Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft
File:                     biYdnc3dmGfliSrRpNII32lTEXc.mft (raw, json)
Hash identifier:          /48zuTVzVRnGUkoqjpQErTYMc5ajVkP4u9momKiAUYM=
Subject key identifier:   8F:EC:AD:15:2A:E7:75:5E:DF:1E:7B:08:B1:C7:3C:4B:5C:CA:3F:16
Authority key identifier: 6E:26:1D:9D:CD:DD:98:67:E5:89:2A:D1:A4:D2:08:DF:69:53:11:77
Certificate issuer:       /CN=6e261d9dcddd9867e5892ad1a4d208df69531177
Certificate serial:       019369DACF26BF378A3E3E3BFF90BC91742C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/biYdnc3dmGfliSrRpNII32lTEXc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft
Manifest number:          0BD7
Signing time:             Tue 26 Nov 2024 19:02:47 +0000
Manifest this update:     Tue 26 Nov 2024 19:02:47 +0000
Manifest next update:     Wed 27 Nov 2024 19:02:47 +0000
Files and hashes:         1: biYdnc3dmGfliSrRpNII32lTEXc.crl (hash: vK4WfXqNOwP5yWERhB3Wzv2T3w5hWlJv4S8peFXwMxg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/biYdnc3dmGfliSrRpNII32lTEXc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:da:cf:26:bf:37:8a:3e:3e:3b:ff:90:bc:91:74:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6e261d9dcddd9867e5892ad1a4d208df69531177
        Validity
            Not Before: Nov 26 19:02:47 2024 GMT
            Not After : Nov 27 19:02:47 2024 GMT
        Subject: CN=8fecad152ae7755edf1e7b08b1c73c4b5cca3f16
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:6d:f7:3b:ae:a3:a5:aa:f9:e5:ce:2f:e3:77:
                    30:b2:4c:40:bc:2e:3a:e9:dd:8f:27:65:dd:cb:79:
                    56:65:5d:fc:80:51:fd:f7:af:3f:e4:e3:2c:c3:ee:
                    fe:fc:cf:2b:c8:59:21:ea:af:d6:36:19:f1:be:b4:
                    e5:98:d4:35:07:5d:4b:43:27:cf:80:2a:5c:e8:75:
                    6e:be:53:47:07:75:ab:10:d3:22:1f:fc:4f:3e:d2:
                    bb:45:3e:01:e5:36:85:13:c7:fa:27:50:49:9e:74:
                    f8:ce:5d:ab:96:8e:5d:72:d6:59:81:46:23:02:84:
                    54:86:ba:7c:17:f8:27:b4:b0:99:a0:1b:82:12:89:
                    5c:7a:ce:25:54:85:a7:5d:8e:f1:e9:f5:e2:97:56:
                    74:58:3e:29:c7:e4:f0:60:cc:1d:ec:a8:d4:db:6c:
                    7c:fc:58:3f:05:9b:a9:05:f0:f8:bc:c1:79:74:0c:
                    6c:3a:2e:57:75:0e:2d:9c:53:4b:71:96:b1:0e:0b:
                    d0:78:bc:98:65:f5:ef:a7:86:fe:4f:3f:c6:c6:69:
                    42:c1:3b:20:7c:e1:cb:a8:1f:19:0a:64:4a:8a:36:
                    50:26:07:e5:d8:ca:61:c7:4f:f0:3d:49:42:f3:e5:
                    25:78:7b:0a:61:a7:22:df:a4:48:57:8d:90:74:71:
                    3f:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:EC:AD:15:2A:E7:75:5E:DF:1E:7B:08:B1:C7:3C:4B:5C:CA:3F:16
            X509v3 Authority Key Identifier:
                keyid:6E:26:1D:9D:CD:DD:98:67:E5:89:2A:D1:A4:D2:08:DF:69:53:11:77

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/biYdnc3dmGfliSrRpNII32lTEXc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7f52d8-c2ca-4a7f-bd63-fba565238129/1/biYdnc3dmGfliSrRpNII32lTEXc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:d5:cc:66:68:5d:52:71:66:de:86:84:b3:ca:a0:2e:34:72:
         64:df:1e:ae:38:e6:16:b8:af:66:73:68:43:5c:69:b8:22:b9:
         2c:67:e8:85:23:ba:e8:06:61:f8:c1:9f:bb:fa:08:b7:40:a4:
         bc:36:4e:f1:3e:14:de:cb:d4:a3:97:16:a7:20:89:7c:d2:dd:
         27:84:f4:92:e7:1b:23:f5:8d:8a:07:50:f4:05:f4:f8:be:b9:
         86:7d:b6:ca:ef:54:57:69:ce:4f:01:7b:5c:b8:c0:42:8c:fe:
         d7:dc:0e:84:67:e1:2f:f7:e5:50:b9:72:6d:01:7e:b7:94:23:
         59:7e:5f:0a:e3:0a:87:cc:49:67:6c:71:7f:eb:a5:76:86:8b:
         39:07:7d:ca:e7:33:c9:16:cc:84:2d:75:c6:8b:fa:6f:a5:e1:
         9e:9c:31:96:9a:37:71:dc:b5:7b:bd:58:df:3a:6f:2d:bd:3d:
         c9:55:77:3d:7e:be:8b:69:0b:a5:74:f3:c9:19:f2:44:7d:e6:
         0a:31:ac:7f:9a:89:98:ef:af:54:69:53:09:86:fa:09:45:e1:
         ac:7c:59:37:d0:6d:57:e0:34:a2:87:a1:97:95:b7:e3:a6:3c:
         1f:36:a2:1a:5e:d5:5f:5f:53:1c:80:72:9b:da:46:de:84:a9:
         f3:6a:24:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2s8mvzeKPj47/5C8kXQsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlMjYxZDlkY2RkZDk4NjdlNTg5MmFkMWE0ZDIwOGRmNjk1
MzExNzcwHhcNMjQxMTI2MTkwMjQ3WhcNMjQxMTI3MTkwMjQ3WjAzMTEwLwYDVQQD
Eyg4ZmVjYWQxNTJhZTc3NTVlZGYxZTdiMDhiMWM3M2M0YjVjY2EzZjE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1W33O66jpar55c4v43cwskxAvC46
6d2PJ2Xdy3lWZV38gFH9968/5OMsw+7+/M8ryFkh6q/WNhnxvrTlmNQ1B11LQyfP
gCpc6HVuvlNHB3WrENMiH/xPPtK7RT4B5TaFE8f6J1BJnnT4zl2rlo5dctZZgUYj
AoRUhrp8F/gntLCZoBuCEolces4lVIWnXY7x6fXil1Z0WD4px+TwYMwd7KjU22x8
/Fg/BZupBfD4vMF5dAxsOi5XdQ4tnFNLcZaxDgvQeLyYZfXvp4b+Tz/GxmlCwTsg
fOHLqB8ZCmRKijZQJgfl2Mphx0/wPUlC8+UleHsKYaci36RIV42QdHE/2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI/srRUq53Ve3x57CLHHPEtcyj8WMB8GA1UdIwQY
MBaAFG4mHZ3N3Zhn5Ykq0aTSCN9pUxF3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmlZZG5jM2RtR2ZsaVNyUnBOSUkzMmxURVhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi83ZjUyZDgtYzJjYS00YTdmLWJkNjMt
ZmJhNTY1MjM4MTI5LzEvYmlZZG5jM2RtR2ZsaVNyUnBOSUkzMmxURVhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMi83ZjUyZDgtYzJjYS00YTdmLWJkNjMtZmJhNTY1MjM4MTI5
LzEvYmlZZG5jM2RtR2ZsaVNyUnBOSUkzMmxURVhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU9XMZmhd
UnFm3oaEs8qgLjRyZN8erjjmFrivZnNoQ1xpuCK5LGfohSO66AZh+MGfu/oIt0Ck
vDZO8T4U3svUo5cWpyCJfNLdJ4T0kucbI/WNigdQ9AX0+L65hn22yu9UV2nOTwF7
XLjAQoz+19wOhGfhL/flULlybQF+t5QjWX5fCuMKh8xJZ2xxf+uldoaLOQd9yucz
yRbMhC11xov6b6Xhnpwxlpo3cdy1e71Y3zpvLb09yVV3PX6+i2kLpXTzyRnyRH3m
CjGsf5qJmO+vVGlTCYb6CUXhrHxZN9BtV+A0ooehl5W346Y8HzaiGl7VX19THIBy
m9pG3oSp82ok7g==
-----END CERTIFICATE-----