Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2fbf83-b28b-4d36-b118-eb1086075167/1/aCfcIhVE_HQhURKlgS3hlqKHLoY.mft
File:                     aCfcIhVE_HQhURKlgS3hlqKHLoY.mft (raw, json)
Hash identifier:          /c1SX2eXHleESjII+e26+i1FshBeGkAhZhdbKDUod2o=
Subject key identifier:   7B:8B:F6:CC:10:A3:A8:7F:18:9A:43:EA:0D:BE:E0:7A:19:75:C0:CA
Authority key identifier: 68:27:DC:22:15:44:FC:74:21:51:12:A5:81:2D:E1:96:A2:87:2E:86
Certificate issuer:       /CN=6827dc221544fc74215112a5812de196a2872e86
Certificate serial:       01901BC56B9FD54784DB1AB51A06C06318CC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aCfcIhVE_HQhURKlgS3hlqKHLoY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/2fbf83-b28b-4d36-b118-eb1086075167/1/aCfcIhVE_HQhURKlgS3hlqKHLoY.mft
Manifest number:          11C4
Signing time:             Sat 15 Jun 2024 12:00:41 +0000
Manifest this update:     Sat 15 Jun 2024 12:00:41 +0000
Manifest next update:     Sun 16 Jun 2024 12:00:41 +0000
Files and hashes:         1: QrmyC4CIx2vv7Z-lUNdnjNCZypc.roa (hash: IKXQv/kemTMUqLb8i87zPHnPLw6tP7Q9dpNF+PZ6HJ0=)
                          2: aCfcIhVE_HQhURKlgS3hlqKHLoY.crl (hash: ch6zp5t53FEmX3jPuPyieccau25S2Dw/c2SWtTJhgNo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/2fbf83-b28b-4d36-b118-eb1086075167/1/aCfcIhVE_HQhURKlgS3hlqKHLoY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/2fbf83-b28b-4d36-b118-eb1086075167/1/aCfcIhVE_HQhURKlgS3hlqKHLoY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aCfcIhVE_HQhURKlgS3hlqKHLoY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 12:00:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1b:c5:6b:9f:d5:47:84:db:1a:b5:1a:06:c0:63:18:cc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6827dc221544fc74215112a5812de196a2872e86
        Validity
            Not Before: Jun 15 12:00:41 2024 GMT
            Not After : Jun 16 12:00:41 2024 GMT
        Subject: CN=7b8bf6cc10a3a87f189a43ea0dbee07a1975c0ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:52:2f:2e:97:3d:8f:14:ac:91:1e:fd:bb:ad:
                    88:d7:d2:3e:73:db:05:00:ac:a4:ff:ea:d4:ea:10:
                    01:b7:d5:bf:db:93:5d:7d:ac:d4:11:9a:6b:62:f5:
                    2c:35:b3:43:f3:e6:9d:96:af:c6:c5:f4:c7:ba:55:
                    25:43:83:ad:a9:fb:ec:cd:6c:a3:40:5f:b4:17:6b:
                    45:dd:58:a1:30:d5:27:4c:38:13:dd:3c:d8:d7:40:
                    e0:62:62:1e:74:b6:da:a7:02:ec:08:6f:2d:bd:9d:
                    75:b8:ec:1b:5f:ba:bc:d6:a2:b8:bc:75:35:df:fa:
                    21:4a:64:78:fc:9b:c3:0e:3a:ae:77:20:61:76:f6:
                    91:64:03:f4:7e:f2:42:af:a4:70:95:3b:d0:26:cd:
                    46:2c:51:0f:96:34:cc:76:25:b0:cf:75:1e:e8:49:
                    2c:43:e8:f1:e6:09:5a:c1:68:54:c9:11:fb:bb:95:
                    46:32:26:76:cf:2f:ed:41:e1:c5:72:67:fd:da:b2:
                    81:00:8e:d0:99:1b:e3:ed:1e:80:ac:42:36:09:1f:
                    e5:ed:bd:cd:4b:96:9a:4b:10:82:2d:19:c1:af:75:
                    e6:21:9e:3d:f4:ca:15:0d:22:b3:8c:40:62:aa:4d:
                    1c:fc:29:7d:30:f9:25:ab:0c:3f:3f:3f:81:7b:41:
                    9b:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:8B:F6:CC:10:A3:A8:7F:18:9A:43:EA:0D:BE:E0:7A:19:75:C0:CA
            X509v3 Authority Key Identifier:
                keyid:68:27:DC:22:15:44:FC:74:21:51:12:A5:81:2D:E1:96:A2:87:2E:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCfcIhVE_HQhURKlgS3hlqKHLoY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fbf83-b28b-4d36-b118-eb1086075167/1/aCfcIhVE_HQhURKlgS3hlqKHLoY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fbf83-b28b-4d36-b118-eb1086075167/1/aCfcIhVE_HQhURKlgS3hlqKHLoY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:b3:9a:77:df:ec:51:6e:1a:6e:d4:b8:3e:a5:4c:92:b3:41:
         cf:a8:48:92:c0:0b:62:61:75:23:02:69:06:b1:67:c7:c8:5e:
         41:8d:7a:ab:1c:b3:9f:c1:00:6f:24:50:83:58:1e:d3:4f:c9:
         4e:0b:a8:2a:eb:59:86:ab:14:dd:92:30:05:3b:f8:1d:c2:09:
         00:7d:c4:20:34:8f:93:86:1d:aa:c8:13:30:ba:81:bd:03:2a:
         3c:73:84:b1:f1:78:a2:ad:2c:90:53:18:50:55:4b:92:54:b5:
         c2:72:50:b3:7d:22:44:f5:81:9f:92:ad:d4:02:8d:1e:8c:6b:
         77:aa:54:54:ff:13:06:d6:37:ba:e4:f6:fb:91:5e:65:69:6c:
         51:15:ae:f7:e9:48:f9:5f:3d:38:6c:79:cc:43:06:3d:78:94:
         93:c4:c3:88:6b:6c:b1:f0:30:30:d7:2d:05:32:0d:3f:96:76:
         e9:e8:9d:36:68:89:0b:3e:4d:c2:7e:81:2b:03:ea:2c:d1:41:
         a4:b9:85:26:b8:2e:50:0a:d2:24:3c:0b:42:4a:96:ce:83:d1:
         77:a6:af:a3:ae:e3:1f:3b:c0:67:14:7f:96:b5:0a:32:d8:17:
         05:4c:4c:f6:bd:9f:90:ec:9a:a7:eb:de:f7:9b:bb:c9:79:04:
         19:87:3b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 19:37:51 2024 by rpki-client on console-fra.rpki-client.org