Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
File:                     he1PzEWWTU6nL8RJLE15VxMyEMM.mft (raw, json)
Hash identifier:          UyugV3BjmvNS7jAyCtqcG05vffc4brLYRv41xWzZ854=
Subject key identifier:   AA:15:24:C7:F6:5F:3C:75:3A:33:3B:E4:C3:0D:35:A8:43:6B:7A:F2
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Certificate issuer:       /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial:       019037E19513C00AC331EECC3213C67E3987
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
Manifest number:          11D2
Signing time:             Thu 20 Jun 2024 23:00:48 +0000
Manifest this update:     Thu 20 Jun 2024 23:00:48 +0000
Manifest next update:     Fri 21 Jun 2024 23:00:48 +0000
Files and hashes:         1: he1PzEWWTU6nL8RJLE15VxMyEMM.crl (hash: MnhA+Lu1oe+y+2DScIujSimpI0PeorfeT6+Ug+5lFnk=)
                          2: mZGPbFaLBsHgguDfmAi8_TEEi2s.roa (hash: UljmrIj007cf+lf1x882L5xCfcCqUtJduwq/P7Qzm8o=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 21 Jun 2024 23:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:37:e1:95:13:c0:0a:c3:31:ee:cc:32:13:c6:7e:39:87
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
        Validity
            Not Before: Jun 20 23:00:48 2024 GMT
            Not After : Jun 21 23:00:48 2024 GMT
        Subject: CN=aa1524c7f65f3c753a333be4c30d35a8436b7af2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:37:fa:81:55:18:8a:bf:48:e0:55:7a:d4:e8:
                    5e:f6:6b:33:75:b8:a4:07:d7:ad:1d:b8:61:a3:9b:
                    27:91:76:f3:65:4e:71:c0:e9:ab:6b:00:1f:b8:26:
                    f6:b6:83:fb:89:93:84:d9:2a:4e:c6:18:06:e8:06:
                    4d:c8:d1:23:52:19:ed:f7:a7:9e:e7:89:b6:d1:7e:
                    aa:39:df:e5:16:c8:22:a8:11:cc:84:be:df:18:ad:
                    11:8c:9d:36:e4:ed:74:41:56:63:ce:23:09:07:75:
                    af:27:0e:58:ea:6a:a5:85:cc:65:cc:6c:cd:32:35:
                    7d:ac:9e:a6:53:d1:2e:11:e7:fe:5f:f6:83:31:7d:
                    ef:b0:b2:21:42:78:8d:5f:9f:36:2f:3f:14:e7:66:
                    18:12:07:cd:d4:1c:c5:1b:25:3f:e4:bc:a6:d4:1c:
                    97:07:7b:af:15:1f:e6:71:3c:3b:1b:46:ae:fd:5a:
                    8f:bd:46:ba:5a:cc:6f:1a:89:22:58:f9:28:26:2d:
                    f4:c4:99:a9:2a:83:34:c0:78:8a:9d:d7:c2:15:fe:
                    0c:1f:59:72:8f:04:50:43:bc:84:a8:41:78:2e:d0:
                    20:b3:17:6b:18:f1:74:64:54:28:d7:1b:0c:de:cb:
                    29:64:e7:49:e0:90:26:08:32:9e:9e:38:55:89:5b:
                    16:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:15:24:C7:F6:5F:3C:75:3A:33:3B:E4:C3:0D:35:A8:43:6B:7A:F2
            X509v3 Authority Key Identifier:
                keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:87:ef:2f:04:44:ab:76:04:cf:48:67:bd:db:a0:c7:25:1b:
         4b:d6:d4:f1:71:79:38:06:40:e7:8a:ed:d6:a9:8f:6b:63:3e:
         97:79:a7:b3:4b:db:13:71:87:62:c8:ae:5d:19:56:b9:42:db:
         f5:62:d9:c0:a6:c0:b1:24:52:e8:6e:40:fa:58:cd:07:9a:a9:
         a2:c1:cc:6b:db:60:b8:c6:8f:7d:5d:32:c4:ad:21:b5:87:85:
         85:aa:fa:2a:54:3f:50:2c:fd:c3:d4:fe:a2:bf:e6:2f:55:b3:
         95:e4:1b:21:54:0e:6f:da:7b:18:4c:14:89:1b:57:b8:ee:3e:
         ee:f6:1d:c4:a7:b8:74:6d:12:66:1c:9f:fd:d7:13:d0:68:51:
         73:9a:30:dc:7d:12:25:0b:04:b5:66:98:15:ee:9e:42:fb:bc:
         25:ef:f0:20:bd:11:b7:7a:5d:50:06:36:41:5c:ed:f0:66:55:
         85:11:74:0a:57:c5:4c:c4:d5:6f:1d:9a:c8:aa:67:22:2a:2d:
         16:83:57:70:15:a2:47:00:40:fe:1b:42:aa:85:a3:b4:c3:23:
         a1:dd:5e:3e:8b:37:6a:0f:50:3e:ae:ea:b1:ac:2b:8e:7e:7c:
         c8:13:08:4c:97:29:5e:e0:29:02:83:97:5f:11:e7:be:46:1c:
         4a:73:28:1d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZA34ZUTwArDMe7MMhPGfjmHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg1ZWQ0ZmNjNDU5NjRkNGVhNzJmYzQ0OTJjNGQ3OTU3MTMz
MjEwYzMwHhcNMjQwNjIwMjMwMDQ4WhcNMjQwNjIxMjMwMDQ4WjAzMTEwLwYDVQQD
EyhhYTE1MjRjN2Y2NWYzYzc1M2EzMzNiZTRjMzBkMzVhODQzNmI3YWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzf6gVUYir9I4FV61Ohe9mszdbik
B9etHbhho5snkXbzZU5xwOmrawAfuCb2toP7iZOE2SpOxhgG6AZNyNEjUhnt96ee
54m20X6qOd/lFsgiqBHMhL7fGK0RjJ025O10QVZjziMJB3WvJw5Y6mqlhcxlzGzN
MjV9rJ6mU9EuEef+X/aDMX3vsLIhQniNX582Lz8U52YYEgfN1BzFGyU/5Lym1ByX
B3uvFR/mcTw7G0au/VqPvUa6WsxvGokiWPkoJi30xJmpKoM0wHiKndfCFf4MH1ly
jwRQQ7yEqEF4LtAgsxdrGPF0ZFQo1xsM3sspZOdJ4JAmCDKenjhViVsW/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKoVJMf2Xzx1OjM75MMNNahDa3ryMB8GA1UdIwQY
MBaAFIXtT8xFlk1Opy/ESSxNeVcTMhDDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaGUxUHpFV1dUVTZuTDhSSkxFMTVWeE15RU1NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9jYTQ2MGUtNjYzNS00ODFiLWI2ZTkt
Zjg1YTdjYjFkMTkyLzEvaGUxUHpFV1dUVTZuTDhSSkxFMTVWeE15RU1NLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC9jYTQ2MGUtNjYzNS00ODFiLWI2ZTktZjg1YTdjYjFkMTky
LzEvaGUxUHpFV1dUVTZuTDhSSkxFMTVWeE15RU1NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH4fvLwRE
q3YEz0hnvdugxyUbS9bU8XF5OAZA54rt1qmPa2M+l3mns0vbE3GHYsiuXRlWuULb
9WLZwKbAsSRS6G5A+ljNB5qposHMa9tguMaPfV0yxK0htYeFhar6KlQ/UCz9w9T+
or/mL1WzleQbIVQOb9p7GEwUiRtXuO4+7vYdxKe4dG0SZhyf/dcT0GhRc5ow3H0S
JQsEtWaYFe6eQvu8Je/wIL0Rt3pdUAY2QVzt8GZVhRF0ClfFTMTVbx2ayKpnIiot
FoNXcBWiRwBA/htCqoWjtMMjod1ePos3ag9QPq7qsawrjn58yBMITJcpXuApAoOX
XxHnvkYcSnMoHQ==
-----END CERTIFICATE-----
Generated at Fri Jun 21 03:48:21 2024 by rpki-client on console-ams.rpki-client.org