Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/484d54-f468-479f-9758-e1ff8638634b/1/qmffuIKufY5V0lhlF0L05s5DcBk.mft
File:                     qmffuIKufY5V0lhlF0L05s5DcBk.mft (raw, json)
Hash identifier:          jVdUYSS4lXue6SnSxJQmzsbjsi2UvaN25nq0OOyiTHQ=
Subject key identifier:   27:72:7D:29:AF:B0:A1:09:3E:09:9A:87:7C:B5:3D:31:E9:F2:C6:7F
Authority key identifier: AA:67:DF:B8:82:AE:7D:8E:55:D2:58:65:17:42:F4:E6:CE:43:70:19
Certificate issuer:       /CN=aa67dfb882ae7d8e55d258651742f4e6ce437019
Certificate serial:       01901BFE6F7935C1E0B86AF9C216B1E26EE9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qmffuIKufY5V0lhlF0L05s5DcBk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/04/484d54-f468-479f-9758-e1ff8638634b/1/qmffuIKufY5V0lhlF0L05s5DcBk.mft
Manifest number:          11C3
Signing time:             Sat 15 Jun 2024 13:02:57 +0000
Manifest this update:     Sat 15 Jun 2024 13:02:57 +0000
Manifest next update:     Sun 16 Jun 2024 13:02:57 +0000
Files and hashes:         1: R-nm7JlFGOLqZ7Qzb3lHnRCD0zM.roa (hash: SyZvvuADZCxbYSiEt/tYm8cL3fZLYslLzSPDGZyS53M=)
                          2: qmffuIKufY5V0lhlF0L05s5DcBk.crl (hash: EPbttC+k8Pfuz7K5urkHQVxcIQE+pwKeukb+mTHlIhA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/04/484d54-f468-479f-9758-e1ff8638634b/1/qmffuIKufY5V0lhlF0L05s5DcBk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/04/484d54-f468-479f-9758-e1ff8638634b/1/qmffuIKufY5V0lhlF0L05s5DcBk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/qmffuIKufY5V0lhlF0L05s5DcBk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 13:02:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1b:fe:6f:79:35:c1:e0:b8:6a:f9:c2:16:b1:e2:6e:e9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aa67dfb882ae7d8e55d258651742f4e6ce437019
        Validity
            Not Before: Jun 15 13:02:57 2024 GMT
            Not After : Jun 16 13:02:57 2024 GMT
        Subject: CN=27727d29afb0a1093e099a877cb53d31e9f2c67f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:40:91:53:70:84:ca:8e:30:aa:70:71:bd:99:
                    1c:75:5e:f3:16:f2:c6:a2:b6:62:da:d7:67:7e:80:
                    11:aa:be:37:9c:7b:98:c8:3c:fb:e0:be:aa:19:5d:
                    f8:cb:d0:d4:53:ca:8b:7b:76:fb:02:6d:a4:3a:b4:
                    86:df:96:3a:ce:b3:ed:24:b6:e1:08:30:ad:b3:15:
                    0a:b7:eb:a3:45:cd:c5:66:ad:24:47:4d:80:4d:6e:
                    a8:ba:4a:b9:3d:d1:4a:b7:8b:de:77:b1:7a:7a:8e:
                    23:82:e5:b0:da:a9:d1:8b:c1:aa:dc:de:2c:c4:4e:
                    ab:b2:09:6d:a6:57:63:0e:4d:4d:20:e0:43:a6:9b:
                    6f:c1:4e:04:4a:94:10:b2:31:bc:66:6f:51:36:e6:
                    ac:79:82:e8:a9:08:41:93:c3:41:ad:52:f4:f8:9b:
                    61:d0:b9:de:d9:24:12:33:44:cf:77:bd:55:ba:ac:
                    a0:ea:47:30:a5:da:4e:2c:10:5b:03:97:69:4a:34:
                    c0:27:13:e1:34:95:55:f8:53:00:1d:52:e9:a1:7a:
                    a7:e6:e3:be:e8:bf:86:4c:f0:3b:ee:48:ae:3c:71:
                    df:1e:bd:f3:de:7a:41:f0:a7:fd:22:c2:53:e1:67:
                    0f:3c:8c:4d:61:92:a9:a0:86:76:ca:5b:6b:87:fa:
                    47:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:72:7D:29:AF:B0:A1:09:3E:09:9A:87:7C:B5:3D:31:E9:F2:C6:7F
            X509v3 Authority Key Identifier:
                keyid:AA:67:DF:B8:82:AE:7D:8E:55:D2:58:65:17:42:F4:E6:CE:43:70:19

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmffuIKufY5V0lhlF0L05s5DcBk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/484d54-f468-479f-9758-e1ff8638634b/1/qmffuIKufY5V0lhlF0L05s5DcBk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/04/484d54-f468-479f-9758-e1ff8638634b/1/qmffuIKufY5V0lhlF0L05s5DcBk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:77:af:80:11:4a:67:17:27:70:22:33:ed:51:09:fd:3a:1b:
         06:25:24:15:63:44:d9:78:d3:41:d5:51:d0:6c:0c:90:7f:73:
         73:65:a0:aa:d6:5c:0e:b6:76:15:37:a3:54:a0:a3:b9:5b:37:
         76:b8:96:2d:b1:80:c9:32:7b:da:bf:d5:c7:3b:42:eb:8c:6d:
         c9:52:b9:c4:a6:eb:04:ab:cd:c1:58:13:cd:a9:13:ca:ec:26:
         03:aa:4b:f1:25:57:a6:dd:41:a4:d9:21:98:93:be:4c:56:e7:
         37:77:78:f0:bf:85:43:8b:db:3c:c7:1d:f8:38:24:46:69:82:
         79:9f:d5:2e:26:c8:1e:62:e9:97:f0:9c:70:d1:e0:4f:b5:ea:
         e8:3a:35:cf:46:1d:74:95:7f:63:a5:71:06:c4:c8:09:a1:ad:
         3b:5c:88:ff:fb:dc:15:6e:eb:ca:4d:e6:a4:d7:0e:be:86:1c:
         a0:65:f5:59:89:7d:29:fd:36:90:0e:1f:15:96:01:52:44:67:
         2c:f5:28:00:5f:86:6a:ae:66:6a:80:46:43:4d:5f:3f:69:b1:
         f7:7f:d2:55:0a:bd:b9:3a:d4:bd:35:2b:ab:7d:b7:9e:b6:00:
         ef:5b:e5:3d:16:22:06:b9:fb:a6:55:95:e7:57:ae:ea:83:7f:
         29:ee:dd:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 20:49:06 2024 by rpki-client on console-ams.rpki-client.org