Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft
File:                     a-5EwhI0JTYYsNeza5Djy1xA3tE.mft (raw, json)
Hash identifier:          TM4DCCz3SRq3/bGCp0wUBElf5ivOkVNrLY9LVM9VY7M=
Subject key identifier:   36:0E:09:90:CF:A6:35:45:49:B9:CF:1D:0A:B6:90:80:B9:33:04:92
Authority key identifier: 6B:EE:44:C2:12:34:25:36:18:B0:D7:B3:6B:90:E3:CB:5C:40:DE:D1
Certificate issuer:       /CN=6bee44c21234253618b0d7b36b90e3cb5c40ded1
Certificate serial:       018F87B69EEA43A3233ADB343A92C109FD59
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/a-5EwhI0JTYYsNeza5Djy1xA3tE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft
Manifest number:          1175
Signing time:             Fri 17 May 2024 18:00:43 +0000
Manifest this update:     Fri 17 May 2024 18:00:43 +0000
Manifest next update:     Sat 18 May 2024 18:00:43 +0000
Files and hashes:         1: a-5EwhI0JTYYsNeza5Djy1xA3tE.crl (hash: /WrFYnoiI+GY9OqEyWk8SkCydzA5UQo/1yXHrV71f+o=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/a-5EwhI0JTYYsNeza5Djy1xA3tE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:b6:9e:ea:43:a3:23:3a:db:34:3a:92:c1:09:fd:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6bee44c21234253618b0d7b36b90e3cb5c40ded1
        Validity
            Not Before: May 17 18:00:43 2024 GMT
            Not After : May 18 18:00:43 2024 GMT
        Subject: CN=360e0990cfa6354549b9cf1d0ab69080b9330492
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:cf:95:43:58:4a:a5:5c:ed:97:6d:5f:33:b2:
                    33:a4:6b:a9:f1:9d:6d:39:2f:73:5e:dc:ee:6b:8d:
                    f8:f2:eb:eb:40:0e:7f:58:0d:40:13:77:ba:85:e7:
                    85:eb:47:d5:5b:5b:d4:2c:ce:02:e9:4f:5b:b2:a0:
                    a8:60:e7:54:9e:5a:77:2f:03:f9:76:c5:bc:33:3e:
                    32:44:a8:29:86:c3:00:e9:b0:63:76:d2:78:05:5e:
                    90:0f:f0:37:1e:34:cd:cd:5e:21:4f:9e:e6:7c:17:
                    78:d8:a6:71:6d:8f:a8:fb:49:7e:08:aa:67:f7:5d:
                    84:2f:8f:96:1d:cd:1b:c8:15:5d:26:91:54:c7:88:
                    86:e5:a1:76:70:38:54:df:67:1d:65:6c:44:56:5e:
                    f5:6a:3c:ae:a7:5c:66:a8:f2:ae:f7:46:50:54:16:
                    5f:c3:61:c4:10:77:8e:85:7f:1d:c3:0d:a1:99:5e:
                    3f:c5:05:79:2e:73:0f:96:1c:8f:b8:78:e0:e2:d0:
                    c8:72:62:e5:1f:29:91:72:b9:96:ea:39:3a:32:19:
                    b6:0b:c7:e4:74:10:fa:6e:50:f0:d9:45:8c:3d:30:
                    cd:16:f1:5b:59:3c:ee:60:76:d2:6b:83:91:0d:cd:
                    03:c2:d2:65:52:e2:bf:37:88:70:fd:42:77:de:f1:
                    f7:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                36:0E:09:90:CF:A6:35:45:49:B9:CF:1D:0A:B6:90:80:B9:33:04:92
            X509v3 Authority Key Identifier:
                keyid:6B:EE:44:C2:12:34:25:36:18:B0:D7:B3:6B:90:E3:CB:5C:40:DE:D1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-5EwhI0JTYYsNeza5Djy1xA3tE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/0a710a-c800-4eae-a35b-769b3fc2664b/1/a-5EwhI0JTYYsNeza5Djy1xA3tE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:85:b6:d8:89:1f:4f:03:fa:d6:66:0d:09:5c:d8:36:11:3d:
         cd:df:40:80:ad:e8:4d:54:97:3c:83:28:24:83:94:05:7b:a3:
         67:f3:00:89:16:92:64:b9:77:13:ee:81:fe:5c:a1:8e:75:b1:
         eb:fa:f4:e7:21:53:1c:48:2c:41:e2:41:f1:2e:82:7b:b5:2f:
         3a:04:e3:e6:ee:a6:db:c0:32:e4:e1:2e:97:0a:c6:67:9a:5c:
         f8:ca:a2:db:42:13:5d:15:ce:81:1a:13:be:98:7b:79:9b:98:
         b7:ba:79:8d:c7:6a:4c:18:2e:a8:f7:93:28:68:33:b8:91:51:
         38:80:ae:62:f1:52:b5:ff:91:1b:fb:84:55:06:b0:da:8b:b4:
         8d:12:70:42:92:2f:e5:78:ef:53:0b:c3:3b:87:9b:80:ba:3a:
         b8:44:5a:6f:f2:71:f4:88:f5:ae:d6:35:22:61:43:0f:d4:8c:
         fc:54:18:7f:00:f9:03:88:10:6a:af:57:bb:f3:0e:3c:7b:02:
         b7:32:47:7a:15:12:f0:49:62:2a:c8:3a:b0:0d:87:2c:fc:a0:
         67:58:1f:13:18:35:bc:19:c4:21:a6:62:20:15:25:a4:03:7e:
         fc:5b:51:3a:1b:21:44:b9:69:44:8b:b7:56:7e:30:0a:ab:50:
         02:14:84:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Htp7qQ6MjOts0OpLBCf1ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZiZWU0NGMyMTIzNDI1MzYxOGIwZDdiMzZiOTBlM2NiNWM0
MGRlZDEwHhcNMjQwNTE3MTgwMDQzWhcNMjQwNTE4MTgwMDQzWjAzMTEwLwYDVQQD
EygzNjBlMDk5MGNmYTYzNTQ1NDliOWNmMWQwYWI2OTA4MGI5MzMwNDkyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtM+VQ1hKpVztl21fM7IzpGup8Z1t
OS9zXtzua4348uvrQA5/WA1AE3e6heeF60fVW1vULM4C6U9bsqCoYOdUnlp3LwP5
dsW8Mz4yRKgphsMA6bBjdtJ4BV6QD/A3HjTNzV4hT57mfBd42KZxbY+o+0l+CKpn
912EL4+WHc0byBVdJpFUx4iG5aF2cDhU32cdZWxEVl71ajyup1xmqPKu90ZQVBZf
w2HEEHeOhX8dww2hmV4/xQV5LnMPlhyPuHjg4tDIcmLlHymRcrmW6jk6Mhm2C8fk
dBD6blDw2UWMPTDNFvFbWTzuYHbSa4ORDc0DwtJlUuK/N4hw/UJ33vH3iwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDYOCZDPpjVFSbnPHQq2kIC5MwSSMB8GA1UdIwQY
MBaAFGvuRMISNCU2GLDXs2uQ48tcQN7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYS01RXdoSTBKVFlZc05lemE1RGp5MXhBM3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8wYTcxMGEtYzgwMC00ZWFlLWEzNWIt
NzY5YjNmYzI2NjRiLzEvYS01RXdoSTBKVFlZc05lemE1RGp5MXhBM3RFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi8wYTcxMGEtYzgwMC00ZWFlLWEzNWItNzY5YjNmYzI2NjRi
LzEvYS01RXdoSTBKVFlZc05lemE1RGp5MXhBM3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkIW22Ikf
TwP61mYNCVzYNhE9zd9AgK3oTVSXPIMoJIOUBXujZ/MAiRaSZLl3E+6B/lyhjnWx
6/r05yFTHEgsQeJB8S6Ce7UvOgTj5u6m28Ay5OEulwrGZ5pc+Mqi20ITXRXOgRoT
vph7eZuYt7p5jcdqTBguqPeTKGgzuJFROICuYvFStf+RG/uEVQaw2ou0jRJwQpIv
5XjvUwvDO4ebgLo6uERab/Jx9Ij1rtY1ImFDD9SM/FQYfwD5A4gQaq9Xu/MOPHsC
tzJHehUS8EliKsg6sA2HLPygZ1gfExg1vBnEIaZiIBUlpAN+/FtROhshRLlpRIu3
Vn4wCqtQAhSEmQ==
-----END CERTIFICATE-----