Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/e810cd-6497-4d8a-91a5-bf57387662a0/1/S_TZ-mawCKCMO47YLDgmfh0hJVA.mft
File:                     S_TZ-mawCKCMO47YLDgmfh0hJVA.mft (raw, json)
Hash identifier:          fkrts/rDKmQMLU6lGn3g914obukpof+eAKoRCtEV2Aw=
Subject key identifier:   C8:79:F8:18:85:DC:5B:B0:94:F9:A8:13:DD:E7:06:94:AD:8A:D0:5D
Authority key identifier: 4B:F4:D9:FA:66:B0:08:A0:8C:3B:8E:D8:2C:38:26:7E:1D:21:25:50
Certificate issuer:       /CN=4bf4d9fa66b008a08c3b8ed82c38267e1d212550
Certificate serial:       01901DEBDE85206468E0A4D22711AE2A4448
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/S_TZ-mawCKCMO47YLDgmfh0hJVA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b9/e810cd-6497-4d8a-91a5-bf57387662a0/1/S_TZ-mawCKCMO47YLDgmfh0hJVA.mft
Manifest number:          11C6
Signing time:             Sat 15 Jun 2024 22:01:55 +0000
Manifest this update:     Sat 15 Jun 2024 22:01:55 +0000
Manifest next update:     Sun 16 Jun 2024 22:01:55 +0000
Files and hashes:         1: Qbr2OvrBsGDIgumoilK8ivOYXbs.roa (hash: kB3zf4KNq7i9O/Hyodte5Mu8I1tyksxmYSz244xsDw8=)
                          2: S_TZ-mawCKCMO47YLDgmfh0hJVA.crl (hash: Gjq79M0/Kr649+wVrlkmC2pDs+cFUlbMqB0TV3izRJI=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b9/e810cd-6497-4d8a-91a5-bf57387662a0/1/S_TZ-mawCKCMO47YLDgmfh0hJVA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b9/e810cd-6497-4d8a-91a5-bf57387662a0/1/S_TZ-mawCKCMO47YLDgmfh0hJVA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/S_TZ-mawCKCMO47YLDgmfh0hJVA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:eb:de:85:20:64:68:e0:a4:d2:27:11:ae:2a:44:48
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4bf4d9fa66b008a08c3b8ed82c38267e1d212550
        Validity
            Not Before: Jun 15 22:01:55 2024 GMT
            Not After : Jun 16 22:01:55 2024 GMT
        Subject: CN=c879f81885dc5bb094f9a813dde70694ad8ad05d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:b6:d1:df:af:de:f3:93:78:e6:59:08:b5:86:
                    68:27:fa:a7:68:70:8d:86:f0:9a:3a:23:50:d0:dc:
                    2d:53:74:f1:a2:95:04:25:8e:31:1f:e0:b8:c5:8d:
                    fc:76:5a:1f:fb:7d:d1:4f:4a:15:7f:27:3a:d1:ab:
                    18:ce:31:b0:f9:ef:93:9d:84:fe:95:a0:71:ce:2c:
                    32:f3:b5:86:af:41:60:24:c0:33:a2:cb:eb:65:96:
                    52:58:38:41:0d:3c:47:7f:7d:6f:16:7a:ae:71:02:
                    5f:71:49:8a:b7:97:ab:84:c8:74:d2:a3:99:74:0f:
                    9c:0f:89:dd:69:fe:8d:68:6c:b9:d7:48:9d:4e:da:
                    51:7d:e3:c2:59:a3:e4:3e:0c:6b:0a:3f:2c:03:a8:
                    4f:b7:75:86:c4:4b:f2:3e:a1:f0:4f:e8:3c:e9:04:
                    7a:a6:64:66:08:b2:fc:c7:eb:7a:42:bb:c0:c5:e3:
                    8c:20:85:aa:4a:76:33:bf:70:54:1b:b5:24:c8:40:
                    84:40:91:5f:a7:ab:97:04:9b:32:03:74:a7:df:a1:
                    0e:3e:3d:90:6d:9f:d9:49:02:92:9d:f0:6a:ab:d6:
                    33:ef:22:b4:00:0a:a9:b0:c1:98:d0:e5:c4:87:bf:
                    20:f8:5f:5f:ca:72:1f:f1:ca:de:42:13:21:a6:39:
                    40:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:79:F8:18:85:DC:5B:B0:94:F9:A8:13:DD:E7:06:94:AD:8A:D0:5D
            X509v3 Authority Key Identifier:
                keyid:4B:F4:D9:FA:66:B0:08:A0:8C:3B:8E:D8:2C:38:26:7E:1D:21:25:50

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_TZ-mawCKCMO47YLDgmfh0hJVA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e810cd-6497-4d8a-91a5-bf57387662a0/1/S_TZ-mawCKCMO47YLDgmfh0hJVA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/e810cd-6497-4d8a-91a5-bf57387662a0/1/S_TZ-mawCKCMO47YLDgmfh0hJVA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         49:b0:44:8f:55:69:e7:e9:cd:ec:53:58:81:fd:2c:63:9e:9d:
         ed:58:eb:23:3f:36:c7:74:18:a6:f0:80:5f:66:46:a8:e3:cb:
         71:5f:6c:1c:12:bb:66:8d:59:f2:16:5b:9e:75:eb:5c:51:1d:
         1d:fc:65:38:72:9e:1a:53:9c:dc:33:0d:86:a6:aa:56:21:c7:
         db:ca:12:8b:5c:96:18:e9:1a:94:d5:bf:49:1d:cd:6e:df:dc:
         01:91:af:e0:a9:6b:59:bb:41:31:e6:fb:11:bd:00:48:a7:2b:
         5e:7d:a9:f3:3a:5a:bd:17:9b:bd:f0:c0:6f:5b:11:a8:57:b3:
         8f:d6:25:75:d4:94:bb:40:7b:d0:72:c4:de:97:34:c2:3f:3c:
         05:67:9d:65:ce:60:09:f3:1d:5b:bd:bc:56:ff:b8:89:c4:0d:
         b8:5f:7d:26:0d:72:7a:04:c0:05:bd:51:67:b7:8d:b2:78:52:
         b9:f4:a2:2a:e8:04:7b:5d:f1:c1:79:da:90:8c:6e:a9:76:6d:
         c2:d2:9d:08:ee:30:5a:ad:81:13:26:eb:5f:38:93:e9:b2:4e:
         bc:46:1e:b9:1d:a8:1a:64:41:0d:85:42:05:b7:bc:08:b8:f0:
         09:9c:2f:52:d4:1d:38:ae:df:d8:17:c7:90:8a:0b:75:76:af:
         01:0b:5f:bb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd696FIGRo4KTSJxGuKkRIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiZjRkOWZhNjZiMDA4YTA4YzNiOGVkODJjMzgyNjdlMWQy
MTI1NTAwHhcNMjQwNjE1MjIwMTU1WhcNMjQwNjE2MjIwMTU1WjAzMTEwLwYDVQQD
EyhjODc5ZjgxODg1ZGM1YmIwOTRmOWE4MTNkZGU3MDY5NGFkOGFkMDVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3rbR36/e85N45lkItYZoJ/qnaHCN
hvCaOiNQ0NwtU3TxopUEJY4xH+C4xY38dlof+33RT0oVfyc60asYzjGw+e+TnYT+
laBxziwy87WGr0FgJMAzosvrZZZSWDhBDTxHf31vFnqucQJfcUmKt5erhMh00qOZ
dA+cD4ndaf6NaGy510idTtpRfePCWaPkPgxrCj8sA6hPt3WGxEvyPqHwT+g86QR6
pmRmCLL8x+t6QrvAxeOMIIWqSnYzv3BUG7UkyECEQJFfp6uXBJsyA3Sn36EOPj2Q
bZ/ZSQKSnfBqq9Yz7yK0AAqpsMGY0OXEh78g+F9fynIf8creQhMhpjlAaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMh5+BiF3FuwlPmoE93nBpStitBdMB8GA1UdIwQY
MBaAFEv02fpmsAigjDuO2Cw4Jn4dISVQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU19UWi1tYXdDS0NNTzQ3WUxEZ21maDBoSlZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS9lODEwY2QtNjQ5Ny00ZDhhLTkxYTUt
YmY1NzM4NzY2MmEwLzEvU19UWi1tYXdDS0NNTzQ3WUxEZ21maDBoSlZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS9lODEwY2QtNjQ5Ny00ZDhhLTkxYTUtYmY1NzM4NzY2MmEw
LzEvU19UWi1tYXdDS0NNTzQ3WUxEZ21maDBoSlZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASbBEj1Vp
5+nN7FNYgf0sY56d7VjrIz82x3QYpvCAX2ZGqOPLcV9sHBK7Zo1Z8hZbnnXrXFEd
HfxlOHKeGlOc3DMNhqaqViHH28oSi1yWGOkalNW/SR3Nbt/cAZGv4KlrWbtBMeb7
Eb0ASKcrXn2p8zpavRebvfDAb1sRqFezj9YlddSUu0B70HLE3pc0wj88BWedZc5g
CfMdW728Vv+4icQNuF99Jg1yegTABb1RZ7eNsnhSufSiKugEe13xwXnakIxuqXZt
wtKdCO4wWq2BEybrXziT6bJOvEYeuR2oGmRBDYVCBbe8CLjwCZwvUtQdOK7f2BfH
kIoLdXavAQtfuw==
-----END CERTIFICATE-----
Generated at Sat Jun 15 22:59:12 2024 by rpki-client on console-fra.rpki-client.org