Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.mft
File:                     dfrLB_LMuS7rqHhUyUJA5PWsj1I.mft (raw, json)
Hash identifier:          5V3ACA/rjO8PRObRGtHcLRMGsXvD80J0dOjAEadZEkk=
Subject key identifier:   3B:AE:C1:AC:57:9C:84:3E:3E:BC:7B:2B:48:2D:72:C3:55:66:37:8E
Authority key identifier: 75:FA:CB:07:F2:CC:B9:2E:EB:A8:78:54:C9:42:40:E4:F5:AC:8F:52
Certificate issuer:       /CN=75facb07f2ccb92eeba87854c94240e4f5ac8f52
Certificate serial:       01901DECC216CC3CB67044F3C0F57235760A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dfrLB_LMuS7rqHhUyUJA5PWsj1I.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.mft
Manifest number:          11C7
Signing time:             Sat 15 Jun 2024 22:02:53 +0000
Manifest this update:     Sat 15 Jun 2024 22:02:53 +0000
Manifest next update:     Sun 16 Jun 2024 22:02:53 +0000
Files and hashes:         1: dfrLB_LMuS7rqHhUyUJA5PWsj1I.crl (hash: /0UN86c6cr3SoK36Isp9zkKwRHgUWj2HzecH9I0hvFg=)
                          2: v8CF-Esc8JqWAWLIsqlkN5ao1sc.roa (hash: oX5EkoQvdA6g5NM+KBm6HYg1nIQ/EvmTIboQ5NAij8A=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dfrLB_LMuS7rqHhUyUJA5PWsj1I.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:02:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ec:c2:16:cc:3c:b6:70:44:f3:c0:f5:72:35:76:0a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75facb07f2ccb92eeba87854c94240e4f5ac8f52
        Validity
            Not Before: Jun 15 22:02:53 2024 GMT
            Not After : Jun 16 22:02:53 2024 GMT
        Subject: CN=3baec1ac579c843e3ebc7b2b482d72c35566378e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:b1:bd:c0:6b:e4:88:bd:f5:91:01:00:92:6c:
                    13:7d:c2:b2:5c:f6:2f:cb:cf:9d:7f:2a:a0:65:99:
                    3d:c3:b4:7b:19:79:a3:39:a7:e7:55:19:9c:44:fc:
                    cf:1d:7b:14:9e:b5:54:59:02:ae:c7:56:14:0b:6b:
                    d5:0a:dc:60:37:76:9d:86:db:76:0a:d4:60:1f:f1:
                    5e:5a:42:11:58:b4:4c:48:44:fe:08:27:5d:97:ff:
                    7b:68:01:67:bc:15:81:5e:6f:99:78:0d:87:19:17:
                    76:9b:10:30:a4:2f:be:2c:d2:e1:2d:4f:ba:bc:27:
                    62:ec:55:67:c7:2a:5f:24:e5:ad:c9:bd:89:c1:36:
                    03:f8:f0:18:b1:fc:7c:f4:43:a3:2b:a9:78:d8:3e:
                    c5:5c:29:be:9d:1f:15:72:17:d7:d9:81:e3:01:03:
                    f0:70:f6:bb:17:56:ef:61:3f:37:1a:e4:eb:21:fc:
                    6c:58:a2:e4:2f:65:fc:29:78:4a:7a:7b:d4:3c:e5:
                    90:7e:47:ad:60:63:61:9c:02:7d:25:83:7a:e3:b8:
                    13:24:da:29:62:e4:2c:ec:f4:9c:09:fa:45:e4:2d:
                    11:8e:d2:10:32:8c:7b:41:52:36:1b:40:c6:13:b8:
                    09:f3:69:b5:bd:78:19:cd:97:0d:36:ba:97:9e:00:
                    95:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:AE:C1:AC:57:9C:84:3E:3E:BC:7B:2B:48:2D:72:C3:55:66:37:8E
            X509v3 Authority Key Identifier:
                keyid:75:FA:CB:07:F2:CC:B9:2E:EB:A8:78:54:C9:42:40:E4:F5:AC:8F:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dfrLB_LMuS7rqHhUyUJA5PWsj1I.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/900cbf-477b-46be-8f5d-c911483da78c/1/dfrLB_LMuS7rqHhUyUJA5PWsj1I.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         06:a8:09:23:f8:07:62:b1:2e:8a:c5:3b:a8:e8:34:5c:bc:53:
         30:15:d2:06:1e:c0:b1:a4:97:06:52:4a:0f:b9:a6:c3:09:30:
         33:3b:75:86:62:6f:f2:8f:73:d5:e5:c9:5e:23:fa:e2:e4:15:
         54:60:ed:12:b6:06:38:8e:4f:13:04:6d:62:2d:41:59:92:98:
         85:5e:e6:93:1a:3a:95:1b:cf:b8:6f:38:8b:5c:3b:6b:13:8d:
         db:96:d6:7d:8b:96:7a:2d:3e:9f:11:b0:a9:ce:8c:0c:56:90:
         17:c4:3a:29:23:25:18:d7:30:43:ae:b3:19:0b:b5:d8:f6:15:
         9f:0b:f2:02:42:19:d0:0f:87:57:87:16:f6:d6:ea:43:d7:93:
         a3:2b:d3:48:d6:6a:94:81:8e:bc:18:05:3b:19:92:2a:53:a3:
         d8:26:e9:f0:fa:27:c9:ff:1e:fb:cc:70:66:30:71:42:5f:82:
         8a:14:79:8e:d2:c4:d0:8b:2c:42:61:8e:b6:23:46:a0:cf:f0:
         fd:35:cf:3d:12:f9:c3:f6:2d:6e:45:2a:99:2c:cf:63:40:6e:
         69:ff:f1:bf:d3:01:f3:17:46:9a:c8:36:6e:3e:75:40:aa:f9:
         9c:59:70:dc:bd:25:2b:e9:8f:0e:f9:67:8d:6f:d0:e5:46:02:
         04:95:50:a4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd7MIWzDy2cETzwPVyNXYKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1ZmFjYjA3ZjJjY2I5MmVlYmE4Nzg1NGM5NDI0MGU0ZjVh
YzhmNTIwHhcNMjQwNjE1MjIwMjUzWhcNMjQwNjE2MjIwMjUzWjAzMTEwLwYDVQQD
EygzYmFlYzFhYzU3OWM4NDNlM2ViYzdiMmI0ODJkNzJjMzU1NjYzNzhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArrG9wGvkiL31kQEAkmwTfcKyXPYv
y8+dfyqgZZk9w7R7GXmjOafnVRmcRPzPHXsUnrVUWQKux1YUC2vVCtxgN3adhtt2
CtRgH/FeWkIRWLRMSET+CCddl/97aAFnvBWBXm+ZeA2HGRd2mxAwpC++LNLhLU+6
vCdi7FVnxypfJOWtyb2JwTYD+PAYsfx89EOjK6l42D7FXCm+nR8VchfX2YHjAQPw
cPa7F1bvYT83GuTrIfxsWKLkL2X8KXhKenvUPOWQfketYGNhnAJ9JYN647gTJNop
YuQs7PScCfpF5C0RjtIQMox7QVI2G0DGE7gJ82m1vXgZzZcNNrqXngCVCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDuuwaxXnIQ+Prx7K0gtcsNVZjeOMB8GA1UdIwQY
MBaAFHX6ywfyzLku66h4VMlCQOT1rI9SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZGZyTEJfTE11UzdycUhoVXlVSkE1UFdzajFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC85MDBjYmYtNDc3Yi00NmJlLThmNWQt
YzkxMTQ4M2RhNzhjLzEvZGZyTEJfTE11UzdycUhoVXlVSkE1UFdzajFJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC85MDBjYmYtNDc3Yi00NmJlLThmNWQtYzkxMTQ4M2RhNzhj
LzEvZGZyTEJfTE11UzdycUhoVXlVSkE1UFdzajFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABqgJI/gH
YrEuisU7qOg0XLxTMBXSBh7AsaSXBlJKD7mmwwkwMzt1hmJv8o9z1eXJXiP64uQV
VGDtErYGOI5PEwRtYi1BWZKYhV7mkxo6lRvPuG84i1w7axON25bWfYuWei0+nxGw
qc6MDFaQF8Q6KSMlGNcwQ66zGQu12PYVnwvyAkIZ0A+HV4cW9tbqQ9eToyvTSNZq
lIGOvBgFOxmSKlOj2Cbp8Ponyf8e+8xwZjBxQl+CihR5jtLE0IssQmGOtiNGoM/w
/TXPPRL5w/YtbkUqmSzPY0Buaf/xv9MB8xdGmsg2bj51QKr5nFlw3L0lK+mPDvln
jW/Q5UYCBJVQpA==
-----END CERTIFICATE-----
Generated at Sun Jun 16 04:58:06 2024 by rpki-client on console-ams.rpki-client.org