Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft
File:                     k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft (raw, json)
Hash identifier:          AaALCJ7TBXskzUWyKy0qi8aP9dJS/DO14nts+4V1sEI=
Subject key identifier:   5E:2B:E7:F4:4B:34:55:F4:6B:15:B6:54:49:23:A4:A4:E4:AD:38:27
Authority key identifier: 93:D4:3D:49:98:68:09:1B:BD:C4:7D:95:AE:E1:C9:09:9F:00:56:20
Certificate issuer:       /CN=93d43d499868091bbdc47d95aee1c9099f005620
Certificate serial:       01901D460CD662E05E7130BDB4AB144BBBFE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft
Manifest number:          11C7
Signing time:             Sat 15 Jun 2024 19:00:48 +0000
Manifest this update:     Sat 15 Jun 2024 19:00:48 +0000
Manifest next update:     Sun 16 Jun 2024 19:00:48 +0000
Files and hashes:         1: _fVXRZZVGe2ekCXelOxjeimpddA.roa (hash: omxDviT30Ax+sFu/uNtdSYGCUeDbmPiyrWHwzMiFnxE=)
                          2: k9Q9SZhoCRu9xH2VruHJCZ8AViA.crl (hash: 3Ovx2+yDtIyJeDT87OglKOfxMo0p4DRbSyeNUGMoK40=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 19:00:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:46:0c:d6:62:e0:5e:71:30:bd:b4:ab:14:4b:bb:fe
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=93d43d499868091bbdc47d95aee1c9099f005620
        Validity
            Not Before: Jun 15 19:00:48 2024 GMT
            Not After : Jun 16 19:00:48 2024 GMT
        Subject: CN=5e2be7f44b3455f46b15b6544923a4a4e4ad3827
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:44:2d:30:66:b2:28:21:f0:bc:04:2f:e2:2e:
                    01:3b:4d:4c:a5:3d:b6:1d:b3:1e:8c:16:10:41:a6:
                    0b:b9:2d:b9:5a:14:ec:ab:7c:24:19:e7:10:95:fd:
                    be:87:0f:a8:85:47:ba:87:7d:3d:06:10:81:8c:4f:
                    89:ec:16:e5:61:fb:5b:a0:fc:41:7d:cf:f4:78:0b:
                    df:2e:6a:ba:26:8e:35:df:97:ca:70:09:03:d6:c3:
                    9c:7e:ad:fb:32:40:c3:bc:13:22:65:a5:7a:8b:34:
                    d5:83:d5:e1:2c:d1:d6:0c:1a:b4:e2:76:0e:1c:ba:
                    03:8b:58:96:41:7c:b6:f3:e5:c2:76:3e:cd:e0:54:
                    94:2a:9d:b1:f5:6f:21:09:69:43:90:8b:25:c6:4f:
                    cf:86:85:68:7e:f2:2f:95:50:7a:f5:72:8b:a9:2d:
                    7c:c8:ca:ef:58:6b:66:50:78:9c:72:fa:25:61:d4:
                    90:fc:6f:ed:c6:fe:84:14:a1:f1:98:84:f1:c4:e2:
                    d1:14:01:e0:8f:9c:59:6f:a8:8f:0c:8b:b9:4b:5f:
                    bf:c8:c3:f0:80:42:fc:fe:3e:86:74:19:27:73:1d:
                    bc:31:8c:2f:f5:25:bc:76:18:e4:f7:32:84:e5:36:
                    d3:74:8b:d6:62:fd:d7:99:b4:da:bc:56:bc:bc:49:
                    4f:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:2B:E7:F4:4B:34:55:F4:6B:15:B6:54:49:23:A4:A4:E4:AD:38:27
            X509v3 Authority Key Identifier:
                keyid:93:D4:3D:49:98:68:09:1B:BD:C4:7D:95:AE:E1:C9:09:9F:00:56:20

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:62:b6:ae:f6:04:a5:90:96:c4:a0:25:b8:b7:0d:74:33:68:
         fa:50:4d:34:21:8b:49:5c:30:42:54:94:f2:48:4b:26:46:47:
         ca:16:1d:6e:37:ec:6f:81:3b:8b:cc:7f:28:a8:d8:1a:c9:9b:
         f5:5d:32:87:96:42:61:fe:30:0c:00:67:ab:74:8b:b0:d9:b3:
         9a:cd:07:8b:20:c3:38:6c:0b:89:4f:42:0a:fa:c9:8b:0b:02:
         2b:1a:bf:72:45:c1:73:59:5e:76:b6:31:27:2c:c1:88:93:de:
         01:d0:0c:17:3c:05:f4:7d:ef:93:3e:2c:e1:06:21:71:1e:2a:
         27:06:0b:3f:80:41:cc:de:72:36:c6:dd:ab:d3:47:d2:3d:c7:
         c5:3e:ff:2c:4e:81:d7:1a:bc:34:fc:e6:c3:d6:13:95:1c:24:
         ab:8c:73:9a:f3:23:a4:43:b9:27:5a:f7:a2:74:c3:b9:d9:04:
         36:06:e4:c7:d5:53:03:59:ca:45:58:ea:f2:7d:34:3f:51:cb:
         de:a8:bc:78:9c:38:13:d5:9c:3d:2d:cd:9b:39:4a:23:8e:28:
         f4:22:86:91:25:f2:6d:06:a3:49:ad:08:b0:88:94:a2:86:78:
         7d:4e:ea:41:8d:4d:25:ed:6c:6a:30:40:2d:e1:89:75:3a:f6:
         c5:f9:25:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAdRgzWYuBecTC9tKsUS7v+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZDQzZDQ5OTg2ODA5MWJiZGM0N2Q5NWFlZTFjOTA5OWYw
MDU2MjAwHhcNMjQwNjE1MTkwMDQ4WhcNMjQwNjE2MTkwMDQ4WjAzMTEwLwYDVQQD
Eyg1ZTJiZTdmNDRiMzQ1NWY0NmIxNWI2NTQ0OTIzYTRhNGU0YWQzODI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA00QtMGayKCHwvAQv4i4BO01MpT22
HbMejBYQQaYLuS25WhTsq3wkGecQlf2+hw+ohUe6h309BhCBjE+J7BblYftboPxB
fc/0eAvfLmq6Jo4135fKcAkD1sOcfq37MkDDvBMiZaV6izTVg9XhLNHWDBq04nYO
HLoDi1iWQXy28+XCdj7N4FSUKp2x9W8hCWlDkIslxk/PhoVofvIvlVB69XKLqS18
yMrvWGtmUHiccvolYdSQ/G/txv6EFKHxmITxxOLRFAHgj5xZb6iPDIu5S1+/yMPw
gEL8/j6GdBkncx28MYwv9SW8dhjk9zKE5TbTdIvWYv3XmbTavFa8vElPzQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF4r5/RLNFX0axW2VEkjpKTkrTgnMB8GA1UdIwQY
MBaAFJPUPUmYaAkbvcR9la7hyQmfAFYgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazlROVNaaG9DUnU5eEgyVnJ1SEpDWjhBVmlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC82YjA4YzItNWMzYS00Mjg4LTg0NGIt
N2ZlNDJmZjRkY2Q4LzEvazlROVNaaG9DUnU5eEgyVnJ1SEpDWjhBVmlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OC82YjA4YzItNWMzYS00Mjg4LTg0NGItN2ZlNDJmZjRkY2Q4
LzEvazlROVNaaG9DUnU5eEgyVnJ1SEpDWjhBVmlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO2K2rvYE
pZCWxKAluLcNdDNo+lBNNCGLSVwwQlSU8khLJkZHyhYdbjfsb4E7i8x/KKjYGsmb
9V0yh5ZCYf4wDABnq3SLsNmzms0HiyDDOGwLiU9CCvrJiwsCKxq/ckXBc1ledrYx
JyzBiJPeAdAMFzwF9H3vkz4s4QYhcR4qJwYLP4BBzN5yNsbdq9NH0j3HxT7/LE6B
1xq8NPzmw9YTlRwkq4xzmvMjpEO5J1r3onTDudkENgbkx9VTA1nKRVjq8n00P1HL
3qi8eJw4E9WcPS3NmzlKI44o9CKGkSXybQajSa0IsIiUooZ4fU7qQY1NJe1sajBA
LeGJdTr2xfklEw==
-----END CERTIFICATE-----
Generated at Sun Jun 16 03:13:35 2024 by rpki-client on console-fra.rpki-client.org