Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft
File:                     k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft (raw, json)
Hash identifier:          A7mEW7o/8eE7VLeLNw296KwJ8d7gUGYPyeo9SU2e6+A=
Subject key identifier:   CC:BA:65:B4:DD:AA:46:EB:12:1B:44:3E:BC:C4:87:03:8F:A6:A6:BE
Authority key identifier: 93:D4:3D:49:98:68:09:1B:BD:C4:7D:95:AE:E1:C9:09:9F:00:56:20
Certificate issuer:       /CN=93d43d499868091bbdc47d95aee1c9099f005620
Certificate serial:       019041F7349984A0B8134C50C5F485E2253E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft
Manifest number:          11DA
Signing time:             Sat 22 Jun 2024 22:00:38 +0000
Manifest this update:     Sat 22 Jun 2024 22:00:38 +0000
Manifest next update:     Sun 23 Jun 2024 22:00:38 +0000
Files and hashes:         1: _fVXRZZVGe2ekCXelOxjeimpddA.roa (hash: omxDviT30Ax+sFu/uNtdSYGCUeDbmPiyrWHwzMiFnxE=)
                          2: k9Q9SZhoCRu9xH2VruHJCZ8AViA.crl (hash: Q4wiv/oQZZCBzwWsmSif4XPo1x+FizO+gQDqYm+6S0M=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 21:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:41:f7:34:99:84:a0:b8:13:4c:50:c5:f4:85:e2:25:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=93d43d499868091bbdc47d95aee1c9099f005620
        Validity
            Not Before: Jun 22 22:00:38 2024 GMT
            Not After : Jun 23 22:00:38 2024 GMT
        Subject: CN=ccba65b4ddaa46eb121b443ebcc487038fa6a6be
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:c3:71:55:4c:7e:da:10:a1:c0:3f:43:0e:5b:
                    84:aa:7d:df:01:b2:1c:b9:c8:4f:86:ec:4e:1a:69:
                    c2:24:72:19:b4:89:b4:b7:c6:8a:52:10:58:7c:37:
                    50:40:ee:81:4b:b2:29:14:85:6d:91:df:3d:90:a6:
                    f8:7d:9b:f7:8d:ac:d2:3b:48:3c:d1:55:67:af:fe:
                    5e:12:4d:b1:68:5e:09:d8:4b:ba:e6:75:b1:83:00:
                    32:81:fb:ed:cc:65:49:e0:7c:16:55:94:aa:2c:66:
                    17:b9:6a:8d:13:5b:56:1f:fe:b3:3c:c0:91:8e:5e:
                    00:06:8a:c0:a0:5d:84:e5:48:ed:3c:5d:4f:6b:f4:
                    3d:f7:5d:c9:01:54:49:56:8a:be:fe:16:63:70:72:
                    15:d7:2a:b6:96:b8:15:54:86:4f:ce:87:28:49:70:
                    bd:8f:98:62:1c:ef:f0:58:b7:8a:8b:ad:ee:81:cd:
                    96:b2:0f:0e:ee:56:27:d8:cc:2a:ef:b0:67:e0:13:
                    ce:02:40:8c:57:ca:f6:db:14:54:0e:76:64:50:0f:
                    e9:a4:e5:18:d8:1b:7e:fd:79:13:78:94:aa:17:61:
                    bc:11:2b:b2:d8:37:28:0b:05:27:25:54:63:8e:78:
                    ae:8d:e7:00:2e:f4:90:4a:6e:3d:8d:af:f4:cd:8a:
                    56:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:BA:65:B4:DD:AA:46:EB:12:1B:44:3E:BC:C4:87:03:8F:A6:A6:BE
            X509v3 Authority Key Identifier:
                keyid:93:D4:3D:49:98:68:09:1B:BD:C4:7D:95:AE:E1:C9:09:9F:00:56:20

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:bb:bb:f9:26:46:d3:a8:8c:05:10:48:f8:0d:49:b3:3d:38:
         98:f4:4e:1c:40:b6:19:6a:14:3f:a9:1c:b9:7c:82:97:88:91:
         22:94:e3:29:1a:08:07:e3:c7:a2:8a:22:15:f2:53:1e:09:76:
         af:bd:35:66:bf:46:27:08:94:17:79:b6:87:b0:cc:e7:c2:f2:
         f7:c7:f2:18:af:9d:19:8b:e0:67:a7:68:89:0c:03:c1:12:55:
         ab:63:79:1f:1e:e0:67:e8:05:51:9b:dc:12:a9:e7:df:98:f0:
         0f:2c:71:08:1b:0c:7a:fe:2b:74:73:35:08:54:de:a3:89:8b:
         6b:1c:c1:f7:00:23:b7:c1:d2:08:27:8c:d4:cd:31:c9:af:e7:
         03:56:01:14:d8:44:87:e4:7b:a5:d6:27:59:ce:00:59:95:14:
         0c:db:31:1a:56:54:13:4f:4e:c8:46:f8:65:06:31:9e:8e:1d:
         b0:11:97:a5:34:40:ac:79:66:93:f3:8b:60:83:65:fe:81:76:
         2d:40:5b:b8:c3:20:1c:3d:0f:49:12:2d:45:63:56:6e:7a:64:
         17:cd:ac:e8:ed:b0:54:5c:89:8b:b1:82:6a:08:03:13:3a:a1:
         b8:52:ad:96:50:56:1c:18:e5:c4:79:e8:4d:2d:eb:33:d9:b5:
         78:78:73:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBB9zSZhKC4E0xQxfSF4iU+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZDQzZDQ5OTg2ODA5MWJiZGM0N2Q5NWFlZTFjOTA5OWYw
MDU2MjAwHhcNMjQwNjIyMjIwMDM4WhcNMjQwNjIzMjIwMDM4WjAzMTEwLwYDVQQD
EyhjY2JhNjViNGRkYWE0NmViMTIxYjQ0M2ViY2M0ODcwMzhmYTZhNmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnMNxVUx+2hChwD9DDluEqn3fAbIc
uchPhuxOGmnCJHIZtIm0t8aKUhBYfDdQQO6BS7IpFIVtkd89kKb4fZv3jazSO0g8
0VVnr/5eEk2xaF4J2Eu65nWxgwAygfvtzGVJ4HwWVZSqLGYXuWqNE1tWH/6zPMCR
jl4ABorAoF2E5UjtPF1Pa/Q9913JAVRJVoq+/hZjcHIV1yq2lrgVVIZPzocoSXC9
j5hiHO/wWLeKi63ugc2Wsg8O7lYn2Mwq77Bn4BPOAkCMV8r22xRUDnZkUA/ppOUY
2Bt+/XkTeJSqF2G8ESuy2DcoCwUnJVRjjniujecALvSQSm49ja/0zYpWdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMy6ZbTdqkbrEhtEPrzEhwOPpqa+MB8GA1UdIwQY
MBaAFJPUPUmYaAkbvcR9la7hyQmfAFYgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazlROVNaaG9DUnU5eEgyVnJ1SEpDWjhBVmlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC82YjA4YzItNWMzYS00Mjg4LTg0NGIt
N2ZlNDJmZjRkY2Q4LzEvazlROVNaaG9DUnU5eEgyVnJ1SEpDWjhBVmlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC82YjA4YzItNWMzYS00Mjg4LTg0NGItN2ZlNDJmZjRkY2Q4
LzEvazlROVNaaG9DUnU5eEgyVnJ1SEpDWjhBVmlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADLu7+SZG
06iMBRBI+A1Jsz04mPROHEC2GWoUP6kcuXyCl4iRIpTjKRoIB+PHoooiFfJTHgl2
r701Zr9GJwiUF3m2h7DM58Ly98fyGK+dGYvgZ6doiQwDwRJVq2N5Hx7gZ+gFUZvc
Eqnn35jwDyxxCBsMev4rdHM1CFTeo4mLaxzB9wAjt8HSCCeM1M0xya/nA1YBFNhE
h+R7pdYnWc4AWZUUDNsxGlZUE09OyEb4ZQYxno4dsBGXpTRArHlmk/OLYINl/oF2
LUBbuMMgHD0PSRItRWNWbnpkF82s6O2wVFyJi7GCaggDEzqhuFKtllBWHBjlxHno
TS3rM9m1eHhz9Q==
-----END CERTIFICATE-----
Generated at Sun Jun 23 01:45:29 2024 by rpki-client on console-ams.rpki-client.org