Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
File:                     bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json)
Hash identifier:          iVSTUCZUkGgn+FSKUp1alHmpZrjjvZ6+f5bzTp5UGOM=
Subject key identifier:   CA:59:78:EA:68:8E:8D:3F:1C:D0:EF:55:6E:95:77:92:1A:12:4E:40
Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
Certificate issuer:       /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Certificate serial:       01901D466B6831D913DD4D99B8EF048DA87A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
Manifest number:          0D08
Signing time:             Sat 15 Jun 2024 19:01:12 +0000
Manifest this update:     Sat 15 Jun 2024 19:01:12 +0000
Manifest next update:     Sun 16 Jun 2024 19:01:12 +0000
Files and hashes:         1: Xp3_D7f9lF3bWgfowU74SzcjIEk.roa (hash: oGOtRi7HB9ZvQCvGulOonkcSy0IcHCOlR2mNF6iNjoY=)
                          2: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: tXD0L0SirOMivhzfWxpZnSTz/7TTzjkpO79YCz8r9GQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:46:6b:68:31:d9:13:dd:4d:99:b8:ef:04:8d:a8:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
        Validity
            Not Before: Jun 15 19:01:12 2024 GMT
            Not After : Jun 16 19:01:12 2024 GMT
        Subject: CN=ca5978ea688e8d3f1cd0ef556e9577921a124e40
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:42:68:fe:ed:07:aa:f6:3c:32:4e:b1:d7:ab:
                    3d:55:61:c2:a4:b7:51:1a:fc:b9:c8:97:4c:a4:ff:
                    81:76:89:22:c2:04:f4:8c:95:aa:62:77:39:73:db:
                    93:d2:49:28:4c:5b:fd:53:d2:8f:b9:08:1d:35:c6:
                    e1:23:aa:33:98:59:52:f6:71:56:79:2d:fb:8e:5f:
                    80:c2:6d:87:39:ca:26:58:78:ff:50:4b:4b:78:4f:
                    d9:f8:8c:31:8a:b2:8f:b4:c1:54:e6:e5:2c:d2:21:
                    d7:29:ec:5b:9a:ba:be:e0:f4:8f:0e:8a:16:99:3d:
                    d9:ab:f3:c1:da:1d:9f:49:fc:12:05:4c:c6:85:1c:
                    0f:1f:04:a3:69:9f:96:e6:2e:19:45:38:52:c4:69:
                    b9:00:38:51:5e:a2:28:ec:65:c0:fc:8f:b2:a8:0f:
                    21:e6:90:d8:5c:56:6e:ee:0e:52:cd:84:e3:e0:aa:
                    fd:b0:40:69:f0:c2:79:5f:ea:db:7f:25:a3:3e:f8:
                    cd:97:27:e4:79:e8:b6:77:3d:f7:3b:2d:e3:97:78:
                    e6:a4:c8:e5:94:c0:bd:b6:02:09:fe:ba:64:57:43:
                    0a:51:6d:9a:7a:b0:a8:7e:29:c6:12:d1:28:c8:ce:
                    a3:53:05:6f:58:21:50:e7:6a:e6:d5:a1:78:80:7a:
                    0a:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CA:59:78:EA:68:8E:8D:3F:1C:D0:EF:55:6E:95:77:92:1A:12:4E:40
            X509v3 Authority Key Identifier:
                keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d8:91:e6:03:20:56:14:70:70:c1:99:ab:eb:06:cb:82:05:f4:
         44:b4:28:4a:12:3b:f4:f7:fd:63:68:6b:e5:10:d7:d9:07:f3:
         66:13:1b:c2:7a:72:b9:6e:6a:6f:2d:59:55:ec:f7:50:9f:29:
         13:62:94:b9:58:35:f5:93:6e:42:80:a4:d1:95:fe:89:80:a8:
         39:7d:69:b4:7a:6b:6c:3d:4f:70:b8:e9:bb:30:23:ab:d6:20:
         51:79:36:c2:e5:6a:84:4a:5a:c9:42:f4:10:9b:18:7f:b1:b6:
         a9:dc:0f:f9:a7:9a:a4:dc:44:a5:87:a5:ac:3b:62:4e:71:c2:
         81:c0:7a:70:a0:f7:29:3f:e4:37:06:ac:12:9d:14:f9:ec:c1:
         53:03:b3:54:b1:1a:68:c2:4c:91:a5:c9:b9:0f:09:e3:02:62:
         ad:47:53:f9:9a:b5:a0:31:d9:33:ce:a2:0f:eb:9a:c1:ad:79:
         0a:7b:d4:bd:d8:35:80:07:73:a7:b7:b8:af:5c:dc:1e:d9:4c:
         ab:e6:9b:39:9c:01:25:db:f1:0a:9a:bb:d9:c8:04:4b:df:36:
         15:1b:7b:fc:87:cd:2c:3b:7f:cc:6d:ff:fe:a2:0d:a6:da:3d:
         3e:9c:b7:c5:75:e6:2b:c2:95:e3:7b:58:3b:f4:84:e5:41:58:
         55:01:e4:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAdRmtoMdkT3U2ZuO8Ejah6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZTJlZTg0Y2NmNTZjZGMwMGZjMmNhYTU5MjkyNzlkYWUx
NDg4OGEwHhcNMjQwNjE1MTkwMTEyWhcNMjQwNjE2MTkwMTEyWjAzMTEwLwYDVQQD
EyhjYTU5NzhlYTY4OGU4ZDNmMWNkMGVmNTU2ZTk1Nzc5MjFhMTI0ZTQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokJo/u0HqvY8Mk6x16s9VWHCpLdR
Gvy5yJdMpP+BdokiwgT0jJWqYnc5c9uT0kkoTFv9U9KPuQgdNcbhI6ozmFlS9nFW
eS37jl+Awm2HOcomWHj/UEtLeE/Z+IwxirKPtMFU5uUs0iHXKexbmrq+4PSPDooW
mT3Zq/PB2h2fSfwSBUzGhRwPHwSjaZ+W5i4ZRThSxGm5ADhRXqIo7GXA/I+yqA8h
5pDYXFZu7g5SzYTj4Kr9sEBp8MJ5X+rbfyWjPvjNlyfkeei2dz33Oy3jl3jmpMjl
lMC9tgIJ/rpkV0MKUW2aerCofinGEtEoyM6jUwVvWCFQ52rm1aF4gHoK/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMpZeOpojo0/HNDvVW6Vd5IaEk5AMB8GA1UdIwQY
MBaAFGzi7oTM9WzcAPwsqlkpJ52uFIiKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNC83ZDZmMmYtOTg0ZC00OTYxLWE2M2It
NDk1YzZmMmM1MTczLzEvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNC83ZDZmMmYtOTg0ZC00OTYxLWE2M2ItNDk1YzZmMmM1MTcz
LzEvYk9MdWhNejFiTndBX0N5cVdTa25uYTRVaUlvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA2JHmAyBW
FHBwwZmr6wbLggX0RLQoShI79Pf9Y2hr5RDX2QfzZhMbwnpyuW5qby1ZVez3UJ8p
E2KUuVg19ZNuQoCk0ZX+iYCoOX1ptHprbD1PcLjpuzAjq9YgUXk2wuVqhEpayUL0
EJsYf7G2qdwP+aeapNxEpYelrDtiTnHCgcB6cKD3KT/kNwasEp0U+ezBUwOzVLEa
aMJMkaXJuQ8J4wJirUdT+Zq1oDHZM86iD+uawa15CnvUvdg1gAdzp7e4r1zcHtlM
q+abOZwBJdvxCpq72cgES982FRt7/IfNLDt/zG3//qINpto9Ppy3xXXmK8KV43tY
O/SE5UFYVQHkEg==
-----END CERTIFICATE-----
Generated at Sat Jun 15 22:09:02 2024 by rpki-client on console-ams.rpki-client.org