Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
File:                     Dv0crRIZAnVQiePKgLptfMxLm3E.mft (raw, json)
Hash identifier:          aGLK+gZa6t+lVhqAYC6rUI3/ewHckl19P3nuYd4UiGM=
Subject key identifier:   A2:88:6A:38:D1:C9:CF:3B:74:6D:13:B3:28:B9:C8:17:C0:0F:03:FA
Authority key identifier: 0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
Certificate issuer:       /CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Certificate serial:       019024241EC0D5866569300C67665D11786D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
Manifest number:          07C4
Signing time:             Mon 17 Jun 2024 03:01:05 +0000
Manifest this update:     Mon 17 Jun 2024 03:01:05 +0000
Manifest next update:     Tue 18 Jun 2024 03:01:05 +0000
Files and hashes:         1: Dv0crRIZAnVQiePKgLptfMxLm3E.crl (hash: b5FTvx/w3N7eb6k7wdlHjoUNsZHrXi6jtOFiHLDZlkU=)
                          2: oEUf2fD6ZYVwmgUfpI0SXzUqVDQ.roa (hash: dj08vFzwQ43xNAOX35u9VpszwUSLh9ftgqZtY5j/iBQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 18 Jun 2024 03:01:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:24:24:1e:c0:d5:86:65:69:30:0c:67:66:5d:11:78:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
        Validity
            Not Before: Jun 17 03:01:05 2024 GMT
            Not After : Jun 18 03:01:05 2024 GMT
        Subject: CN=a2886a38d1c9cf3b746d13b328b9c817c00f03fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:14:4d:84:c7:42:2c:7c:c7:56:ee:cd:ce:4c:
                    2b:00:0a:8d:79:8e:f1:16:c7:5c:5c:47:c7:fa:39:
                    b7:e0:fe:cc:53:b6:9d:6b:50:db:a0:08:03:3b:38:
                    55:3b:d2:47:af:05:32:19:19:43:6b:cb:53:a2:be:
                    c1:ad:20:d6:21:f4:2a:7c:16:b6:ae:80:31:fa:e4:
                    47:a6:41:9d:27:83:b1:3f:5e:7d:7e:71:3d:8e:5d:
                    58:57:0a:16:bb:b9:d0:d7:33:a5:1f:10:66:0f:61:
                    05:9c:f1:2e:b3:05:e5:7a:4f:5c:63:14:3f:ee:63:
                    04:fd:e9:bd:72:9d:8c:2f:23:c2:34:e0:3f:06:b8:
                    b5:82:92:d4:99:62:7c:70:fa:37:81:bc:ca:b1:58:
                    70:dc:2c:61:7b:8a:bd:47:21:5c:46:94:81:03:c8:
                    f9:a3:57:f9:72:2e:4b:cf:ea:08:d8:d3:b2:84:83:
                    2b:d8:55:c4:b6:42:4b:b9:3c:d4:fe:2f:07:e2:27:
                    01:7f:e5:de:e4:5b:4e:89:ed:03:a7:f4:b6:6b:ca:
                    73:fe:58:eb:21:9f:6b:35:14:8b:5b:de:e8:33:88:
                    ec:90:5a:cb:1f:8e:90:74:a9:e3:61:48:34:9a:7b:
                    69:9b:30:54:e0:71:f3:77:82:c6:83:1a:76:59:73:
                    be:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:88:6A:38:D1:C9:CF:3B:74:6D:13:B3:28:B9:C8:17:C0:0F:03:FA
            X509v3 Authority Key Identifier:
                keyid:0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1b:55:9d:e2:a4:d3:05:7b:80:48:88:d1:5a:5b:f5:c6:ad:16:
         c8:cc:02:2f:89:d9:76:3f:81:d1:bb:4a:b4:c0:b7:07:e1:05:
         d3:00:0d:6e:1a:04:40:8a:c7:e3:7f:51:91:ff:a7:03:2e:74:
         f8:bb:51:84:b5:57:07:25:3a:f5:a8:4b:46:d6:bf:87:64:f4:
         6a:7a:4e:ff:05:75:02:92:01:91:24:41:4d:cb:02:63:e0:ce:
         2f:d3:d5:0c:15:67:66:cc:a2:c6:48:0f:33:95:1e:6b:d8:83:
         c2:df:67:fb:3f:bb:9c:3f:9e:6d:40:6c:d4:16:4e:2e:bf:45:
         98:46:78:d9:42:8f:d2:69:9f:9d:03:6e:09:ad:c5:3d:9e:6b:
         c5:3d:17:8c:b8:28:95:f7:98:f4:3c:d7:5b:ca:a0:ad:96:c5:
         ef:94:b4:50:ce:42:64:32:17:78:1b:47:8a:e4:20:78:b3:bb:
         29:72:dd:2a:69:1f:1e:6d:f7:5b:44:41:12:41:5c:28:f4:16:
         26:e3:8a:00:39:25:71:0d:06:e2:69:39:a6:76:bc:5d:18:f4:
         6c:65:bb:5b:6d:8f:af:7e:49:2f:bb:98:81:a2:7f:f9:d9:f6:
         0a:30:1d:17:83:9e:5e:cd:6d:f2:57:3b:8e:61:a9:dc:dd:e1:
         c6:ee:b5:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAkJB7A1YZlaTAMZ2ZdEXhtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlZmQxY2FkMTIxOTAyNzU1MDg5ZTNjYTgwYmE2ZDdjY2M0
YjliNzEwHhcNMjQwNjE3MDMwMTA1WhcNMjQwNjE4MDMwMTA1WjAzMTEwLwYDVQQD
EyhhMjg4NmEzOGQxYzljZjNiNzQ2ZDEzYjMyOGI5YzgxN2MwMGYwM2ZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxRNhMdCLHzHVu7NzkwrAAqNeY7x
FsdcXEfH+jm34P7MU7ada1DboAgDOzhVO9JHrwUyGRlDa8tTor7BrSDWIfQqfBa2
roAx+uRHpkGdJ4OxP159fnE9jl1YVwoWu7nQ1zOlHxBmD2EFnPEuswXlek9cYxQ/
7mME/em9cp2MLyPCNOA/Bri1gpLUmWJ8cPo3gbzKsVhw3Cxhe4q9RyFcRpSBA8j5
o1f5ci5Lz+oI2NOyhIMr2FXEtkJLuTzU/i8H4icBf+Xe5FtOie0Dp/S2a8pz/ljr
IZ9rNRSLW97oM4jskFrLH46QdKnjYUg0mntpmzBU4HHzd4LGgxp2WXO+6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKKIajjRyc87dG0Tsyi5yBfADwP6MB8GA1UdIwQY
MBaAFA79HK0SGQJ1UInjyoC6bXzMS5txMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRHYwY3JSSVpBblZRaWVQS2dMcHRmTXhMbTNFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMy9kZjk5ZDMtNTAyOC00MzYxLWI3OTUt
M2FmNGE5NDYzYjc3LzEvRHYwY3JSSVpBblZRaWVQS2dMcHRmTXhMbTNFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMy9kZjk5ZDMtNTAyOC00MzYxLWI3OTUtM2FmNGE5NDYzYjc3
LzEvRHYwY3JSSVpBblZRaWVQS2dMcHRmTXhMbTNFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG1Wd4qTT
BXuASIjRWlv1xq0WyMwCL4nZdj+B0btKtMC3B+EF0wANbhoEQIrH439Rkf+nAy50
+LtRhLVXByU69ahLRta/h2T0anpO/wV1ApIBkSRBTcsCY+DOL9PVDBVnZsyixkgP
M5Uea9iDwt9n+z+7nD+ebUBs1BZOLr9FmEZ42UKP0mmfnQNuCa3FPZ5rxT0XjLgo
lfeY9DzXW8qgrZbF75S0UM5CZDIXeBtHiuQgeLO7KXLdKmkfHm33W0RBEkFcKPQW
JuOKADklcQ0G4mk5pna8XRj0bGW7W22Pr35JL7uYgaJ/+dn2CjAdF4OeXs1t8lc7
jmGp3N3hxu61lQ==
-----END CERTIFICATE-----
Generated at Mon Jun 17 12:09:09 2024 by rpki-client on console-ams.rpki-client.org