Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
File:                     kdfs8XFCs7CTX443uPfZwlPw7hk.mft (raw, json)
Hash identifier:          CbwmYdmvpNBPCu0clzy7S9HxAdbjxeOxd0y+7Hg1lKM=
Subject key identifier:   80:61:62:1B:A0:5E:AF:66:F9:94:8F:CC:D5:7C:B0:43:77:84:05:76
Authority key identifier: 91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
Certificate issuer:       /CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Certificate serial:       01901CADDC690AF02D6A258FBDD9F068CE14
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
Manifest number:          11C8
Signing time:             Sat 15 Jun 2024 16:14:34 +0000
Manifest this update:     Sat 15 Jun 2024 16:14:34 +0000
Manifest next update:     Sun 16 Jun 2024 16:14:34 +0000
Files and hashes:         1: C1zWhwketvBG46NJV9nv4_H58pw.roa (hash: gc5wEND/cS7YmSytNzPvhYxnwIrc7+apIwZ2hrNng5Y=)
                          2: MvoWwmy1SjJYpef1gDszfLUiv9s.roa (hash: QKdBT3QiCioMKMmcMeA/PBFw95pq4WXLHCSPDkzKjC4=)
                          3: kdfs8XFCs7CTX443uPfZwlPw7hk.crl (hash: 8h3eGQxdlkMQQt2wrhJCK7XXG0TmDBy+HAbkU8SlkaU=)
                          4: n8KDYl25CPgYXWF1892QqJg9YRg.roa (hash: 6W50GWQs8tUZ2E7XCsicSmqUP0TJz6KytM9FL6dqDsE=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1c:ad:dc:69:0a:f0:2d:6a:25:8f:bd:d9:f0:68:ce:14
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
        Validity
            Not Before: Jun 15 16:14:34 2024 GMT
            Not After : Jun 16 16:14:34 2024 GMT
        Subject: CN=8061621ba05eaf66f9948fccd57cb04377840576
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:be:cd:66:b2:b3:3d:98:96:2a:5e:59:d8:18:
                    9b:de:02:6e:28:c8:80:4f:02:77:ac:55:68:6f:95:
                    0c:4f:20:cc:1a:5e:4b:bb:d4:1f:11:29:96:13:7c:
                    39:e8:24:bf:b5:f7:b4:cf:5f:aa:74:c8:42:2a:c7:
                    70:c7:77:0c:f3:fe:e5:b2:0d:67:20:91:e7:2c:c1:
                    63:78:46:57:17:18:4e:7f:0b:74:68:4f:35:fc:3a:
                    be:7b:3b:01:5e:20:f5:f6:54:14:7a:58:59:33:6a:
                    5a:a4:4f:be:f4:0b:ff:1e:6e:42:99:27:e7:24:9b:
                    f3:49:8f:87:77:10:d3:fd:0f:75:bd:6e:a2:e8:b1:
                    98:a1:bf:1c:8f:a0:90:99:68:3e:db:e7:e6:6f:fe:
                    1f:4a:6b:af:c6:52:da:e4:3f:90:32:ee:0a:b9:a2:
                    32:e7:88:e3:c4:b7:a0:62:0a:3d:01:4d:75:c1:5b:
                    85:e9:94:25:43:d2:00:b3:37:8e:f8:31:06:7b:a6:
                    a8:eb:a9:17:cc:d6:91:9f:e1:c0:26:ec:ca:b4:c8:
                    e2:26:72:e0:e0:37:5e:99:ae:0f:82:7d:84:73:27:
                    51:31:c4:68:c1:6e:3e:e4:2e:95:62:de:b3:e2:62:
                    6b:9c:e6:20:d5:cd:ea:a2:5b:ef:e5:69:d6:bf:6a:
                    f2:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:61:62:1B:A0:5E:AF:66:F9:94:8F:CC:D5:7C:B0:43:77:84:05:76
            X509v3 Authority Key Identifier:
                keyid:91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8a:56:e4:7f:67:dc:2c:78:f9:de:ee:90:a2:54:54:29:fb:09:
         33:b2:1a:01:7c:4c:cb:5c:d6:b0:df:99:d7:6d:1c:8d:60:50:
         9f:1e:39:7d:f8:df:13:e4:03:72:5a:71:a7:ea:86:cf:7d:6f:
         63:2c:1c:81:33:92:fe:6f:fc:03:47:91:cd:06:9d:c7:fc:b0:
         37:98:ac:f0:0c:d0:cd:a3:a5:6c:c4:66:fd:37:72:de:ea:8b:
         75:22:09:b4:bd:0b:e6:0e:df:ac:71:03:aa:2b:73:ab:8b:b3:
         ab:15:fd:ab:6f:e4:11:8f:7a:bc:a1:77:1f:a3:ac:d6:ad:5a:
         07:6e:58:11:5d:e0:ab:a1:ff:c6:02:18:fa:83:c1:f1:1c:fa:
         57:52:0b:41:d6:1d:4a:fe:bf:7a:53:06:9f:7b:5b:bd:f8:82:
         28:8c:92:56:ec:76:cd:bb:d7:5d:e4:ce:3f:2e:53:92:81:79:
         b4:91:e5:71:c6:ca:7e:2a:68:a9:ad:4c:9f:44:1e:56:29:2e:
         33:6f:bd:df:91:98:4e:5b:cb:a9:8d:27:d7:58:01:6f:b9:b9:
         1b:91:0b:ce:d5:df:8b:33:c3:87:66:cf:e9:0f:be:2e:a0:27:
         7a:fa:58:7b:11:0a:2b:3b:40:3b:d1:84:31:7b:20:53:a8:9a:
         07:66:93:8b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAcrdxpCvAtaiWPvdnwaM4UMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxZDdlY2YxNzE0MmIzYjA5MzVmOGUzN2I4ZjdkOWMyNTNm
MGVlMTkwHhcNMjQwNjE1MTYxNDM0WhcNMjQwNjE2MTYxNDM0WjAzMTEwLwYDVQQD
Eyg4MDYxNjIxYmEwNWVhZjY2Zjk5NDhmY2NkNTdjYjA0Mzc3ODQwNTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1L7NZrKzPZiWKl5Z2Bib3gJuKMiA
TwJ3rFVob5UMTyDMGl5Lu9QfESmWE3w56CS/tfe0z1+qdMhCKsdwx3cM8/7lsg1n
IJHnLMFjeEZXFxhOfwt0aE81/Dq+ezsBXiD19lQUelhZM2papE++9Av/Hm5CmSfn
JJvzSY+HdxDT/Q91vW6i6LGYob8cj6CQmWg+2+fmb/4fSmuvxlLa5D+QMu4KuaIy
54jjxLegYgo9AU11wVuF6ZQlQ9IAszeO+DEGe6ao66kXzNaRn+HAJuzKtMjiJnLg
4Ddema4Pgn2EcydRMcRowW4+5C6VYt6z4mJrnOYg1c3qolvv5WnWv2ryHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIBhYhugXq9m+ZSPzNV8sEN3hAV2MB8GA1UdIwQY
MBaAFJHX7PFxQrOwk1+ON7j32cJT8O4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2RmczhYRkNzN0NUWDQ0M3VQZlp3bFB3N2hrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9iMDhlNmUtMDgyMi00MjI0LTk1NGIt
YTZiMWFkMzRlMDhjLzEva2RmczhYRkNzN0NUWDQ0M3VQZlp3bFB3N2hrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi9iMDhlNmUtMDgyMi00MjI0LTk1NGItYTZiMWFkMzRlMDhj
LzEva2RmczhYRkNzN0NUWDQ0M3VQZlp3bFB3N2hrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAilbkf2fc
LHj53u6QolRUKfsJM7IaAXxMy1zWsN+Z120cjWBQnx45ffjfE+QDclpxp+qGz31v
YywcgTOS/m/8A0eRzQadx/ywN5is8AzQzaOlbMRm/Tdy3uqLdSIJtL0L5g7frHED
qitzq4uzqxX9q2/kEY96vKF3H6Os1q1aB25YEV3gq6H/xgIY+oPB8Rz6V1ILQdYd
Sv6/elMGn3tbvfiCKIySVux2zbvXXeTOPy5TkoF5tJHlccbKfipoqa1Mn0QeViku
M2+935GYTlvLqY0n11gBb7m5G5ELztXfizPDh2bP6Q++LqAnevpYexEKKztAO9GE
MXsgU6iaB2aTiw==
-----END CERTIFICATE-----
Generated at Sat Jun 15 22:00:56 2024 by rpki-client on console-ams.rpki-client.org