Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft
File:                     rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft (raw, json)
Hash identifier:          sq+NEcikEfuylpJjmuCKcAEZf5pz49cO+5DZeXfiRQ8=
Subject key identifier:   0F:3A:97:A9:BE:99:E6:EC:71:32:36:F1:D2:F2:D0:29:89:D9:9E:D5
Authority key identifier: AE:04:10:6F:30:2C:00:77:E9:0B:66:76:2E:BB:22:2E:61:1B:33:DD
Certificate issuer:       /CN=ae04106f302c0077e90b66762ebb222e611b33dd
Certificate serial:       019041529B550BA5C41E1DD17729FC8F3FD5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rgQQbzAsAHfpC2Z2LrsiLmEbM90.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft
Manifest number:          010A
Signing time:             Sat 22 Jun 2024 19:00:50 +0000
Manifest this update:     Sat 22 Jun 2024 19:00:50 +0000
Manifest next update:     Sun 23 Jun 2024 19:00:50 +0000
Files and hashes:         1: RD9LHwxn_q3N0LwrLKstECpRS7Y.roa (hash: CECoybP3tvh0aO4sjSoeuLnU9yWqpB29IniWKwF1JtE=)
                          2: rgQQbzAsAHfpC2Z2LrsiLmEbM90.crl (hash: FCgNSJ4WXSAIOo1Z0qliWDms50hBTYs7rt3g4r8QlFI=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rgQQbzAsAHfpC2Z2LrsiLmEbM90.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 19:00:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:41:52:9b:55:0b:a5:c4:1e:1d:d1:77:29:fc:8f:3f:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ae04106f302c0077e90b66762ebb222e611b33dd
        Validity
            Not Before: Jun 22 19:00:50 2024 GMT
            Not After : Jun 23 19:00:50 2024 GMT
        Subject: CN=0f3a97a9be99e6ec713236f1d2f2d02989d99ed5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:ba:ce:53:ef:99:de:ae:f9:a4:1b:5d:b9:42:
                    8c:ba:bf:fb:f4:64:d2:d5:5d:48:e3:4a:5f:dc:7d:
                    b1:96:e0:cf:c6:fc:19:37:a2:2c:d6:eb:7a:eb:62:
                    b4:82:d5:c6:0f:e0:57:66:49:62:56:28:75:b9:ad:
                    8a:d6:20:8a:fd:6c:a2:4b:62:16:cb:57:3f:45:a6:
                    e3:12:52:19:ae:4b:27:d3:70:92:38:7f:97:ab:93:
                    8c:55:1c:ee:8b:4c:0a:d6:af:e5:f5:a1:9c:af:1a:
                    bb:c3:83:fd:dd:f1:6e:ae:ce:64:b8:63:2b:55:bf:
                    4c:e7:fd:32:69:0b:63:05:55:c6:21:06:54:7d:59:
                    4e:09:e1:fa:7a:1b:31:59:da:c0:ba:7d:64:ab:6c:
                    66:7c:a7:b8:65:44:40:ee:fc:03:56:1e:a0:c4:b2:
                    02:65:80:a8:d8:c8:16:36:ce:16:ad:3c:29:48:e4:
                    75:64:ec:59:7b:34:70:74:0d:80:49:05:13:f0:42:
                    60:8b:79:da:05:77:b3:86:fe:c2:92:c5:29:2b:38:
                    97:bb:7c:78:4e:2e:cd:16:ad:cf:63:25:82:44:36:
                    09:1e:29:dd:59:07:44:6e:91:d8:ea:f4:e6:67:42:
                    6c:5e:d3:83:61:b0:b6:db:86:b3:f5:b2:86:36:44:
                    4e:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:3A:97:A9:BE:99:E6:EC:71:32:36:F1:D2:F2:D0:29:89:D9:9E:D5
            X509v3 Authority Key Identifier:
                keyid:AE:04:10:6F:30:2C:00:77:E9:0B:66:76:2E:BB:22:2E:61:1B:33:DD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rgQQbzAsAHfpC2Z2LrsiLmEbM90.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         80:3f:55:54:c8:19:bb:03:a7:40:4e:ad:e6:66:80:f9:c4:fb:
         e8:96:d3:1d:70:b2:1b:08:c6:46:19:ca:7c:31:ee:d2:e3:23:
         c6:81:44:13:96:7c:94:72:10:b3:2d:8a:05:f7:e5:95:2d:79:
         b6:d4:bb:55:e2:b7:47:53:fb:13:24:98:ea:1a:72:4d:1e:47:
         3d:cb:2f:dd:7c:f2:e7:66:54:1d:e6:c1:7e:41:11:a2:f9:2c:
         0e:36:ea:8e:f8:60:67:9c:d5:76:98:bd:5f:20:35:73:b9:16:
         c4:1b:44:b1:8d:1a:ff:ab:82:22:16:7d:ff:ed:a8:dc:b5:ef:
         37:49:0a:ec:ac:0a:51:46:aa:34:0d:8d:6a:10:b5:13:39:a1:
         39:e0:9d:be:1a:3f:34:29:de:3a:13:47:a6:21:e1:c6:90:41:
         8b:ba:54:f2:70:fd:cf:89:94:c2:f5:a8:b9:17:44:9c:fd:4d:
         1e:06:97:b5:c9:28:74:71:f8:64:1d:f3:5f:44:5b:6c:48:35:
         0c:a2:b8:aa:6c:fb:49:48:43:43:62:37:d5:cb:34:8b:f8:d5:
         78:d8:a3:79:c4:32:f5:dc:c4:fc:e5:f4:e2:f7:ac:ee:a8:11:
         ea:50:24:2a:ab:b0:36:a5:83:38:ac:59:21:16:06:6f:67:40:
         e7:46:3e:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBBUptVC6XEHh3Rdyn8jz/VMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlMDQxMDZmMzAyYzAwNzdlOTBiNjY3NjJlYmIyMjJlNjEx
YjMzZGQwHhcNMjQwNjIyMTkwMDUwWhcNMjQwNjIzMTkwMDUwWjAzMTEwLwYDVQQD
EygwZjNhOTdhOWJlOTllNmVjNzEzMjM2ZjFkMmYyZDAyOTg5ZDk5ZWQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLrOU++Z3q75pBtduUKMur/79GTS
1V1I40pf3H2xluDPxvwZN6Is1ut662K0gtXGD+BXZkliVih1ua2K1iCK/WyiS2IW
y1c/RabjElIZrksn03CSOH+Xq5OMVRzui0wK1q/l9aGcrxq7w4P93fFurs5kuGMr
Vb9M5/0yaQtjBVXGIQZUfVlOCeH6ehsxWdrAun1kq2xmfKe4ZURA7vwDVh6gxLIC
ZYCo2MgWNs4WrTwpSOR1ZOxZezRwdA2ASQUT8EJgi3naBXezhv7CksUpKziXu3x4
Ti7NFq3PYyWCRDYJHindWQdEbpHY6vTmZ0JsXtODYbC224az9bKGNkROKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA86l6m+mebscTI28dLy0CmJ2Z7VMB8GA1UdIwQY
MBaAFK4EEG8wLAB36Qtmdi67Ii5hGzPdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmdRUWJ6QXNBSGZwQzJaMkxyc2lMbUViTTkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85My9iOTA3MjktODNkMi00YzE4LTgwNjMt
MTFmZTI3ZDhlMTcwLzEvcmdRUWJ6QXNBSGZwQzJaMkxyc2lMbUViTTkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85My9iOTA3MjktODNkMi00YzE4LTgwNjMtMTFmZTI3ZDhlMTcw
LzEvcmdRUWJ6QXNBSGZwQzJaMkxyc2lMbUViTTkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgD9VVMgZ
uwOnQE6t5maA+cT76JbTHXCyGwjGRhnKfDHu0uMjxoFEE5Z8lHIQsy2KBffllS15
ttS7VeK3R1P7EySY6hpyTR5HPcsv3Xzy52ZUHebBfkERovksDjbqjvhgZ5zVdpi9
XyA1c7kWxBtEsY0a/6uCIhZ9/+2o3LXvN0kK7KwKUUaqNA2NahC1EzmhOeCdvho/
NCneOhNHpiHhxpBBi7pU8nD9z4mUwvWouRdEnP1NHgaXtckodHH4ZB3zX0RbbEg1
DKK4qmz7SUhDQ2I31cs0i/jVeNijecQy9dzE/OX04ves7qgR6lAkKquwNqWDOKxZ
IRYGb2dA50Y+KA==
-----END CERTIFICATE-----
Generated at Sun Jun 23 01:13:09 2024 by rpki-client on console-fra.rpki-client.org