Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.mft
File:                     NfSbXVBQALkJkyxrT0Q-fvgdeA0.mft (raw, json)
Hash identifier:          cDA5Vj2G2SK+mvknC++XFuGuCwAxAXaVB0jU4J+WAHs=
Subject key identifier:   E3:AF:AA:D7:5E:E8:79:17:B9:52:3E:7C:23:A2:CD:F6:12:FF:2F:4B
Authority key identifier: 35:F4:9B:5D:50:50:00:B9:09:93:2C:6B:4F:44:3E:7E:F8:1D:78:0D
Certificate issuer:       /CN=35f49b5d505000b909932c6b4f443e7ef81d780d
Certificate serial:       018F87B68E422AD433C5BFDCDB022D1594CE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NfSbXVBQALkJkyxrT0Q-fvgdeA0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.mft
Manifest number:          1173
Signing time:             Fri 17 May 2024 18:00:39 +0000
Manifest this update:     Fri 17 May 2024 18:00:39 +0000
Manifest next update:     Sat 18 May 2024 18:00:39 +0000
Files and hashes:         1: NfSbXVBQALkJkyxrT0Q-fvgdeA0.crl (hash: 9Sl26WigRYKeI+ywTTmDG/JjdYqGmlX77enFb0Jfcz0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NfSbXVBQALkJkyxrT0Q-fvgdeA0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:b6:8e:42:2a:d4:33:c5:bf:dc:db:02:2d:15:94:ce
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=35f49b5d505000b909932c6b4f443e7ef81d780d
        Validity
            Not Before: May 17 18:00:39 2024 GMT
            Not After : May 18 18:00:39 2024 GMT
        Subject: CN=e3afaad75ee87917b9523e7c23a2cdf612ff2f4b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:04:4c:a1:62:1b:f9:68:45:bd:70:a8:bd:b4:
                    0b:bf:0b:eb:d6:31:2d:34:d1:d3:72:3e:85:35:03:
                    0d:88:07:ef:88:66:64:36:c9:8c:ec:f6:3f:f4:a7:
                    3e:a3:72:ce:6e:e5:a0:cb:2a:79:df:fd:7c:ee:01:
                    87:7b:00:aa:8a:62:28:c7:8a:13:81:46:81:74:8b:
                    37:97:31:1f:86:50:13:32:3c:e7:44:5f:6a:18:f0:
                    a0:ed:be:8f:b6:29:20:44:04:2d:56:4e:6c:83:85:
                    2b:3b:cf:7d:2e:41:f0:d0:20:82:1d:a6:95:55:b0:
                    c5:70:35:e2:c9:52:3f:5d:75:c2:c3:20:8a:22:e9:
                    12:10:5c:c6:c0:11:4f:af:5c:5d:59:0c:49:93:94:
                    46:e9:a9:be:26:8e:e7:9d:4f:15:83:4e:b1:91:5f:
                    32:7d:4d:17:ea:42:86:a2:3d:73:aa:68:23:d1:03:
                    68:e2:fc:8e:47:ff:84:25:40:c2:f1:12:eb:9e:47:
                    81:4f:96:83:4b:b8:6a:d1:06:e6:e5:bd:54:1b:68:
                    13:8f:02:1c:c1:1f:9e:77:7e:4d:e1:d4:9e:2e:b6:
                    cc:fd:73:61:c1:be:02:77:17:d6:ca:cf:45:14:23:
                    13:9d:9e:30:c5:a9:a6:d4:1c:41:5c:54:d8:77:12:
                    3c:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:AF:AA:D7:5E:E8:79:17:B9:52:3E:7C:23:A2:CD:F6:12:FF:2F:4B
            X509v3 Authority Key Identifier:
                keyid:35:F4:9B:5D:50:50:00:B9:09:93:2C:6B:4F:44:3E:7E:F8:1D:78:0D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NfSbXVBQALkJkyxrT0Q-fvgdeA0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:6f:96:cc:5c:26:28:76:c2:6d:4c:c8:1e:dc:bd:04:d3:46:
         b3:ca:fe:43:db:fb:35:64:79:ab:38:60:e0:dc:ac:8a:81:fc:
         a6:bb:35:a0:bb:e5:b8:39:54:54:ce:da:b8:63:2d:56:0a:f2:
         5a:6d:ed:fc:14:ea:5a:2f:b6:f2:46:5c:da:83:4b:9b:34:32:
         6e:18:70:09:b8:d3:24:53:6d:f9:9f:be:65:db:58:da:0c:b0:
         d0:19:61:59:3f:0c:a0:73:7f:26:ae:c7:2a:74:95:b8:6f:0e:
         93:50:16:d9:65:44:5a:d0:c0:ea:06:52:2a:d6:65:4e:5b:80:
         25:69:7c:d3:8e:4b:41:4e:4f:30:8b:f1:ef:75:b1:b9:89:f1:
         09:0d:68:e3:6d:f9:98:42:b6:49:14:3b:09:0c:62:f7:30:41:
         06:3c:75:c8:b3:53:6f:c6:b1:b0:1b:03:4b:e7:c8:2c:b6:f8:
         42:98:e7:55:36:e5:54:0a:40:40:0d:84:49:ed:25:d0:3a:91:
         ab:f8:7c:2c:ec:c4:0d:c9:f0:2e:d0:50:ca:89:8a:bf:91:f1:
         fe:ab:5b:48:36:eb:41:33:b6:d3:58:6d:19:dc:12:f1:8b:de:
         d4:a5:15:07:41:7e:d1:49:7b:3f:30:3c:00:48:d0:b2:cb:c1:
         fe:e4:06:fe
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+Hto5CKtQzxb/c2wItFZTOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1ZjQ5YjVkNTA1MDAwYjkwOTkzMmM2YjRmNDQzZTdlZjgx
ZDc4MGQwHhcNMjQwNTE3MTgwMDM5WhcNMjQwNTE4MTgwMDM5WjAzMTEwLwYDVQQD
EyhlM2FmYWFkNzVlZTg3OTE3Yjk1MjNlN2MyM2EyY2RmNjEyZmYyZjRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwRMoWIb+WhFvXCovbQLvwvr1jEt
NNHTcj6FNQMNiAfviGZkNsmM7PY/9Kc+o3LObuWgyyp53/187gGHewCqimIox4oT
gUaBdIs3lzEfhlATMjznRF9qGPCg7b6PtikgRAQtVk5sg4UrO899LkHw0CCCHaaV
VbDFcDXiyVI/XXXCwyCKIukSEFzGwBFPr1xdWQxJk5RG6am+Jo7nnU8Vg06xkV8y
fU0X6kKGoj1zqmgj0QNo4vyOR/+EJUDC8RLrnkeBT5aDS7hq0Qbm5b1UG2gTjwIc
wR+ed35N4dSeLrbM/XNhwb4CdxfWys9FFCMTnZ4wxamm1BxBXFTYdxI8TQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOOvqtde6HkXuVI+fCOizfYS/y9LMB8GA1UdIwQY
MBaAFDX0m11QUAC5CZMsa09EPn74HXgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmZTYlhWQlFBTGtKa3l4clQwUS1mdmdkZUEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9iMzkyMTctMjVkMy00MDFkLWExZDEt
MDJiM2RlODM0YmY0LzEvTmZTYlhWQlFBTGtKa3l4clQwUS1mdmdkZUEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMy9iMzkyMTctMjVkMy00MDFkLWExZDEtMDJiM2RlODM0YmY0
LzEvTmZTYlhWQlFBTGtKa3l4clQwUS1mdmdkZUEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS2+WzFwm
KHbCbUzIHty9BNNGs8r+Q9v7NWR5qzhg4NysioH8prs1oLvluDlUVM7auGMtVgry
Wm3t/BTqWi+28kZc2oNLmzQybhhwCbjTJFNt+Z++ZdtY2gyw0BlhWT8MoHN/Jq7H
KnSVuG8Ok1AW2WVEWtDA6gZSKtZlTluAJWl8045LQU5PMIvx73WxuYnxCQ1o4235
mEK2SRQ7CQxi9zBBBjx1yLNTb8axsBsDS+fILLb4QpjnVTblVApAQA2ESe0l0DqR
q/h8LOzEDcnwLtBQyomKv5Hx/qtbSDbrQTO201htGdwS8Yve1KUVB0F+0Ul7PzA8
AEjQssvB/uQG/g==
-----END CERTIFICATE-----