Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.mft
File:                     gePml83W4iWsWxFhzfcE3pz8JlU.mft (raw, json)
Hash identifier:          PNqrKXG9xvUy9/r9qiBSlLA6Rg/oNr4p9B44WfYgZYs=
Subject key identifier:   FC:B4:E0:6D:07:ED:37:A3:D0:8A:8F:D4:0F:CC:A8:61:95:AA:FA:73
Authority key identifier: 81:E3:E6:97:CD:D6:E2:25:AC:5B:11:61:CD:F7:04:DE:9C:FC:26:55
Certificate issuer:       /CN=81e3e697cdd6e225ac5b1161cdf704de9cfc2655
Certificate serial:       0190490C1735DA3485ACC993EE47D0D2375F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gePml83W4iWsWxFhzfcE3pz8JlU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.mft
Manifest number:          05AE
Signing time:             Mon 24 Jun 2024 07:00:47 +0000
Manifest this update:     Mon 24 Jun 2024 07:00:47 +0000
Manifest next update:     Tue 25 Jun 2024 07:00:47 +0000
Files and hashes:         1: QNdPruQNNM3HKhpFkZQu7o8oe0I.roa (hash: +TbD2c+3wsBiJUMCCjg03Ylxi1qzXbmyvXZ5b8YvNwU=)
                          2: gePml83W4iWsWxFhzfcE3pz8JlU.crl (hash: GjomtZVj13TMauyAIzXwznwy0zxWVD2jwTCtcIb4YAk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gePml83W4iWsWxFhzfcE3pz8JlU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 25 Jun 2024 07:00:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:49:0c:17:35:da:34:85:ac:c9:93:ee:47:d0:d2:37:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=81e3e697cdd6e225ac5b1161cdf704de9cfc2655
        Validity
            Not Before: Jun 24 07:00:47 2024 GMT
            Not After : Jun 25 07:00:47 2024 GMT
        Subject: CN=fcb4e06d07ed37a3d08a8fd40fcca86195aafa73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:8e:fb:e4:36:36:4f:89:03:12:48:ac:dd:59:
                    87:3c:68:5a:5f:57:d8:5c:f3:b1:7d:85:27:2e:ef:
                    1d:ef:e6:3c:c2:71:77:df:bb:d3:71:80:d6:82:44:
                    d6:92:cf:71:97:40:e0:ec:3a:8d:20:8c:b0:a4:c8:
                    d1:ef:8b:70:f2:a7:da:84:11:23:5d:dc:e8:ad:5c:
                    4f:26:fe:12:da:6c:af:d0:7f:73:bc:ac:3a:7f:33:
                    1c:4e:3f:01:c9:60:86:9d:6a:f6:9f:82:c1:ff:d3:
                    28:60:37:7d:3c:1b:94:f5:01:49:48:f5:43:fb:da:
                    f6:67:94:e4:60:8d:56:ba:0d:2f:d6:b7:a1:9a:25:
                    84:e3:fb:d6:00:c2:e7:42:19:b0:b4:31:fc:4b:7a:
                    ce:19:12:86:da:e1:8e:7a:99:44:fd:48:8b:45:78:
                    ec:19:42:54:fc:ac:fb:6d:29:3d:4c:62:95:ab:d0:
                    60:38:3c:50:e9:78:88:d7:d3:0f:6c:37:9c:c2:80:
                    cf:72:cc:d1:54:7c:31:dd:70:b5:21:e3:a5:4d:83:
                    fe:3f:b1:20:de:07:8c:a7:50:33:59:4d:b3:b2:2b:
                    74:de:29:fc:3b:47:54:0c:42:11:ee:98:c4:0f:05:
                    38:63:c6:63:df:69:72:ec:23:be:b5:5c:09:70:1a:
                    10:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:B4:E0:6D:07:ED:37:A3:D0:8A:8F:D4:0F:CC:A8:61:95:AA:FA:73
            X509v3 Authority Key Identifier:
                keyid:81:E3:E6:97:CD:D6:E2:25:AC:5B:11:61:CD:F7:04:DE:9C:FC:26:55

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gePml83W4iWsWxFhzfcE3pz8JlU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:6b:79:64:f0:25:af:8d:46:93:e6:ad:a2:58:fc:88:00:47:
         4b:21:85:1a:23:32:16:c2:87:34:74:43:7b:8d:ea:8f:47:b1:
         20:9b:fc:3c:0f:d4:e2:50:af:40:7d:29:4b:a9:dd:1d:65:29:
         d1:c4:ca:86:53:b8:65:3b:c3:c5:d4:4c:18:52:c0:d6:ef:32:
         c4:f8:19:4b:45:c1:fb:b2:b9:c6:9b:0f:98:b2:9f:52:00:fa:
         c9:44:68:f6:e8:2d:7e:21:26:c5:76:71:83:39:00:a8:0d:16:
         76:50:75:a9:22:1c:7a:0d:b0:1c:10:c9:0d:8b:dd:0f:86:97:
         5d:d8:d9:09:22:95:59:dd:22:26:7e:a8:c8:9b:7a:12:3a:f4:
         a4:56:e1:82:13:e2:c0:d8:81:21:1f:3e:a9:d6:7e:25:02:7c:
         d0:f1:c5:c3:bd:cf:81:ea:0c:9a:6b:5b:08:dc:2d:c0:e9:1f:
         ff:df:b5:19:15:72:db:ea:8a:18:94:df:a0:26:9b:1f:13:8a:
         97:d8:a8:ce:9b:82:d5:34:e1:e7:ce:56:8a:31:95:6e:0a:38:
         54:47:37:3c:9e:91:e5:ad:c1:0c:1c:df:1f:1d:2f:cd:d1:96:
         c7:9b:61:59:29:9e:64:f8:a8:f6:b9:d0:e5:c0:d6:93:cf:53:
         b4:31:24:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBJDBc12jSFrMmT7kfQ0jdfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxZTNlNjk3Y2RkNmUyMjVhYzViMTE2MWNkZjcwNGRlOWNm
YzI2NTUwHhcNMjQwNjI0MDcwMDQ3WhcNMjQwNjI1MDcwMDQ3WjAzMTEwLwYDVQQD
EyhmY2I0ZTA2ZDA3ZWQzN2EzZDA4YThmZDQwZmNjYTg2MTk1YWFmYTczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvo775DY2T4kDEkis3VmHPGhaX1fY
XPOxfYUnLu8d7+Y8wnF337vTcYDWgkTWks9xl0Dg7DqNIIywpMjR74tw8qfahBEj
XdzorVxPJv4S2myv0H9zvKw6fzMcTj8ByWCGnWr2n4LB/9MoYDd9PBuU9QFJSPVD
+9r2Z5TkYI1Wug0v1rehmiWE4/vWAMLnQhmwtDH8S3rOGRKG2uGOeplE/UiLRXjs
GUJU/Kz7bSk9TGKVq9BgODxQ6XiI19MPbDecwoDPcszRVHwx3XC1IeOlTYP+P7Eg
3geMp1AzWU2zsit03in8O0dUDEIR7pjEDwU4Y8Zj32ly7CO+tVwJcBoQnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPy04G0H7Tej0IqP1A/MqGGVqvpzMB8GA1UdIwQY
MBaAFIHj5pfN1uIlrFsRYc33BN6c/CZVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2VQbWw4M1c0aVdzV3hGaHpmY0UzcHo4SmxVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9mY2NjN2UtYjUxMS00NTFmLWI5ODIt
ZGM4NTg2NGFlYTg5LzEvZ2VQbWw4M1c0aVdzV3hGaHpmY0UzcHo4SmxVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS9mY2NjN2UtYjUxMS00NTFmLWI5ODItZGM4NTg2NGFlYTg5
LzEvZ2VQbWw4M1c0aVdzV3hGaHpmY0UzcHo4SmxVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT2t5ZPAl
r41Gk+atolj8iABHSyGFGiMyFsKHNHRDe43qj0exIJv8PA/U4lCvQH0pS6ndHWUp
0cTKhlO4ZTvDxdRMGFLA1u8yxPgZS0XB+7K5xpsPmLKfUgD6yURo9ugtfiEmxXZx
gzkAqA0WdlB1qSIceg2wHBDJDYvdD4aXXdjZCSKVWd0iJn6oyJt6Ejr0pFbhghPi
wNiBIR8+qdZ+JQJ80PHFw73PgeoMmmtbCNwtwOkf/9+1GRVy2+qKGJTfoCabHxOK
l9iozpuC1TTh585WijGVbgo4VEc3PJ6R5a3BDBzfHx0vzdGWx5thWSmeZPio9rnQ
5cDWk89TtDEkkA==
-----END CERTIFICATE-----
Generated at Mon Jun 24 12:27:51 2024 by rpki-client on console-ams.rpki-client.org