Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
File:                     VkmqAU6M8795JOd1h9CnyMqhxJc.mft (raw, json)
Hash identifier:          6YG1sgxDrbRu7XdDZwOgfUMM+IdpKizN4RrOu5RiMhU=
Subject key identifier:   59:59:0D:E0:C8:46:FD:F1:70:3E:7C:D3:15:51:69:5B:5B:A2:ED:0A
Authority key identifier: 56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
Certificate issuer:       /CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Certificate serial:       018F87B6C0B7DAEE342F762A90AE31EB8FD0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
Manifest number:          05E2
Signing time:             Fri 17 May 2024 18:00:52 +0000
Manifest this update:     Fri 17 May 2024 18:00:52 +0000
Manifest next update:     Sat 18 May 2024 18:00:52 +0000
Files and hashes:         1: VkmqAU6M8795JOd1h9CnyMqhxJc.crl (hash: vyOvtKjSOwzyA9wGrMi3lpu3i+isQKM3KN8Y5O7cPiQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 May 2024 17:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8f:87:b6:c0:b7:da:ee:34:2f:76:2a:90:ae:31:eb:8f:d0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
        Validity
            Not Before: May 17 18:00:52 2024 GMT
            Not After : May 18 18:00:52 2024 GMT
        Subject: CN=59590de0c846fdf1703e7cd31551695b5ba2ed0a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:6f:e4:cb:d3:c1:37:b0:c8:ae:c0:95:79:d3:
                    12:46:4e:3f:99:d4:fe:9b:76:a7:2d:d2:f5:29:5a:
                    65:c1:9a:54:2b:e0:eb:7f:7d:fa:e8:91:83:53:a8:
                    c9:70:2c:12:99:ce:53:7b:07:1f:42:e5:76:e4:e3:
                    81:de:2c:02:54:f6:79:74:8d:f2:31:09:c3:d1:ab:
                    15:54:c7:15:3d:4b:4a:55:b9:66:b8:85:6f:46:90:
                    1f:75:f7:7c:cc:fc:7e:4a:f0:ff:91:87:a4:83:2c:
                    3a:46:b4:35:da:a1:eb:9c:4a:e9:35:64:98:af:30:
                    63:d8:cc:f7:c3:a4:b5:39:12:7c:d7:28:8c:aa:ad:
                    13:49:9a:c0:ad:6e:bd:d0:3e:4d:91:c2:36:d7:53:
                    4f:07:28:b9:69:aa:9f:93:99:b4:7b:0f:c2:d4:43:
                    d4:bb:04:ba:df:e5:bd:21:ed:e3:bb:26:2a:69:d6:
                    ce:14:ff:38:42:c3:fa:5e:76:f0:55:a3:15:8a:cf:
                    11:4a:9f:24:96:b2:4c:a9:32:79:69:99:42:ad:50:
                    fc:18:1e:f4:98:a0:6d:fe:ea:05:ca:6c:0a:3f:a2:
                    03:75:5d:90:8a:e6:55:0f:d9:62:79:81:72:e6:1a:
                    3e:f7:61:26:5d:c5:df:11:d1:c4:bd:a9:a1:7f:db:
                    17:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:59:0D:E0:C8:46:FD:F1:70:3E:7C:D3:15:51:69:5B:5B:A2:ED:0A
            X509v3 Authority Key Identifier:
                keyid:56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:0a:60:5c:03:13:a3:3f:08:76:14:e5:fe:02:4b:d0:70:58:
         66:d0:e2:4b:e3:49:79:cd:55:6c:cd:01:71:b8:88:1c:71:87:
         4e:9c:c4:54:06:70:18:4e:74:0d:f3:8d:2b:ae:b7:da:f8:2a:
         9f:50:f7:6b:7d:eb:99:cd:72:d3:58:d3:cf:d8:86:67:7c:a3:
         4c:96:e8:73:bd:30:ca:a2:7d:6e:97:41:d6:b8:18:8f:9c:ff:
         59:4c:26:11:c8:9f:83:7e:c3:23:3c:c6:9d:74:46:ce:2b:31:
         98:25:c8:f3:02:9d:ba:b0:aa:ca:42:01:9a:9b:e7:ae:50:d4:
         ae:f1:9a:44:c2:40:aa:a4:5b:de:cd:4b:70:3d:41:ad:c5:2a:
         41:35:80:cd:d1:b9:25:6f:20:dc:0e:7b:cb:88:c3:43:9f:cd:
         1c:1d:87:fd:1a:22:73:77:37:7b:e1:1a:ed:9b:85:0f:d3:18:
         b6:47:f5:67:3c:ea:86:bf:21:b1:2d:ff:68:bc:49:3d:7c:be:
         29:f2:67:39:8c:62:7d:0d:bc:43:2a:49:de:4d:55:83:dc:5b:
         2a:56:e4:76:b7:db:e8:09:32:19:61:c2:31:3e:a7:06:a8:cc:
         a9:37:72:03:0b:30:9c:65:cf:ca:2d:c0:05:85:ff:2f:b8:5c:
         9c:d1:95:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAY+HtsC32u40L3YqkK4x64/QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2NDlhYTAxNGU4Y2YzYmY3OTI0ZTc3NTg3ZDBhN2M4Y2Fh
MWM0OTcwHhcNMjQwNTE3MTgwMDUyWhcNMjQwNTE4MTgwMDUyWjAzMTEwLwYDVQQD
Eyg1OTU5MGRlMGM4NDZmZGYxNzAzZTdjZDMxNTUxNjk1YjViYTJlZDBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuG/ky9PBN7DIrsCVedMSRk4/mdT+
m3anLdL1KVplwZpUK+Drf3366JGDU6jJcCwSmc5TewcfQuV25OOB3iwCVPZ5dI3y
MQnD0asVVMcVPUtKVblmuIVvRpAfdfd8zPx+SvD/kYekgyw6RrQ12qHrnErpNWSY
rzBj2Mz3w6S1ORJ81yiMqq0TSZrArW690D5NkcI211NPByi5aaqfk5m0ew/C1EPU
uwS63+W9Ie3juyYqadbOFP84QsP6XnbwVaMVis8RSp8klrJMqTJ5aZlCrVD8GB70
mKBt/uoFymwKP6IDdV2QiuZVD9lieYFy5ho+92EmXcXfEdHEvamhf9sXTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFlZDeDIRv3xcD580xVRaVtbou0KMB8GA1UdIwQY
MBaAFFZJqgFOjPO/eSTndYfQp8jKocSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVmttcUFVNk04Nzk1Sk9kMWg5Q255TXFoeEpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC85ZDI5MDctMGE5Yy00ZTIzLWE4Zjgt
ZTg4NjBkYTEwMDM4LzEvVmttcUFVNk04Nzk1Sk9kMWg5Q255TXFoeEpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC85ZDI5MDctMGE5Yy00ZTIzLWE4ZjgtZTg4NjBkYTEwMDM4
LzEvVmttcUFVNk04Nzk1Sk9kMWg5Q255TXFoeEpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbApgXAMT
oz8IdhTl/gJL0HBYZtDiS+NJec1VbM0BcbiIHHGHTpzEVAZwGE50DfONK6632vgq
n1D3a33rmc1y01jTz9iGZ3yjTJboc70wyqJ9bpdB1rgYj5z/WUwmEcifg37DIzzG
nXRGzisxmCXI8wKdurCqykIBmpvnrlDUrvGaRMJAqqRb3s1LcD1BrcUqQTWAzdG5
JW8g3A57y4jDQ5/NHB2H/Roic3c3e+Ea7ZuFD9MYtkf1Zzzqhr8hsS3/aLxJPXy+
KfJnOYxifQ28QypJ3k1Vg9xbKlbkdrfb6AkyGWHCMT6nBqjMqTdyAwswnGXPyi3A
BYX/L7hcnNGV7g==
-----END CERTIFICATE-----