Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File:                     lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier:          JzdbaexU3xKVHwK5H2lSngoFvQQpaRoh+Tsx9PfiImk=
Subject key identifier:   C9:FC:64:66:B7:69:14:DD:FE:F4:1A:2D:B6:2A:B5:2F:B8:BF:2E:0C
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer:       /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial:       01901DEB31E1090C07FE3A813A40B062D47B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number:          0F2E
Signing time:             Sat 15 Jun 2024 22:01:11 +0000
Manifest this update:     Sat 15 Jun 2024 22:01:11 +0000
Manifest next update:     Sun 16 Jun 2024 22:01:11 +0000
Files and hashes:         1: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: s1yCmnCrHhi6/YcuTImNt9tYf23wa2uttwDFcbZiUhQ=)
                          2: uezppMtx20TJ9hSLNKf7oDMfj7I.roa (hash: pjoCbWNfCMy3URyM7PkgUwc2dHIRgW5Ux6bAVtpfczc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:eb:31:e1:09:0c:07:fe:3a:81:3a:40:b0:62:d4:7b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
        Validity
            Not Before: Jun 15 22:01:11 2024 GMT
            Not After : Jun 16 22:01:11 2024 GMT
        Subject: CN=c9fc6466b76914ddfef41a2db62ab52fb8bf2e0c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:66:2b:5d:a4:0d:ec:2b:24:7b:cb:df:87:58:
                    e9:a5:ce:4e:d3:8c:d3:9b:1c:9d:f1:a5:e5:2e:4b:
                    1a:4e:df:1d:8b:5a:e0:bf:3c:77:db:9f:44:0d:7b:
                    ef:f2:2a:89:ec:2b:55:1d:8c:fa:bb:19:19:53:43:
                    ce:30:ea:e8:37:f1:34:59:af:03:22:a7:4a:82:78:
                    e3:81:04:d9:e9:91:60:95:9b:3e:c2:34:2c:40:eb:
                    90:1f:b4:cc:89:15:78:51:2a:1c:88:60:7f:10:2d:
                    6c:cc:19:68:26:86:75:3a:08:ab:02:d8:a5:59:cf:
                    b4:60:da:67:e7:03:c2:86:53:c6:81:fb:3a:18:ce:
                    0a:89:78:0c:3a:a3:67:aa:2d:f9:83:78:df:d4:4f:
                    98:d3:42:c1:db:38:07:39:17:6e:c9:4f:66:b4:c6:
                    98:b4:1d:3c:a2:a7:87:89:77:0e:c7:ee:6a:d0:98:
                    4a:ab:bc:10:9b:ef:da:69:f6:ab:f7:bd:1c:79:ca:
                    4f:41:f3:54:e8:a6:92:8f:c3:6c:0a:83:de:02:15:
                    e2:c7:a9:da:33:ba:20:d9:f0:bf:d5:45:cb:31:aa:
                    f0:5b:35:da:8b:3a:65:3b:f1:8c:85:a2:64:ea:ef:
                    61:93:e7:f0:0a:51:54:08:90:29:01:e2:62:b3:02:
                    98:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:FC:64:66:B7:69:14:DD:FE:F4:1A:2D:B6:2A:B5:2F:B8:BF:2E:0C
            X509v3 Authority Key Identifier:
                keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4b:52:0d:cb:c2:24:36:64:2c:f9:eb:0e:c3:45:62:49:16:79:
         47:c7:69:03:63:60:8e:cd:d7:aa:09:30:b6:7d:12:b7:83:b2:
         0b:5a:1e:4b:6c:ce:43:09:b5:4b:1d:52:77:ac:64:00:2b:c7:
         33:f3:3a:cd:1f:ca:de:05:8d:91:2c:2e:21:f1:49:ac:2d:98:
         7e:c0:61:fd:41:e8:a8:56:33:42:a2:76:d4:9f:a4:65:4c:3f:
         50:97:8c:cd:da:db:13:6e:7c:64:4c:a3:cd:0b:8b:83:02:f0:
         b1:82:23:32:14:c9:ad:1d:1b:15:4f:57:e2:21:51:b4:b3:b0:
         29:44:1d:48:4c:3f:71:c6:45:a4:3d:b2:f3:3e:41:84:a1:d7:
         83:3a:14:ed:55:39:2d:19:f5:4c:b0:c2:ac:02:f4:09:66:1b:
         e9:31:a8:81:e0:84:54:0b:6e:da:0a:0a:9d:59:b6:a1:92:ad:
         47:c8:0d:3c:db:5b:c2:58:24:50:19:23:15:03:8d:7c:a1:f2:
         ac:1b:ff:5b:c2:f9:23:19:7f:10:3d:73:fb:a2:89:fb:da:8d:
         8e:4d:da:13:d5:f6:ea:c9:eb:d5:c3:8f:ee:e2:a3:4c:46:1e:
         f7:b0:6d:70:e8:34:57:42:cc:54:ac:73:24:a0:cc:85:c0:61:
         68:48:1b:24
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd6zHhCQwH/jqBOkCwYtR7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk2MTk5MzYwMjU5ZmE1YjM1YjgyOTUzYzVlZDk3OTk5MjI4
MzQxYWMwHhcNMjQwNjE1MjIwMTExWhcNMjQwNjE2MjIwMTExWjAzMTEwLwYDVQQD
EyhjOWZjNjQ2NmI3NjkxNGRkZmVmNDFhMmRiNjJhYjUyZmI4YmYyZTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWYrXaQN7Cske8vfh1jppc5O04zT
mxyd8aXlLksaTt8di1rgvzx3259EDXvv8iqJ7CtVHYz6uxkZU0POMOroN/E0Wa8D
IqdKgnjjgQTZ6ZFglZs+wjQsQOuQH7TMiRV4USociGB/EC1szBloJoZ1OgirAtil
Wc+0YNpn5wPChlPGgfs6GM4KiXgMOqNnqi35g3jf1E+Y00LB2zgHORduyU9mtMaY
tB08oqeHiXcOx+5q0JhKq7wQm+/aafar970cecpPQfNU6KaSj8NsCoPeAhXix6na
M7og2fC/1UXLMarwWzXaizplO/GMhaJk6u9hk+fwClFUCJApAeJiswKY9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMn8ZGa3aRTd/vQaLbYqtS+4vy4MMB8GA1UdIwQY
MBaAFJYZk2Aln6WzW4KVPF7ZeZkig0GsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9iZjcwZDMtNzBmYS00YTMyLTgwOWYt
MmE1OTFjMTQ5ZDdhLzEvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9iZjcwZDMtNzBmYS00YTMyLTgwOWYtMmE1OTFjMTQ5ZDdh
LzEvbGhtVFlDV2ZwYk5iZ3BVOFh0bDVtU0tEUWF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS1INy8Ik
NmQs+esOw0ViSRZ5R8dpA2Ngjs3Xqgkwtn0St4OyC1oeS2zOQwm1Sx1Sd6xkACvH
M/M6zR/K3gWNkSwuIfFJrC2YfsBh/UHoqFYzQqJ21J+kZUw/UJeMzdrbE258ZEyj
zQuLgwLwsYIjMhTJrR0bFU9X4iFRtLOwKUQdSEw/ccZFpD2y8z5BhKHXgzoU7VU5
LRn1TLDCrAL0CWYb6TGogeCEVAtu2goKnVm2oZKtR8gNPNtbwlgkUBkjFQONfKHy
rBv/W8L5Ixl/ED1z+6KJ+9qNjk3aE9X26snr1cOP7uKjTEYe97BtcOg0V0LMVKxz
JKDMhcBhaEgbJA==
-----END CERTIFICATE-----
Generated at Sat Jun 15 23:32:05 2024 by rpki-client on console-ams.rpki-client.org