Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft
File:                     HdGoMITMB7cxuvkdqvMTbC9rddM.mft (raw, json)
Hash identifier:          kR85RXs9sNbbz3eA/iG+DnqSmgNNv0n1hyIVCnBMNLE=
Subject key identifier:   D6:FD:C3:2E:E4:53:58:AC:E7:F5:65:6D:75:B1:8B:F3:87:91:CD:FB
Authority key identifier: 1D:D1:A8:30:84:CC:07:B7:31:BA:F9:1D:AA:F3:13:6C:2F:6B:75:D3
Certificate issuer:       /CN=1dd1a83084cc07b731baf91daaf3136c2f6b75d3
Certificate serial:       0191FAED8C8E0138DEAC0CBD0C29C208E7FD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft
Manifest number:          0E8A
Signing time:             Mon 16 Sep 2024 13:02:37 +0000
Manifest this update:     Mon 16 Sep 2024 13:02:37 +0000
Manifest next update:     Tue 17 Sep 2024 13:02:37 +0000
Files and hashes:         1: HdGoMITMB7cxuvkdqvMTbC9rddM.crl (hash: imBNgdxWkW++tPxZRgvZpsRfqUUriri3sWC4sY2W67c=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 17 Sep 2024 13:02:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:91:fa:ed:8c:8e:01:38:de:ac:0c:bd:0c:29:c2:08:e7:fd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1dd1a83084cc07b731baf91daaf3136c2f6b75d3
        Validity
            Not Before: Sep 16 13:02:37 2024 GMT
            Not After : Sep 17 13:02:37 2024 GMT
        Subject: CN=d6fdc32ee45358ace7f5656d75b18bf38791cdfb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:5d:d1:b6:d0:06:e0:68:a3:5a:16:29:5f:1d:
                    a4:13:b6:f7:af:84:f0:cb:bd:49:95:f2:2e:01:20:
                    96:93:53:ec:c8:33:82:3e:b7:97:f2:d9:25:47:e5:
                    a1:15:55:4a:5e:7e:1e:7b:05:cf:fe:19:1d:9c:b9:
                    8f:8b:2c:08:e1:d1:90:a7:fb:05:c7:57:05:96:d1:
                    71:e9:7f:1a:75:fe:3d:73:07:cd:33:1f:d0:38:c3:
                    ae:b7:b7:63:f1:25:47:f4:01:db:d2:28:c6:fa:61:
                    56:9d:2a:c5:87:d7:13:ee:59:0a:6e:3d:8f:fe:4c:
                    af:e8:da:19:1e:70:4c:91:1e:80:17:64:08:f0:7a:
                    ee:0f:73:b2:b0:e7:5f:09:2a:7d:f5:24:06:fb:ef:
                    17:0c:d5:aa:93:09:01:4b:8a:5a:cb:cf:fb:91:94:
                    39:4a:8b:d7:c2:d0:eb:b7:f2:8f:0f:48:23:ac:b9:
                    6b:c8:36:cb:0e:f8:92:ee:25:cf:5c:7a:6d:6e:fc:
                    ab:09:e2:aa:a8:b0:c3:3b:a4:61:c9:69:7b:ea:55:
                    4f:4f:c3:ef:19:91:ad:d1:16:c0:c7:e9:a7:13:62:
                    dc:ba:7f:a3:3c:a3:f6:fb:88:a1:8d:49:75:30:35:
                    38:17:b8:67:03:2e:6c:ca:fb:e5:19:f6:1b:0c:17:
                    f1:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:FD:C3:2E:E4:53:58:AC:E7:F5:65:6D:75:B1:8B:F3:87:91:CD:FB
            X509v3 Authority Key Identifier:
                keyid:1D:D1:A8:30:84:CC:07:B7:31:BA:F9:1D:AA:F3:13:6C:2F:6B:75:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HdGoMITMB7cxuvkdqvMTbC9rddM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5d0928-e68f-4e19-b226-4036278b43f9/1/HdGoMITMB7cxuvkdqvMTbC9rddM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         46:46:38:0c:6d:70:c3:36:5f:13:85:27:f6:cd:6c:d3:f7:d1:
         f1:b0:a7:4b:45:8a:1b:5e:c7:1e:d8:c3:7d:4b:a0:66:0d:ea:
         f0:47:b9:2e:ec:83:59:0f:32:5d:a1:ab:d0:d4:ba:38:c7:09:
         51:35:ae:cd:4c:3f:56:8c:df:62:b6:5c:92:26:a8:67:81:72:
         52:77:e4:85:6f:e3:be:84:3e:14:ee:fe:26:84:d4:82:3a:9f:
         f3:a9:75:bd:39:7b:5c:24:2e:2d:02:bb:b9:74:7f:c7:6a:44:
         b4:16:a2:a0:a7:27:2b:4f:ec:5b:65:be:fe:a0:8d:b6:e1:7c:
         d3:41:5b:a9:71:c3:60:87:c6:87:53:ed:96:84:68:78:67:cb:
         d0:b1:d4:44:2e:26:70:c0:9f:9e:77:72:62:fa:b6:99:9e:92:
         83:e4:f9:99:0d:7d:85:74:ea:b5:53:a2:52:af:46:89:67:af:
         26:4e:d2:05:e9:64:e3:b2:36:42:a6:54:54:8d:a2:9f:0c:1c:
         5f:92:63:d4:98:72:4c:d6:12:5b:55:97:a1:b6:81:52:7f:f6:
         c0:a7:0e:31:07:02:d4:ed:f8:7e:64:0b:47:ec:dc:ca:63:a5:
         c9:55:10:d0:3c:f6:af:03:9c:b6:7b:cd:ea:35:58:74:88:09:
         d9:c7:c5:e6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZH67YyOATjerAy9DCnCCOf9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZDFhODMwODRjYzA3YjczMWJhZjkxZGFhZjMxMzZjMmY2
Yjc1ZDMwHhcNMjQwOTE2MTMwMjM3WhcNMjQwOTE3MTMwMjM3WjAzMTEwLwYDVQQD
EyhkNmZkYzMyZWU0NTM1OGFjZTdmNTY1NmQ3NWIxOGJmMzg3OTFjZGZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7l3RttAG4GijWhYpXx2kE7b3r4Tw
y71JlfIuASCWk1PsyDOCPreX8tklR+WhFVVKXn4eewXP/hkdnLmPiywI4dGQp/sF
x1cFltFx6X8adf49cwfNMx/QOMOut7dj8SVH9AHb0ijG+mFWnSrFh9cT7lkKbj2P
/kyv6NoZHnBMkR6AF2QI8HruD3OysOdfCSp99SQG++8XDNWqkwkBS4pay8/7kZQ5
SovXwtDrt/KPD0gjrLlryDbLDviS7iXPXHptbvyrCeKqqLDDO6RhyWl76lVPT8Pv
GZGt0RbAx+mnE2Lcun+jPKP2+4ihjUl1MDU4F7hnAy5syvvlGfYbDBfxxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNb9wy7kU1is5/VlbXWxi/OHkc37MB8GA1UdIwQY
MBaAFB3RqDCEzAe3Mbr5HarzE2wva3XTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS81ZDA5MjgtZTY4Zi00ZTE5LWIyMjYt
NDAzNjI3OGI0M2Y5LzEvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS81ZDA5MjgtZTY4Zi00ZTE5LWIyMjYtNDAzNjI3OGI0M2Y5
LzEvSGRHb01JVE1CN2N4dXZrZHF2TVRiQzlyZGRNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARkY4DG1w
wzZfE4Un9s1s0/fR8bCnS0WKG17HHtjDfUugZg3q8Ee5LuyDWQ8yXaGr0NS6OMcJ
UTWuzUw/VozfYrZckiaoZ4FyUnfkhW/jvoQ+FO7+JoTUgjqf86l1vTl7XCQuLQK7
uXR/x2pEtBaioKcnK0/sW2W+/qCNtuF800FbqXHDYIfGh1PtloRoeGfL0LHURC4m
cMCfnndyYvq2mZ6Sg+T5mQ19hXTqtVOiUq9GiWevJk7SBelk47I2QqZUVI2inwwc
X5Jj1JhyTNYSW1WXobaBUn/2wKcOMQcC1O34fmQLR+zcymOlyVUQ0Dz2rwOctnvN
6jVYdIgJ2cfF5g==
-----END CERTIFICATE-----