Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
File:                     3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft (raw, json)
Hash identifier:          Hh1vAQPBuWK5rgytU9mCVEOJlf96j5P7QcsAlNVKx+g=
Subject key identifier:   FF:4C:8F:C8:36:86:AA:C2:AE:47:DD:50:B4:89:FD:8E:0D:D8:BC:FC
Authority key identifier: DD:75:FC:8C:45:D3:61:01:00:88:37:11:9C:BF:A8:4A:EE:19:E2:9A
Certificate issuer:       /CN=dd75fc8c45d36101008837119cbfa84aee19e29a
Certificate serial:       01901DEBF8EFCD11CB2DD7A7DD8669052BCD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
Manifest number:          0158
Signing time:             Sat 15 Jun 2024 22:02:02 +0000
Manifest this update:     Sat 15 Jun 2024 22:02:02 +0000
Manifest next update:     Sun 16 Jun 2024 22:02:02 +0000
Files and hashes:         1: 1ohC5SImO6uA6qXlh4fSsvjaoWw.roa (hash: Yb5e20vz0C/vVixtxyWPNd0Jz+e+uTnxB8RA6FMOT3o=)
                          2: 3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl (hash: 3zPLm2KPFT2NB3j/ZaB986L0j8Ti/ohkIMAQFKmavus=)
                          3: cBKVs6q0cxYCdeIY5DzEzBhM_3s.roa (hash: DJBsYfnemPKjQutyRco9f0EsmcmnBCB/iyPUDzRITXM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:02:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:eb:f8:ef:cd:11:cb:2d:d7:a7:dd:86:69:05:2b:cd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dd75fc8c45d36101008837119cbfa84aee19e29a
        Validity
            Not Before: Jun 15 22:02:02 2024 GMT
            Not After : Jun 16 22:02:02 2024 GMT
        Subject: CN=ff4c8fc83686aac2ae47dd50b489fd8e0dd8bcfc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:e1:0f:8e:64:ee:9a:2a:97:b9:b6:b2:3d:fa:
                    0f:de:bb:b1:61:6b:48:0a:af:d0:27:f8:89:47:47:
                    06:c0:1c:8d:82:ec:5c:ae:42:0a:34:d2:75:4a:b7:
                    2f:77:b6:af:55:8b:17:52:c4:ac:65:56:a8:d8:f3:
                    2f:d8:a5:16:e0:a0:d4:49:3b:f7:db:2b:69:bb:6a:
                    d1:ec:d6:58:ee:49:06:34:35:72:6a:98:dc:58:28:
                    10:af:dc:1b:4b:aa:8c:3b:35:0b:9c:a0:b8:8a:fe:
                    08:03:af:43:de:2f:c8:00:f6:8a:54:de:7e:ca:3a:
                    23:d9:25:f6:b6:e2:03:d4:31:a9:3f:0a:fc:98:6e:
                    68:b0:cb:63:0b:57:53:a7:cc:7f:f9:90:ff:98:58:
                    a8:90:3c:b9:db:b1:b3:9c:a0:a2:f9:ed:b1:a2:49:
                    50:32:f7:6f:9e:bc:b0:7e:9c:e9:aa:91:9d:8a:69:
                    7e:48:6e:c3:1d:99:ab:c0:7b:62:f5:87:20:71:17:
                    34:2c:12:80:77:97:a3:a9:1e:ac:59:20:2f:d9:fc:
                    55:5b:66:c0:f5:0e:57:30:80:e6:42:0a:ef:49:97:
                    d2:54:b6:7c:1c:57:6f:27:85:e5:ba:b1:2c:9c:d2:
                    f8:56:f6:9d:6d:db:49:b6:36:5e:a2:a9:5d:eb:ed:
                    b7:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:4C:8F:C8:36:86:AA:C2:AE:47:DD:50:B4:89:FD:8E:0D:D8:BC:FC
            X509v3 Authority Key Identifier:
                keyid:DD:75:FC:8C:45:D3:61:01:00:88:37:11:9C:BF:A8:4A:EE:19:E2:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:2c:7f:76:97:44:c8:2d:c9:1c:53:03:86:76:59:db:99:94:
         0f:b4:0c:10:70:77:a9:7a:62:bc:ad:b8:95:d5:e7:9f:3a:d4:
         35:81:ed:94:8e:0d:f1:9e:42:cf:b5:dc:88:63:15:62:6f:1a:
         1f:5e:25:6b:56:02:5e:07:b5:35:f7:2b:ac:9d:3c:1e:db:36:
         a0:d5:57:80:ea:aa:be:dc:e6:05:14:81:54:66:41:b1:d9:f8:
         3c:31:7a:0a:45:5a:d3:74:96:ae:58:4a:62:32:fc:84:d8:0a:
         fa:40:40:38:46:9b:e4:c2:ac:74:0f:e0:65:51:e3:fa:74:ac:
         05:66:5c:ef:26:6e:ae:ff:a1:be:87:5f:7a:a0:46:f8:1e:e3:
         29:e0:80:18:aa:b6:32:07:8a:ef:b7:23:f9:af:54:0b:03:8d:
         cd:2e:54:62:e0:06:92:52:ca:9e:5b:8b:f7:ec:f5:2a:67:6f:
         8e:d5:6e:75:15:f9:2c:0d:59:80:a0:be:33:31:56:c4:1a:76:
         a2:40:35:96:21:28:44:8f:3c:03:d6:d4:31:7a:10:1a:3c:46:
         7b:08:d7:6c:1d:7b:c3:45:f9:e8:64:9c:ed:6c:5b:4a:72:39:
         e9:af:04:9a:ff:a6:e0:b2:7d:aa:1e:af:47:6f:12:f8:6c:45:
         cb:c6:6b:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd6/jvzRHLLden3YZpBSvNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkNzVmYzhjNDVkMzYxMDEwMDg4MzcxMTljYmZhODRhZWUx
OWUyOWEwHhcNMjQwNjE1MjIwMjAyWhcNMjQwNjE2MjIwMjAyWjAzMTEwLwYDVQQD
EyhmZjRjOGZjODM2ODZhYWMyYWU0N2RkNTBiNDg5ZmQ4ZTBkZDhiY2ZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+EPjmTumiqXubayPfoP3ruxYWtI
Cq/QJ/iJR0cGwByNguxcrkIKNNJ1Srcvd7avVYsXUsSsZVao2PMv2KUW4KDUSTv3
2ytpu2rR7NZY7kkGNDVyapjcWCgQr9wbS6qMOzULnKC4iv4IA69D3i/IAPaKVN5+
yjoj2SX2tuID1DGpPwr8mG5osMtjC1dTp8x/+ZD/mFiokDy527GznKCi+e2xoklQ
MvdvnrywfpzpqpGdiml+SG7DHZmrwHti9YcgcRc0LBKAd5ejqR6sWSAv2fxVW2bA
9Q5XMIDmQgrvSZfSVLZ8HFdvJ4XlurEsnNL4VvadbdtJtjZeoqld6+23wQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP9Mj8g2hqrCrkfdULSJ/Y4N2Lz8MB8GA1UdIwQY
MBaAFN11/IxF02EBAIg3EZy/qEruGeKaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1hYOGpFWFRZUUVBaURjUm5MLW9TdTRaNHBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82ODUwMGQtYTc4MS00NzM5LWIyNmMt
MGNjNTE2OGVhMTVhLzEvM1hYOGpFWFRZUUVBaURjUm5MLW9TdTRaNHBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC82ODUwMGQtYTc4MS00NzM5LWIyNmMtMGNjNTE2OGVhMTVh
LzEvM1hYOGpFWFRZUUVBaURjUm5MLW9TdTRaNHBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASSx/dpdE
yC3JHFMDhnZZ25mUD7QMEHB3qXpivK24ldXnnzrUNYHtlI4N8Z5Cz7XciGMVYm8a
H14la1YCXge1NfcrrJ08Hts2oNVXgOqqvtzmBRSBVGZBsdn4PDF6CkVa03SWrlhK
YjL8hNgK+kBAOEab5MKsdA/gZVHj+nSsBWZc7yZurv+hvodfeqBG+B7jKeCAGKq2
MgeK77cj+a9UCwONzS5UYuAGklLKnluL9+z1KmdvjtVudRX5LA1ZgKC+MzFWxBp2
okA1liEoRI88A9bUMXoQGjxGewjXbB17w0X56GSc7WxbSnI56a8Emv+m4LJ9qh6v
R28S+GxFy8ZrZw==
-----END CERTIFICATE-----
Generated at Sun Jun 16 04:50:49 2024 by rpki-client on console-ams.rpki-client.org