Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft
File:                     d6TN722YqQcT__52cRNId5pjKgo.mft (raw, json)
Hash identifier:          F6aYpX3M+5gf0HH6eVRklH/3AbwWduahVQI1QeOM1QI=
Subject key identifier:   68:57:DF:E9:19:18:41:64:6C:3C:83:0C:A1:C9:38:81:7B:06:FA:73
Authority key identifier: 77:A4:CD:EF:6D:98:A9:07:13:FF:FE:76:71:13:48:77:9A:63:2A:0A
Certificate issuer:       /CN=77a4cdef6d98a90713fffe76711348779a632a0a
Certificate serial:       018F87B6188C795ACB1C1F0AC13053EC2BB5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d6TN722YqQcT__52cRNId5pjKgo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft
Manifest number:          1174
Signing time:             Fri 17 May 2024 18:00:08 +0000
Manifest this update:     Fri 17 May 2024 18:00:08 +0000
Manifest next update:     Sat 18 May 2024 18:00:08 +0000
Files and hashes:         1: d6TN722YqQcT__52cRNId5pjKgo.crl (hash: /wnl1qk7ZXMUuRAecmkhx3xlVIwHUy4FpmXFAVxhMu8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/d6TN722YqQcT__52cRNId5pjKgo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:46:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:b6:18:8c:79:5a:cb:1c:1f:0a:c1:30:53:ec:2b:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77a4cdef6d98a90713fffe76711348779a632a0a
        Validity
            Not Before: May 17 18:00:08 2024 GMT
            Not After : May 18 18:00:08 2024 GMT
        Subject: CN=6857dfe9191841646c3c830ca1c938817b06fa73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:05:18:33:b7:8a:05:3f:b7:0a:d4:88:5e:bb:
                    17:dd:7d:a8:bb:23:b0:69:af:3e:ae:cc:10:7f:a0:
                    f9:a5:4d:02:7f:90:26:fa:09:20:19:52:fe:80:69:
                    3b:6b:d8:49:d4:9a:10:f3:ee:96:5a:2a:25:ef:3f:
                    61:2d:f5:59:32:7f:0a:74:75:36:5a:bb:dd:71:5d:
                    67:c3:72:44:a4:bb:bb:dc:3b:1b:12:05:c3:b4:da:
                    5a:c9:60:e9:d2:bf:fe:00:34:f3:83:63:1f:14:6c:
                    7f:c3:f6:f6:7a:6f:f0:08:8d:93:9c:ba:ea:d9:6d:
                    5d:e3:9a:cc:b6:80:a9:6a:9c:e6:9c:ec:38:fa:d3:
                    6d:50:3b:15:3c:9f:a1:0b:8b:55:59:b7:64:e4:f1:
                    64:3b:c7:3f:80:ad:f1:40:fd:5c:7b:cf:32:9b:80:
                    71:75:92:90:a8:67:98:d5:e6:ec:50:d6:eb:a2:df:
                    32:fb:a0:16:7e:1d:77:cc:ef:e1:46:db:f0:16:c9:
                    de:dd:f6:04:2a:b1:57:3f:93:0f:4b:b8:43:63:e5:
                    e0:67:93:6e:e6:f1:8a:60:d6:a5:d2:76:f4:6d:48:
                    9a:24:ff:fe:b5:1d:b4:50:f7:b0:f7:9d:a6:bd:4d:
                    1b:93:ee:b2:00:1d:85:02:f8:30:29:de:3b:47:3c:
                    a4:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:57:DF:E9:19:18:41:64:6C:3C:83:0C:A1:C9:38:81:7B:06:FA:73
            X509v3 Authority Key Identifier:
                keyid:77:A4:CD:EF:6D:98:A9:07:13:FF:FE:76:71:13:48:77:9A:63:2A:0A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6TN722YqQcT__52cRNId5pjKgo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/4c43b9-ae82-4919-987d-93c6facf13c9/1/d6TN722YqQcT__52cRNId5pjKgo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:cb:9e:19:6e:57:e5:9a:82:d9:90:98:04:10:64:c4:bf:ce:
         a5:84:a1:92:b0:64:05:b1:91:78:03:f6:f0:73:b0:5e:55:33:
         07:d3:04:de:f8:a9:ff:5e:c5:b7:3f:24:a8:32:d4:7b:fd:7f:
         71:87:9c:13:df:54:d2:36:63:d1:6f:1f:58:99:2a:c1:01:08:
         e9:9d:b9:30:ab:4e:f7:90:1f:ab:b3:17:7c:1d:d5:0c:f0:d2:
         a8:c0:83:b0:2d:06:dc:c0:7a:10:71:d2:6e:8f:04:c3:72:99:
         ae:0c:6d:f8:03:18:3e:d0:ed:e6:78:1a:a4:bc:a0:0d:74:60:
         73:8f:20:80:18:2b:06:12:76:04:57:e9:e9:2b:21:b7:6f:c5:
         f0:56:43:21:13:3e:38:8f:f6:eb:6a:60:70:23:66:6f:5e:5f:
         b6:52:49:ea:88:c3:b6:6c:d7:62:36:e2:28:b4:d2:38:05:08:
         ef:1a:3b:84:6e:56:fc:b1:c8:37:c1:9a:f0:34:5e:b2:4e:2d:
         0e:e6:d0:d0:90:c4:0d:0e:59:85:6f:f5:d1:75:7b:54:75:ae:
         ff:af:82:2a:e3:55:68:21:84:aa:58:44:ba:0f:ee:09:bd:c6:
         94:c6:03:fe:15:4b:cf:2d:38:14:8a:92:db:91:86:7e:54:e3:
         0c:e0:9c:59
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HthiMeVrLHB8KwTBT7Cu1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc3YTRjZGVmNmQ5OGE5MDcxM2ZmZmU3NjcxMTM0ODc3OWE2
MzJhMGEwHhcNMjQwNTE3MTgwMDA4WhcNMjQwNTE4MTgwMDA4WjAzMTEwLwYDVQQD
Eyg2ODU3ZGZlOTE5MTg0MTY0NmMzYzgzMGNhMWM5Mzg4MTdiMDZmYTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtAUYM7eKBT+3CtSIXrsX3X2ouyOw
aa8+rswQf6D5pU0Cf5Am+gkgGVL+gGk7a9hJ1JoQ8+6WWiol7z9hLfVZMn8KdHU2
WrvdcV1nw3JEpLu73DsbEgXDtNpayWDp0r/+ADTzg2MfFGx/w/b2em/wCI2TnLrq
2W1d45rMtoCpapzmnOw4+tNtUDsVPJ+hC4tVWbdk5PFkO8c/gK3xQP1ce88ym4Bx
dZKQqGeY1ebsUNbrot8y+6AWfh13zO/hRtvwFsne3fYEKrFXP5MPS7hDY+XgZ5Nu
5vGKYNal0nb0bUiaJP/+tR20UPew952mvU0bk+6yAB2FAvgwKd47RzykdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGhX3+kZGEFkbDyDDKHJOIF7BvpzMB8GA1UdIwQY
MBaAFHekze9tmKkHE//+dnETSHeaYyoKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZDZUTjcyMllxUWNUX181MmNSTklkNXBqS2dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS80YzQzYjktYWU4Mi00OTE5LTk4N2Qt
OTNjNmZhY2YxM2M5LzEvZDZUTjcyMllxUWNUX181MmNSTklkNXBqS2dvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS80YzQzYjktYWU4Mi00OTE5LTk4N2QtOTNjNmZhY2YxM2M5
LzEvZDZUTjcyMllxUWNUX181MmNSTklkNXBqS2dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM8ueGW5X
5ZqC2ZCYBBBkxL/OpYShkrBkBbGReAP28HOwXlUzB9ME3vip/17Ftz8kqDLUe/1/
cYecE99U0jZj0W8fWJkqwQEI6Z25MKtO95Afq7MXfB3VDPDSqMCDsC0G3MB6EHHS
bo8Ew3KZrgxt+AMYPtDt5ngapLygDXRgc48ggBgrBhJ2BFfp6Ssht2/F8FZDIRM+
OI/262pgcCNmb15ftlJJ6ojDtmzXYjbiKLTSOAUI7xo7hG5W/LHIN8Ga8DResk4t
DubQ0JDEDQ5ZhW/10XV7VHWu/6+CKuNVaCGEqlhEug/uCb3GlMYD/hVLzy04FIqS
25GGflTjDOCcWQ==
-----END CERTIFICATE-----