Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/dc7010-19f9-4768-a615-4825b29dd572/1/S3CjpsSoVyUDdZizkT4hhp29040.mft
File:                     S3CjpsSoVyUDdZizkT4hhp29040.mft (raw, json)
Hash identifier:          pm+k+IfxTViep/9YP4vk3MaASI8kNg9ccM5JxfgXtRc=
Subject key identifier:   C6:9E:0B:A0:8B:31:DF:66:32:DC:0A:7B:81:CF:5B:EE:6E:17:8C:FC
Authority key identifier: 4B:70:A3:A6:C4:A8:57:25:03:75:98:B3:91:3E:21:86:9D:BD:D3:8D
Certificate issuer:       /CN=4b70a3a6c4a85725037598b3913e21869dbdd38d
Certificate serial:       019040ADADFDC69F49ADA90FCA7BD707DB0F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/S3CjpsSoVyUDdZizkT4hhp29040.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/eb/dc7010-19f9-4768-a615-4825b29dd572/1/S3CjpsSoVyUDdZizkT4hhp29040.mft
Manifest number:          0635
Signing time:             Sat 22 Jun 2024 16:00:42 +0000
Manifest this update:     Sat 22 Jun 2024 16:00:42 +0000
Manifest next update:     Sun 23 Jun 2024 16:00:42 +0000
Files and hashes:         1: EUtGf4ZdLSBltz5fzVf4sDx0zlc.roa (hash: YARVyBFS2GBDJS7gddriG/FAPEWmansAPyUXExWVogo=)
                          2: S3CjpsSoVyUDdZizkT4hhp29040.crl (hash: omMlJHE8QlKsjO3W2dfTtUURV/8sPycr5B3jaiR4wpk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/eb/dc7010-19f9-4768-a615-4825b29dd572/1/S3CjpsSoVyUDdZizkT4hhp29040.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/eb/dc7010-19f9-4768-a615-4825b29dd572/1/S3CjpsSoVyUDdZizkT4hhp29040.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/S3CjpsSoVyUDdZizkT4hhp29040.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 16:00:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:40:ad:ad:fd:c6:9f:49:ad:a9:0f:ca:7b:d7:07:db:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4b70a3a6c4a85725037598b3913e21869dbdd38d
        Validity
            Not Before: Jun 22 16:00:42 2024 GMT
            Not After : Jun 23 16:00:42 2024 GMT
        Subject: CN=c69e0ba08b31df6632dc0a7b81cf5bee6e178cfc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:be:15:42:1b:05:b7:f3:45:ec:13:c6:4c:54:
                    e7:25:9c:b3:69:bc:f4:a3:28:05:17:54:c6:6b:ab:
                    2f:cd:98:b5:8f:f1:63:f0:14:70:4f:58:48:ec:f5:
                    25:66:4f:a7:e5:89:58:41:36:89:09:0d:57:59:a0:
                    33:54:ad:dd:06:aa:d5:3a:fc:7d:39:c1:84:e5:7c:
                    10:95:1d:81:8d:67:e3:91:38:98:af:9f:7b:e7:79:
                    8c:7c:f4:b0:85:3c:7f:f8:2f:1a:0d:82:4c:69:54:
                    2b:0f:0f:1f:9e:79:74:d5:f7:8b:68:e8:90:2d:e2:
                    28:f2:c4:bc:22:b6:4f:97:e2:fc:2c:d4:05:0e:83:
                    e9:15:33:a4:5d:17:9a:48:cc:37:78:85:59:f7:4c:
                    e1:91:4c:e5:be:2b:86:36:4e:c2:78:1a:95:08:4e:
                    45:d8:ad:55:11:8c:1c:45:3c:c4:e9:5f:ca:57:5d:
                    41:54:25:c2:90:95:22:88:ba:b8:56:97:f1:35:aa:
                    53:ac:b6:b6:56:2c:d0:3f:83:be:0e:64:1b:de:e4:
                    d8:bb:b6:6f:05:23:38:c6:c0:4e:e1:b9:c1:ba:9d:
                    f2:41:b1:7f:63:ab:a5:f7:d1:c3:7e:b0:78:1c:f3:
                    ba:b3:54:5d:eb:0a:15:57:5d:8c:8b:c0:4c:17:45:
                    35:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:9E:0B:A0:8B:31:DF:66:32:DC:0A:7B:81:CF:5B:EE:6E:17:8C:FC
            X509v3 Authority Key Identifier:
                keyid:4B:70:A3:A6:C4:A8:57:25:03:75:98:B3:91:3E:21:86:9D:BD:D3:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3CjpsSoVyUDdZizkT4hhp29040.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/dc7010-19f9-4768-a615-4825b29dd572/1/S3CjpsSoVyUDdZizkT4hhp29040.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/dc7010-19f9-4768-a615-4825b29dd572/1/S3CjpsSoVyUDdZizkT4hhp29040.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         50:0e:ea:38:48:f9:5f:b5:47:66:5f:ba:78:65:3f:be:7f:38:
         6c:c6:c0:1a:11:1c:77:00:73:fe:3c:b6:85:f1:98:4c:cd:f6:
         35:e0:87:f9:2e:28:df:1c:d0:68:7b:a5:05:bc:64:29:53:cd:
         aa:9a:31:9b:6e:05:08:f2:db:81:fe:df:26:2e:8b:27:cb:bd:
         80:30:36:b8:d0:cf:ae:62:47:a3:01:c1:77:ba:5a:c8:31:38:
         34:53:c5:34:a9:f2:05:39:c2:53:b2:83:38:8d:48:9f:68:a0:
         d6:0c:52:a0:5f:d1:bb:eb:89:96:ac:45:20:fe:6e:18:a6:5d:
         54:e4:75:54:78:42:2e:6e:bb:fb:c4:ae:ac:cc:97:29:77:2b:
         63:0d:dc:93:a6:06:52:6e:58:68:1f:5f:3e:ec:9d:34:07:14:
         9e:7d:24:8f:b7:0e:e2:19:c5:2f:11:ca:15:2b:07:ce:75:43:
         2e:13:94:7e:55:f5:e1:fb:ee:51:84:e0:47:65:19:1d:c4:14:
         26:31:4a:ff:59:8b:12:84:d1:a2:61:bd:92:0f:20:41:ff:88:
         df:e9:03:17:58:57:a0:b9:0b:03:5a:06:c4:c6:02:90:8c:2c:
         2f:e0:23:09:e3:b4:2c:3d:4f:01:f4:c2:8a:9b:db:c2:87:d6:
         e3:6f:11:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZBAra39xp9JrakPynvXB9sPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRiNzBhM2E2YzRhODU3MjUwMzc1OThiMzkxM2UyMTg2OWRi
ZGQzOGQwHhcNMjQwNjIyMTYwMDQyWhcNMjQwNjIzMTYwMDQyWjAzMTEwLwYDVQQD
EyhjNjllMGJhMDhiMzFkZjY2MzJkYzBhN2I4MWNmNWJlZTZlMTc4Y2ZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArL4VQhsFt/NF7BPGTFTnJZyzabz0
oygFF1TGa6svzZi1j/Fj8BRwT1hI7PUlZk+n5YlYQTaJCQ1XWaAzVK3dBqrVOvx9
OcGE5XwQlR2BjWfjkTiYr59753mMfPSwhTx/+C8aDYJMaVQrDw8fnnl01feLaOiQ
LeIo8sS8IrZPl+L8LNQFDoPpFTOkXReaSMw3eIVZ90zhkUzlviuGNk7CeBqVCE5F
2K1VEYwcRTzE6V/KV11BVCXCkJUiiLq4VpfxNapTrLa2VizQP4O+DmQb3uTYu7Zv
BSM4xsBO4bnBup3yQbF/Y6ul99HDfrB4HPO6s1Rd6woVV12Mi8BMF0U1cQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMaeC6CLMd9mMtwKe4HPW+5uF4z8MB8GA1UdIwQY
MBaAFEtwo6bEqFclA3WYs5E+IYadvdONMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUzNDanBzU29WeVVEZFppemtUNGhocDI5MDQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYi9kYzcwMTAtMTlmOS00NzY4LWE2MTUt
NDgyNWIyOWRkNTcyLzEvUzNDanBzU29WeVVEZFppemtUNGhocDI5MDQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYi9kYzcwMTAtMTlmOS00NzY4LWE2MTUtNDgyNWIyOWRkNTcy
LzEvUzNDanBzU29WeVVEZFppemtUNGhocDI5MDQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUA7qOEj5
X7VHZl+6eGU/vn84bMbAGhEcdwBz/jy2hfGYTM32NeCH+S4o3xzQaHulBbxkKVPN
qpoxm24FCPLbgf7fJi6LJ8u9gDA2uNDPrmJHowHBd7payDE4NFPFNKnyBTnCU7KD
OI1In2ig1gxSoF/Ru+uJlqxFIP5uGKZdVOR1VHhCLm67+8SurMyXKXcrYw3ck6YG
Um5YaB9fPuydNAcUnn0kj7cO4hnFLxHKFSsHznVDLhOUflX14fvuUYTgR2UZHcQU
JjFK/1mLEoTRomG9kg8gQf+I3+kDF1hXoLkLA1oGxMYCkIwsL+AjCeO0LD1PAfTC
ipvbwofW428R/Q==
-----END CERTIFICATE-----
Generated at Sun Jun 23 02:38:18 2024 by rpki-client on console-ams.rpki-client.org