Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.mft
File:                     J9BIQ8TzpOdmlNs8-_m-Optnxpk.mft (raw, json)
Hash identifier:          ZvrKJrB6bAEvob/OxS3RVUbZSsVNu+TJ1fSJnmSGnT0=
Subject key identifier:   00:8F:B9:8C:E2:7D:3E:76:0F:02:BF:48:F4:F9:58:4F:A6:D6:B1:C2
Authority key identifier: 27:D0:48:43:C4:F3:A4:E7:66:94:DB:3C:FB:F9:BE:3A:9B:67:C6:99
Certificate issuer:       /CN=27d04843c4f3a4e76694db3cfbf9be3a9b67c699
Certificate serial:       01901DEAE850B45B92A99B567F853A91E4E1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/J9BIQ8TzpOdmlNs8-_m-Optnxpk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.mft
Manifest number:          11C4
Signing time:             Sat 15 Jun 2024 22:00:52 +0000
Manifest this update:     Sat 15 Jun 2024 22:00:52 +0000
Manifest next update:     Sun 16 Jun 2024 22:00:52 +0000
Files and hashes:         1: J9BIQ8TzpOdmlNs8-_m-Optnxpk.crl (hash: IgZ2Jcernz77UgWMAWvyBKiuOvDxX9JaTPbOd1FwV6o=)
                          2: jA_YwcBaS1MAlX8KaWaMFMNgrAE.roa (hash: gpW+nBhYyfdmW9+z/kEwhvOPwnDFd/3q8tgLoMu9qDk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/J9BIQ8TzpOdmlNs8-_m-Optnxpk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:00:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ea:e8:50:b4:5b:92:a9:9b:56:7f:85:3a:91:e4:e1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=27d04843c4f3a4e76694db3cfbf9be3a9b67c699
        Validity
            Not Before: Jun 15 22:00:52 2024 GMT
            Not After : Jun 16 22:00:52 2024 GMT
        Subject: CN=008fb98ce27d3e760f02bf48f4f9584fa6d6b1c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:1c:71:8b:ab:08:1c:54:91:f8:86:0e:a4:b3:
                    36:4f:e4:83:75:ca:8b:01:34:65:f2:16:a5:2f:b0:
                    d4:15:be:3e:f1:9d:84:f9:55:74:4e:b6:a1:8a:0a:
                    ab:42:2e:98:c1:01:7a:53:f2:49:76:0f:51:b6:38:
                    4c:5a:27:1c:17:98:5f:f3:ee:19:db:f7:c5:17:5c:
                    dc:41:b4:13:4d:a4:8c:b7:7c:ea:14:dd:aa:ec:40:
                    e7:d3:02:64:c9:ad:95:85:f3:04:93:8e:87:bc:80:
                    a7:d7:e0:e9:02:af:ca:d9:d3:cf:0a:50:09:c1:a3:
                    13:cb:d3:d0:84:b5:ec:45:00:c6:08:8b:39:7e:39:
                    e3:c9:c2:03:88:91:77:fd:91:00:a2:26:c0:15:0d:
                    dd:ee:55:c5:1f:9a:ed:70:ee:7a:cc:f8:34:bd:56:
                    fd:40:fa:9f:e8:d4:81:88:f5:23:bb:a3:fc:d1:ce:
                    f5:83:ca:2c:29:45:29:7e:f6:ff:96:3c:b1:50:bd:
                    d3:90:37:7f:59:4e:3a:15:bd:09:a0:f9:cf:c0:5e:
                    b6:cf:f1:17:41:47:35:83:e0:ae:39:90:ec:30:a6:
                    4d:4e:ea:45:94:70:d0:94:47:78:53:cd:65:58:94:
                    3f:75:8b:65:9d:cd:d9:ed:97:78:3d:86:34:c8:c6:
                    c3:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:8F:B9:8C:E2:7D:3E:76:0F:02:BF:48:F4:F9:58:4F:A6:D6:B1:C2
            X509v3 Authority Key Identifier:
                keyid:27:D0:48:43:C4:F3:A4:E7:66:94:DB:3C:FB:F9:BE:3A:9B:67:C6:99

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9BIQ8TzpOdmlNs8-_m-Optnxpk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0b647f-a6e5-46f3-b99c-b09b9385d727/1/J9BIQ8TzpOdmlNs8-_m-Optnxpk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:30:da:b0:47:57:4d:13:e3:3f:92:9f:ba:42:d7:93:c5:73:
         2c:00:87:91:c8:b9:80:7d:e9:56:4f:9d:ed:4a:f0:f5:76:82:
         42:20:63:d1:b8:b7:f0:34:2c:46:c3:68:58:33:cb:ab:96:cf:
         34:8c:b3:6c:fb:76:94:0f:ea:47:87:23:ac:18:7f:7d:f5:1a:
         26:a6:34:f8:aa:a6:d9:76:5b:35:26:41:e7:a3:7b:b2:9f:d5:
         97:36:11:be:6f:3e:b8:e2:63:fa:37:49:0d:f2:8d:40:38:8d:
         4d:30:c2:9f:01:1d:55:e7:48:21:aa:5c:56:18:d3:b6:5b:eb:
         13:4d:80:21:7e:09:a1:55:91:3e:74:cf:68:de:1d:d3:4c:54:
         ef:1c:cf:2f:21:33:c3:ab:ad:1a:57:b2:3a:8a:f7:7a:d1:cd:
         a0:e6:33:9f:07:f8:a9:81:ac:5c:f8:93:a2:a4:06:85:34:b9:
         fd:6f:82:e9:e9:07:cb:92:d6:72:c4:75:76:b5:fb:0b:36:2b:
         f7:c4:11:8d:81:d9:46:3b:61:f7:ca:03:4f:4a:7b:8c:cc:07:
         51:e1:d6:b1:a7:33:f7:a1:e1:4d:e1:0d:2a:7b:04:0a:82:1c:
         ac:fe:f0:ca:b0:34:94:29:a3:1d:c8:ed:eb:59:e2:5c:28:7f:
         a7:79:0d:87
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd6uhQtFuSqZtWf4U6keThMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3ZDA0ODQzYzRmM2E0ZTc2Njk0ZGIzY2ZiZjliZTNhOWI2
N2M2OTkwHhcNMjQwNjE1MjIwMDUyWhcNMjQwNjE2MjIwMDUyWjAzMTEwLwYDVQQD
EygwMDhmYjk4Y2UyN2QzZTc2MGYwMmJmNDhmNGY5NTg0ZmE2ZDZiMWMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkBxxi6sIHFSR+IYOpLM2T+SDdcqL
ATRl8halL7DUFb4+8Z2E+VV0TrahigqrQi6YwQF6U/JJdg9RtjhMWiccF5hf8+4Z
2/fFF1zcQbQTTaSMt3zqFN2q7EDn0wJkya2VhfMEk46HvICn1+DpAq/K2dPPClAJ
waMTy9PQhLXsRQDGCIs5fjnjycIDiJF3/ZEAoibAFQ3d7lXFH5rtcO56zPg0vVb9
QPqf6NSBiPUju6P80c71g8osKUUpfvb/ljyxUL3TkDd/WU46Fb0JoPnPwF62z/EX
QUc1g+CuOZDsMKZNTupFlHDQlEd4U81lWJQ/dYtlnc3Z7Zd4PYY0yMbDbwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFACPuYzifT52DwK/SPT5WE+m1rHCMB8GA1UdIwQY
MBaAFCfQSEPE86TnZpTbPPv5vjqbZ8aZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSjlCSVE4VHpwT2RtbE5zOC1fbS1PcHRueHBrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8wYjY0N2YtYTZlNS00NmYzLWI5OWMt
YjA5YjkzODVkNzI3LzEvSjlCSVE4VHpwT2RtbE5zOC1fbS1PcHRueHBrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy8wYjY0N2YtYTZlNS00NmYzLWI5OWMtYjA5YjkzODVkNzI3
LzEvSjlCSVE4VHpwT2RtbE5zOC1fbS1PcHRueHBrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkzDasEdX
TRPjP5KfukLXk8VzLACHkci5gH3pVk+d7Urw9XaCQiBj0bi38DQsRsNoWDPLq5bP
NIyzbPt2lA/qR4cjrBh/ffUaJqY0+Kqm2XZbNSZB56N7sp/VlzYRvm8+uOJj+jdJ
DfKNQDiNTTDCnwEdVedIIapcVhjTtlvrE02AIX4JoVWRPnTPaN4d00xU7xzPLyEz
w6utGleyOor3etHNoOYznwf4qYGsXPiToqQGhTS5/W+C6ekHy5LWcsR1drX7CzYr
98QRjYHZRjth98oDT0p7jMwHUeHWsacz96HhTeENKnsECoIcrP7wyrA0lCmjHcjt
61niXCh/p3kNhw==
-----END CERTIFICATE-----
Generated at Sun Jun 16 02:58:29 2024 by rpki-client on console-fra.rpki-client.org