Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File:                     HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier:          ypRkF3EcVqXJUI5+cv1BcbIIZ4P4tvATF4VttRno5tQ=
Subject key identifier:   E1:40:7E:3F:32:26:0D:55:51:C2:E2:65:43:4D:E4:1E:DB:B3:BF:9C
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer:       /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial:       0190448BA82632AC76C37D6C3ACBEF53282A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number:          0F4C
Signing time:             Sun 23 Jun 2024 10:02:01 +0000
Manifest this update:     Sun 23 Jun 2024 10:02:01 +0000
Manifest next update:     Mon 24 Jun 2024 10:02:01 +0000
Files and hashes:         1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: uSJLL6j7N5KP+c+M/kNj0NrwfjtmwYpcD2jrrCd53kU=)
                          2: Y5wOizT5hrWA8Jz7MhWicsgd8qo.roa (hash: fSgLMWo+G+s3B7nkPPTCquA7ljBUTZvWVbSa74E5gZM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 10:02:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:44:8b:a8:26:32:ac:76:c3:7d:6c:3a:cb:ef:53:28:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
        Validity
            Not Before: Jun 23 10:02:01 2024 GMT
            Not After : Jun 24 10:02:01 2024 GMT
        Subject: CN=e1407e3f32260d5551c2e265434de41edbb3bf9c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:e1:49:ef:cc:48:31:f3:2f:61:f1:d2:5b:e4:
                    b3:1c:8c:92:91:c7:2c:4f:f0:5a:16:7f:4a:c8:0c:
                    82:47:65:e5:dc:30:48:ce:57:8f:3c:f9:1e:bf:10:
                    5d:4a:54:4f:d9:8d:ce:cc:2c:d5:5a:73:f2:ac:f8:
                    58:a8:3f:20:61:51:7f:af:81:69:18:4f:20:eb:63:
                    af:aa:90:89:83:81:18:b2:d4:d4:00:a1:a5:0b:f8:
                    bb:da:ab:d4:94:73:f5:a3:af:77:bc:04:b8:05:c3:
                    4b:cc:52:84:aa:05:6a:cb:b1:0c:23:45:d8:fd:7d:
                    9f:df:2c:b4:bf:ae:b6:68:86:4d:63:2c:ba:c6:2d:
                    0b:66:13:1d:34:72:82:9d:4e:f3:82:0c:a2:a5:a9:
                    4c:94:90:6d:68:92:49:67:cd:90:48:9f:3f:47:15:
                    e5:dd:78:0c:42:21:67:d3:5c:13:58:1d:e1:67:49:
                    da:21:9a:94:1d:91:37:c3:44:60:b0:1e:77:f7:7a:
                    f4:3b:df:61:7f:4b:7f:d5:b1:d1:d3:ea:90:94:44:
                    c7:a3:41:45:a6:64:07:08:1a:17:a9:32:8d:ab:56:
                    4e:09:2e:23:77:50:f4:ba:d0:f4:73:dd:41:76:4b:
                    21:0c:1f:51:db:3f:76:7c:65:9b:4a:ad:f5:5b:0f:
                    e8:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:40:7E:3F:32:26:0D:55:51:C2:E2:65:43:4D:E4:1E:DB:B3:BF:9C
            X509v3 Authority Key Identifier:
                keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:ac:eb:18:d2:3e:86:63:34:26:57:4c:45:a8:e0:1d:6b:c8:
         8a:ee:7a:3e:ac:8c:26:57:da:53:e3:c7:52:68:22:28:37:61:
         ce:56:00:4b:bb:85:6b:b0:b5:06:50:2b:ee:4f:53:f7:88:99:
         82:62:37:6d:26:93:32:e0:13:d3:15:11:b9:bd:60:50:04:91:
         e1:dd:9a:54:7e:2f:48:05:4a:77:92:d5:42:41:1c:9a:06:f0:
         fb:69:7d:63:47:14:74:80:32:90:63:e9:f3:67:4f:df:83:f0:
         74:64:63:a4:79:d4:f2:5c:53:87:d4:a6:45:e6:48:4e:74:ed:
         10:35:18:50:5e:cb:6d:d9:c7:70:cb:f1:ce:fb:05:20:0f:ef:
         49:9e:50:db:df:0a:95:0e:02:4b:90:c0:71:34:44:14:0f:d7:
         54:89:35:ab:33:11:a0:81:0d:57:2a:e9:c4:0c:77:b2:94:a3:
         dc:53:08:49:7c:6e:03:54:93:6f:5a:e6:1a:08:75:19:cc:73:
         0c:df:ed:d4:71:29:bc:80:c0:d1:19:42:42:02:29:14:00:db:
         cb:71:6d:95:96:2e:8b:89:cb:25:6d:b4:9e:7b:ac:59:f2:e6:
         41:67:87:09:28:ce:b8:3e:3f:89:2c:84:49:3c:6d:d2:9d:6f:
         0d:0b:ee:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 17:22:59 2024 by rpki-client on console-ams.rpki-client.org