Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File:                     iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier:          mMfXVSrmDUVoaZhJiuVv1OEkrWP+SV6B76A5kTLCDkg=
Subject key identifier:   27:E2:AD:52:07:72:1D:3F:1A:FC:84:34:F1:D6:1A:48:E4:C3:D4:FF
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer:       /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial:       0190448CBE4668EFEA7D760442A377A56F77
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number:          02E4
Signing time:             Sun 23 Jun 2024 10:03:12 +0000
Manifest this update:     Sun 23 Jun 2024 10:03:12 +0000
Manifest next update:     Mon 24 Jun 2024 10:03:12 +0000
Files and hashes:         1: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: zBUvxVIgpRfsH2Az0hs2lof2UKo2W6kDVRou0UvFLGA=)
                          2: kXsCl5aANWOJMxq9RWrtG4BUYPo.roa (hash: UAUydXeJe0qPbF8sCXywITMWigUQZjXMBeCDQgMxtkY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 06:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:44:8c:be:46:68:ef:ea:7d:76:04:42:a3:77:a5:6f:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
        Validity
            Not Before: Jun 23 10:03:12 2024 GMT
            Not After : Jun 24 10:03:12 2024 GMT
        Subject: CN=27e2ad5207721d3f1afc8434f1d61a48e4c3d4ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:a3:7c:29:87:24:33:67:78:cf:f4:8b:c2:c7:
                    f8:67:84:ba:df:49:73:b2:3b:01:04:47:64:fe:8b:
                    18:4f:50:5b:92:60:ba:fb:b9:8c:e2:41:c1:53:b7:
                    22:c5:ec:d2:c5:bb:88:80:9e:2c:12:7f:2a:46:7f:
                    94:ab:f3:f5:88:39:43:30:df:e3:b3:41:3b:f4:01:
                    18:93:bd:36:ea:84:59:e1:e1:6c:3d:58:cd:08:df:
                    9a:eb:c8:2f:93:ca:be:69:b0:99:02:12:a7:04:dc:
                    fa:18:c6:e7:8f:20:a2:2f:09:d4:3d:d0:18:51:a6:
                    08:60:38:c9:b5:56:eb:d7:cf:fd:70:b9:4b:c2:f9:
                    0d:97:29:d8:a5:de:fc:76:78:ca:5c:28:3e:92:b1:
                    8b:1f:b1:31:65:af:2e:b6:8b:90:e7:1e:03:ee:1c:
                    11:13:dc:64:b9:79:ad:44:38:b8:3e:95:cc:9b:9e:
                    19:6e:06:97:ce:65:e8:b1:84:b9:8e:6d:52:e6:89:
                    b8:59:2b:ac:14:e9:5c:25:9d:13:46:f5:23:3c:09:
                    d4:36:b9:c0:49:cd:33:3f:74:4a:4e:2f:5c:e3:e3:
                    6c:ac:ec:36:40:f9:5f:81:bf:a1:4a:fc:bd:05:59:
                    18:32:f4:13:2d:a2:3e:16:d1:bb:94:8d:b1:1a:5f:
                    ed:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:E2:AD:52:07:72:1D:3F:1A:FC:84:34:F1:D6:1A:48:E4:C3:D4:FF
            X509v3 Authority Key Identifier:
                keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:c6:63:b6:8c:0b:1a:0f:45:6c:9d:e6:6d:35:14:a5:a6:92:
         db:7b:2f:f2:96:16:97:1e:df:15:db:f7:ef:2a:7a:09:1d:f9:
         21:aa:66:39:a9:76:62:aa:30:e8:fd:34:8e:1f:66:af:05:79:
         35:fd:5c:0a:e7:88:34:ff:0d:91:3b:be:8a:ee:4a:07:4c:4a:
         76:26:9d:e7:47:d0:8c:02:99:c6:8f:23:fd:f9:24:4e:81:0d:
         d4:c2:df:0c:ce:7f:1c:9b:e2:0a:6a:a7:11:92:a7:6c:19:18:
         f2:7b:8a:21:7e:00:1d:66:f2:42:aa:a9:9c:6c:2d:71:e2:6f:
         40:1a:dc:d1:69:75:bb:bb:43:47:a9:47:3f:7a:7c:d7:c2:9d:
         94:95:64:a7:30:1b:1d:1b:09:fc:51:5d:ce:2f:65:52:b9:55:
         d5:3b:38:17:bd:8d:5e:9d:e0:ba:71:7a:5a:1b:ac:d0:13:17:
         d8:8b:e6:a8:c7:36:44:bc:84:fc:b1:79:42:2f:fd:6f:d0:83:
         1c:27:68:a1:94:e2:0a:8c:46:61:62:97:37:8d:53:6b:3f:80:
         1b:ce:58:33:a4:1b:eb:49:b9:24:e7:ed:ca:76:5e:d2:ab:0d:
         1f:3d:0c:8b:a4:01:43:1c:fb:bf:64:37:9b:24:cb:76:51:28:
         8a:3d:c0:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBEjL5GaO/qfXYEQqN3pW93MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhiMDNkY2E3NjMxOTkwMzE1MmYyNDZlMDVjMDY5ZmQxYTFk
YjVjNTkwHhcNMjQwNjIzMTAwMzEyWhcNMjQwNjI0MTAwMzEyWjAzMTEwLwYDVQQD
EygyN2UyYWQ1MjA3NzIxZDNmMWFmYzg0MzRmMWQ2MWE0OGU0YzNkNGZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyqN8KYckM2d4z/SLwsf4Z4S630lz
sjsBBEdk/osYT1BbkmC6+7mM4kHBU7cixezSxbuIgJ4sEn8qRn+Uq/P1iDlDMN/j
s0E79AEYk7026oRZ4eFsPVjNCN+a68gvk8q+abCZAhKnBNz6GMbnjyCiLwnUPdAY
UaYIYDjJtVbr18/9cLlLwvkNlynYpd78dnjKXCg+krGLH7ExZa8utouQ5x4D7hwR
E9xkuXmtRDi4PpXMm54ZbgaXzmXosYS5jm1S5om4WSusFOlcJZ0TRvUjPAnUNrnA
Sc0zP3RKTi9c4+NsrOw2QPlfgb+hSvy9BVkYMvQTLaI+FtG7lI2xGl/t9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCfirVIHch0/GvyENPHWGkjkw9T/MB8GA1UdIwQY
MBaAFIsD3KdjGZAxUvJG4FwGn9Gh21xZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8zMGNkYmUtMTFlMS00NGNhLWI2NTQt
MDI5ZTYzZjA4ODlhLzEvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy8zMGNkYmUtMTFlMS00NGNhLWI2NTQtMDI5ZTYzZjA4ODlh
LzEvaXdQY3AyTVprREZTOGtiZ1hBYWYwYUhiWEZrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtsZjtowL
Gg9FbJ3mbTUUpaaS23sv8pYWlx7fFdv37yp6CR35IapmOal2Yqow6P00jh9mrwV5
Nf1cCueINP8NkTu+iu5KB0xKdiad50fQjAKZxo8j/fkkToEN1MLfDM5/HJviCmqn
EZKnbBkY8nuKIX4AHWbyQqqpnGwtceJvQBrc0Wl1u7tDR6lHP3p818KdlJVkpzAb
HRsJ/FFdzi9lUrlV1Ts4F72NXp3gunF6Whus0BMX2IvmqMc2RLyE/LF5Qi/9b9CD
HCdooZTiCoxGYWKXN41Taz+AG85YM6Qb60m5JOftynZe0qsNHz0Mi6QBQxz7v2Q3
myTLdlEoij3ACw==
-----END CERTIFICATE-----
Generated at Sun Jun 23 15:01:59 2024 by rpki-client on console-ams.rpki-client.org