Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File:                     HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier:          I3JNRKf0R9dlQ64xtxzXF+wV6xfPzgTKMSnFxZuI1SU=
Subject key identifier:   25:C3:7C:73:86:69:11:62:F2:B7:22:26:E7:A9:49:16:B6:45:78:4D
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer:       /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial:       01901DECF83F60A403837FD432298B830202
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number:          0F38
Signing time:             Sat 15 Jun 2024 22:03:07 +0000
Manifest this update:     Sat 15 Jun 2024 22:03:07 +0000
Manifest next update:     Sun 16 Jun 2024 22:03:07 +0000
Files and hashes:         1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: YiJka+Ap5BSh1mycn+kHcE4C3C4CECCPy8LRehnlqwo=)
                          2: Y5wOizT5hrWA8Jz7MhWicsgd8qo.roa (hash: fSgLMWo+G+s3B7nkPPTCquA7ljBUTZvWVbSa74E5gZM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:03:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ec:f8:3f:60:a4:03:83:7f:d4:32:29:8b:83:02:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
        Validity
            Not Before: Jun 15 22:03:07 2024 GMT
            Not After : Jun 16 22:03:07 2024 GMT
        Subject: CN=25c37c7386691162f2b72226e7a94916b645784d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:57:d6:08:05:4e:36:b2:bb:75:a6:cf:dc:bc:
                    d7:2b:ce:7d:f9:f1:b5:8e:ae:e6:d5:fe:d0:a6:b4:
                    5a:70:0e:1f:1a:a1:03:e6:91:03:2d:85:de:24:88:
                    e9:d2:01:0f:bb:70:6b:b2:ac:4c:9b:5e:bd:37:18:
                    2f:e3:6e:fd:b9:f8:b8:c4:52:24:d8:01:3f:14:7a:
                    54:9d:85:89:36:05:e6:11:2d:35:22:d3:7f:1d:62:
                    39:3a:7e:89:83:86:24:92:50:77:9c:ac:4c:66:d5:
                    f4:6e:49:ca:de:26:df:99:da:73:e9:97:2e:10:b6:
                    cf:1e:04:37:99:e8:c6:38:c9:17:87:cd:72:57:e5:
                    00:91:0f:8e:ed:2b:36:b4:bd:50:22:d4:42:97:07:
                    16:5f:2a:d4:67:6a:d1:73:d2:93:a5:9b:db:e6:cd:
                    99:b1:d3:c3:ae:0b:61:ae:c2:ea:c0:e4:ba:04:69:
                    c7:1b:06:72:7d:6c:a7:ad:79:36:9e:f9:92:6b:65:
                    72:f5:4c:7a:75:85:df:4d:0a:e1:a9:85:d5:19:47:
                    82:16:e5:e8:4a:ed:8d:07:91:52:07:e1:10:de:4e:
                    18:9d:bf:ee:0b:e1:f8:84:62:03:fe:72:e8:6a:d0:
                    9f:ec:86:28:78:76:d5:85:56:66:5a:d5:8e:b9:65:
                    b0:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:C3:7C:73:86:69:11:62:F2:B7:22:26:E7:A9:49:16:B6:45:78:4D
            X509v3 Authority Key Identifier:
                keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         86:12:11:99:7c:30:2b:47:a7:9a:4b:49:8d:2e:36:a4:8a:bc:
         ad:72:6a:96:76:0a:93:7b:b5:05:9d:e7:20:13:f1:9f:33:6f:
         22:bb:14:75:1c:77:df:45:f2:6a:43:da:78:da:4f:27:70:42:
         93:ee:c4:5c:61:bf:56:ff:68:f2:1b:0d:98:93:97:75:24:c7:
         e6:a5:71:5e:30:7c:9d:6b:c0:9b:80:a6:bc:ce:fb:dd:95:65:
         4d:ab:09:58:3a:5d:f3:5f:57:31:17:66:31:d6:e6:81:2e:48:
         d3:74:81:7b:a7:aa:82:15:99:09:0c:3d:ef:25:39:82:f7:64:
         f3:53:23:80:f5:08:77:b8:66:7e:1e:70:5a:56:3c:4e:41:17:
         15:27:de:26:41:b3:31:d5:40:06:fc:b4:90:87:fa:b4:8c:84:
         ef:08:ca:83:a9:de:7a:36:e0:25:b1:8c:4b:5e:67:ff:b3:1a:
         78:fb:d6:67:2a:09:b9:bd:2d:68:b3:e9:07:77:65:b2:4c:26:
         d8:f0:89:36:80:0c:5d:c9:c3:42:43:75:23:c6:8d:15:9b:fa:
         fd:a7:11:b6:83:3f:58:ab:b0:6c:7b:35:ae:59:90:43:f9:03:
         12:ec:d3:53:65:77:f4:74:68:4d:1c:30:48:c7:7e:dc:aa:68:
         f9:31:fa:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:34:34 2024 by rpki-client on console-ams.rpki-client.org