Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
File:                     dt0D59chnX68HyMPcGMtyRNvNBM.mft (raw, json)
Hash identifier:          gD5YBOaroihzEWXleidGgYNTUS7bWY8lfoVVP9dAxrw=
Subject key identifier:   C6:13:97:38:17:A3:F7:0F:3A:88:78:CA:71:EA:6E:13:88:6F:D3:8F
Authority key identifier: 76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13
Certificate issuer:       /CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413
Certificate serial:       0195116BBD6B5E3119E06ABE804BC50FC84C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
Manifest number:          0362
Signing time:             Mon 17 Feb 2025 01:00:28 +0000
Manifest this update:     Mon 17 Feb 2025 01:00:28 +0000
Manifest next update:     Tue 18 Feb 2025 01:00:28 +0000
Files and hashes:         1: dt0D59chnX68HyMPcGMtyRNvNBM.crl (hash: Q8U6wzVGFfT+xAuiT2a4SauBsMw2145Hkpr+QoCTXAw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:6b:bd:6b:5e:31:19:e0:6a:be:80:4b:c5:0f:c8:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=76dd03e7d7219d7ebc1f230f70632dc9136f3413
        Validity
            Not Before: Feb 17 01:00:28 2025 GMT
            Not After : Feb 18 01:00:28 2025 GMT
        Subject: CN=c613973817a3f70f3a8878ca71ea6e13886fd38f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:4b:31:48:34:7e:f6:51:c6:05:21:46:23:79:
                    ec:7d:83:ef:7b:5e:af:e1:72:5f:c6:4c:e8:ba:a1:
                    9e:84:ec:e9:18:80:85:e5:1e:22:67:a7:b7:e4:b9:
                    66:3d:48:c1:d9:83:c8:1d:9d:b2:35:4a:1d:ce:48:
                    b9:57:56:6b:af:6f:82:33:4f:d4:d3:11:00:c7:78:
                    86:8a:64:22:39:0c:09:8a:7d:8a:63:20:55:fb:ff:
                    d2:bb:b0:5b:81:23:0e:43:84:79:5b:15:39:fb:26:
                    7c:4e:25:8c:77:49:16:d5:80:60:ae:71:9c:79:e1:
                    e5:d0:a1:7e:6d:e1:9b:11:58:2f:9b:d9:89:5a:d7:
                    92:0e:fe:cc:95:43:49:e0:ed:82:80:5a:8a:0c:9b:
                    c6:27:74:b1:42:ab:b0:73:1d:c3:0f:e8:6d:ba:87:
                    a2:b2:4f:a8:44:cb:77:f2:dd:32:c3:cf:dc:77:82:
                    04:7b:a9:e4:6e:ba:ff:19:2c:db:33:6e:33:79:19:
                    8b:9d:df:1b:bb:76:ad:39:04:41:e8:c3:71:f7:d8:
                    bc:2c:28:8a:6b:43:8c:45:ad:2d:d5:7c:72:4a:ed:
                    59:50:36:f3:f4:d5:55:7c:26:9d:75:31:2a:ee:7d:
                    4e:d1:d8:84:c5:99:9e:65:8d:10:13:7c:c1:f5:61:
                    94:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:13:97:38:17:A3:F7:0F:3A:88:78:CA:71:EA:6E:13:88:6F:D3:8F
            X509v3 Authority Key Identifier:
                keyid:76:DD:03:E7:D7:21:9D:7E:BC:1F:23:0F:70:63:2D:C9:13:6F:34:13

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dt0D59chnX68HyMPcGMtyRNvNBM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/1426a1-b553-4da5-a6d9-ac0102793c5a/1/dt0D59chnX68HyMPcGMtyRNvNBM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3c:d3:ee:a8:e3:4a:a4:d7:e1:81:00:35:ff:8d:99:93:a2:2e:
         04:03:1e:7a:d5:63:ff:cc:35:4c:e6:7a:f8:31:55:b7:6b:73:
         f4:72:76:47:dc:1d:81:c5:ba:04:16:1d:f6:e3:ae:6e:88:9f:
         15:d1:04:51:d4:0e:cc:4c:bc:b3:ec:ce:f1:6f:b1:38:fd:3e:
         57:2c:78:ee:af:2d:54:a6:81:de:21:2f:4c:ee:15:77:6a:cd:
         b3:9d:a6:67:ef:b1:8e:7c:e8:ce:9c:ff:c6:05:c8:21:65:ac:
         d3:76:4f:3e:bd:c5:b4:87:ed:b9:47:77:5e:64:09:3f:23:b8:
         e6:04:32:5d:c3:f3:8a:6f:22:2b:6a:4f:58:cd:5e:4b:58:f8:
         7a:27:92:d2:e3:dd:9e:ac:a0:e6:f5:fb:46:9e:6c:e9:ed:2e:
         d6:e4:f3:e7:01:19:eb:d2:d3:af:be:36:57:8e:cd:0e:73:53:
         cd:f9:c9:a9:aa:9c:77:68:79:54:99:bb:29:c5:19:91:54:40:
         ac:5e:62:59:c1:38:09:99:4a:35:82:ed:7d:08:cb:52:8f:c8:
         d6:da:84:5a:2f:29:b7:ff:a3:b7:ab:2e:41:db:81:15:13:fb:
         ea:de:d3:89:f5:ff:5c:59:63:a2:e0:3b:0c:3e:7f:d5:42:3a:
         77:a7:d4:9d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURa71rXjEZ4Gq+gEvFD8hMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2ZGQwM2U3ZDcyMTlkN2ViYzFmMjMwZjcwNjMyZGM5MTM2
ZjM0MTMwHhcNMjUwMjE3MDEwMDI4WhcNMjUwMjE4MDEwMDI4WjAzMTEwLwYDVQQD
EyhjNjEzOTczODE3YTNmNzBmM2E4ODc4Y2E3MWVhNmUxMzg4NmZkMzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArksxSDR+9lHGBSFGI3nsfYPve16v
4XJfxkzouqGehOzpGICF5R4iZ6e35LlmPUjB2YPIHZ2yNUodzki5V1Zrr2+CM0/U
0xEAx3iGimQiOQwJin2KYyBV+//Su7BbgSMOQ4R5WxU5+yZ8TiWMd0kW1YBgrnGc
eeHl0KF+beGbEVgvm9mJWteSDv7MlUNJ4O2CgFqKDJvGJ3SxQquwcx3DD+htuoei
sk+oRMt38t0yw8/cd4IEe6nkbrr/GSzbM24zeRmLnd8bu3atOQRB6MNx99i8LCiK
a0OMRa0t1XxySu1ZUDbz9NVVfCaddTEq7n1O0diExZmeZY0QE3zB9WGUiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMYTlzgXo/cPOoh4ynHqbhOIb9OPMB8GA1UdIwQY
MBaAFHbdA+fXIZ1+vB8jD3BjLckTbzQTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZHQwRDU5Y2huWDY4SHlNUGNHTXR5Uk52TkJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC8xNDI2YTEtYjU1My00ZGE1LWE2ZDkt
YWMwMTAyNzkzYzVhLzEvZHQwRDU5Y2huWDY4SHlNUGNHTXR5Uk52TkJNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC8xNDI2YTEtYjU1My00ZGE1LWE2ZDktYWMwMTAyNzkzYzVh
LzEvZHQwRDU5Y2huWDY4SHlNUGNHTXR5Uk52TkJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPNPuqONK
pNfhgQA1/42Zk6IuBAMeetVj/8w1TOZ6+DFVt2tz9HJ2R9wdgcW6BBYd9uOuboif
FdEEUdQOzEy8s+zO8W+xOP0+Vyx47q8tVKaB3iEvTO4Vd2rNs52mZ++xjnzozpz/
xgXIIWWs03ZPPr3FtIftuUd3XmQJPyO45gQyXcPzim8iK2pPWM1eS1j4eieS0uPd
nqyg5vX7Rp5s6e0u1uTz5wEZ69LTr742V47NDnNTzfnJqaqcd2h5VJm7KcUZkVRA
rF5iWcE4CZlKNYLtfQjLUo/I1tqEWi8pt/+jt6suQduBFRP76t7TifX/XFljouA7
DD5/1UI6d6fUnQ==
-----END CERTIFICATE-----