Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
File:                     IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft (raw, json)
Hash identifier:          j8IX+ceasOOkOwnHnvsm1iaIdlR0vRcdwDcFhhwp8VU=
Subject key identifier:   C4:4C:BD:09:27:72:C7:4B:1C:A3:E4:C1:C1:AC:F1:6D:3D:D4:D3:3B
Authority key identifier: 22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D
Certificate issuer:       /CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
Certificate serial:       019022A3D91DA0DEB0590CE3A351C1954D7A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
Manifest number:          0799
Signing time:             Sun 16 Jun 2024 20:01:21 +0000
Manifest this update:     Sun 16 Jun 2024 20:01:21 +0000
Manifest next update:     Mon 17 Jun 2024 20:01:21 +0000
Files and hashes:         1: IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl (hash: c5H4kxKnsI4Orau47T86gkLZ1KVFDPBUv+zm8mwLY2U=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Jun 2024 17:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:22:a3:d9:1d:a0:de:b0:59:0c:e3:a3:51:c1:95:4d:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=22fbef695fa95d0c95909e51aa1fab94fc40267d
        Validity
            Not Before: Jun 16 20:01:21 2024 GMT
            Not After : Jun 17 20:01:21 2024 GMT
        Subject: CN=c44cbd092772c74b1ca3e4c1c1acf16d3dd4d33b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:79:5a:59:0e:76:fd:54:ab:79:69:33:3f:68:
                    25:46:f5:92:20:24:cc:0f:b5:67:2b:46:6b:51:b3:
                    75:28:55:00:79:9c:cc:b6:84:1a:d3:c0:1b:1a:0f:
                    79:ae:ba:cb:76:a2:37:f1:2b:19:03:42:6e:9f:b2:
                    cc:e3:0b:35:f7:d2:79:b7:4f:84:77:f6:ae:47:1c:
                    7a:8e:92:cf:80:97:c7:33:1a:7d:2e:fc:40:33:49:
                    e4:42:28:2d:a8:e1:82:f9:75:c6:49:aa:62:ce:d3:
                    83:49:a9:f0:89:eb:ce:fa:28:e5:4b:19:ef:bd:45:
                    f1:94:04:10:b6:a0:b2:ec:28:75:f1:01:4c:06:5c:
                    9a:e9:0a:5a:04:84:95:97:0b:0d:68:b2:75:57:dc:
                    26:bc:ec:a4:ee:a5:50:13:3e:9b:41:65:a0:4e:25:
                    10:23:49:e3:f5:99:0a:37:94:fd:41:85:e5:09:7b:
                    cb:b7:b7:d1:46:c2:c8:04:06:e9:ec:ed:21:41:36:
                    53:95:de:b8:65:6a:b2:7e:92:4e:08:d1:98:67:40:
                    9c:aa:e8:93:a6:61:74:f7:2c:d7:58:73:b6:f5:29:
                    0d:13:ac:ba:59:ee:3f:e7:64:d7:dc:2d:83:36:fe:
                    9b:3f:bc:8d:70:f8:23:74:78:cd:4c:55:06:d6:d6:
                    99:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:4C:BD:09:27:72:C7:4B:1C:A3:E4:C1:C1:AC:F1:6D:3D:D4:D3:3B
            X509v3 Authority Key Identifier:
                keyid:22:FB:EF:69:5F:A9:5D:0C:95:90:9E:51:AA:1F:AB:94:FC:40:26:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/82/87aa20-222c-4acb-b291-f629508c072d/1/IvvvaV-pXQyVkJ5Rqh-rlPxAJn0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         21:c9:97:e7:d1:4e:b9:ff:90:65:3c:ea:70:3f:35:17:df:7a:
         50:d0:7c:cb:3f:9e:03:aa:3d:44:82:31:29:be:a2:7a:8c:f4:
         96:cc:57:25:a1:05:07:b0:1b:b3:e6:ab:84:fc:33:d2:6a:0a:
         2e:8c:64:01:65:85:75:ec:bb:45:c4:0f:d6:eb:f2:d5:98:fb:
         64:4d:d8:0e:cb:8e:53:81:e5:92:ca:40:dd:f6:f8:63:c9:72:
         bd:bd:3b:d4:ae:8b:1f:4b:53:02:bf:b4:30:dd:83:d9:ba:46:
         c0:72:e9:3d:09:bb:8b:ac:1a:70:0d:6c:43:5e:e4:5a:4e:e9:
         e2:5f:16:b1:f8:16:56:ac:27:f8:a3:e5:fd:fa:51:d1:bb:cb:
         f7:e8:62:46:c8:07:5a:4b:fc:83:65:76:2f:20:6e:7d:03:ad:
         96:f6:36:07:64:d5:de:30:68:3d:88:40:28:31:fa:80:1f:47:
         06:b3:f0:9b:06:41:08:2f:84:89:37:a6:7b:d9:7c:11:ac:b0:
         30:c0:61:70:67:35:f5:54:90:1a:41:12:1b:38:16:1a:05:ce:
         ab:10:08:bc:a2:6c:b0:67:d3:f0:90:50:08:54:ac:c3:57:29:
         d0:b8:1e:ca:f6:4d:82:7f:96:32:49:a5:12:88:2e:d2:1f:f4:
         e2:cc:8a:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAio9kdoN6wWQzjo1HBlU16MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyZmJlZjY5NWZhOTVkMGM5NTkwOWU1MWFhMWZhYjk0ZmM0
MDI2N2QwHhcNMjQwNjE2MjAwMTIxWhcNMjQwNjE3MjAwMTIxWjAzMTEwLwYDVQQD
EyhjNDRjYmQwOTI3NzJjNzRiMWNhM2U0YzFjMWFjZjE2ZDNkZDRkMzNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnlaWQ52/VSreWkzP2glRvWSICTM
D7VnK0ZrUbN1KFUAeZzMtoQa08AbGg95rrrLdqI38SsZA0Jun7LM4ws199J5t0+E
d/auRxx6jpLPgJfHMxp9LvxAM0nkQigtqOGC+XXGSapiztODSanwievO+ijlSxnv
vUXxlAQQtqCy7Ch18QFMBlya6QpaBISVlwsNaLJ1V9wmvOyk7qVQEz6bQWWgTiUQ
I0nj9ZkKN5T9QYXlCXvLt7fRRsLIBAbp7O0hQTZTld64ZWqyfpJOCNGYZ0CcquiT
pmF09yzXWHO29SkNE6y6We4/52TX3C2DNv6bP7yNcPgjdHjNTFUG1taZBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMRMvQkncsdLHKPkwcGs8W091NM7MB8GA1UdIwQY
MBaAFCL772lfqV0MlZCeUaofq5T8QCZ9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXZ2dmFWLXBYUXlWa0o1UnFoLXJsUHhBSm4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi84N2FhMjAtMjIyYy00YWNiLWIyOTEt
ZjYyOTUwOGMwNzJkLzEvSXZ2dmFWLXBYUXlWa0o1UnFoLXJsUHhBSm4wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi84N2FhMjAtMjIyYy00YWNiLWIyOTEtZjYyOTUwOGMwNzJk
LzEvSXZ2dmFWLXBYUXlWa0o1UnFoLXJsUHhBSm4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIcmX59FO
uf+QZTzqcD81F996UNB8yz+eA6o9RIIxKb6ieoz0lsxXJaEFB7Abs+arhPwz0moK
LoxkAWWFdey7RcQP1uvy1Zj7ZE3YDsuOU4HlkspA3fb4Y8lyvb071K6LH0tTAr+0
MN2D2bpGwHLpPQm7i6wacA1sQ17kWk7p4l8WsfgWVqwn+KPl/fpR0bvL9+hiRsgH
Wkv8g2V2LyBufQOtlvY2B2TV3jBoPYhAKDH6gB9HBrPwmwZBCC+EiTeme9l8Eayw
MMBhcGc19VSQGkESGzgWGgXOqxAIvKJssGfT8JBQCFSsw1cp0LgeyvZNgn+WMkml
Eogu0h/04syKxw==
-----END CERTIFICATE-----