Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft
File:                     oJD-k_R_g4ea4suDVIjNn31pm8A.mft (raw, json)
Hash identifier:          YRXja8PRdzKkVG37Ksr4DQEyrPBt9v8dKD6VbE0uVGc=
Subject key identifier:   C1:A4:60:B4:C7:CB:30:1F:C9:7B:0C:C1:DE:44:D1:DE:E4:58:18:1A
Authority key identifier: A0:90:FE:93:F4:7F:83:87:9A:E2:CB:83:54:88:CD:9F:7D:69:9B:C0
Certificate issuer:       /CN=a090fe93f47f83879ae2cb835488cd9f7d699bc0
Certificate serial:       019369DA9090E0D9DFD23455E8A5CF7B98BB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft
Manifest number:          1379
Signing time:             Tue 26 Nov 2024 19:02:31 +0000
Manifest this update:     Tue 26 Nov 2024 19:02:31 +0000
Manifest next update:     Wed 27 Nov 2024 19:02:31 +0000
Files and hashes:         1: oJD-k_R_g4ea4suDVIjNn31pm8A.crl (hash: aMbxcFhiTEGz80LdaSSifsrZ3QiJGcuSiwqoBEeHGmE=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 27 Nov 2024 19:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:69:da:90:90:e0:d9:df:d2:34:55:e8:a5:cf:7b:98:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a090fe93f47f83879ae2cb835488cd9f7d699bc0
        Validity
            Not Before: Nov 26 19:02:31 2024 GMT
            Not After : Nov 27 19:02:31 2024 GMT
        Subject: CN=c1a460b4c7cb301fc97b0cc1de44d1dee458181a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:41:d0:03:44:4e:23:d6:60:95:78:bd:9c:36:
                    e3:d3:02:8a:ab:ef:4c:16:a4:c7:68:be:79:3f:1e:
                    8d:ed:d4:71:20:2f:8f:35:40:75:9f:05:9c:a2:a6:
                    63:63:70:62:3a:28:dd:fc:32:54:f9:5f:5c:41:b1:
                    70:82:b0:29:96:45:e8:b1:31:8b:86:0c:9f:8b:a2:
                    40:b5:d8:cb:e8:f6:7e:19:8e:5a:db:43:ac:ae:83:
                    1f:a7:03:f2:94:3d:dd:07:f0:5d:9c:e8:7a:e3:58:
                    e3:c9:f1:ee:ea:86:21:c3:5e:6b:79:49:07:53:1d:
                    fe:5c:ef:cb:14:04:4e:49:ea:ed:08:38:7c:99:e4:
                    34:44:0e:7e:74:d8:b4:93:55:cb:3f:cd:e0:00:7c:
                    72:b4:68:ec:66:b3:3e:5c:37:7d:79:56:f4:80:85:
                    b1:55:c2:db:c0:0d:06:46:5f:f0:6a:5d:b7:fc:23:
                    d8:d0:0b:f0:b6:98:bd:d6:39:4a:97:a9:d8:25:61:
                    9c:43:96:60:b4:c1:a9:da:d5:f6:13:9d:ab:e4:4f:
                    43:f5:6c:94:94:34:f0:70:2d:1c:d3:f6:32:4b:e1:
                    1c:98:2b:3c:e7:e5:d9:97:e9:a1:b1:6a:d9:5c:85:
                    7c:c0:2c:e3:ac:57:e8:c4:ae:86:55:2e:64:ce:ce:
                    2a:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:A4:60:B4:C7:CB:30:1F:C9:7B:0C:C1:DE:44:D1:DE:E4:58:18:1A
            X509v3 Authority Key Identifier:
                keyid:A0:90:FE:93:F4:7F:83:87:9A:E2:CB:83:54:88:CD:9F:7D:69:9B:C0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJD-k_R_g4ea4suDVIjNn31pm8A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/abbcc9-f832-4b5b-bc22-25781e116782/1/oJD-k_R_g4ea4suDVIjNn31pm8A.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:9e:7f:13:ed:07:a8:3e:e7:92:c6:2a:7b:2c:25:6e:eb:25:
         4b:8f:d5:0a:2f:b6:6f:b6:ed:2d:4c:7b:2e:38:2b:3c:08:17:
         48:11:9c:63:e6:30:13:e6:aa:7a:95:5d:8a:ad:20:98:85:15:
         13:23:51:d0:48:a0:40:9d:68:83:c2:0c:41:6c:4e:c9:64:66:
         80:40:44:84:78:ef:2d:95:71:78:27:6b:a6:7b:8b:96:c9:18:
         52:1e:4d:64:d1:95:27:ca:78:a9:fd:94:50:92:09:c8:8a:df:
         e8:94:d9:3c:6a:35:50:8e:09:db:5e:bc:fa:2f:88:4d:7a:20:
         04:d5:d9:f9:49:95:4b:78:e4:31:e6:6e:5d:c2:dc:70:f1:bb:
         53:0b:1c:6a:fc:fd:9c:13:9e:46:b7:e4:17:d8:f2:b3:62:c3:
         72:73:db:1b:9e:79:7a:e6:2c:7e:0a:77:5a:af:da:16:4f:9c:
         44:22:6b:e5:75:d0:1f:e7:28:11:52:3d:aa:6e:10:eb:1a:2e:
         4f:d1:0e:22:4e:85:19:7d:a8:08:b8:43:1a:40:31:37:81:0e:
         df:05:79:08:b1:95:18:ce:4e:b9:41:14:cc:80:47:52:1e:83:
         c4:73:5d:11:ec:b8:03:4c:60:7d:80:08:f2:eb:da:c2:b4:80:
         53:b0:39:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNp2pCQ4Nnf0jRV6KXPe5i7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEwOTBmZTkzZjQ3ZjgzODc5YWUyY2I4MzU0ODhjZDlmN2Q2
OTliYzAwHhcNMjQxMTI2MTkwMjMxWhcNMjQxMTI3MTkwMjMxWjAzMTEwLwYDVQQD
EyhjMWE0NjBiNGM3Y2IzMDFmYzk3YjBjYzFkZTQ0ZDFkZWU0NTgxODFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk0HQA0ROI9ZglXi9nDbj0wKKq+9M
FqTHaL55Px6N7dRxIC+PNUB1nwWcoqZjY3BiOijd/DJU+V9cQbFwgrAplkXosTGL
hgyfi6JAtdjL6PZ+GY5a20OsroMfpwPylD3dB/BdnOh641jjyfHu6oYhw15reUkH
Ux3+XO/LFAROSertCDh8meQ0RA5+dNi0k1XLP83gAHxytGjsZrM+XDd9eVb0gIWx
VcLbwA0GRl/wal23/CPY0Avwtpi91jlKl6nYJWGcQ5ZgtMGp2tX2E52r5E9D9WyU
lDTwcC0c0/YyS+EcmCs85+XZl+mhsWrZXIV8wCzjrFfoxK6GVS5kzs4q0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMGkYLTHyzAfyXsMwd5E0d7kWBgaMB8GA1UdIwQY
MBaAFKCQ/pP0f4OHmuLLg1SIzZ99aZvAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb0pELWtfUl9nNGVhNHN1RFZJak5uMzFwbThBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9hYmJjYzktZjgzMi00YjViLWJjMjIt
MjU3ODFlMTE2NzgyLzEvb0pELWtfUl9nNGVhNHN1RFZJak5uMzFwbThBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC9hYmJjYzktZjgzMi00YjViLWJjMjItMjU3ODFlMTE2Nzgy
LzEvb0pELWtfUl9nNGVhNHN1RFZJak5uMzFwbThBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhp5/E+0H
qD7nksYqeywlbuslS4/VCi+2b7btLUx7LjgrPAgXSBGcY+YwE+aqepVdiq0gmIUV
EyNR0EigQJ1og8IMQWxOyWRmgEBEhHjvLZVxeCdrpnuLlskYUh5NZNGVJ8p4qf2U
UJIJyIrf6JTZPGo1UI4J2168+i+ITXogBNXZ+UmVS3jkMeZuXcLccPG7Uwscavz9
nBOeRrfkF9jys2LDcnPbG555euYsfgp3Wq/aFk+cRCJr5XXQH+coEVI9qm4Q6xou
T9EOIk6FGX2oCLhDGkAxN4EO3wV5CLGVGM5OuUEUzIBHUh6DxHNdEey4A0xgfYAI
8uvawrSAU7A5kA==
-----END CERTIFICATE-----