Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
File:                     dt0D59chnX68HyMPcGMtyRNvNBM.mft (raw, json)
Hash identifier:          vzEKLKoCdefZMIgyLB4npQC/APNxSbbPfywGXCnAKoQ=
Subject key identifier:   10:F5:DE:F8:CC:4E:9C:7C:86:0C:3A:05:08:F4:5A:13:BD:BC:6D:6B
Authority key identifier: 76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13
Certificate issuer:       /CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413
Certificate serial:       018F87ED91AC104C1CBB6F969A9054C63A49
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
Manifest number:          84
Signing time:             Fri 17 May 2024 19:00:44 +0000
Manifest this update:     Fri 17 May 2024 19:00:44 +0000
Manifest next update:     Sat 18 May 2024 19:00:44 +0000
Files and hashes:         1: dt0D59chnX68HyMPcGMtyRNvNBM.crl (hash: b17PLxY9zdWq64G8TbIj+p7CtH2M997SVaGN828bS4s=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:ed:91:ac:10:4c:1c:bb:6f:96:9a:90:54:c6:3a:49
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413
        Validity
            Not Before: May 17 19:00:44 2024 GMT
            Not After : May 18 19:00:44 2024 GMT
        Subject: CN=10f5def8cc4e9c7c860c3a0508f45a13bdbc6d6b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:87:db:9c:10:ef:dd:cf:a8:23:67:dd:40:69:
                    cf:fa:00:f3:0f:0a:c6:67:bc:98:d9:eb:64:a3:ae:
                    25:29:f1:ad:5f:b2:0a:ce:91:b7:ee:08:1b:42:27:
                    a3:ee:84:17:d3:7d:a0:f5:9b:4d:d5:f3:20:87:05:
                    29:51:3f:89:43:a8:30:28:13:04:4f:bd:db:ad:70:
                    ae:5b:4d:11:2a:d6:89:fa:e9:b6:80:84:f4:c5:5d:
                    b0:6a:70:07:07:dd:1e:0c:e7:28:5b:59:9c:4a:d1:
                    12:b5:07:a7:fb:b3:c0:e3:d2:da:3c:62:d8:98:09:
                    3e:1b:2a:43:dd:31:83:8f:a6:bb:0f:7e:ba:b0:69:
                    f0:b6:a3:cb:4d:8a:50:cc:27:93:3a:9d:af:88:2f:
                    bf:73:fa:98:ee:ce:60:ef:a2:b7:96:f2:ad:e4:59:
                    dc:74:e5:89:08:21:59:a2:0f:4a:63:ad:8e:e1:da:
                    aa:2a:8f:93:07:ac:e7:34:dd:16:0a:fe:d6:58:76:
                    83:b5:fb:66:36:b8:11:18:9b:2b:fe:e5:d0:aa:07:
                    a4:4c:cd:5a:59:34:98:6c:06:cc:0b:cb:82:1e:95:
                    12:e7:fa:9c:1e:c6:b0:fe:52:6f:e5:db:69:15:b9:
                    f6:e9:5f:d8:8c:f8:78:47:51:72:1f:9b:5c:77:04:
                    5e:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:F5:DE:F8:CC:4E:9C:7C:86:0C:3A:05:08:F4:5A:13:BD:BC:6D:6B
            X509v3 Authority Key Identifier:
                keyid:76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9f:c0:c3:7e:83:ec:5a:24:6b:b9:c0:fe:a4:b1:5c:c4:a0:da:
         32:10:35:c2:14:ff:6f:0f:b1:36:ec:c4:a6:6e:82:8b:ef:36:
         ab:46:f8:23:e6:99:ef:8d:c0:9b:26:df:9e:53:05:18:b1:bd:
         1c:8e:0e:cc:8f:fe:ac:a1:cb:8f:a5:c6:97:a5:af:3e:6a:9a:
         dd:f1:a0:42:e2:6e:67:36:f2:a1:bf:c9:a3:78:9b:dc:4f:9f:
         2e:d7:8c:f1:e7:88:cb:79:82:ed:fb:cc:a2:37:d3:62:85:80:
         7e:c4:77:b9:1a:1a:ed:3f:87:28:6d:4f:ba:05:f9:34:8c:1b:
         b8:a4:a1:e4:73:12:c4:14:15:1e:ca:a2:38:4f:cf:9a:73:b2:
         75:ad:74:ef:03:65:b3:b2:49:a2:56:43:7a:4f:a3:01:d4:85:
         1a:45:f9:dd:05:bd:04:49:b8:3a:45:60:8d:e4:b3:9e:3e:0b:
         73:d3:1b:a7:7c:86:c0:0d:04:67:4d:95:03:c6:52:7d:22:9b:
         f0:7e:f5:38:ea:99:d9:5b:ba:6a:9f:19:57:b8:2a:ed:1b:79:
         cd:d7:1c:99:d7:18:ef:24:92:c9:57:50:0b:5e:4e:4a:06:d6:
         9d:24:a8:a0:9d:89:fd:8a:62:24:7d:92:1f:9f:ea:2b:40:8f:
         53:cf:4e:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+H7ZGsEEwcu2+WmpBUxjpJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2ZGQwM2U3ZDcyMTlkN2ViYzFmMjMwZjcwNjMyZGM5MTM2
ZjM0MTMwHhcNMjQwNTE3MTkwMDQ0WhcNMjQwNTE4MTkwMDQ0WjAzMTEwLwYDVQQD
EygxMGY1ZGVmOGNjNGU5YzdjODYwYzNhMDUwOGY0NWExM2JkYmM2ZDZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk4fbnBDv3c+oI2fdQGnP+gDzDwrG
Z7yY2etko64lKfGtX7IKzpG37ggbQiej7oQX032g9ZtN1fMghwUpUT+JQ6gwKBME
T73brXCuW00RKtaJ+um2gIT0xV2wanAHB90eDOcoW1mcStEStQen+7PA49LaPGLY
mAk+GypD3TGDj6a7D366sGnwtqPLTYpQzCeTOp2viC+/c/qY7s5g76K3lvKt5Fnc
dOWJCCFZog9KY62O4dqqKo+TB6znNN0WCv7WWHaDtftmNrgRGJsr/uXQqgekTM1a
WTSYbAbMC8uCHpUS5/qcHsaw/lJv5dtpFbn26V/YjPh4R1FyH5tcdwReuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBD13vjMTpx8hgw6BQj0WhO9vG1rMB8GA1UdIwQY
MBaAFHbdA+fXIZ1+vB8jD3BjLckTbzQTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHQwRDU5Y2huWDY4SHlNUGNHTXR5Uk52TkJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8xNDI2YTEtYjU1My00ZGE1LWE2ZDkt
YWMwMTAyNzkzYzVhLzEvZHQwRDU5Y2huWDY4SHlNUGNHTXR5Uk52TkJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC8xNDI2YTEtYjU1My00ZGE1LWE2ZDktYWMwMTAyNzkzYzVh
LzEvZHQwRDU5Y2huWDY4SHlNUGNHTXR5Uk52TkJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn8DDfoPs
WiRrucD+pLFcxKDaMhA1whT/bw+xNuzEpm6Ci+82q0b4I+aZ743AmybfnlMFGLG9
HI4OzI/+rKHLj6XGl6WvPmqa3fGgQuJuZzbyob/Jo3ib3E+fLteM8eeIy3mC7fvM
ojfTYoWAfsR3uRoa7T+HKG1PugX5NIwbuKSh5HMSxBQVHsqiOE/PmnOyda107wNl
s7JJolZDek+jAdSFGkX53QW9BEm4OkVgjeSznj4Lc9Mbp3yGwA0EZ02VA8ZSfSKb
8H71OOqZ2Vu6ap8ZV7gq7Rt5zdccmdcY7ySSyVdQC15OSgbWnSSooJ2J/YpiJH2S
H5/qK0CPU89OIw==
-----END CERTIFICATE-----