79:99:4c:05:32:04:d0:58:5a:73:4d:be:98:eb:de:e8:
         fc:6d:17:a6:b8:35:ee:d9:c7:74:c1:bf:cf:4f:a3:eb:62:7a:
         f1:01:d9:23:e3:9a:31:59:92:44:73:5f:2b:88:dc:42:b2:e8:
         a8:5b:32:03:1b:52:30:d6:ed:85:3b:b4:6e:6d:7a:6c:85:fa:
         91:8a:0a:6a:60:b0:31:53:9e:3d:0b:e0:32:7e:7c:67:f4:6a:
         9b:bb:7c:91:0f:13:32:2d:5f:f6:e9:17:1a:99:97:ce:d2:1a:
         f1:a0:ac:fa:7c:73:97:03:56:95:d7:a3:3d:75:e5:ef:5b:2a:
         9e:7e:44:d5:d8:64:78:c8:4b:a3:24:00:53:eb:fe:e3:53:d2:
         2e:1a:da:9d:8d:5e:78:93:51:28:02:50:43:19:d0:f4:25:d4:
         e1:4b:c6:58:c9:ee:3e:c6:3f:b7:0b:1c:4f:8a:ba:1c:a1:20:
         72:ad:78:2c:8b:7d:df:43:97:43:9c:30:fd:16:03:c7:a4:66:
         c2:4b:be:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSyl+MzLIPPoakhAIrouMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkYWVmMzAyOTYyOWRlMDI5ZGI5OGFiN2I0ZTliZDIyMWMy
ODk5MWMwHhcNMjQwNTE3MTYwMzIwWhcNMjQwNTE4MTYwMzIwWjAzMTEwLwYDVQQD
EyhmNjQwZWMzNTc4YzliNWU3M2Y3YzM4ZWQ0ODVmYzlmMTdjMWJjYzMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvOatuMMfPyxP0dcHDdBUmT94WsO3
U2tlMZY2rLtdFomeb6X0diW7Na9Jweo9b6lMoeIIvpob11svHKnBioFoRtlR8w0G
lc/8zZA+ZB/4XyUGTegi2od6DHxE5zwo4D93PNktX9AwLXaSRWKqqbpqoWFh2xIR
shLgN8JRY5zMrbt8Fd/16/8NDk8ai/58w65lWODsdVDzPkTwWDMLBts0bo+JvQMi
OHRgo9evlkyHJB0KazVou60cktP4FMuhOa3BmXDxF+hPyq/K0V0wQiKURxRHcyTn
vONATWqgNILuldKFq+FQTnfrmwfelFdRKPMbSXQHQW6fEQotHKpiRPEO6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPZA7DV4ybXnP3w47UhfyfF8G8wzMB8GA1UdIwQY
MBaAFG2u8wKWKd4CnbmKt7TpvSIcKJkcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmE3ekFwWXAzZ0tkdVlxM3RPbTlJaHdvbVJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9iNzM0MTEtY2Y0ZS00OTk5LTlmNDIt
Y2RlNDA0ODA1YjEwLzEvYmE3ekFwWXAzZ0tkdVlxM3RPbTlJaHdvbVJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9iNzM0MTEtY2Y0ZS00OTk5LTlmNDItY2RlNDA0ODA1YjEw
LzEvYmE3ekFwWXAzZ0tkdVlxM3RPbTlJaHdvbVJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAxE5Xj3L
t0d3B24/YOSPRfAMfM7hm2BvCoYC2RT1082Ki1uVcYoOiZnI1I+jCuamZJrtvrDk
GrB5mUwFMgTQWFpzTb6Y697o/G0Xprg17tnHdMG/z0+j62J68QHZI+OaMVmSRHNf
K4jcQrLoqFsyAxtSMNbthTu0bm16bIX6kYoKamCwMVOePQvgMn58Z/Rqm7t8kQ8T
Mi1f9ukXGpmXztIa8aCs+nxzlwNWldejPXXl71sqnn5E1dhkeMhLoyQAU+v+41PS
LhranY1eeJNRKAJQQxnQ9CXU4UvGWMnuPsY/twscT4q6HKEgcq14LIt930OXQ5ww
/RYDx6Rmwku+LQ==
-----END CERTIFICATE-----