Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft
File:                     NXwbu7IW2REwR2H6ezE3hHDKtpw.mft (raw, json)
Hash identifier:          BFWnOnJ4Hc3DyL4UJvu+/pzUpusuYxt0lloXQCozBjQ=
Subject key identifier:   0A:E1:E3:8A:20:67:2F:02:DC:99:7C:6B:EE:FD:C7:FA:A5:24:EC:14
Authority key identifier: 35:7C:1B:BB:B2:16:D9:11:30:47:61:FA:7B:31:37:84:70:CA:B6:9C
Certificate issuer:       /CN=357c1bbbb216d911304761fa7b31378470cab69c
Certificate serial:       01901DEB20DBEFEEC0056A0B27A71F213A7D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NXwbu7IW2REwR2H6ezE3hHDKtpw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft
Manifest number:          11C5
Signing time:             Sat 15 Jun 2024 22:01:06 +0000
Manifest this update:     Sat 15 Jun 2024 22:01:06 +0000
Manifest next update:     Sun 16 Jun 2024 22:01:06 +0000
Files and hashes:         1: NXwbu7IW2REwR2H6ezE3hHDKtpw.crl (hash: xQs1joN3WhGauh7Mj6ZrGid04ZVvSBhaa3sIwu8ijDc=)
                          2: _ocPOvYevHe-LBrtblIrEjQ0BGg.roa (hash: E18MnggddNZgXl+E0Red/yDDJw5nTwp+JZvjKB0BwrY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NXwbu7IW2REwR2H6ezE3hHDKtpw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:01:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:eb:20:db:ef:ee:c0:05:6a:0b:27:a7:1f:21:3a:7d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=357c1bbbb216d911304761fa7b31378470cab69c
        Validity
            Not Before: Jun 15 22:01:06 2024 GMT
            Not After : Jun 16 22:01:06 2024 GMT
        Subject: CN=0ae1e38a20672f02dc997c6beefdc7faa524ec14
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:2a:78:df:49:12:2a:de:4f:56:50:e8:80:d4:
                    95:cf:9f:1d:44:63:ff:5a:61:9a:9d:8f:49:68:91:
                    2d:ba:ee:2f:2d:ad:ec:3f:a4:96:fd:e6:c4:62:4a:
                    57:83:92:98:b8:44:b1:1d:ac:f5:7a:ea:bc:68:24:
                    0c:00:88:c5:f0:f4:29:11:59:ee:0c:32:43:c4:31:
                    95:58:89:ba:ad:85:b3:98:8e:fc:11:fd:1a:28:46:
                    6b:a3:f9:ce:19:ed:21:4e:a6:87:a2:b3:e0:74:e9:
                    60:b7:9d:ce:3b:0a:f2:90:47:65:7b:8a:88:2c:0d:
                    2d:1b:1c:dd:b9:f8:39:4c:10:26:cb:ec:f5:61:ae:
                    1b:4e:3c:72:9d:89:d9:45:56:cb:1b:81:02:40:2c:
                    5d:85:a8:3c:6f:77:9a:b1:7a:4c:dc:cd:a4:1f:1d:
                    a1:77:05:f3:d6:e6:bb:60:b9:98:a5:ca:9d:b6:7b:
                    80:e1:ff:13:3c:13:e7:8c:82:00:34:46:f1:ec:0f:
                    91:d8:1d:95:6b:eb:f0:e5:96:df:96:b1:98:ff:30:
                    cf:80:b3:da:bb:34:05:39:cb:24:07:62:c3:7c:af:
                    73:9d:95:34:0d:68:17:53:6e:17:b8:f0:13:f3:10:
                    9d:7a:d5:be:3b:d3:8a:25:ba:85:e4:a2:2a:02:37:
                    10:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:E1:E3:8A:20:67:2F:02:DC:99:7C:6B:EE:FD:C7:FA:A5:24:EC:14
            X509v3 Authority Key Identifier:
                keyid:35:7C:1B:BB:B2:16:D9:11:30:47:61:FA:7B:31:37:84:70:CA:B6:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NXwbu7IW2REwR2H6ezE3hHDKtpw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:39:6c:4a:6c:dc:8c:0d:f9:03:50:e7:1c:6d:94:8c:37:24:
         58:4c:78:1a:96:fd:90:93:39:0c:73:25:10:c7:0b:20:76:67:
         f1:2d:02:8b:62:7d:72:e6:f9:7b:9b:94:d7:8c:8e:f4:8e:38:
         73:39:9e:17:19:d7:1a:85:9d:7e:6b:cc:09:94:e1:79:1c:0f:
         cf:d6:09:69:eb:6e:a6:79:02:a1:d6:bc:30:04:15:28:ec:9a:
         ea:d8:33:f5:d0:bd:a5:3f:a5:07:af:16:8b:ab:c9:f2:ee:56:
         06:35:d6:53:cc:e7:64:87:74:b4:48:d3:2b:31:2d:77:03:94:
         0f:48:b1:aa:48:53:07:30:c0:db:c7:81:d3:2c:a3:6d:40:4e:
         9c:32:bb:a0:9c:4a:80:a7:61:63:21:84:d1:22:65:cd:11:25:
         b2:be:7e:ff:f1:e8:ef:91:a6:11:cb:b7:74:49:00:19:f5:0d:
         c5:a2:fe:07:9c:15:83:9b:d2:be:c1:51:63:c5:b8:06:92:a6:
         ac:ea:db:64:03:a3:28:10:7b:48:2f:fa:ea:59:a4:09:d2:92:
         f2:7f:dd:71:84:48:d9:1a:48:64:50:04:46:02:ba:d6:45:7d:
         b2:c3:f0:d2:26:ff:55:e2:22:7b:60:37:ac:5d:1d:a5:fe:a6:
         79:8b:14:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd6yDb7+7ABWoLJ6cfITp9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1N2MxYmJiYjIxNmQ5MTEzMDQ3NjFmYTdiMzEzNzg0NzBj
YWI2OWMwHhcNMjQwNjE1MjIwMTA2WhcNMjQwNjE2MjIwMTA2WjAzMTEwLwYDVQQD
EygwYWUxZTM4YTIwNjcyZjAyZGM5OTdjNmJlZWZkYzdmYWE1MjRlYzE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCp430kSKt5PVlDogNSVz58dRGP/
WmGanY9JaJEtuu4vLa3sP6SW/ebEYkpXg5KYuESxHaz1euq8aCQMAIjF8PQpEVnu
DDJDxDGVWIm6rYWzmI78Ef0aKEZro/nOGe0hTqaHorPgdOlgt53OOwrykEdle4qI
LA0tGxzdufg5TBAmy+z1Ya4bTjxynYnZRVbLG4ECQCxdhag8b3easXpM3M2kHx2h
dwXz1ua7YLmYpcqdtnuA4f8TPBPnjIIANEbx7A+R2B2Va+vw5ZbflrGY/zDPgLPa
uzQFOcskB2LDfK9znZU0DWgXU24XuPAT8xCdetW+O9OKJbqF5KIqAjcQSQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFArh44ogZy8C3Jl8a+79x/qlJOwUMB8GA1UdIwQY
MBaAFDV8G7uyFtkRMEdh+nsxN4RwyracMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlh3YnU3SVcyUkV3UjJINmV6RTNoSERLdHB3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi83MmNiYTMtNjA1MS00MjE4LTg4YzIt
NTA4NjFlZWI1ZDVkLzEvTlh3YnU3SVcyUkV3UjJINmV6RTNoSERLdHB3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi83MmNiYTMtNjA1MS00MjE4LTg4YzItNTA4NjFlZWI1ZDVk
LzEvTlh3YnU3SVcyUkV3UjJINmV6RTNoSERLdHB3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsTlsSmzc
jA35A1DnHG2UjDckWEx4Gpb9kJM5DHMlEMcLIHZn8S0Ci2J9cub5e5uU14yO9I44
czmeFxnXGoWdfmvMCZTheRwPz9YJaetupnkCoda8MAQVKOya6tgz9dC9pT+lB68W
i6vJ8u5WBjXWU8znZId0tEjTKzEtdwOUD0ixqkhTBzDA28eB0yyjbUBOnDK7oJxK
gKdhYyGE0SJlzRElsr5+//Ho75GmEcu3dEkAGfUNxaL+B5wVg5vSvsFRY8W4BpKm
rOrbZAOjKBB7SC/66lmkCdKS8n/dcYRI2RpIZFAERgK61kV9ssPw0ib/VeIie2A3
rF0dpf6meYsULw==
-----END CERTIFICATE-----
Generated at Sun Jun 16 03:44:44 2024 by rpki-client on console-ams.rpki-client.org