Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
File:                     uvzQImt58j3kemr95RRLGynii1w.mft (raw, json)
Hash identifier:          JzDzNtInklYcUjiJfI/eYlpJpzk/2KOStaUxgg531TY=
Subject key identifier:   B2:2E:78:8B:3A:A1:02:AA:AE:54:42:34:00:6C:BC:44:91:E0:10:1A
Authority key identifier: BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C
Certificate issuer:       /CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c
Certificate serial:       0194C42C1343C032B17B23A3E2A09AC60A53
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
Manifest number:          0605
Signing time:             Sun 02 Feb 2025 01:00:10 +0000
Manifest this update:     Sun 02 Feb 2025 01:00:10 +0000
Manifest next update:     Mon 03 Feb 2025 01:00:10 +0000
Files and hashes:         1: uvzQImt58j3kemr95RRLGynii1w.crl (hash: /G3eO3HH6JDPhJb+APcewxy6Xd+LsGA8DCfKrszgywI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 03 Feb 2025 00:00:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:c4:2c:13:43:c0:32:b1:7b:23:a3:e2:a0:9a:c6:0a:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bafcd0226b79f23de47a6afde5144b1b29e28b5c
        Validity
            Not Before: Feb  2 01:00:10 2025 GMT
            Not After : Feb  3 01:00:10 2025 GMT
        Subject: CN=b22e788b3aa102aaae544234006cbc4491e0101a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:99:f8:af:4e:7e:49:d0:59:90:9d:5d:dd:9a:
                    87:f2:80:3b:6d:ca:c6:f5:84:d5:ae:c9:22:e0:e9:
                    d9:5e:bd:0a:2b:3f:31:30:9b:9c:46:4e:b0:6c:19:
                    7b:7b:5d:87:b0:3c:0f:5a:60:6b:d8:9e:81:25:30:
                    71:d1:84:52:b7:1b:8b:e0:3d:36:e7:65:4d:71:66:
                    b5:f1:3d:99:85:87:12:9a:39:c0:1b:3e:ce:38:15:
                    df:a0:ff:61:aa:99:38:9d:05:4d:bd:ef:7f:44:f2:
                    39:14:de:d4:49:de:41:79:fd:b7:f9:78:fa:6f:da:
                    a1:7b:f0:d2:d1:92:79:05:c4:3a:ae:b1:15:4b:5f:
                    81:6b:57:f0:ce:ef:19:dc:b2:d1:4f:a5:d3:db:94:
                    81:be:07:59:36:de:27:66:36:41:7c:fa:0e:6f:44:
                    40:f1:af:74:cb:07:0d:d2:4d:e2:d7:eb:36:d5:05:
                    f2:28:2b:f0:c7:86:91:a3:48:2d:d7:58:69:db:b1:
                    64:0d:19:f0:8a:e2:ec:ca:79:90:80:26:23:2d:5b:
                    5f:0a:09:74:77:40:69:6b:8a:3d:9a:a6:5d:02:10:
                    4a:79:56:56:46:d6:80:6a:97:c9:54:cf:7e:e6:d7:
                    a5:59:b4:ee:e0:81:23:52:94:2c:3e:38:98:c5:f9:
                    a8:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:2E:78:8B:3A:A1:02:AA:AE:54:42:34:00:6C:BC:44:91:E0:10:1A
            X509v3 Authority Key Identifier:
                keyid:BA:FC:D0:22:6B:79:F2:3D:E4:7A:6A:FD:E5:14:4B:1B:29:E2:8B:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uvzQImt58j3kemr95RRLGynii1w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/6a12ce-afbc-4583-9773-c1813947e233/1/uvzQImt58j3kemr95RRLGynii1w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         67:cc:f0:c1:0f:63:98:27:82:9f:ae:7e:33:8f:16:76:1c:a2:
         a0:03:49:3c:01:15:ea:dd:a6:05:5c:88:1d:3d:04:2b:2c:38:
         e8:60:81:f8:1f:a5:99:18:e3:75:30:bc:85:e6:68:b3:87:e9:
         bf:1b:91:a6:1e:dd:4e:8d:a9:67:0f:79:82:15:3c:a0:e9:a6:
         26:1b:77:c5:96:23:12:85:61:36:95:db:48:33:3e:4e:c2:75:
         cf:c5:22:1c:13:24:30:2f:b8:e5:9e:b9:7e:b8:e3:65:fb:58:
         7d:76:87:34:26:41:24:86:00:49:1d:6f:70:f1:6d:e5:4f:67:
         19:a6:19:fd:c2:99:bc:f3:45:3b:52:11:78:02:71:a1:ab:17:
         05:c6:2f:fa:6c:9a:4c:71:b3:7e:a9:76:fb:d8:2c:d4:b4:3c:
         71:6e:07:2b:d7:2d:32:5d:ee:1b:cd:45:ad:f1:da:80:2e:35:
         00:a0:89:5c:b7:5c:fb:95:b4:84:1a:c1:62:8c:e9:c5:9a:41:
         6a:62:cc:8f:d9:0a:ba:4c:d6:97:0e:51:a2:48:cf:36:1f:10:
         04:5b:61:7a:4a:25:92:65:12:1e:20:6b:a9:06:7a:a4:ca:8c:
         e7:8f:8a:13:a0:1d:b0:56:e9:61:13:e7:56:47:b4:1f:af:c8:
         4b:be:b2:19
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZTELBNDwDKxeyOj4qCaxgpTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhZmNkMDIyNmI3OWYyM2RlNDdhNmFmZGU1MTQ0YjFiMjll
MjhiNWMwHhcNMjUwMjAyMDEwMDEwWhcNMjUwMjAzMDEwMDEwWjAzMTEwLwYDVQQD
EyhiMjJlNzg4YjNhYTEwMmFhYWU1NDQyMzQwMDZjYmM0NDkxZTAxMDFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpn4r05+SdBZkJ1d3ZqH8oA7bcrG
9YTVrski4OnZXr0KKz8xMJucRk6wbBl7e12HsDwPWmBr2J6BJTBx0YRStxuL4D02
52VNcWa18T2ZhYcSmjnAGz7OOBXfoP9hqpk4nQVNve9/RPI5FN7USd5Bef23+Xj6
b9qhe/DS0ZJ5BcQ6rrEVS1+Ba1fwzu8Z3LLRT6XT25SBvgdZNt4nZjZBfPoOb0RA
8a90ywcN0k3i1+s21QXyKCvwx4aRo0gt11hp27FkDRnwiuLsynmQgCYjLVtfCgl0
d0Bpa4o9mqZdAhBKeVZWRtaAapfJVM9+5telWbTu4IEjUpQsPjiYxfmoHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLIueIs6oQKqrlRCNABsvESR4BAaMB8GA1UdIwQY
MBaAFLr80CJrefI95Hpq/eUUSxsp4otcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXZ6UUltdDU4ajNrZW1yOTVSUkxHeW5paTF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNS82YTEyY2UtYWZiYy00NTgzLTk3NzMt
YzE4MTM5NDdlMjMzLzEvdXZ6UUltdDU4ajNrZW1yOTVSUkxHeW5paTF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNS82YTEyY2UtYWZiYy00NTgzLTk3NzMtYzE4MTM5NDdlMjMz
LzEvdXZ6UUltdDU4ajNrZW1yOTVSUkxHeW5paTF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZ8zwwQ9j
mCeCn65+M48WdhyioANJPAEV6t2mBVyIHT0EKyw46GCB+B+lmRjjdTC8heZos4fp
vxuRph7dTo2pZw95ghU8oOmmJht3xZYjEoVhNpXbSDM+TsJ1z8UiHBMkMC+45Z65
frjjZftYfXaHNCZBJIYASR1vcPFt5U9nGaYZ/cKZvPNFO1IReAJxoasXBcYv+mya
THGzfql2+9gs1LQ8cW4HK9ctMl3uG81FrfHagC41AKCJXLdc+5W0hBrBYozpxZpB
amLMj9kKukzWlw5RokjPNh8QBFthekolkmUSHiBrqQZ6pMqM54+KE6AdsFbpYRPn
Vke0H6/IS76yGQ==
-----END CERTIFICATE-----