Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.mft
File:                     gePml83W4iWsWxFhzfcE3pz8JlU.mft (raw, json)
Hash identifier:          qsGImEzDu+rTy50nGfGIUiFb4JRW8bs3DLTiJbsQKd8=
Subject key identifier:   24:1C:72:F9:74:C4:59:C0:50:44:04:BD:25:25:DD:F6:81:39:C3:F9
Authority key identifier: 81:E3:E6:97:CD:D6:E2:25:AC:5B:11:61:CD:F7:04:DE:9C:FC:26:55
Certificate issuer:       /CN=81e3e697cdd6e225ac5b1161cdf704de9cfc2655
Certificate serial:       01901E9029F8BF368735EE03795E0930177D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gePml83W4iWsWxFhzfcE3pz8JlU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.mft
Manifest number:          0598
Signing time:             Sun 16 Jun 2024 01:01:22 +0000
Manifest this update:     Sun 16 Jun 2024 01:01:22 +0000
Manifest next update:     Mon 17 Jun 2024 01:01:22 +0000
Files and hashes:         1: QNdPruQNNM3HKhpFkZQu7o8oe0I.roa (hash: +TbD2c+3wsBiJUMCCjg03Ylxi1qzXbmyvXZ5b8YvNwU=)
                          2: gePml83W4iWsWxFhzfcE3pz8JlU.crl (hash: 5cRJZKP8/Y2VDb+R8LCu4It6ISBN6h11DmGWCf0rsmA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gePml83W4iWsWxFhzfcE3pz8JlU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:90:29:f8:bf:36:87:35:ee:03:79:5e:09:30:17:7d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=81e3e697cdd6e225ac5b1161cdf704de9cfc2655
        Validity
            Not Before: Jun 16 01:01:22 2024 GMT
            Not After : Jun 17 01:01:22 2024 GMT
        Subject: CN=241c72f974c459c0504404bd2525ddf68139c3f9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:3e:06:b9:22:ad:3b:16:e0:8a:47:24:22:e0:
                    58:bd:d1:bf:aa:07:82:df:72:17:4b:79:96:f5:d1:
                    cd:81:b7:1f:49:22:d8:74:ea:bb:d1:c8:1e:c1:f0:
                    5e:f1:31:a5:3a:f3:cb:24:9c:b3:bd:5e:cb:8a:09:
                    5c:7d:f8:0b:48:8e:e2:b6:81:19:af:ed:8e:fa:08:
                    96:4b:53:a6:89:cb:cd:bf:65:01:ba:ea:aa:36:43:
                    d1:f3:a4:8a:9b:a9:78:59:d9:80:a7:b6:e0:b0:35:
                    89:91:78:84:1d:03:47:86:f2:03:d3:76:b4:a1:c2:
                    97:be:89:67:db:14:a2:83:dc:0f:56:1e:8f:5a:d7:
                    4a:b8:ce:d6:4d:13:69:f3:af:5a:b5:fd:3c:0a:4a:
                    75:39:72:2e:e7:ce:34:25:41:11:e1:2b:7e:8a:97:
                    45:9e:b3:85:b5:29:45:e8:53:48:e0:98:4b:35:69:
                    3c:83:a6:83:48:12:15:75:31:ae:9b:14:75:64:89:
                    38:d9:ad:68:8c:7c:86:52:25:46:61:eb:12:3e:78:
                    34:d4:ad:c0:aa:23:d9:73:a2:d4:8a:e8:1a:c2:01:
                    63:70:31:52:1b:3d:06:ae:79:64:c3:a9:5c:48:63:
                    e2:2f:4b:6f:74:23:47:12:a2:fc:70:72:16:17:15:
                    5f:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                24:1C:72:F9:74:C4:59:C0:50:44:04:BD:25:25:DD:F6:81:39:C3:F9
            X509v3 Authority Key Identifier:
                keyid:81:E3:E6:97:CD:D6:E2:25:AC:5B:11:61:CD:F7:04:DE:9C:FC:26:55

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gePml83W4iWsWxFhzfcE3pz8JlU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/fccc7e-b511-451f-b982-dc85864aea89/1/gePml83W4iWsWxFhzfcE3pz8JlU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:83:b3:55:32:29:05:24:79:eb:97:10:35:bd:f9:bb:dc:7d:
         2c:cb:e7:8e:9e:cf:c1:50:05:0e:e0:ce:f9:40:12:58:44:61:
         7e:15:ae:07:23:d4:77:75:2e:65:98:74:82:6f:79:0a:0d:17:
         fb:e4:3b:2a:0f:7a:48:bb:f7:ab:18:ea:0b:cf:64:65:41:b2:
         b8:2e:0c:12:e4:8f:fd:aa:b4:8b:19:06:a8:ab:a1:e2:86:2e:
         58:c3:06:20:32:6b:6f:2d:f3:ba:6e:c9:c3:fb:4b:15:c0:1c:
         6d:82:f7:5b:15:d0:36:48:6c:18:70:80:d9:e0:ab:02:4f:7f:
         eb:ee:63:91:dd:fe:58:c9:ae:04:d5:23:71:91:7d:fa:e2:59:
         34:8a:dd:a5:91:fa:3d:f2:8c:74:d7:0f:b9:94:28:29:c1:2f:
         e1:ca:19:a1:72:b4:87:52:65:9c:f0:1d:6b:98:df:80:04:a6:
         05:d0:a0:6c:51:22:07:7b:67:38:82:de:31:d9:5b:16:52:55:
         a2:2a:92:f4:cd:df:a7:d4:60:36:31:c1:ce:0d:05:66:04:0b:
         03:51:0c:d0:d7:2b:3f:3a:23:d0:6e:3a:4a:24:dd:11:a6:f6:
         61:1f:22:bd:36:33:16:1c:c6:32:28:9f:68:be:42:5e:59:fc:
         a2:39:03:d9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAekCn4vzaHNe4DeV4JMBd9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxZTNlNjk3Y2RkNmUyMjVhYzViMTE2MWNkZjcwNGRlOWNm
YzI2NTUwHhcNMjQwNjE2MDEwMTIyWhcNMjQwNjE3MDEwMTIyWjAzMTEwLwYDVQQD
EygyNDFjNzJmOTc0YzQ1OWMwNTA0NDA0YmQyNTI1ZGRmNjgxMzljM2Y5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqj4GuSKtOxbgikckIuBYvdG/qgeC
33IXS3mW9dHNgbcfSSLYdOq70cgewfBe8TGlOvPLJJyzvV7LiglcffgLSI7itoEZ
r+2O+giWS1OmicvNv2UBuuqqNkPR86SKm6l4WdmAp7bgsDWJkXiEHQNHhvID03a0
ocKXvoln2xSig9wPVh6PWtdKuM7WTRNp869atf08Ckp1OXIu5840JUER4St+ipdF
nrOFtSlF6FNI4JhLNWk8g6aDSBIVdTGumxR1ZIk42a1ojHyGUiVGYesSPng01K3A
qiPZc6LUiugawgFjcDFSGz0Grnlkw6lcSGPiL0tvdCNHEqL8cHIWFxVf1wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCQccvl0xFnAUEQEvSUl3faBOcP5MB8GA1UdIwQY
MBaAFIHj5pfN1uIlrFsRYc33BN6c/CZVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2VQbWw4M1c0aVdzV3hGaHpmY0UzcHo4SmxVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOS9mY2NjN2UtYjUxMS00NTFmLWI5ODIt
ZGM4NTg2NGFlYTg5LzEvZ2VQbWw4M1c0aVdzV3hGaHpmY0UzcHo4SmxVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOS9mY2NjN2UtYjUxMS00NTFmLWI5ODItZGM4NTg2NGFlYTg5
LzEvZ2VQbWw4M1c0aVdzV3hGaHpmY0UzcHo4SmxVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT4OzVTIp
BSR565cQNb35u9x9LMvnjp7PwVAFDuDO+UASWERhfhWuByPUd3UuZZh0gm95Cg0X
++Q7Kg96SLv3qxjqC89kZUGyuC4MEuSP/aq0ixkGqKuh4oYuWMMGIDJrby3zum7J
w/tLFcAcbYL3WxXQNkhsGHCA2eCrAk9/6+5jkd3+WMmuBNUjcZF9+uJZNIrdpZH6
PfKMdNcPuZQoKcEv4coZoXK0h1JlnPAda5jfgASmBdCgbFEiB3tnOILeMdlbFlJV
oiqS9M3fp9RgNjHBzg0FZgQLA1EM0NcrPzoj0G46SiTdEab2YR8ivTYzFhzGMiif
aL5CXln8ojkD2Q==
-----END CERTIFICATE-----
Generated at Sun Jun 16 05:06:25 2024 by rpki-client on console-ams.rpki-client.org