Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
File:                     aTHX56mXSaOF6usn-FCridqPLuA.mft (raw, json)
Hash identifier:          /vwzCWVJDeUZHuy8uitSWXhPhHOLfKLknDYPvIzRf3M=
Subject key identifier:   CC:B6:67:55:D2:6C:E7:9D:8B:F7:4B:9F:78:AD:C6:06:D3:0D:54:17
Authority key identifier: 69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
Certificate issuer:       /CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Certificate serial:       01901F34C9DAD2BAF24BF43851953C60597B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
Manifest number:          0103
Signing time:             Sun 16 Jun 2024 04:01:11 +0000
Manifest this update:     Sun 16 Jun 2024 04:01:11 +0000
Manifest next update:     Mon 17 Jun 2024 04:01:11 +0000
Files and hashes:         1: UiQZW6QcoicQe4BI-Bc5lyGvKiY.roa (hash: o4MgBvKE0yTyfmMDcoN/8/pl35BA2L91fB3GUUyVw5o=)
                          2: aTHX56mXSaOF6usn-FCridqPLuA.crl (hash: xH3S7jkYF9wUz351Z2m5bFMbjMCoLszO7Vqmq69vXgM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1f:34:c9:da:d2:ba:f2:4b:f4:38:51:95:3c:60:59:7b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
        Validity
            Not Before: Jun 16 04:01:11 2024 GMT
            Not After : Jun 17 04:01:11 2024 GMT
        Subject: CN=ccb66755d26ce79d8bf74b9f78adc606d30d5417
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:e5:e1:27:43:9c:0d:12:d3:92:28:b8:07:13:
                    bf:af:37:80:5a:2b:c6:0b:b0:96:66:36:be:d2:c2:
                    a7:55:8c:86:9d:c5:d0:28:e5:f7:21:66:81:26:c2:
                    f6:c8:0c:05:0f:39:19:98:7d:14:f8:d3:b3:b6:97:
                    d6:4f:08:d1:5d:e1:41:02:f3:b8:ac:e7:72:9d:c3:
                    5a:9d:89:93:17:d6:0e:d9:56:62:fe:22:fa:29:cc:
                    78:92:c5:aa:df:50:8f:da:21:d3:3b:ca:5f:75:06:
                    8f:25:19:9d:27:2a:24:6c:b6:b2:00:2b:2e:35:71:
                    14:cb:f9:a9:4e:7b:80:c5:d5:a2:1b:3a:2c:04:7d:
                    59:0c:04:1d:06:d1:a2:a4:b8:25:95:b9:a8:6a:f8:
                    e1:88:e7:27:7d:35:e9:f5:da:98:54:37:57:97:dc:
                    ec:bf:54:cf:ce:4d:76:30:4d:61:f7:86:6e:20:ab:
                    5c:e3:46:6a:bc:00:40:a3:3b:76:04:1e:e7:ff:11:
                    15:b5:0c:c8:da:f1:75:17:dd:3c:1c:69:d2:2a:17:
                    1f:ba:4b:30:39:2d:ac:9e:08:6a:d0:07:b8:75:cd:
                    bb:02:dd:7f:12:a4:4a:72:99:92:67:5e:04:39:ab:
                    83:be:7f:bd:b0:6a:0f:77:f6:f5:55:bc:e6:a4:27:
                    4b:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:B6:67:55:D2:6C:E7:9D:8B:F7:4B:9F:78:AD:C6:06:D3:0D:54:17
            X509v3 Authority Key Identifier:
                keyid:69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:c2:f5:fd:af:f8:c2:a5:c6:3d:dd:55:93:95:16:5a:0c:9e:
         07:77:2c:d4:70:2a:71:5b:85:d0:3f:b6:09:66:a9:5e:79:36:
         ef:3b:e4:0e:de:a1:af:60:a9:ce:11:6e:90:f0:0c:7b:96:2f:
         e2:63:32:8b:47:2c:36:88:99:88:3c:6e:ab:86:2e:72:b4:a7:
         31:fd:4f:b1:73:97:5a:84:be:f8:20:5b:45:70:0c:7b:3c:f3:
         21:9c:6a:a6:59:6a:57:34:77:92:15:57:d9:7d:54:14:09:a4:
         94:6c:41:a1:c3:ff:35:2a:3b:a3:df:91:59:9b:02:a6:0b:39:
         c6:00:bb:3f:a3:99:f9:3c:5e:ef:03:46:e3:a3:5a:ff:54:8c:
         e7:bf:fd:c3:d8:0b:85:fe:7a:8b:15:d0:d8:bf:d4:d6:fb:91:
         d8:ab:ba:e9:bf:ab:c0:e9:3c:dc:06:0e:aa:d3:0f:f9:fb:3e:
         74:55:71:93:78:ca:e1:55:58:e7:19:40:73:f6:02:cc:cc:24:
         3b:9d:cd:65:e0:61:dd:6e:e6:81:03:f7:4d:a4:74:f2:f7:ca:
         cd:5b:d6:fb:3e:16:20:a8:84:a9:b6:fa:e6:e6:41:16:86:41:
         0f:ca:32:67:aa:98:a6:7f:ca:b8:46:ae:77:51:5c:7a:98:c4:
         d5:cb:a7:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAfNMna0rryS/Q4UZU8YFl7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY5MzFkN2U3YTk5NzQ5YTM4NWVhZWIyN2Y4NTBhYjg5ZGE4
ZjJlZTAwHhcNMjQwNjE2MDQwMTExWhcNMjQwNjE3MDQwMTExWjAzMTEwLwYDVQQD
EyhjY2I2Njc1NWQyNmNlNzlkOGJmNzRiOWY3OGFkYzYwNmQzMGQ1NDE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+XhJ0OcDRLTkii4BxO/rzeAWivG
C7CWZja+0sKnVYyGncXQKOX3IWaBJsL2yAwFDzkZmH0U+NOztpfWTwjRXeFBAvO4
rOdyncNanYmTF9YO2VZi/iL6Kcx4ksWq31CP2iHTO8pfdQaPJRmdJyokbLayACsu
NXEUy/mpTnuAxdWiGzosBH1ZDAQdBtGipLgllbmoavjhiOcnfTXp9dqYVDdXl9zs
v1TPzk12ME1h94ZuIKtc40ZqvABAozt2BB7n/xEVtQzI2vF1F908HGnSKhcfuksw
OS2snghq0Ae4dc27At1/EqRKcpmSZ14EOauDvn+9sGoPd/b1VbzmpCdLTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMy2Z1XSbOedi/dLn3itxgbTDVQXMB8GA1UdIwQY
MBaAFGkx1+epl0mjherrJ/hQq4najy7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYVRIWDU2bVhTYU9GNnVzbi1GQ3JpZHFQTHVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC84Y2ZkNzMtMTI1Ny00ZGZhLThjNTkt
NzZhZTQyMzU2Y2U1LzEvYVRIWDU2bVhTYU9GNnVzbi1GQ3JpZHFQTHVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC84Y2ZkNzMtMTI1Ny00ZGZhLThjNTktNzZhZTQyMzU2Y2U1
LzEvYVRIWDU2bVhTYU9GNnVzbi1GQ3JpZHFQTHVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdML1/a/4
wqXGPd1Vk5UWWgyeB3cs1HAqcVuF0D+2CWapXnk27zvkDt6hr2CpzhFukPAMe5Yv
4mMyi0csNoiZiDxuq4YucrSnMf1PsXOXWoS++CBbRXAMezzzIZxqpllqVzR3khVX
2X1UFAmklGxBocP/NSo7o9+RWZsCpgs5xgC7P6OZ+Txe7wNG46Na/1SM57/9w9gL
hf56ixXQ2L/U1vuR2Ku66b+rwOk83AYOqtMP+fs+dFVxk3jK4VVY5xlAc/YCzMwk
O53NZeBh3W7mgQP3TaR08vfKzVvW+z4WIKiEqbb65uZBFoZBD8oyZ6qYpn/KuEau
d1FcepjE1cunmg==
-----END CERTIFICATE-----
Generated at Sun Jun 16 04:48:26 2024 by rpki-client on console-fra.rpki-client.org