Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft
File:                     jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft (raw, json)
Hash identifier:          AQqxycfLLLierlKVXgVrBHneLPDTUJPBc8c2n5g87JA=
Subject key identifier:   92:45:D6:F9:ED:1F:6C:54:5C:3B:EF:12:B1:0A:AC:8F:68:81:8D:BB
Authority key identifier: 8C:57:DC:C7:E5:2F:58:B3:42:B7:0C:83:DA:A2:1A:10:6A:C5:92:91
Certificate issuer:       /CN=8c57dcc7e52f58b342b70c83daa21a106ac59291
Certificate serial:       018F87496EB458D1EF96E764549F28EEAAB6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/jFfcx-UvWLNCtwyD2qIaEGrFkpE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft
Manifest number:          0392
Signing time:             Fri 17 May 2024 16:01:27 +0000
Manifest this update:     Fri 17 May 2024 16:01:27 +0000
Manifest next update:     Sat 18 May 2024 16:01:27 +0000
Files and hashes:         1: jFfcx-UvWLNCtwyD2qIaEGrFkpE.crl (hash: q8nGa2NvH0v3dnEhsSfZW0GUIHq2uXHtF8BvgR2frbg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/jFfcx-UvWLNCtwyD2qIaEGrFkpE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:01:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:49:6e:b4:58:d1:ef:96:e7:64:54:9f:28:ee:aa:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8c57dcc7e52f58b342b70c83daa21a106ac59291
        Validity
            Not Before: May 17 16:01:27 2024 GMT
            Not After : May 18 16:01:27 2024 GMT
        Subject: CN=9245d6f9ed1f6c545c3bef12b10aac8f68818dbb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:dc:b3:c4:af:43:e8:73:e8:89:fd:1b:11:6a:
                    73:ea:1d:9c:6b:8d:67:ef:82:4c:7d:8c:eb:96:26:
                    4b:ca:2e:91:76:11:b3:1d:73:f9:37:f4:11:6b:79:
                    66:3d:1a:90:1e:90:d4:60:18:f2:1a:0e:66:ca:ac:
                    86:50:fc:10:82:62:4b:c1:7e:28:17:4f:f8:f3:81:
                    20:1e:7c:a4:f5:3d:2b:31:2d:8b:99:5e:7a:d1:33:
                    c5:b2:35:af:49:84:8d:1e:e0:a9:ca:57:02:a7:35:
                    2f:da:bc:26:a2:52:7f:ee:70:cd:d4:e3:f2:12:a1:
                    65:bc:7b:2c:80:60:0b:9a:7e:db:69:e5:e1:79:04:
                    0a:9e:74:35:0d:93:e2:59:7d:b2:06:57:d7:9f:89:
                    95:70:f0:2a:28:e1:86:52:90:aa:05:8f:fe:e0:2d:
                    5f:32:69:c9:d2:0f:7f:3e:64:ed:89:ae:b3:be:ee:
                    5f:1b:54:97:86:65:26:2b:9a:7c:ea:a4:42:b9:4c:
                    8d:1e:3f:fc:33:39:6e:f3:0d:83:32:21:6c:04:ea:
                    00:b8:8c:46:5c:43:69:53:13:e7:9c:48:96:a3:f2:
                    c0:3b:75:bc:87:93:93:8e:4d:7e:dc:06:44:29:9a:
                    2c:a7:b6:aa:3f:fd:83:e5:b8:c7:b2:d2:4a:f5:02:
                    68:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:45:D6:F9:ED:1F:6C:54:5C:3B:EF:12:B1:0A:AC:8F:68:81:8D:BB
            X509v3 Authority Key Identifier:
                keyid:8C:57:DC:C7:E5:2F:58:B3:42:B7:0C:83:DA:A2:1A:10:6A:C5:92:91

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jFfcx-UvWLNCtwyD2qIaEGrFkpE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/db/e83399-0a14-42ac-9fd6-41306c27d6f0/1/jFfcx-UvWLNCtwyD2qIaEGrFkpE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:71:95:78:b5:a6:4c:06:c4:0c:1e:ba:ed:87:34:8a:45:24:
         f4:17:9f:a3:ce:52:38:b0:66:f9:ab:a5:61:d9:15:9d:4a:c5:
         4b:54:16:79:46:9b:73:f5:14:5f:b1:ad:b3:c3:ce:89:90:3f:
         e7:c2:cb:df:f1:97:88:9c:9b:b2:9a:33:04:06:19:4c:13:46:
         1e:9e:10:a2:63:05:01:12:e8:a7:ad:d9:f6:b8:66:cd:54:66:
         0e:49:30:dc:27:03:51:79:0b:e7:dc:c5:8d:41:d1:8e:d9:0d:
         7c:37:b8:97:a9:25:c5:b8:17:48:c4:64:a8:08:e7:c7:1e:6a:
         e8:6e:07:1e:f9:6e:9d:ee:95:0a:c1:ed:48:68:20:e4:9a:f4:
         89:df:93:1a:d5:2e:44:60:ed:48:74:17:25:3a:16:54:67:84:
         1c:d5:e3:fe:82:e3:10:a6:0f:7f:6c:16:2a:89:47:f7:e0:1b:
         4b:01:9e:26:3a:56:69:d3:5a:01:fd:7d:aa:af:14:e5:7f:fc:
         88:1d:a9:86:95:ed:38:b3:0b:04:fd:c8:4d:f0:e7:f4:ac:cf:
         75:1a:4f:c2:ab:19:e8:87:13:c3:76:54:45:3f:60:2d:7e:c0:
         d0:b9:c4:e5:b8:be:ba:ef:42:8e:2e:d6:64:fc:d0:90:55:ec:
         21:e3:5f:84
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSW60WNHvludkVJ8o7qq2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhjNTdkY2M3ZTUyZjU4YjM0MmI3MGM4M2RhYTIxYTEwNmFj
NTkyOTEwHhcNMjQwNTE3MTYwMTI3WhcNMjQwNTE4MTYwMTI3WjAzMTEwLwYDVQQD
Eyg5MjQ1ZDZmOWVkMWY2YzU0NWMzYmVmMTJiMTBhYWM4ZjY4ODE4ZGJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqdyzxK9D6HPoif0bEWpz6h2ca41n
74JMfYzrliZLyi6RdhGzHXP5N/QRa3lmPRqQHpDUYBjyGg5myqyGUPwQgmJLwX4o
F0/484EgHnyk9T0rMS2LmV560TPFsjWvSYSNHuCpylcCpzUv2rwmolJ/7nDN1OPy
EqFlvHssgGALmn7baeXheQQKnnQ1DZPiWX2yBlfXn4mVcPAqKOGGUpCqBY/+4C1f
MmnJ0g9/PmTtia6zvu5fG1SXhmUmK5p86qRCuUyNHj/8Mzlu8w2DMiFsBOoAuIxG
XENpUxPnnEiWo/LAO3W8h5OTjk1+3AZEKZosp7aqP/2D5bjHstJK9QJolQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJJF1vntH2xUXDvvErEKrI9ogY27MB8GA1UdIwQY
MBaAFIxX3MflL1izQrcMg9qiGhBqxZKRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvakZmY3gtVXZXTE5DdHd5RDJxSWFFR3JGa3BFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9lODMzOTktMGExNC00MmFjLTlmZDYt
NDEzMDZjMjdkNmYwLzEvakZmY3gtVXZXTE5DdHd5RDJxSWFFR3JGa3BFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9lODMzOTktMGExNC00MmFjLTlmZDYtNDEzMDZjMjdkNmYw
LzEvakZmY3gtVXZXTE5DdHd5RDJxSWFFR3JGa3BFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhXGVeLWm
TAbEDB667Yc0ikUk9Befo85SOLBm+aulYdkVnUrFS1QWeUabc/UUX7Gts8POiZA/
58LL3/GXiJybspozBAYZTBNGHp4QomMFARLop63Z9rhmzVRmDkkw3CcDUXkL59zF
jUHRjtkNfDe4l6klxbgXSMRkqAjnxx5q6G4HHvlune6VCsHtSGgg5Jr0id+TGtUu
RGDtSHQXJToWVGeEHNXj/oLjEKYPf2wWKolH9+AbSwGeJjpWadNaAf19qq8U5X/8
iB2phpXtOLMLBP3ITfDn9KzPdRpPwqsZ6IcTw3ZURT9gLX7A0LnE5bi+uu9Cji7W
ZPzQkFXsIeNfhA==
-----END CERTIFICATE-----