Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.mft
File:                     Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.mft (raw, json)
Hash identifier:          KGFjpDHx6U9gkgehrEn49TSs1g8XStJMZw7S6D5xnuo=
Subject key identifier:   89:0B:2B:34:BB:73:F5:C6:23:83:18:CB:7C:71:B9:22:53:4C:52:0A
Authority key identifier: 67:5F:BE:4B:1F:00:23:3E:D7:67:99:00:71:F0:45:90:C9:0C:88:7D
Certificate issuer:       /CN=675fbe4b1f00233ed767990071f04590c90c887d
Certificate serial:       01901DED2810B49F43E977520BF2664AD0A5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.mft
Manifest number:          0A5E
Signing time:             Sat 15 Jun 2024 22:03:19 +0000
Manifest this update:     Sat 15 Jun 2024 22:03:19 +0000
Manifest next update:     Sun 16 Jun 2024 22:03:19 +0000
Files and hashes:         1: XnxB6U2DT6BCca0TL3Jjs5kATME.roa (hash: 5FUxuObBzGPTBBVZnOLxOzE1m2/HtTv/nB/LCGGO8mo=)
                          2: Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.crl (hash: 2RzFTlwcPW1gaUUjRMDneRCfLKCtEP9r/+V/NCW/XUc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:03:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ed:28:10:b4:9f:43:e9:77:52:0b:f2:66:4a:d0:a5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=675fbe4b1f00233ed767990071f04590c90c887d
        Validity
            Not Before: Jun 15 22:03:19 2024 GMT
            Not After : Jun 16 22:03:19 2024 GMT
        Subject: CN=890b2b34bb73f5c6238318cb7c71b922534c520a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:7a:d6:4d:da:2b:f7:f0:5e:c3:97:b4:eb:df:
                    97:41:53:8f:f0:1b:6a:94:cc:56:61:69:9b:f5:fa:
                    4c:bf:36:33:50:39:a5:e0:73:89:07:e2:5d:5b:b1:
                    20:aa:02:c6:f0:78:b6:31:bc:dc:e3:0e:43:d4:1f:
                    73:6c:ce:b9:e3:20:b6:3e:8b:26:bb:57:2d:81:c6:
                    68:b9:bc:cb:e2:e7:9f:f8:01:f9:33:bd:e1:ab:44:
                    e6:30:bf:3d:4f:0d:8b:bd:e5:e5:a6:29:be:5a:5b:
                    77:db:e7:4e:a7:0c:f6:a3:a2:8d:c2:dd:e1:c8:f0:
                    e1:f3:c9:d0:a1:ef:ac:57:4e:87:c2:97:26:b6:e1:
                    2d:13:d2:41:ce:3d:26:2a:d5:96:3b:f5:4b:45:3d:
                    37:ed:82:4d:ff:19:45:bb:92:18:f1:15:b0:b7:84:
                    25:9a:31:83:9b:c2:cc:6d:00:09:a3:4f:20:9d:d0:
                    6a:4c:b6:f0:3b:d2:31:04:58:e8:9b:a8:78:b6:c1:
                    27:95:1d:15:2e:58:60:ec:26:88:c1:3a:28:42:c4:
                    2c:5d:e1:45:95:89:f5:1b:ee:8d:6c:b0:e5:43:9e:
                    e2:d5:f4:d9:b2:82:b1:cb:a6:7e:a5:b7:c3:81:26:
                    35:f5:0d:97:c5:6b:9e:bc:4d:44:98:99:3e:f4:e0:
                    1a:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:0B:2B:34:BB:73:F5:C6:23:83:18:CB:7C:71:B9:22:53:4C:52:0A
            X509v3 Authority Key Identifier:
                keyid:67:5F:BE:4B:1F:00:23:3E:D7:67:99:00:71:F0:45:90:C9:0C:88:7D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/41/55c2a0-49df-4d96-988f-4f9d04010710/1/Z1--Sx8AIz7XZ5kAcfBFkMkMiH0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:e4:38:86:9a:9c:ef:a1:28:ab:9b:f1:6d:da:56:ca:37:09:
         9e:34:96:03:07:d1:ac:70:6e:09:e5:5c:2c:a2:a6:54:23:61:
         37:fa:4f:7d:3b:10:b6:b8:b1:c1:e6:10:f0:63:67:51:19:c9:
         6f:fe:b8:8d:d7:6c:33:9c:04:f4:30:d0:54:ae:08:18:e3:97:
         71:ac:3e:6d:5f:21:ce:db:7e:b8:68:44:d6:70:41:b5:10:7c:
         d0:51:48:36:61:10:a7:fb:67:29:53:67:22:22:d2:c3:7a:8b:
         d3:11:a8:ef:06:48:50:8e:25:d8:49:d7:ad:f2:fc:18:1f:94:
         91:a9:55:63:00:0e:7a:6c:21:5e:78:45:f3:96:27:a3:05:e4:
         3e:02:42:b3:cb:57:81:15:59:f5:22:c0:7b:76:a2:5c:a7:90:
         c3:6b:9b:5a:bb:4c:75:d8:36:48:60:d8:1e:19:07:ee:a6:c5:
         4a:e4:58:3c:f7:73:61:b3:da:47:cd:9b:4d:8d:53:be:0c:d0:
         c1:c2:2c:21:80:06:45:31:04:6a:65:a5:ea:62:7b:f2:e9:90:
         25:8e:b0:e9:1b:51:cf:7e:27:c4:6b:17:8d:9c:a4:9c:03:8d:
         20:e5:b0:ec:ba:4f:0b:43:01:5b:e0:0d:bf:9d:92:88:59:ec:
         60:43:b3:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd7SgQtJ9D6XdSC/JmStClMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3NWZiZTRiMWYwMDIzM2VkNzY3OTkwMDcxZjA0NTkwYzkw
Yzg4N2QwHhcNMjQwNjE1MjIwMzE5WhcNMjQwNjE2MjIwMzE5WjAzMTEwLwYDVQQD
Eyg4OTBiMmIzNGJiNzNmNWM2MjM4MzE4Y2I3YzcxYjkyMjUzNGM1MjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAonrWTdor9/Bew5e069+XQVOP8Btq
lMxWYWmb9fpMvzYzUDml4HOJB+JdW7EgqgLG8Hi2Mbzc4w5D1B9zbM654yC2Posm
u1ctgcZoubzL4uef+AH5M73hq0TmML89Tw2LveXlpim+Wlt32+dOpwz2o6KNwt3h
yPDh88nQoe+sV06HwpcmtuEtE9JBzj0mKtWWO/VLRT037YJN/xlFu5IY8RWwt4Ql
mjGDm8LMbQAJo08gndBqTLbwO9IxBFjom6h4tsEnlR0VLlhg7CaIwTooQsQsXeFF
lYn1G+6NbLDlQ57i1fTZsoKxy6Z+pbfDgSY19Q2XxWuevE1EmJk+9OAaywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIkLKzS7c/XGI4MYy3xxuSJTTFIKMB8GA1UdIwQY
MBaAFGdfvksfACM+12eZAHHwRZDJDIh9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjEtLVN4OEFJejdYWjVrQWNmQkZrTWtNaUgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NWMyYTAtNDlkZi00ZDk2LTk4OGYt
NGY5ZDA0MDEwNzEwLzEvWjEtLVN4OEFJejdYWjVrQWNmQkZrTWtNaUgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS81NWMyYTAtNDlkZi00ZDk2LTk4OGYtNGY5ZDA0MDEwNzEw
LzEvWjEtLVN4OEFJejdYWjVrQWNmQkZrTWtNaUgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVeQ4hpqc
76Eoq5vxbdpWyjcJnjSWAwfRrHBuCeVcLKKmVCNhN/pPfTsQtrixweYQ8GNnURnJ
b/64jddsM5wE9DDQVK4IGOOXcaw+bV8hztt+uGhE1nBBtRB80FFINmEQp/tnKVNn
IiLSw3qL0xGo7wZIUI4l2EnXrfL8GB+UkalVYwAOemwhXnhF85YnowXkPgJCs8tX
gRVZ9SLAe3aiXKeQw2ubWrtMddg2SGDYHhkH7qbFSuRYPPdzYbPaR82bTY1TvgzQ
wcIsIYAGRTEEamWl6mJ78umQJY6w6RtRz34nxGsXjZyknAONIOWw7LpPC0MBW+AN
v52SiFnsYEOzKg==
-----END CERTIFICATE-----
Generated at Sun Jun 16 03:53:49 2024 by rpki-client on console-ams.rpki-client.org