Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
File:                     N8ZRc24kPV6mzsymOv20oDEtdzA.mft (raw, json)
Hash identifier:          oo+Qmn5cdceqWv+O/5MkV/66IFLOecT1DpOUqNKlSG4=
Subject key identifier:   31:75:48:18:AE:21:76:1E:82:43:4D:4C:A8:FC:FF:A7:36:9A:90:22
Authority key identifier: 37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
Certificate issuer:       /CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Certificate serial:       01901E593AC7C288E3C09213C4AB2873C045
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
Manifest number:          11C6
Signing time:             Sun 16 Jun 2024 00:01:22 +0000
Manifest this update:     Sun 16 Jun 2024 00:01:22 +0000
Manifest next update:     Mon 17 Jun 2024 00:01:22 +0000
Files and hashes:         1: E9ssSI1Tn0lrU4RoW8ysqXD2pqE.roa (hash: 0xwkxHL+QCHMv1+8wLygtv/1G5SIpwNNhM2xS9Fewek=)
                          2: N8ZRc24kPV6mzsymOv20oDEtdzA.crl (hash: ipbjCkt6BHqbs6cSEZeccfxq9L9820zjzTOCsXUiAPY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:59:3a:c7:c2:88:e3:c0:92:13:c4:ab:28:73:c0:45
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=37c651736e243d5ea6cecca63afdb4a0312d7730
        Validity
            Not Before: Jun 16 00:01:22 2024 GMT
            Not After : Jun 17 00:01:22 2024 GMT
        Subject: CN=31754818ae21761e82434d4ca8fcffa7369a9022
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:8a:0f:67:f2:5f:a6:7a:90:f1:20:ce:f3:5b:
                    1c:d7:bf:77:d0:e6:bf:29:b7:e8:3c:91:3a:33:a4:
                    e9:aa:db:59:c4:f2:d7:57:52:df:8e:88:a7:9a:f3:
                    4d:d9:7a:8f:bd:44:08:61:5d:38:ee:fa:95:f7:b1:
                    12:d7:57:a2:e9:48:73:ab:93:c2:ce:3e:87:9c:51:
                    34:61:e0:9e:89:ae:47:98:36:26:a9:ef:63:e1:a7:
                    95:9f:20:b1:3e:63:f6:ac:61:6f:eb:d6:52:d1:40:
                    a4:c4:57:9c:7f:0a:16:06:c9:d7:82:b4:c7:6d:33:
                    26:34:53:c0:58:9a:2e:56:92:f7:1e:68:8d:9a:d0:
                    b0:02:04:c1:81:41:fb:8f:05:58:8f:d8:14:ae:be:
                    44:7a:3c:2a:7a:6f:c1:26:b6:61:15:0a:66:15:b9:
                    3b:bc:ea:41:ce:f5:05:ff:26:53:81:7d:c4:4a:ea:
                    d7:fd:22:87:4c:84:01:2f:27:b3:2f:be:55:e4:4a:
                    89:65:a8:6c:69:4d:0a:9e:9f:1b:8b:60:79:c6:c3:
                    3c:20:67:33:90:a2:8c:47:20:aa:82:41:7a:de:d6:
                    a6:db:6f:7b:ee:ae:7d:95:28:a9:7f:f0:2d:99:71:
                    40:e0:7c:a7:cb:ff:2d:57:b5:9f:c2:5b:8e:b6:1f:
                    f8:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                31:75:48:18:AE:21:76:1E:82:43:4D:4C:A8:FC:FF:A7:36:9A:90:22
            X509v3 Authority Key Identifier:
                keyid:37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:d5:6f:1d:6b:67:cd:65:33:89:4c:27:29:3a:cf:62:f0:44:
         f4:a0:a1:63:d4:f0:d0:06:d5:6f:1c:c4:6d:21:7b:0f:d1:a9:
         62:e1:75:3d:cd:4c:9e:d7:b2:c4:f8:26:b9:ed:78:c2:bd:b9:
         ed:45:3d:ac:5a:7f:48:b0:71:4a:25:2d:4e:b8:81:6c:7b:60:
         af:03:4d:d8:43:d5:32:d3:cb:c9:ed:2e:4d:ed:68:d5:eb:85:
         91:cf:f5:03:eb:ac:0d:06:cc:ca:78:c0:ba:34:50:73:de:9e:
         07:52:f8:a0:a7:bd:53:d5:33:c8:b6:7d:74:24:6b:35:3f:ac:
         4a:da:e0:cb:b9:dc:69:b2:64:cf:46:72:e5:a8:cd:4d:ae:29:
         59:55:a0:20:a2:18:69:f9:41:ae:60:69:90:1e:64:07:d5:d4:
         f4:d8:2e:de:18:87:3a:3d:31:43:39:97:d6:f1:9e:05:bf:7f:
         87:1a:0f:c3:82:26:df:77:cb:c9:df:cf:7a:52:7f:0e:0d:41:
         3b:ee:91:29:07:38:4b:2c:97:48:73:d7:93:95:1d:67:f3:b4:
         9c:d0:4f:ef:c2:d0:d3:8f:57:25:59:23:8f:5c:b7:71:af:39:
         53:92:d1:0e:f2:fa:50:0d:76:ea:19:26:1c:4f:c3:34:89:9d:
         c8:7e:3f:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAeWTrHwojjwJITxKsoc8BFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM3YzY1MTczNmUyNDNkNWVhNmNlY2NhNjNhZmRiNGEwMzEy
ZDc3MzAwHhcNMjQwNjE2MDAwMTIyWhcNMjQwNjE3MDAwMTIyWjAzMTEwLwYDVQQD
EygzMTc1NDgxOGFlMjE3NjFlODI0MzRkNGNhOGZjZmZhNzM2OWE5MDIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwooPZ/JfpnqQ8SDO81sc17930Oa/
KbfoPJE6M6TpqttZxPLXV1LfjoinmvNN2XqPvUQIYV047vqV97ES11ei6Uhzq5PC
zj6HnFE0YeCeia5HmDYmqe9j4aeVnyCxPmP2rGFv69ZS0UCkxFecfwoWBsnXgrTH
bTMmNFPAWJouVpL3HmiNmtCwAgTBgUH7jwVYj9gUrr5Eejwqem/BJrZhFQpmFbk7
vOpBzvUF/yZTgX3ESurX/SKHTIQBLyezL75V5EqJZahsaU0Knp8bi2B5xsM8IGcz
kKKMRyCqgkF63tam22977q59lSipf/AtmXFA4Hyny/8tV7WfwluOth/4gwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDF1SBiuIXYegkNNTKj8/6c2mpAiMB8GA1UdIwQY
MBaAFDfGUXNuJD1eps7Mpjr9tKAxLXcwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTjhaUmMyNGtQVjZtenN5bU92MjBvREV0ZHpBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi81MjNjN2QtMzkxNy00MTM3LTlkZjMt
YWJlYTYyNTg2OGE4LzEvTjhaUmMyNGtQVjZtenN5bU92MjBvREV0ZHpBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYi81MjNjN2QtMzkxNy00MTM3LTlkZjMtYWJlYTYyNTg2OGE4
LzEvTjhaUmMyNGtQVjZtenN5bU92MjBvREV0ZHpBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsNVvHWtn
zWUziUwnKTrPYvBE9KChY9Tw0AbVbxzEbSF7D9GpYuF1Pc1MnteyxPgmue14wr25
7UU9rFp/SLBxSiUtTriBbHtgrwNN2EPVMtPLye0uTe1o1euFkc/1A+usDQbMynjA
ujRQc96eB1L4oKe9U9UzyLZ9dCRrNT+sStrgy7ncabJkz0Zy5ajNTa4pWVWgIKIY
aflBrmBpkB5kB9XU9Ngu3hiHOj0xQzmX1vGeBb9/hxoPw4Im33fLyd/PelJ/Dg1B
O+6RKQc4SyyXSHPXk5UdZ/O0nNBP78LQ049XJVkjj1y3ca85U5LRDvL6UA126hkm
HE/DNImdyH4//Q==
-----END CERTIFICATE-----
Generated at Sun Jun 16 03:47:23 2024 by rpki-client on console-ams.rpki-client.org