Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
File:                     YC8n-tkkUqJUswoGDtODsTx1jtY.mft (raw, json)
Hash identifier:          m3/MXuw5qYhc3P+E0XR7FbtQkIoYnF+68Cz4fSfLp4k=
Subject key identifier:   6D:9D:AA:A2:EF:4F:19:E2:D3:2D:6B:76:9B:47:98:81:11:7A:96:07
Authority key identifier: 60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
Certificate issuer:       /CN=602f27fad92452a254b30a060ed383b13c758ed6
Certificate serial:       01901DEC19396A2B8DD432EE40BD8021C674
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
Manifest number:          042A
Signing time:             Sat 15 Jun 2024 22:02:10 +0000
Manifest this update:     Sat 15 Jun 2024 22:02:10 +0000
Manifest next update:     Sun 16 Jun 2024 22:02:10 +0000
Files and hashes:         1: SNODBlce-8709vD03pVEd30K-jU.roa (hash: 2qJtSEDXaXwFLyZfr1aLFlOhGqKtJXUR87TGdDlVjPw=)
                          2: YC8n-tkkUqJUswoGDtODsTx1jtY.crl (hash: +HKljqrx9HpczjejzxsHdGFejDOiCJWQ89J7LFq0Rlg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:02:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ec:19:39:6a:2b:8d:d4:32:ee:40:bd:80:21:c6:74
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=602f27fad92452a254b30a060ed383b13c758ed6
        Validity
            Not Before: Jun 15 22:02:10 2024 GMT
            Not After : Jun 16 22:02:10 2024 GMT
        Subject: CN=6d9daaa2ef4f19e2d32d6b769b479881117a9607
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:71:43:d5:c5:15:de:0c:15:c9:b2:33:cf:08:
                    89:03:96:b0:ec:81:81:ca:d8:a3:4a:f5:94:b8:92:
                    bf:67:38:ea:19:c9:ed:a2:05:10:c3:5b:be:17:21:
                    49:3f:48:eb:1a:b4:2f:52:37:5a:27:00:9f:02:e6:
                    d5:81:79:87:e8:2a:37:41:3e:07:f3:46:91:80:72:
                    cf:5d:0d:85:2b:0c:e8:78:5d:c7:c4:49:6d:dc:b5:
                    af:05:08:e5:82:49:9f:ab:66:d1:b6:ae:5c:eb:22:
                    bc:df:76:3f:b3:32:35:7e:ab:62:59:eb:5e:a6:6e:
                    38:96:95:62:21:db:74:4a:d8:a9:ea:7c:71:1f:c7:
                    05:c2:f9:cc:10:a2:ea:93:80:8b:1e:18:77:ae:f4:
                    a0:61:d4:73:fd:32:f1:d5:79:f4:6f:e8:6f:3a:0a:
                    f9:0d:b2:93:a0:2a:7f:fd:f3:0f:f1:b2:36:a3:97:
                    50:27:65:44:e1:0f:39:a2:f8:e4:17:2b:92:74:6b:
                    fc:4b:99:b8:07:09:c5:76:02:65:fc:5b:0b:77:ac:
                    71:3b:5e:55:ef:b9:7c:91:40:a7:0d:ed:ac:7c:98:
                    c6:24:f9:c0:1d:dc:56:64:7f:ee:9c:c2:f8:d4:5e:
                    8c:6b:fc:8e:df:2a:7a:90:a1:e5:86:47:c6:d8:90:
                    2b:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:9D:AA:A2:EF:4F:19:E2:D3:2D:6B:76:9B:47:98:81:11:7A:96:07
            X509v3 Authority Key Identifier:
                keyid:60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:d9:c4:65:cc:22:c0:90:92:f2:f6:20:80:99:f2:d8:06:40:
         a8:22:af:15:63:d2:5a:71:79:2c:c7:05:9e:d2:21:d6:cd:d6:
         76:4d:17:2a:36:f1:63:83:b1:ac:d7:41:19:42:ff:fb:d4:88:
         74:21:75:3f:85:73:c7:85:7d:68:cc:42:13:8d:6d:58:3d:d4:
         4f:af:51:50:ee:93:33:c4:a4:4c:53:ea:18:43:55:b9:36:c7:
         71:e3:68:ae:5e:6b:e9:08:0a:be:9e:cc:56:f5:92:34:d3:7f:
         20:00:d4:52:7b:8a:3f:98:82:a7:d5:e7:ec:d7:ff:af:f1:39:
         d1:8e:fb:71:24:9c:f6:e0:84:08:42:2f:e2:b1:2a:61:d9:a8:
         0d:3d:17:e6:da:2c:ce:98:9d:02:75:13:7e:df:56:d5:41:26:
         6c:33:eb:2e:7b:77:8b:06:f8:ad:3e:20:13:da:2b:ab:c3:7f:
         64:52:c7:e6:44:98:17:e0:9d:fd:d0:d7:b9:71:ba:e7:ec:4f:
         c5:40:f7:e0:68:19:a7:30:fb:a0:b1:d7:d9:38:d2:5c:78:04:
         1f:fb:f8:7f:ca:c1:e1:87:cb:04:7d:dd:9d:70:98:e9:ec:cd:
         62:07:39:eb:7c:0c:18:49:49:91:c9:68:9e:a4:45:34:8c:33:
         83:95:0f:77
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAd7Bk5aiuN1DLuQL2AIcZ0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMmYyN2ZhZDkyNDUyYTI1NGIzMGEwNjBlZDM4M2IxM2M3
NThlZDYwHhcNMjQwNjE1MjIwMjEwWhcNMjQwNjE2MjIwMjEwWjAzMTEwLwYDVQQD
Eyg2ZDlkYWFhMmVmNGYxOWUyZDMyZDZiNzY5YjQ3OTg4MTExN2E5NjA3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXFD1cUV3gwVybIzzwiJA5aw7IGB
ytijSvWUuJK/ZzjqGcntogUQw1u+FyFJP0jrGrQvUjdaJwCfAubVgXmH6Co3QT4H
80aRgHLPXQ2FKwzoeF3HxElt3LWvBQjlgkmfq2bRtq5c6yK833Y/szI1fqtiWete
pm44lpViIdt0Stip6nxxH8cFwvnMEKLqk4CLHhh3rvSgYdRz/TLx1Xn0b+hvOgr5
DbKToCp//fMP8bI2o5dQJ2VE4Q85ovjkFyuSdGv8S5m4BwnFdgJl/FsLd6xxO15V
77l8kUCnDe2sfJjGJPnAHdxWZH/unML41F6Ma/yO3yp6kKHlhkfG2JAriQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG2dqqLvTxni0y1rdptHmIERepYHMB8GA1UdIwQY
MBaAFGAvJ/rZJFKiVLMKBg7Tg7E8dY7WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8yZjY3YjktNDkwYi00M2VmLWIwODgt
NGFiMzk3MzUwMmZiLzEvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMS8yZjY3YjktNDkwYi00M2VmLWIwODgtNGFiMzk3MzUwMmZi
LzEvWUM4bi10a2tVcUpVc3dvR0R0T0RzVHgxanRZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPtnEZcwi
wJCS8vYggJny2AZAqCKvFWPSWnF5LMcFntIh1s3Wdk0XKjbxY4OxrNdBGUL/+9SI
dCF1P4Vzx4V9aMxCE41tWD3UT69RUO6TM8SkTFPqGENVuTbHceNorl5r6QgKvp7M
VvWSNNN/IADUUnuKP5iCp9Xn7Nf/r/E50Y77cSSc9uCECEIv4rEqYdmoDT0X5tos
zpidAnUTft9W1UEmbDPrLnt3iwb4rT4gE9orq8N/ZFLH5kSYF+Cd/dDXuXG65+xP
xUD34GgZpzD7oLHX2TjSXHgEH/v4f8rB4YfLBH3dnXCY6ezNYgc563wMGElJkclo
nqRFNIwzg5UPdw==
-----END CERTIFICATE-----
Generated at Sun Jun 16 04:59:33 2024 by rpki-client on console-ams.rpki-client.org