Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft
File:                     bMfzcUDRMXn5pckglknIDDfGpxM.mft (raw, json)
Hash identifier:          nQZ4tdOs6cEUdibTMh6znIVvVsetGczhjLMC8rEZ+ro=
Subject key identifier:   40:26:F1:24:4B:D2:24:E1:FC:88:D7:42:BC:86:F7:DB:BB:F9:0D:5F
Authority key identifier: 6C:C7:F3:71:40:D1:31:79:F9:A5:C9:20:96:49:C8:0C:37:C6:A7:13
Certificate issuer:       /CN=6cc7f37140d13179f9a5c9209649c80c37c6a713
Certificate serial:       01903585CAD39031CA1650C89C57C996FA5D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bMfzcUDRMXn5pckglknIDDfGpxM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft
Manifest number:          0DEA
Signing time:             Thu 20 Jun 2024 12:01:18 +0000
Manifest this update:     Thu 20 Jun 2024 12:01:18 +0000
Manifest next update:     Fri 21 Jun 2024 12:01:18 +0000
Files and hashes:         1: bMfzcUDRMXn5pckglknIDDfGpxM.crl (hash: A24Js3L2trjU6bk0YNfUI3bRhm1A1+VA2QC5FAjp3vo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bMfzcUDRMXn5pckglknIDDfGpxM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 21 Jun 2024 11:48:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:35:85:ca:d3:90:31:ca:16:50:c8:9c:57:c9:96:fa:5d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6cc7f37140d13179f9a5c9209649c80c37c6a713
        Validity
            Not Before: Jun 20 12:01:18 2024 GMT
            Not After : Jun 21 12:01:18 2024 GMT
        Subject: CN=4026f1244bd224e1fc88d742bc86f7dbbbf90d5f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:6f:08:6a:46:98:38:17:ef:f4:cb:e2:c4:cd:
                    7c:74:b8:96:d9:e6:77:72:03:a8:25:8d:bd:2b:73:
                    ac:a6:d6:cc:52:84:49:f5:71:70:95:cd:4a:69:c0:
                    d3:10:c9:8d:02:7d:d7:7a:6a:57:25:3b:43:9c:e8:
                    ac:5d:16:88:7e:aa:af:a7:e9:e1:5c:e6:dd:3b:9b:
                    2f:6b:0b:08:bf:2f:29:34:ad:4e:a9:d3:18:97:1d:
                    fb:42:da:6a:91:d4:45:54:4a:b1:6e:e8:4d:bc:9e:
                    98:ee:7a:e8:b9:b9:63:4a:3e:7b:b6:15:ff:63:fa:
                    7f:2d:5c:f3:38:b4:37:90:03:b9:97:34:51:55:29:
                    69:56:4b:1f:03:77:c2:bc:62:a4:54:a4:20:32:47:
                    49:e4:68:4b:5b:6c:79:c2:ea:b2:38:f3:67:73:15:
                    b0:33:cd:22:ee:79:f7:fb:33:45:9b:bc:6e:83:20:
                    56:14:e9:70:0d:0a:22:4d:11:c1:7f:1f:01:99:f5:
                    d5:06:78:8c:05:4b:ae:ac:ca:e5:db:25:81:55:04:
                    da:04:12:7a:5f:8e:dc:7c:2c:63:c0:0e:fa:ee:09:
                    e6:a6:23:6f:73:c1:ce:55:96:3e:68:98:14:eb:77:
                    53:2f:e4:e7:58:68:65:42:95:dc:ee:a3:f4:63:41:
                    02:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                40:26:F1:24:4B:D2:24:E1:FC:88:D7:42:BC:86:F7:DB:BB:F9:0D:5F
            X509v3 Authority Key Identifier:
                keyid:6C:C7:F3:71:40:D1:31:79:F9:A5:C9:20:96:49:C8:0C:37:C6:A7:13

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMfzcUDRMXn5pckglknIDDfGpxM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:32:c9:9c:1a:35:2e:d5:d1:69:92:60:76:da:59:5a:97:4a:
         06:db:da:36:e3:fb:1d:de:d4:7b:d6:97:cc:86:a8:14:c9:40:
         9a:58:21:36:5a:75:e2:fd:f9:83:16:0d:c5:bc:9e:52:71:82:
         a1:81:40:ce:2e:a8:31:b5:71:45:98:d9:40:7a:a5:98:10:c3:
         09:09:3c:a2:7a:65:ae:2c:a7:7a:68:c3:df:09:e1:bc:1b:d2:
         15:6e:d7:0d:72:38:d6:a8:22:6a:b5:2f:2f:83:af:a9:fb:f9:
         c6:fa:34:d6:9d:a9:43:cf:f3:7f:28:0b:ba:fb:88:55:8f:66:
         50:2c:dc:31:1f:a9:9f:77:a0:60:23:ca:2c:de:34:c6:0e:d1:
         93:ce:57:7d:9b:19:07:bf:a1:a0:1b:cc:0e:a0:12:cd:75:6a:
         2a:d6:30:9c:0d:e1:8f:73:93:59:8b:28:f2:fa:de:e3:e8:7c:
         dd:76:d3:d5:4e:fb:57:e7:d6:11:49:99:9a:ba:87:31:a3:86:
         fa:68:c0:88:a4:27:66:27:d6:92:0c:ec:6f:1f:49:6a:c1:6d:
         f2:4c:17:c7:2b:45:d0:5c:fa:04:06:34:2a:e7:6d:26:6c:94:
         1c:97:81:ce:f9:51:97:c3:9e:c7:18:1c:4a:3c:90:43:fc:51:
         be:cd:a0:21
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZA1hcrTkDHKFlDInFfJlvpdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjYzdmMzcxNDBkMTMxNzlmOWE1YzkyMDk2NDljODBjMzdj
NmE3MTMwHhcNMjQwNjIwMTIwMTE4WhcNMjQwNjIxMTIwMTE4WjAzMTEwLwYDVQQD
Eyg0MDI2ZjEyNDRiZDIyNGUxZmM4OGQ3NDJiYzg2ZjdkYmJiZjkwZDVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqW8IakaYOBfv9MvixM18dLiW2eZ3
cgOoJY29K3OsptbMUoRJ9XFwlc1KacDTEMmNAn3XempXJTtDnOisXRaIfqqvp+nh
XObdO5svawsIvy8pNK1OqdMYlx37QtpqkdRFVEqxbuhNvJ6Y7nroubljSj57thX/
Y/p/LVzzOLQ3kAO5lzRRVSlpVksfA3fCvGKkVKQgMkdJ5GhLW2x5wuqyOPNncxWw
M80i7nn3+zNFm7xugyBWFOlwDQoiTRHBfx8BmfXVBniMBUuurMrl2yWBVQTaBBJ6
X47cfCxjwA767gnmpiNvc8HOVZY+aJgU63dTL+TnWGhlQpXc7qP0Y0ECywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEAm8SRL0iTh/IjXQryG99u7+Q1fMB8GA1UdIwQY
MBaAFGzH83FA0TF5+aXJIJZJyAw3xqcTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk1memNVRFJNWG41cGNrZ2xrbklERGZHcHhNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9hNzU1MDctNWM1Yy00ODQyLWExYzQt
OGQ1NmRkY2ZhNGI4LzEvYk1memNVRFJNWG41cGNrZ2xrbklERGZHcHhNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9hNzU1MDctNWM1Yy00ODQyLWExYzQtOGQ1NmRkY2ZhNGI4
LzEvYk1memNVRFJNWG41cGNrZ2xrbklERGZHcHhNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOzLJnBo1
LtXRaZJgdtpZWpdKBtvaNuP7Hd7Ue9aXzIaoFMlAmlghNlp14v35gxYNxbyeUnGC
oYFAzi6oMbVxRZjZQHqlmBDDCQk8onplriynemjD3wnhvBvSFW7XDXI41qgiarUv
L4Ovqfv5xvo01p2pQ8/zfygLuvuIVY9mUCzcMR+pn3egYCPKLN40xg7Rk85XfZsZ
B7+hoBvMDqASzXVqKtYwnA3hj3OTWYso8vre4+h83XbT1U77V+fWEUmZmrqHMaOG
+mjAiKQnZifWkgzsbx9JasFt8kwXxytF0Fz6BAY0KudtJmyUHJeBzvlRl8Oexxgc
SjyQQ/xRvs2gIQ==
-----END CERTIFICATE-----
Generated at Thu Jun 20 13:28:53 2024 by rpki-client on console-fra.rpki-client.org