Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
File:                     4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft (raw, json)
Hash identifier:          LAy79vfRsZD81uQfsgLZSwu173PeXsKgKLXjYtXNrw4=
Subject key identifier:   FC:B6:FB:3B:56:F3:89:E8:9B:DA:2C:7C:BD:62:5E:46:A8:F7:B2:27
Authority key identifier: E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4
Certificate issuer:       /CN=e0b867131100c15de890110063e638a5f02367c4
Certificate serial:       018F351AA954CF0AD7FCBD5BF69D95A50973
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
Manifest number:          114C
Signing time:             Wed 01 May 2024 17:01:30 +0000
Manifest this update:     Wed 01 May 2024 17:01:30 +0000
Manifest next update:     Thu 02 May 2024 17:01:30 +0000
Files and hashes:         1: 4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl (hash: VP+nYvJ4MC4GQpZYZYsfN1LI7PMQANFWma1dyJ3Uceg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 02 May 2024 14:46:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:35:1a:a9:54:cf:0a:d7:fc:bd:5b:f6:9d:95:a5:09:73
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e0b867131100c15de890110063e638a5f02367c4
        Validity
            Not Before: May  1 17:01:30 2024 GMT
            Not After : May  2 17:01:30 2024 GMT
        Subject: CN=fcb6fb3b56f389e89bda2c7cbd625e46a8f7b227
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:9e:73:ac:df:93:25:f1:19:07:13:68:7a:73:
                    82:45:b0:87:a8:2e:bb:ae:a0:ec:f2:f3:11:d7:70:
                    f2:2a:0d:44:9d:0c:39:b1:62:92:82:bc:62:17:cb:
                    2d:e7:12:74:78:c0:7e:53:3b:ab:cb:aa:8d:c5:21:
                    d0:ad:64:0a:dc:56:8a:ec:b4:93:48:99:4b:c3:a2:
                    f0:d0:8d:65:6f:82:70:cc:12:4e:0f:f6:8f:3f:13:
                    79:a8:06:fc:5e:1a:73:c9:d6:c5:24:af:9c:a8:3b:
                    c6:4b:42:4a:30:1c:21:94:e6:43:bc:8a:8d:e1:2e:
                    99:c9:7f:66:a4:a3:39:55:3a:0d:82:6c:4f:b6:05:
                    e7:0a:61:9b:73:e9:0c:9d:ad:43:b8:65:d0:45:f7:
                    2e:46:46:57:ef:e1:06:49:98:7a:72:2e:fe:ec:14:
                    12:7a:3a:36:a2:9f:1c:9b:33:1d:aa:04:19:de:5b:
                    75:7d:0b:7d:ac:a0:ac:e8:b6:28:25:19:ab:d7:65:
                    0e:56:8c:96:86:ff:1b:17:05:15:d4:85:3a:d0:a8:
                    49:0d:08:f8:cd:28:06:ae:3e:1e:29:94:74:e9:b8:
                    6d:c8:c2:d5:c3:ee:c1:d4:b2:94:4a:7e:bf:fe:b3:
                    ec:6f:c4:9d:55:55:2c:f5:96:81:97:0c:35:98:2b:
                    a0:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:B6:FB:3B:56:F3:89:E8:9B:DA:2C:7C:BD:62:5E:46:A8:F7:B2:27
            X509v3 Authority Key Identifier:
                keyid:E0:B8:67:13:11:00:C1:5D:E8:90:11:00:63:E6:38:A5:F0:23:67:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/eee521-25fa-4006-9531-1e044814518f/1/4LhnExEAwV3okBEAY-Y4pfAjZ8Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:2c:94:db:5f:09:46:4a:cd:7e:14:30:b0:c0:b0:e3:22:0b:
         e6:51:ad:f6:5e:4b:09:29:f5:10:40:71:6c:97:4f:0e:2a:23:
         75:97:4d:2f:d0:b0:93:e8:16:d6:d6:9c:2d:98:d2:06:4f:a9:
         f0:e3:ed:5f:eb:7b:2f:ca:ab:2d:14:a5:f0:3b:cd:2c:35:f5:
         0c:6c:b3:e2:b7:20:ab:8a:eb:e6:2c:56:da:45:19:ee:bd:d6:
         b8:d0:a8:8b:78:18:34:00:d5:ae:1f:4a:ff:3c:2c:24:a6:3c:
         8d:01:69:a4:d4:96:68:91:9a:5a:fb:2d:2a:a6:31:59:14:c2:
         d6:fc:b8:e2:20:d5:db:f6:f5:fc:6f:e4:52:6e:9e:f3:12:c4:
         51:46:81:c2:da:00:0f:61:10:8b:6e:7c:7d:53:75:34:70:2a:
         8f:57:e3:56:6b:dd:75:7d:9c:c4:c3:56:57:ee:08:56:8c:90:
         2f:15:47:5b:24:09:3c:7c:8d:40:fb:9b:a6:a0:7c:fc:26:e1:
         d3:7b:3b:e7:54:f9:12:02:4a:e7:74:8c:9e:a9:e9:63:2b:97:
         0a:55:26:85:9e:e3:97:7a:4c:4b:d0:1b:a3:69:d5:e7:4b:99:
         50:4e:a1:0b:eb:8f:b7:94:e0:d1:df:32:08:f8:b1:6d:9e:cb:
         3e:2d:b5:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY81GqlUzwrX/L1b9p2VpQlzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUwYjg2NzEzMTEwMGMxNWRlODkwMTEwMDYzZTYzOGE1ZjAy
MzY3YzQwHhcNMjQwNTAxMTcwMTMwWhcNMjQwNTAyMTcwMTMwWjAzMTEwLwYDVQQD
EyhmY2I2ZmIzYjU2ZjM4OWU4OWJkYTJjN2NiZDYyNWU0NmE4ZjdiMjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1p5zrN+TJfEZBxNoenOCRbCHqC67
rqDs8vMR13DyKg1EnQw5sWKSgrxiF8st5xJ0eMB+Uzury6qNxSHQrWQK3FaK7LST
SJlLw6Lw0I1lb4JwzBJOD/aPPxN5qAb8XhpzydbFJK+cqDvGS0JKMBwhlOZDvIqN
4S6ZyX9mpKM5VToNgmxPtgXnCmGbc+kMna1DuGXQRfcuRkZX7+EGSZh6ci7+7BQS
ejo2op8cmzMdqgQZ3lt1fQt9rKCs6LYoJRmr12UOVoyWhv8bFwUV1IU60KhJDQj4
zSgGrj4eKZR06bhtyMLVw+7B1LKUSn6//rPsb8SdVVUs9ZaBlww1mCug7QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPy2+ztW84nom9osfL1iXkao97InMB8GA1UdIwQY
MBaAFOC4ZxMRAMFd6JARAGPmOKXwI2fEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNExobkV4RUF3VjNva0JFQVktWTRwZkFqWjhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9lZWU1MjEtMjVmYS00MDA2LTk1MzEt
MWUwNDQ4MTQ1MThmLzEvNExobkV4RUF3VjNva0JFQVktWTRwZkFqWjhRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9lZWU1MjEtMjVmYS00MDA2LTk1MzEtMWUwNDQ4MTQ1MThm
LzEvNExobkV4RUF3VjNva0JFQVktWTRwZkFqWjhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATSyU218J
RkrNfhQwsMCw4yIL5lGt9l5LCSn1EEBxbJdPDiojdZdNL9Cwk+gW1tacLZjSBk+p
8OPtX+t7L8qrLRSl8DvNLDX1DGyz4rcgq4rr5ixW2kUZ7r3WuNCoi3gYNADVrh9K
/zwsJKY8jQFppNSWaJGaWvstKqYxWRTC1vy44iDV2/b1/G/kUm6e8xLEUUaBwtoA
D2EQi258fVN1NHAqj1fjVmvddX2cxMNWV+4IVoyQLxVHWyQJPHyNQPubpqB8/Cbh
03s751T5EgJK53SMnqnpYyuXClUmhZ7jl3pMS9Abo2nV50uZUE6hC+uPt5Tg0d8y
CPixbZ7LPi215g==
-----END CERTIFICATE-----