Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File:                     ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier:          y+vuZ97k9GBUde7ApDXeaAhr4mvh9cBORlAmTqWr/gA=
Subject key identifier:   E9:A2:0C:2A:C2:4A:30:47:F3:3F:0B:8A:E4:BB:F3:C9:DD:A4:EE:73
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer:       /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial:       01901DED52829D71862C679540843BD7919E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number:          01A5
Signing time:             Sat 15 Jun 2024 22:03:30 +0000
Manifest this update:     Sat 15 Jun 2024 22:03:30 +0000
Manifest next update:     Sun 16 Jun 2024 22:03:30 +0000
Files and hashes:         1: guUGRnzj5pwFHeQhW8ZyJN7k9iQ.roa (hash: gLHmuP0nLF/zGn0SSzgY4xfAayhoAMF8AAfJyBCxfuQ=)
                          2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: SBJwCpSn9+qVP/6Kqs/tnCyu1lqYADPzDfEmese9uAY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:03:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ed:52:82:9d:71:86:2c:67:95:40:84:3b:d7:91:9e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
        Validity
            Not Before: Jun 15 22:03:30 2024 GMT
            Not After : Jun 16 22:03:30 2024 GMT
        Subject: CN=e9a20c2ac24a3047f33f0b8ae4bbf3c9dda4ee73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:07:de:05:65:7b:9b:84:96:e1:0e:11:07:bc:
                    54:c2:93:70:d3:1d:1e:06:7c:df:7c:39:91:9d:ba:
                    fd:31:28:24:4d:93:d9:29:ee:88:64:31:20:7a:a2:
                    5c:44:73:65:5a:6a:b5:ac:9a:e1:24:59:07:30:fe:
                    71:87:0f:b1:91:e4:2c:e4:3b:f8:d3:7b:7b:a2:b1:
                    41:00:8e:3e:6c:1a:56:94:e2:98:fc:2e:08:8d:70:
                    34:4f:49:2f:b4:5e:04:aa:2c:08:d7:47:91:c2:23:
                    11:ac:2a:98:c8:7b:8e:cd:12:31:e8:fd:63:ad:7d:
                    56:47:8f:69:f6:a4:62:4f:99:f6:56:7f:77:3e:03:
                    44:5d:d0:70:df:dd:de:6c:4f:c6:72:c7:97:0d:98:
                    bd:ca:4b:d9:ba:c0:12:3d:07:8e:4a:b5:3b:15:f1:
                    20:cc:d7:21:a2:1b:0a:49:6c:65:5e:1b:a2:b1:54:
                    35:58:8d:13:98:c3:dc:16:f1:1c:9d:e9:b2:24:69:
                    84:ce:28:cb:ed:b7:0f:bf:6d:80:25:5c:45:ef:07:
                    da:33:be:8e:d4:3a:3a:20:b8:dd:19:d0:7b:85:ec:
                    37:dc:27:e6:22:51:33:84:31:68:79:ea:38:34:e4:
                    63:44:4b:28:4c:43:32:2c:ca:02:d4:6a:5d:1c:5a:
                    c8:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:A2:0C:2A:C2:4A:30:47:F3:3F:0B:8A:E4:BB:F3:C9:DD:A4:EE:73
            X509v3 Authority Key Identifier:
                keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         00:20:df:95:d5:a8:ae:60:63:45:1e:3d:0f:50:a5:f0:62:36:
         29:20:e9:0e:62:9b:24:48:4f:d6:3a:7c:a8:cc:52:51:81:59:
         9d:d5:87:ed:13:80:33:82:74:55:ec:ec:86:40:ff:9f:e8:12:
         2d:11:e5:38:32:a0:69:07:24:94:40:1c:cb:fd:a4:19:be:05:
         d4:78:1e:fd:96:9a:7d:b2:2a:ff:96:04:c3:16:c5:7f:ca:4a:
         bb:2f:8c:6f:79:f2:b7:6c:e0:aa:c5:44:ee:d4:f7:79:f5:fe:
         b1:00:58:6b:2b:45:cd:6c:62:67:5f:50:05:e9:53:4e:e6:dd:
         ec:35:0e:4c:00:30:48:c9:68:95:bb:74:f5:b0:f3:78:e1:c5:
         ae:84:0c:c2:87:e9:2e:90:03:5e:a3:3c:94:79:12:23:dd:5f:
         bf:e9:62:63:2b:89:6e:57:7b:f3:68:a1:d0:d6:4a:66:14:03:
         a0:b7:24:f4:a9:2a:80:a4:9d:62:89:bb:b7:49:bb:7b:f8:ed:
         e4:02:f4:39:9c:f0:ac:95:1c:99:3b:3e:ec:ed:39:26:39:1e:
         95:23:94:dc:3c:e0:5a:c8:0a:47:7d:32:76:32:ab:1c:fa:82:
         16:f0:91:61:dd:b4:f5:32:b6:9c:db:0d:55:c5:de:7a:e2:97:
         c0:31:76:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd7VKCnXGGLGeVQIQ715GeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNDQzMzg2NTk4NWE3YmI1ZTI2OWMzNzk0YWU2ZjE2NGNm
YzJkZGIwHhcNMjQwNjE1MjIwMzMwWhcNMjQwNjE2MjIwMzMwWjAzMTEwLwYDVQQD
EyhlOWEyMGMyYWMyNGEzMDQ3ZjMzZjBiOGFlNGJiZjNjOWRkYTRlZTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAfeBWV7m4SW4Q4RB7xUwpNw0x0e
BnzffDmRnbr9MSgkTZPZKe6IZDEgeqJcRHNlWmq1rJrhJFkHMP5xhw+xkeQs5Dv4
03t7orFBAI4+bBpWlOKY/C4IjXA0T0kvtF4EqiwI10eRwiMRrCqYyHuOzRIx6P1j
rX1WR49p9qRiT5n2Vn93PgNEXdBw393ebE/GcseXDZi9ykvZusASPQeOSrU7FfEg
zNchohsKSWxlXhuisVQ1WI0TmMPcFvEcnemyJGmEzijL7bcPv22AJVxF7wfaM76O
1Do6ILjdGdB7hew33CfmIlEzhDFoeeo4NORjREsoTEMyLMoC1GpdHFrIVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOmiDCrCSjBH8z8LiuS788ndpO5zMB8GA1UdIwQY
MBaAFLpEM4ZZhae7XiacN5SubxZM/C3bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEt
M2ExMjAyNzQwMGU2LzEvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS9hYjMyMTktYzY0Yi00NzBlLTgzNDEtM2ExMjAyNzQwMGU2
LzEvdWtRemhsbUZwN3RlSnB3M2xLNXZGa3o4TGRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAACDfldWo
rmBjRR49D1Cl8GI2KSDpDmKbJEhP1jp8qMxSUYFZndWH7ROAM4J0VezshkD/n+gS
LRHlODKgaQcklEAcy/2kGb4F1Hge/ZaafbIq/5YEwxbFf8pKuy+Mb3nyt2zgqsVE
7tT3efX+sQBYaytFzWxiZ19QBelTTubd7DUOTAAwSMlolbt09bDzeOHFroQMwofp
LpADXqM8lHkSI91fv+liYyuJbld782ih0NZKZhQDoLck9KkqgKSdYom7t0m7e/jt
5AL0OZzwrJUcmTs+7O05JjkelSOU3DzgWsgKR30ydjKrHPqCFvCRYd209TK2nNsN
VcXeeuKXwDF2DA==
-----END CERTIFICATE-----
Generated at Sun Jun 16 04:05:45 2024 by rpki-client on console-ams.rpki-client.org