Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
File:                     skTScYj-UmvXJjZzgZXR639gYzU.mft (raw, json)
Hash identifier:          GLslO7/+oIiEA2S4Ni9jEjQwvjSpvGotitwNVy/dLeI=
Subject key identifier:   7F:2C:B5:97:15:2B:22:3B:D5:0C:E3:32:02:A1:CF:C4:FB:5B:35:EC
Authority key identifier: B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35
Certificate issuer:       /CN=b244d27188fe526bd72636738195d1eb7f606335
Certificate serial:       01901BFF05F5F3D7122C2055BD08498AC894
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
Manifest number:          11C4
Signing time:             Sat 15 Jun 2024 13:03:36 +0000
Manifest this update:     Sat 15 Jun 2024 13:03:36 +0000
Manifest next update:     Sun 16 Jun 2024 13:03:36 +0000
Files and hashes:         1: sMfyarJxsPXbx1K7f3ed-c6ZkHc.roa (hash: QZvxFDM9IBp1mlJCkqCssOQkKDFvliXkVTRvP9Qe3cs=)
                          2: skTScYj-UmvXJjZzgZXR639gYzU.crl (hash: T3lgAu3qCtdkjiJ2mwPx8GPKAs9wcnMuFhgVq/VtUgc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 13:03:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1b:ff:05:f5:f3:d7:12:2c:20:55:bd:08:49:8a:c8:94
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b244d27188fe526bd72636738195d1eb7f606335
        Validity
            Not Before: Jun 15 13:03:36 2024 GMT
            Not After : Jun 16 13:03:36 2024 GMT
        Subject: CN=7f2cb597152b223bd50ce33202a1cfc4fb5b35ec
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:79:0f:10:73:b0:87:4f:a5:24:39:7f:b0:a6:
                    b8:67:44:08:58:36:85:b1:33:82:2f:c7:4e:24:4b:
                    fc:0f:64:72:7e:bf:39:3a:a3:87:ba:83:7b:0a:09:
                    a1:e9:95:b4:83:ba:76:83:7a:7a:c4:af:c2:d6:3c:
                    95:22:0c:f5:7d:0b:1b:71:19:79:26:7d:36:5a:c2:
                    37:d7:4c:11:53:a8:ab:b8:16:24:eb:9c:5e:eb:31:
                    78:9f:9e:2c:2a:a5:92:0c:01:0e:75:88:0e:33:06:
                    c3:f9:14:46:41:16:5e:e5:de:72:25:30:db:7a:cb:
                    6e:ee:c4:04:ce:c1:a2:b2:83:ad:00:d9:e0:66:c9:
                    0e:7a:20:06:6e:24:ed:0d:6c:07:14:15:9e:1a:70:
                    11:23:3b:a4:91:fe:bb:0d:38:5d:cc:93:7c:3a:d1:
                    71:a5:c5:0e:ea:80:28:60:4e:bd:61:00:13:0a:73:
                    ae:4f:56:82:4f:0d:b7:c6:38:7a:6b:94:d6:91:63:
                    c3:ee:02:f7:21:ea:9d:f5:76:82:78:8f:2d:83:9f:
                    df:05:4a:06:b7:38:4d:55:8c:e7:4b:ce:36:51:c0:
                    32:c6:2f:64:dc:37:98:2d:8e:54:ac:88:8b:8f:df:
                    5d:1d:1d:c1:57:a2:53:26:00:21:4c:67:88:6f:f6:
                    b9:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:2C:B5:97:15:2B:22:3B:D5:0C:E3:32:02:A1:CF:C4:FB:5B:35:EC
            X509v3 Authority Key Identifier:
                keyid:B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         14:d1:74:ef:20:49:33:ca:c6:56:20:05:ab:81:7f:c2:ed:fa:
         c5:87:0b:e5:0e:d2:f3:e6:ce:93:7f:f4:e6:fb:1b:e4:e7:e6:
         5e:55:6c:ff:88:1b:c1:70:e5:b0:69:fe:bc:86:cc:05:16:6f:
         bf:66:19:79:9c:75:77:a9:59:50:e6:29:85:8b:57:42:c4:11:
         47:e0:a2:25:f9:f4:c3:0d:54:54:db:13:e4:4f:2d:e4:bb:33:
         1e:45:20:39:7b:57:fe:fc:e7:1c:ab:a1:78:fc:4d:ea:1e:f1:
         2b:2a:5f:28:9d:3c:87:ab:3d:7f:8e:b9:cf:0b:1d:78:2e:2b:
         80:c0:99:94:e4:dc:d3:2e:46:1f:92:31:4e:78:a7:ea:7b:4b:
         05:8a:80:3e:bf:f8:28:c5:e0:a8:bd:11:ac:e9:7c:fd:c2:39:
         69:d8:a4:3e:bc:df:cb:c3:41:46:ac:71:56:35:4e:6b:4e:f5:
         d0:c8:53:3b:06:e6:ba:25:38:a8:7a:f4:06:54:21:91:4d:06:
         39:36:0a:a1:9e:45:f1:4c:ca:85:ca:55:e2:d7:03:ba:84:4f:
         05:f1:f4:2b:6a:64:9d:51:9e:00:a7:66:0f:c5:c9:26:2b:8e:
         22:d8:19:9e:fa:68:6b:0e:a4:b5:b5:ee:2c:f9:34:f0:82:1d:
         09:ca:d0:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAb/wX189cSLCBVvQhJisiUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyNDRkMjcxODhmZTUyNmJkNzI2MzY3MzgxOTVkMWViN2Y2
MDYzMzUwHhcNMjQwNjE1MTMwMzM2WhcNMjQwNjE2MTMwMzM2WjAzMTEwLwYDVQQD
Eyg3ZjJjYjU5NzE1MmIyMjNiZDUwY2UzMzIwMmExY2ZjNGZiNWIzNWVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3kPEHOwh0+lJDl/sKa4Z0QIWDaF
sTOCL8dOJEv8D2Ryfr85OqOHuoN7Cgmh6ZW0g7p2g3p6xK/C1jyVIgz1fQsbcRl5
Jn02WsI310wRU6iruBYk65xe6zF4n54sKqWSDAEOdYgOMwbD+RRGQRZe5d5yJTDb
estu7sQEzsGisoOtANngZskOeiAGbiTtDWwHFBWeGnARIzukkf67DThdzJN8OtFx
pcUO6oAoYE69YQATCnOuT1aCTw23xjh6a5TWkWPD7gL3Ieqd9XaCeI8tg5/fBUoG
tzhNVYznS842UcAyxi9k3DeYLY5UrIiLj99dHR3BV6JTJgAhTGeIb/a5tQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH8stZcVKyI71QzjMgKhz8T7WzXsMB8GA1UdIwQY
MBaAFLJE0nGI/lJr1yY2c4GV0et/YGM1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2tUU2NZai1VbXZYSmpaemdaWFI2MzlnWXpVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8yYTcyN2ItYTc0NS00MzM5LTkyNWEt
NGQwMGQ2MDMyYWZlLzEvc2tUU2NZai1VbXZYSmpaemdaWFI2MzlnWXpVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy8yYTcyN2ItYTc0NS00MzM5LTkyNWEtNGQwMGQ2MDMyYWZl
LzEvc2tUU2NZai1VbXZYSmpaemdaWFI2MzlnWXpVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFNF07yBJ
M8rGViAFq4F/wu36xYcL5Q7S8+bOk3/05vsb5OfmXlVs/4gbwXDlsGn+vIbMBRZv
v2YZeZx1d6lZUOYphYtXQsQRR+CiJfn0ww1UVNsT5E8t5LszHkUgOXtX/vznHKuh
ePxN6h7xKypfKJ08h6s9f465zwsdeC4rgMCZlOTc0y5GH5IxTnin6ntLBYqAPr/4
KMXgqL0RrOl8/cI5adikPrzfy8NBRqxxVjVOa0710MhTOwbmuiU4qHr0BlQhkU0G
OTYKoZ5F8UzKhcpV4tcDuoRPBfH0K2pknVGeAKdmD8XJJiuOItgZnvpoaw6ktbXu
LPk08IIdCcrQ4g==
-----END CERTIFICATE-----
Generated at Sat Jun 15 20:58:20 2024 by rpki-client on console-ams.rpki-client.org