Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
File:                     kXWIXPl40u9mE3YhRTC57WjFtFg.mft (raw, json)
Hash identifier:          IRvynynQ9D3SdsEsXuRsxBt1K43WLXVbi3SWlqfYTFE=
Subject key identifier:   93:D5:2B:F2:D5:DB:AA:49:FF:8F:00:7C:C4:B2:66:5D:26:46:0B:32
Authority key identifier: 91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58
Certificate issuer:       /CN=9175885cf978d2ef661376214530b9ed68c5b458
Certificate serial:       018F874A850CE0CBC8453B7ED35E7439693B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
Manifest number:          0495
Signing time:             Fri 17 May 2024 16:02:38 +0000
Manifest this update:     Fri 17 May 2024 16:02:38 +0000
Manifest next update:     Sat 18 May 2024 16:02:38 +0000
Files and hashes:         1: kXWIXPl40u9mE3YhRTC57WjFtFg.crl (hash: Z0fJBl8wXH/Lm4ApuMM4HtouryN54PF9F7FCeE52Png=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 16:02:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:4a:85:0c:e0:cb:c8:45:3b:7e:d3:5e:74:39:69:3b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9175885cf978d2ef661376214530b9ed68c5b458
        Validity
            Not Before: May 17 16:02:38 2024 GMT
            Not After : May 18 16:02:38 2024 GMT
        Subject: CN=93d52bf2d5dbaa49ff8f007cc4b2665d26460b32
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:d8:17:72:72:19:74:9d:76:34:5e:ef:b8:31:
                    c7:6c:51:63:1f:78:4b:f7:0a:fe:23:23:f8:36:a0:
                    fb:bf:5f:19:62:2e:24:fc:99:ec:6b:60:22:9d:b3:
                    21:14:1c:ec:9d:c1:71:80:97:ca:7d:97:d8:42:d8:
                    49:8f:d0:41:cd:5a:6a:58:1f:22:63:ea:26:b5:54:
                    d3:ca:59:8d:68:cc:74:66:d1:a3:b7:e0:0e:9c:52:
                    16:a9:5e:2d:68:3b:71:8f:61:16:54:fa:2f:42:ab:
                    b3:23:49:a4:d0:51:f7:a3:d5:ea:8a:55:a8:c5:57:
                    35:4a:61:d3:64:ed:54:95:c0:42:ee:80:86:69:ad:
                    ad:08:8b:14:c0:d6:10:fe:89:4d:92:0b:03:c6:ec:
                    26:01:00:dc:e9:0d:73:67:e0:70:b5:4f:46:31:be:
                    53:a1:31:c5:20:86:a3:42:82:a3:89:2e:65:2a:14:
                    f1:4e:a0:68:7f:f7:65:c4:6d:61:e6:c2:e0:b5:49:
                    a1:d5:4b:5e:53:0b:6d:9b:39:a9:e7:4e:a3:59:35:
                    0d:35:26:aa:26:d4:6e:46:fb:75:ad:54:8a:20:21:
                    e6:6e:71:13:e5:19:32:fd:d4:95:28:5e:49:2b:d9:
                    61:15:46:a2:7f:26:3a:4b:b1:bb:6c:fb:c7:d7:44:
                    bf:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:D5:2B:F2:D5:DB:AA:49:FF:8F:00:7C:C4:B2:66:5D:26:46:0B:32
            X509v3 Authority Key Identifier:
                keyid:91:75:88:5C:F9:78:D2:EF:66:13:76:21:45:30:B9:ED:68:C5:B4:58

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXWIXPl40u9mE3YhRTC57WjFtFg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c485d9-2736-49b1-9a44-1b95819cfc9c/1/kXWIXPl40u9mE3YhRTC57WjFtFg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         12:41:20:ec:06:1a:d1:f7:e3:ba:15:cb:de:28:3b:f5:5f:18:
         8a:7e:f3:9c:c1:59:29:6d:ee:3c:86:40:0c:c9:29:61:bd:3b:
         47:c8:89:9a:c1:23:03:88:e2:a3:17:f8:67:32:34:e9:af:31:
         65:60:57:aa:29:7a:de:47:53:ae:02:63:8b:d2:e7:42:f2:97:
         3c:38:81:d2:74:a1:38:14:c1:b9:8a:74:60:b4:06:a1:fe:2c:
         1c:08:b2:a2:5b:01:3d:cc:41:52:05:7f:98:dc:9d:2c:ee:85:
         21:43:23:f8:d8:3d:83:73:8c:ee:87:02:c0:7b:6e:c2:a8:3c:
         66:f6:6d:41:9d:dc:7b:88:0c:94:b9:a5:6e:66:f8:80:9f:17:
         80:52:42:bc:c2:79:51:39:5d:f8:25:8a:65:5b:7c:57:08:8d:
         ff:cc:c8:aa:83:4d:cf:62:c1:47:5d:c6:a1:a2:16:f3:81:b8:
         28:08:b6:b5:fe:a2:b0:a8:5e:ef:53:24:f5:f6:5e:ca:b1:20:
         69:6b:0b:d6:c4:2c:84:ff:44:cc:57:81:53:1e:f7:46:1f:f2:
         4d:f0:b2:d2:21:73:64:36:29:c3:c5:7e:7d:80:cc:c3:aa:a1:
         7d:e2:88:a1:e7:75:3a:b9:64:ec:55:3b:dc:17:3f:03:94:4c:
         cd:57:cd:fc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HSoUM4MvIRTt+0150OWk7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxNzU4ODVjZjk3OGQyZWY2NjEzNzYyMTQ1MzBiOWVkNjhj
NWI0NTgwHhcNMjQwNTE3MTYwMjM4WhcNMjQwNTE4MTYwMjM4WjAzMTEwLwYDVQQD
Eyg5M2Q1MmJmMmQ1ZGJhYTQ5ZmY4ZjAwN2NjNGIyNjY1ZDI2NDYwYjMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9gXcnIZdJ12NF7vuDHHbFFjH3hL
9wr+IyP4NqD7v18ZYi4k/Jnsa2AinbMhFBzsncFxgJfKfZfYQthJj9BBzVpqWB8i
Y+omtVTTylmNaMx0ZtGjt+AOnFIWqV4taDtxj2EWVPovQquzI0mk0FH3o9XqilWo
xVc1SmHTZO1UlcBC7oCGaa2tCIsUwNYQ/olNkgsDxuwmAQDc6Q1zZ+BwtU9GMb5T
oTHFIIajQoKjiS5lKhTxTqBof/dlxG1h5sLgtUmh1UteUwttmzmp506jWTUNNSaq
JtRuRvt1rVSKICHmbnET5Rky/dSVKF5JK9lhFUaifyY6S7G7bPvH10S/FQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJPVK/LV26pJ/48AfMSyZl0mRgsyMB8GA1UdIwQY
MBaAFJF1iFz5eNLvZhN2IUUwue1oxbRYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1hXSVhQbDQwdTltRTNZaFJUQzU3V2pGdEZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZS9jNDg1ZDktMjczNi00OWIxLTlhNDQt
MWI5NTgxOWNmYzljLzEva1hXSVhQbDQwdTltRTNZaFJUQzU3V2pGdEZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZS9jNDg1ZDktMjczNi00OWIxLTlhNDQtMWI5NTgxOWNmYzlj
LzEva1hXSVhQbDQwdTltRTNZaFJUQzU3V2pGdEZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEkEg7AYa
0ffjuhXL3ig79V8Yin7znMFZKW3uPIZADMkpYb07R8iJmsEjA4jioxf4ZzI06a8x
ZWBXqil63kdTrgJji9LnQvKXPDiB0nShOBTBuYp0YLQGof4sHAiyolsBPcxBUgV/
mNydLO6FIUMj+Ng9g3OM7ocCwHtuwqg8ZvZtQZ3ce4gMlLmlbmb4gJ8XgFJCvMJ5
UTld+CWKZVt8VwiN/8zIqoNNz2LBR13GoaIW84G4KAi2tf6isKhe71Mk9fZeyrEg
aWsL1sQshP9EzFeBUx73Rh/yTfCy0iFzZDYpw8V+fYDMw6qhfeKIoed1Orlk7FU7
3Bc/A5RMzVfN/A==
-----END CERTIFICATE-----