Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft
File:                     oybRlH-kQ2NloBOsZ_TzKx_bqck.mft (raw, json)
Hash identifier:          vws7llHcr4mxPGvVy5mP08xe0oE+zBS4NgPd5pZjLuk=
Subject key identifier:   6B:FE:7B:D3:17:58:56:D3:1A:C1:BE:98:BE:6B:31:90:DD:41:BD:DB
Authority key identifier: A3:26:D1:94:7F:A4:43:63:65:A0:13:AC:67:F4:F3:2B:1F:DB:A9:C9
Certificate issuer:       /CN=a326d1947fa4436365a013ac67f4f32b1fdba9c9
Certificate serial:       018F8748E6D9B2A52D787018B9C9E597210D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oybRlH-kQ2NloBOsZ_TzKx_bqck.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft
Manifest number:          0E71
Signing time:             Fri 17 May 2024 16:00:52 +0000
Manifest this update:     Fri 17 May 2024 16:00:52 +0000
Manifest next update:     Sat 18 May 2024 16:00:52 +0000
Files and hashes:         1: oybRlH-kQ2NloBOsZ_TzKx_bqck.crl (hash: LFD8U7OS6hyWpV6ej6ObE+hl7x3QJpwTH0Xef/W8jE4=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oybRlH-kQ2NloBOsZ_TzKx_bqck.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:00:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:48:e6:d9:b2:a5:2d:78:70:18:b9:c9:e5:97:21:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a326d1947fa4436365a013ac67f4f32b1fdba9c9
        Validity
            Not Before: May 17 16:00:52 2024 GMT
            Not After : May 18 16:00:52 2024 GMT
        Subject: CN=6bfe7bd3175856d31ac1be98be6b3190dd41bddb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:a9:4e:d5:db:14:d1:67:2f:42:3d:e9:2a:36:
                    be:52:88:85:4f:21:96:06:e6:c9:a3:37:a3:69:8a:
                    1a:f6:e0:f5:db:f2:d3:a3:e1:33:ef:ab:87:44:a5:
                    8b:06:b6:2f:71:6f:68:64:70:f1:41:be:16:3b:a2:
                    35:a4:76:4c:96:39:28:40:db:c4:3e:15:2e:36:26:
                    aa:bd:a0:26:b5:eb:c6:02:c2:6e:23:dd:4a:87:6b:
                    86:94:69:76:54:36:67:5d:6b:e9:ff:b8:7d:6b:75:
                    db:a5:d9:7f:28:34:cb:e8:82:82:be:73:64:fb:03:
                    d3:b8:ae:3b:ef:2d:3a:a7:5b:39:78:d2:60:ec:18:
                    70:ba:a8:8d:47:92:72:a2:a0:0b:f7:f1:87:6f:9f:
                    39:a9:e8:b1:ef:8a:ec:47:62:41:b6:33:39:ee:c3:
                    7a:33:4b:a3:ea:ea:4d:c3:5e:85:d7:68:b6:66:94:
                    d4:ae:29:9f:e4:3e:29:8c:52:3f:61:1a:46:f5:81:
                    60:ae:29:13:7c:09:24:b3:03:39:99:87:ba:5e:43:
                    dd:e2:5a:6d:20:3f:b8:3c:00:b1:b4:29:1e:e5:9a:
                    32:b4:7b:37:0d:1d:0f:c8:79:37:21:1f:84:45:10:
                    f3:98:eb:37:4d:b7:ff:9d:52:a9:6a:0b:fc:8c:29:
                    09:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:FE:7B:D3:17:58:56:D3:1A:C1:BE:98:BE:6B:31:90:DD:41:BD:DB
            X509v3 Authority Key Identifier:
                keyid:A3:26:D1:94:7F:A4:43:63:65:A0:13:AC:67:F4:F3:2B:1F:DB:A9:C9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oybRlH-kQ2NloBOsZ_TzKx_bqck.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/057f9b-a03c-4ba3-9b7f-57d3dfa56407/1/oybRlH-kQ2NloBOsZ_TzKx_bqck.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         04:00:a9:f3:64:bb:3f:2f:b1:c6:ed:8b:04:f0:70:80:9f:c1:
         2a:d1:b7:d3:c6:73:3d:cc:32:cf:8a:8d:b4:e4:88:1a:ce:3b:
         0e:33:54:cb:04:e3:df:19:1a:1d:fe:a1:f3:be:f4:6c:7b:f5:
         b6:f9:82:4f:ae:71:18:7f:54:64:65:c7:0d:40:6c:c9:e7:2c:
         9d:c4:76:44:b1:2c:0e:9d:2a:a9:fc:fa:f0:69:f3:56:35:8e:
         16:81:0f:e8:67:22:aa:8a:14:67:ad:5b:c1:99:59:35:59:26:
         23:c8:e0:72:29:7d:e7:78:e8:32:b9:95:fc:eb:f6:13:93:4a:
         8a:84:fe:20:17:b6:b8:c1:7c:bd:46:2a:7f:6b:c2:19:0c:55:
         d3:7b:3c:f6:ff:28:8a:88:fa:f2:fa:ae:2d:1c:46:6e:3c:d2:
         6b:b1:3b:42:40:84:1f:83:88:0d:4e:39:c0:a7:a9:1c:52:63:
         3e:27:55:ad:49:20:c4:4d:f1:99:3e:cf:21:26:de:1e:95:db:
         18:30:d8:83:be:61:e1:f9:38:a3:28:07:fc:1d:fc:50:fd:9f:
         91:9c:93:24:1e:ac:a0:7a:3c:6f:cf:6e:d1:0d:47:0e:69:22:
         01:13:4d:a6:34:92:d5:95:9a:fc:d5:54:6c:c5:e1:c3:bd:4b:
         c4:d1:d7:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSObZsqUteHAYucnllyENMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzMjZkMTk0N2ZhNDQzNjM2NWEwMTNhYzY3ZjRmMzJiMWZk
YmE5YzkwHhcNMjQwNTE3MTYwMDUyWhcNMjQwNTE4MTYwMDUyWjAzMTEwLwYDVQQD
Eyg2YmZlN2JkMzE3NTg1NmQzMWFjMWJlOThiZTZiMzE5MGRkNDFiZGRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxKlO1dsU0WcvQj3pKja+UoiFTyGW
BubJozejaYoa9uD12/LTo+Ez76uHRKWLBrYvcW9oZHDxQb4WO6I1pHZMljkoQNvE
PhUuNiaqvaAmtevGAsJuI91Kh2uGlGl2VDZnXWvp/7h9a3Xbpdl/KDTL6IKCvnNk
+wPTuK477y06p1s5eNJg7BhwuqiNR5JyoqAL9/GHb585qeix74rsR2JBtjM57sN6
M0uj6upNw16F12i2ZpTUrimf5D4pjFI/YRpG9YFgrikTfAkkswM5mYe6XkPd4lpt
ID+4PACxtCke5ZoytHs3DR0PyHk3IR+ERRDzmOs3Tbf/nVKpagv8jCkJuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGv+e9MXWFbTGsG+mL5rMZDdQb3bMB8GA1UdIwQY
MBaAFKMm0ZR/pENjZaATrGf08ysf26nJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3liUmxILWtRMk5sb0JPc1pfVHpLeF9icWNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS8wNTdmOWItYTAzYy00YmEzLTliN2Yt
NTdkM2RmYTU2NDA3LzEvb3liUmxILWtRMk5sb0JPc1pfVHpLeF9icWNrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS8wNTdmOWItYTAzYy00YmEzLTliN2YtNTdkM2RmYTU2NDA3
LzEvb3liUmxILWtRMk5sb0JPc1pfVHpLeF9icWNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABACp82S7
Py+xxu2LBPBwgJ/BKtG308ZzPcwyz4qNtOSIGs47DjNUywTj3xkaHf6h8770bHv1
tvmCT65xGH9UZGXHDUBsyecsncR2RLEsDp0qqfz68GnzVjWOFoEP6GciqooUZ61b
wZlZNVkmI8jgcil953joMrmV/Ov2E5NKioT+IBe2uMF8vUYqf2vCGQxV03s89v8o
ioj68vquLRxGbjzSa7E7QkCEH4OIDU45wKepHFJjPidVrUkgxE3xmT7PISbeHpXb
GDDYg75h4fk4oygH/B38UP2fkZyTJB6soHo8b89u0Q1HDmkiARNNpjSS1ZWa/NVU
bMXhw71LxNHXBQ==
-----END CERTIFICATE-----