Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft
File:                     jRHN6i8zL8ztMzil3x-y30Uh-OI.mft (raw, json)
Hash identifier:          CwvbHy38cvVkGy+m2fJmI3Lw6LR8CFkq+8553XsqKhI=
Subject key identifier:   1E:47:D7:9C:51:42:82:EA:34:32:63:C2:7B:DB:1E:BA:DD:5C:B5:38
Authority key identifier: 8D:11:CD:EA:2F:33:2F:CC:ED:33:38:A5:DF:1F:B2:DF:45:21:F8:E2
Certificate issuer:       /CN=8d11cdea2f332fcced3338a5df1fb2df4521f8e2
Certificate serial:       019365FDFA555FA6B91583D214D491B143AA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jRHN6i8zL8ztMzil3x-y30Uh-OI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft
Manifest number:          0E8D
Signing time:             Tue 26 Nov 2024 01:02:43 +0000
Manifest this update:     Tue 26 Nov 2024 01:02:43 +0000
Manifest next update:     Wed 27 Nov 2024 01:02:43 +0000
Files and hashes:         1: jRHN6i8zL8ztMzil3x-y30Uh-OI.crl (hash: ebi1Fz1yE0Ep4EnVWQmcyC2gRJqmQmZZOZug3b4+ISo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jRHN6i8zL8ztMzil3x-y30Uh-OI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 26 Nov 2024 23:23:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:65:fd:fa:55:5f:a6:b9:15:83:d2:14:d4:91:b1:43:aa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8d11cdea2f332fcced3338a5df1fb2df4521f8e2
        Validity
            Not Before: Nov 26 01:02:43 2024 GMT
            Not After : Nov 27 01:02:43 2024 GMT
        Subject: CN=1e47d79c514282ea343263c27bdb1ebadd5cb538
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:81:73:94:57:b2:b7:b3:09:37:03:da:6b:68:
                    90:e0:d8:21:bb:21:8a:ac:b4:9b:10:23:68:02:3b:
                    74:62:f4:a0:85:f2:c3:d5:89:d3:ad:d4:8b:c0:03:
                    b0:47:f6:5e:b7:ce:94:f1:25:a5:bb:76:94:f9:b5:
                    c4:1c:cf:aa:08:2f:ec:50:a7:58:7c:eb:43:86:d8:
                    74:c1:96:17:03:1e:93:da:8d:05:ad:22:3e:dc:92:
                    f7:af:e5:90:29:6f:80:8e:f6:f2:d6:87:0a:08:2c:
                    62:c4:44:ae:0f:97:b8:1e:3e:a5:4c:da:55:16:bb:
                    f3:23:8e:ce:29:a2:10:aa:7a:0d:4a:11:46:fb:47:
                    2a:42:bf:9b:8c:a1:2f:da:2b:1a:59:ba:3f:e8:fd:
                    ec:9c:2f:e9:2c:89:37:b6:78:97:1a:b6:3a:f0:f2:
                    ef:97:d4:ff:86:05:14:73:bf:40:d0:f3:7e:7c:94:
                    5e:f3:79:28:a5:00:82:f9:56:d7:1e:7f:72:bd:b7:
                    f8:c1:64:7d:cb:00:3c:b0:a6:c8:1d:38:61:b4:2d:
                    c8:5a:6e:2b:4b:b4:88:13:b9:ee:51:69:d1:90:d4:
                    7b:4c:84:ee:c5:47:4c:29:a3:24:6d:ae:00:b0:e3:
                    c7:63:12:74:5d:c2:9a:81:42:89:79:ab:ca:75:ff:
                    2a:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:47:D7:9C:51:42:82:EA:34:32:63:C2:7B:DB:1E:BA:DD:5C:B5:38
            X509v3 Authority Key Identifier:
                keyid:8D:11:CD:EA:2F:33:2F:CC:ED:33:38:A5:DF:1F:B2:DF:45:21:F8:E2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRHN6i8zL8ztMzil3x-y30Uh-OI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/7dadd3-3e55-46be-94e1-c90658ebd697/1/jRHN6i8zL8ztMzil3x-y30Uh-OI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1a:ce:c7:7c:4c:de:73:09:92:f5:c5:34:57:ee:8a:9e:3c:94:
         24:9e:6d:16:db:c6:65:2d:ac:8b:6e:8f:b8:9d:98:b4:35:8b:
         ae:09:59:cb:bf:7d:5e:fc:bf:48:d5:e8:7b:66:1d:68:79:1d:
         e6:4c:3b:25:f6:51:22:26:97:4b:7f:91:a2:15:49:c3:ae:07:
         56:e5:1f:7c:db:d9:12:10:32:b4:73:4f:96:6b:a4:6a:ae:4e:
         e1:21:40:80:f9:f6:b3:fd:d8:10:67:d1:5c:3f:56:1e:7b:ef:
         22:f8:2a:b8:31:bf:3a:22:6b:e0:a2:4f:ed:90:eb:fe:70:7c:
         97:14:44:10:74:2a:14:28:83:fe:f1:48:9d:e8:48:2e:cf:12:
         82:d4:ba:55:27:53:65:e0:d0:6e:46:d7:e9:db:1f:45:e1:a9:
         7c:fb:3d:65:1f:e3:de:02:d1:c2:86:44:bb:db:6d:98:60:49:
         34:40:d3:1d:04:c9:1b:03:2c:d2:d2:4d:8e:08:4a:1c:f8:df:
         da:f4:50:ff:05:3d:4d:57:6b:ce:bf:db:f7:e4:90:0e:ba:43:
         de:a0:bd:f1:79:9e:38:8e:d0:c1:a7:60:4c:e4:a7:9d:6f:51:
         74:a7:3d:6a:89:97:c1:d3:6a:4e:88:cb:4a:bd:5d:58:d2:af:
         66:3d:b2:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNl/fpVX6a5FYPSFNSRsUOqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkMTFjZGVhMmYzMzJmY2NlZDMzMzhhNWRmMWZiMmRmNDUy
MWY4ZTIwHhcNMjQxMTI2MDEwMjQzWhcNMjQxMTI3MDEwMjQzWjAzMTEwLwYDVQQD
EygxZTQ3ZDc5YzUxNDI4MmVhMzQzMjYzYzI3YmRiMWViYWRkNWNiNTM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4FzlFeyt7MJNwPaa2iQ4NghuyGK
rLSbECNoAjt0YvSghfLD1YnTrdSLwAOwR/Zet86U8SWlu3aU+bXEHM+qCC/sUKdY
fOtDhth0wZYXAx6T2o0FrSI+3JL3r+WQKW+Ajvby1ocKCCxixESuD5e4Hj6lTNpV
FrvzI47OKaIQqnoNShFG+0cqQr+bjKEv2isaWbo/6P3snC/pLIk3tniXGrY68PLv
l9T/hgUUc79A0PN+fJRe83kopQCC+VbXHn9yvbf4wWR9ywA8sKbIHThhtC3IWm4r
S7SIE7nuUWnRkNR7TITuxUdMKaMkba4AsOPHYxJ0XcKagUKJeavKdf8qzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFB5H15xRQoLqNDJjwnvbHrrdXLU4MB8GA1UdIwQY
MBaAFI0RzeovMy/M7TM4pd8fst9FIfjiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvalJITjZpOHpMOHp0TXppbDN4LXkzMFVoLU9JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC83ZGFkZDMtM2U1NS00NmJlLTk0ZTEt
YzkwNjU4ZWJkNjk3LzEvalJITjZpOHpMOHp0TXppbDN4LXkzMFVoLU9JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC83ZGFkZDMtM2U1NS00NmJlLTk0ZTEtYzkwNjU4ZWJkNjk3
LzEvalJITjZpOHpMOHp0TXppbDN4LXkzMFVoLU9JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGs7HfEze
cwmS9cU0V+6KnjyUJJ5tFtvGZS2si26PuJ2YtDWLrglZy799Xvy/SNXoe2YdaHkd
5kw7JfZRIiaXS3+RohVJw64HVuUffNvZEhAytHNPlmukaq5O4SFAgPn2s/3YEGfR
XD9WHnvvIvgquDG/OiJr4KJP7ZDr/nB8lxREEHQqFCiD/vFInehILs8SgtS6VSdT
ZeDQbkbX6dsfReGpfPs9ZR/j3gLRwoZEu9ttmGBJNEDTHQTJGwMs0tJNjghKHPjf
2vRQ/wU9TVdrzr/b9+SQDrpD3qC98XmeOI7QwadgTOSnnW9RdKc9aomXwdNqTojL
Sr1dWNKvZj2yCw==
-----END CERTIFICATE-----