Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
File:                     tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft (raw, json)
Hash identifier:          lm8jt9ManfuGY2zQVlNaELQuZ8pRc2sloqoHZRDc5+o=
Subject key identifier:   33:30:11:5C:89:D4:11:6C:4E:D1:0D:1A:BF:6D:84:36:B3:27:E2:FB
Authority key identifier: B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6
Certificate issuer:       /CN=b69aaef1cea19f2f926f570961545cfe4ed69af6
Certificate serial:       019356890F037555C7F177E1B7C113A742C2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
Manifest number:          0310
Signing time:             Sat 23 Nov 2024 01:00:42 +0000
Manifest this update:     Sat 23 Nov 2024 01:00:42 +0000
Manifest next update:     Sun 24 Nov 2024 01:00:42 +0000
Files and hashes:         1: tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl (hash: 5KbTRar8nDJItayxc2l/DJHMLQzTxnrwLwCaG5TMda8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 01:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:56:89:0f:03:75:55:c7:f1:77:e1:b7:c1:13:a7:42:c2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b69aaef1cea19f2f926f570961545cfe4ed69af6
        Validity
            Not Before: Nov 23 01:00:42 2024 GMT
            Not After : Nov 24 01:00:42 2024 GMT
        Subject: CN=3330115c89d4116c4ed10d1abf6d8436b327e2fb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:7f:15:4c:33:21:86:b9:d2:6f:db:c3:a8:a7:
                    38:27:ec:ff:54:5b:d3:a6:18:20:1c:7a:ff:2b:c8:
                    93:72:fa:31:5e:2a:60:6f:51:1a:ee:e0:0f:9f:af:
                    09:29:d0:5a:1a:d8:6a:e4:f2:da:3d:64:f3:6f:3e:
                    5a:ef:b3:7b:0e:89:8e:5d:bf:9b:33:ba:7e:1c:10:
                    34:99:94:51:b7:29:56:59:7a:e8:b0:b7:37:67:74:
                    4f:5e:57:f8:f7:69:3c:68:ac:69:c0:c8:8c:9a:0e:
                    04:ce:a6:4b:62:97:68:5f:36:7e:b4:d7:e9:98:15:
                    f5:29:d4:85:f3:d7:94:44:81:25:ed:3a:60:c9:20:
                    66:9d:e9:1b:43:d2:da:e0:14:09:e9:4a:55:2a:3d:
                    b2:43:5f:9a:cf:87:7d:01:90:bc:37:5e:72:17:9c:
                    bb:ef:55:ed:60:0d:77:fc:30:a2:be:a9:58:18:9e:
                    4b:92:f8:24:60:80:c3:97:da:50:b3:29:fd:87:3a:
                    94:87:22:20:7d:54:95:b2:99:77:a7:49:dc:46:fc:
                    c3:7d:97:96:ab:e7:31:4e:3f:42:f1:f6:df:cc:88:
                    36:95:b6:57:65:af:a5:f9:37:3b:05:2e:dd:fb:f6:
                    45:2a:ce:40:fa:ae:de:4c:25:21:c7:2d:d8:88:61:
                    f5:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:30:11:5C:89:D4:11:6C:4E:D1:0D:1A:BF:6D:84:36:B3:27:E2:FB
            X509v3 Authority Key Identifier:
                keyid:B6:9A:AE:F1:CE:A1:9F:2F:92:6F:57:09:61:54:5C:FE:4E:D6:9A:F6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpqu8c6hny-Sb1cJYVRc_k7WmvY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f01712-72bb-4088-8b61-7fe20f2efed4/1/tpqu8c6hny-Sb1cJYVRc_k7WmvY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d7:4a:d3:c3:5b:d4:98:7f:64:82:7e:2b:75:bf:bb:b0:ab:ef:
         72:6c:c2:69:dc:7a:57:c8:14:04:f6:b6:8a:0a:bb:f9:cb:86:
         a2:9a:46:95:e7:98:eb:07:13:77:2d:b6:37:02:d5:a5:3f:2b:
         88:b6:30:72:03:eb:8a:9a:e0:b8:fa:dd:ed:3b:2e:bb:2d:da:
         8e:15:89:87:80:aa:3a:e3:e9:b0:cb:20:02:7d:3e:99:13:25:
         5c:39:3f:a6:fa:4b:a5:a4:39:96:1e:6b:61:a1:a2:ea:17:54:
         85:ca:40:a3:82:1d:9c:d1:59:25:78:22:6a:4b:55:f9:12:9b:
         34:66:c3:bd:5f:a4:77:69:43:af:fd:49:c7:01:d9:0f:60:7d:
         ab:63:2d:be:e9:18:43:57:71:9c:dc:bd:9a:02:5e:40:c9:93:
         06:1c:33:f6:c5:15:3b:0c:ff:6a:3e:9b:9f:b1:59:b9:39:2c:
         91:5d:de:a5:6e:dc:93:a5:a3:fa:3b:f4:b1:71:98:a2:02:8c:
         a9:6a:7e:7f:26:3c:46:06:39:32:42:91:d4:dd:b0:ce:b9:4e:
         8e:1d:ca:b9:90:42:6c:ca:9f:3a:ba:12:85:3d:a2:80:b7:06:
         4d:92:8b:27:1a:65:86:b4:62:53:58:30:42:34:da:f5:e1:3a:
         6f:af:39:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNWiQ8DdVXH8Xfht8ETp0LCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2OWFhZWYxY2VhMTlmMmY5MjZmNTcwOTYxNTQ1Y2ZlNGVk
NjlhZjYwHhcNMjQxMTIzMDEwMDQyWhcNMjQxMTI0MDEwMDQyWjAzMTEwLwYDVQQD
EygzMzMwMTE1Yzg5ZDQxMTZjNGVkMTBkMWFiZjZkODQzNmIzMjdlMmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp38VTDMhhrnSb9vDqKc4J+z/VFvT
phggHHr/K8iTcvoxXipgb1Ea7uAPn68JKdBaGthq5PLaPWTzbz5a77N7DomOXb+b
M7p+HBA0mZRRtylWWXrosLc3Z3RPXlf492k8aKxpwMiMmg4EzqZLYpdoXzZ+tNfp
mBX1KdSF89eURIEl7TpgySBmnekbQ9La4BQJ6UpVKj2yQ1+az4d9AZC8N15yF5y7
71XtYA13/DCivqlYGJ5LkvgkYIDDl9pQsyn9hzqUhyIgfVSVspl3p0ncRvzDfZeW
q+cxTj9C8fbfzIg2lbZXZa+l+Tc7BS7d+/ZFKs5A+q7eTCUhxy3YiGH1nwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDMwEVyJ1BFsTtENGr9thDazJ+L7MB8GA1UdIwQY
MBaAFLaarvHOoZ8vkm9XCWFUXP5O1pr2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHBxdThjNmhueS1TYjFjSllWUmNfazdXbXZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mMDE3MTItNzJiYi00MDg4LThiNjEt
N2ZlMjBmMmVmZWQ0LzEvdHBxdThjNmhueS1TYjFjSllWUmNfazdXbXZZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9mMDE3MTItNzJiYi00MDg4LThiNjEtN2ZlMjBmMmVmZWQ0
LzEvdHBxdThjNmhueS1TYjFjSllWUmNfazdXbXZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA10rTw1vU
mH9kgn4rdb+7sKvvcmzCadx6V8gUBPa2igq7+cuGoppGleeY6wcTdy22NwLVpT8r
iLYwcgPriprguPrd7Tsuuy3ajhWJh4CqOuPpsMsgAn0+mRMlXDk/pvpLpaQ5lh5r
YaGi6hdUhcpAo4IdnNFZJXgiaktV+RKbNGbDvV+kd2lDr/1JxwHZD2B9q2MtvukY
Q1dxnNy9mgJeQMmTBhwz9sUVOwz/aj6bn7FZuTkskV3epW7ck6Wj+jv0sXGYogKM
qWp+fyY8RgY5MkKR1N2wzrlOjh3KuZBCbMqfOroShT2igLcGTZKLJxplhrRiU1gw
QjTa9eE6b685DA==
-----END CERTIFICATE-----