Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
File:                     Da7a5Z2cmvUe9UivsMlkOM73IRw.mft (raw, json)
Hash identifier:          j2KIY/gjwpQ78/TzcJQ6UzgF8qHKOpRccle7MB54rdQ=
Subject key identifier:   4D:A1:E2:A0:19:DB:27:35:23:EE:3E:DF:AF:A3:7D:10:99:B5:E6:54
Authority key identifier: 0D:AE:DA:E5:9D:9C:9A:F5:1E:F5:48:AF:B0:C9:64:38:CE:F7:21:1C
Certificate issuer:       /CN=0daedae59d9c9af51ef548afb0c96438cef7211c
Certificate serial:       0195116BEEC29C90DE173FADFCB01E2C866E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
Manifest number:          1453
Signing time:             Mon 17 Feb 2025 01:00:40 +0000
Manifest this update:     Mon 17 Feb 2025 01:00:40 +0000
Manifest next update:     Tue 18 Feb 2025 01:00:40 +0000
Files and hashes:         1: Da7a5Z2cmvUe9UivsMlkOM73IRw.crl (hash: BLmJUR1BhWm7oO/ETlNMDoefmKIADsEuVANE72VX9IM=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Feb 2025 23:00:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:95:11:6b:ee:c2:9c:90:de:17:3f:ad:fc:b0:1e:2c:86:6e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0daedae59d9c9af51ef548afb0c96438cef7211c
        Validity
            Not Before: Feb 17 01:00:40 2025 GMT
            Not After : Feb 18 01:00:40 2025 GMT
        Subject: CN=4da1e2a019db273523ee3edfafa37d1099b5e654
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:34:36:e2:10:92:7b:64:a2:b9:35:85:c8:a8:
                    88:d9:9a:7a:d0:58:83:19:42:38:e3:18:3e:77:dd:
                    3f:86:45:6c:c7:ec:bd:3e:83:14:ae:09:27:01:fb:
                    a3:0b:dc:22:b8:ce:4a:3a:c0:20:26:bf:36:c5:6d:
                    3a:56:a3:00:8b:98:7a:5e:73:15:23:b7:cd:59:b7:
                    c6:74:ac:40:e8:c9:d4:8c:ae:ee:08:b0:dd:a7:ff:
                    67:65:0c:e1:a2:fb:31:a2:e8:d2:fa:77:b6:c3:18:
                    a7:ca:ef:32:b3:87:0f:4d:62:49:1c:df:7c:4d:6b:
                    c0:bf:c4:5d:8f:5e:72:e0:56:02:48:d1:94:93:ca:
                    3f:56:8f:b5:eb:21:f8:8f:40:8d:c3:39:28:38:b4:
                    b1:94:d4:d7:12:ec:cf:4b:c8:e0:29:72:de:68:d8:
                    d7:47:17:df:e4:ee:55:d9:34:f2:56:d8:17:21:42:
                    55:5a:5e:44:29:cf:af:b4:34:eb:20:e9:17:37:a5:
                    89:8e:4c:db:73:63:62:cb:85:30:8d:91:25:34:4a:
                    63:a9:bb:ca:1a:fe:11:60:17:57:47:95:df:b7:a8:
                    74:37:14:60:cf:5f:92:cc:d8:c4:ac:c4:e5:ee:8f:
                    bb:c5:81:37:a8:1e:47:9c:df:7d:18:bc:64:6d:b0:
                    5c:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4D:A1:E2:A0:19:DB:27:35:23:EE:3E:DF:AF:A3:7D:10:99:B5:E6:54
            X509v3 Authority Key Identifier:
                keyid:0D:AE:DA:E5:9D:9C:9A:F5:1E:F5:48:AF:B0:C9:64:38:CE:F7:21:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Da7a5Z2cmvUe9UivsMlkOM73IRw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/d29d3f-1696-4ed4-96d2-e7eb817ede30/1/Da7a5Z2cmvUe9UivsMlkOM73IRw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         19:14:e6:57:da:45:49:05:88:61:eb:80:65:cc:f8:21:6e:66:
         87:87:a0:a1:77:58:ad:e0:5a:b7:7a:15:b0:44:e2:5e:06:01:
         38:7a:e8:35:f5:d3:77:d1:f7:9e:72:3e:9a:2d:e4:70:15:c1:
         1f:94:b2:70:c3:52:7b:f5:bc:93:cb:33:07:1d:c2:4b:8f:46:
         72:03:3c:a5:ce:c6:5b:97:0f:9e:a8:32:a9:da:ca:8b:07:6a:
         66:24:06:6b:ef:ed:d7:76:e4:9a:ba:d9:6f:3a:28:07:08:5d:
         7b:ed:a2:35:7b:fb:b3:ac:3f:9a:5c:93:97:23:24:72:5a:56:
         36:1c:7d:5a:f2:a0:ef:ea:69:80:ae:d0:be:64:b1:02:ce:4a:
         81:ac:cf:d9:64:fd:77:4d:b1:5d:55:2d:05:0f:bd:30:29:7e:
         34:15:50:16:c9:af:ba:da:94:2a:1b:ba:d4:fe:66:75:94:4b:
         c1:50:f3:10:cb:84:1f:f9:d7:4d:7a:2d:b7:8a:5d:8b:71:00:
         18:d7:c4:06:d9:40:33:cb:b8:35:cf:cc:51:90:87:7d:a5:a3:
         89:6a:23:f6:4b:84:2f:9d:a9:b3:cb:59:b5:96:cf:05:e7:61:
         79:b9:3d:55:ed:3e:52:ad:ff:a2:ad:75:28:9e:53:9d:36:9e:
         93:86:8d:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZURa+7CnJDeFz+t/LAeLIZuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBkYWVkYWU1OWQ5YzlhZjUxZWY1NDhhZmIwYzk2NDM4Y2Vm
NzIxMWMwHhcNMjUwMjE3MDEwMDQwWhcNMjUwMjE4MDEwMDQwWjAzMTEwLwYDVQQD
Eyg0ZGExZTJhMDE5ZGIyNzM1MjNlZTNlZGZhZmEzN2QxMDk5YjVlNjU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1jQ24hCSe2SiuTWFyKiI2Zp60FiD
GUI44xg+d90/hkVsx+y9PoMUrgknAfujC9wiuM5KOsAgJr82xW06VqMAi5h6XnMV
I7fNWbfGdKxA6MnUjK7uCLDdp/9nZQzhovsxoujS+ne2wxinyu8ys4cPTWJJHN98
TWvAv8Rdj15y4FYCSNGUk8o/Vo+16yH4j0CNwzkoOLSxlNTXEuzPS8jgKXLeaNjX
Rxff5O5V2TTyVtgXIUJVWl5EKc+vtDTrIOkXN6WJjkzbc2Niy4UwjZElNEpjqbvK
Gv4RYBdXR5Xft6h0NxRgz1+SzNjErMTl7o+7xYE3qB5HnN99GLxkbbBcKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE2h4qAZ2yc1I+4+36+jfRCZteZUMB8GA1UdIwQY
MBaAFA2u2uWdnJr1HvVIr7DJZDjO9yEcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRGE3YTVaMmNtdlVlOVVpdnNNbGtPTTczSVJ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9kMjlkM2YtMTY5Ni00ZWQ0LTk2ZDIt
ZTdlYjgxN2VkZTMwLzEvRGE3YTVaMmNtdlVlOVVpdnNNbGtPTTczSVJ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS9kMjlkM2YtMTY5Ni00ZWQ0LTk2ZDItZTdlYjgxN2VkZTMw
LzEvRGE3YTVaMmNtdlVlOVVpdnNNbGtPTTczSVJ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGRTmV9pF
SQWIYeuAZcz4IW5mh4egoXdYreBat3oVsETiXgYBOHroNfXTd9H3nnI+mi3kcBXB
H5SycMNSe/W8k8szBx3CS49GcgM8pc7GW5cPnqgyqdrKiwdqZiQGa+/t13bkmrrZ
bzooBwhde+2iNXv7s6w/mlyTlyMkclpWNhx9WvKg7+ppgK7QvmSxAs5KgazP2WT9
d02xXVUtBQ+9MCl+NBVQFsmvutqUKhu61P5mdZRLwVDzEMuEH/nXTXott4pdi3EA
GNfEBtlAM8u4Nc/MUZCHfaWjiWoj9kuEL52ps8tZtZbPBedhebk9Ve0+Uq3/oq11
KJ5TnTaek4aNcQ==
-----END CERTIFICATE-----