Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.mft
File:                     KBoLv1LY0tSFlDQ6VUCfwQu3txo.mft (raw, json)
Hash identifier:          giFqIUqPvtB+fD9quwZ7fdZ12ClVnS6cV+PfkP8s4JI=
Subject key identifier:   66:19:34:45:5F:75:A6:B8:3D:0F:46:D8:67:38:40:D8:C0:54:F7:94
Authority key identifier: 28:1A:0B:BF:52:D8:D2:D4:85:94:34:3A:55:40:9F:C1:0B:B7:B7:1A
Certificate issuer:       /CN=281a0bbf52d8d2d48594343a55409fc10bb7b71a
Certificate serial:       01901DEB092CAF01E1402064D54F1AE43B08
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KBoLv1LY0tSFlDQ6VUCfwQu3txo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.mft
Manifest number:          11C7
Signing time:             Sat 15 Jun 2024 22:01:00 +0000
Manifest this update:     Sat 15 Jun 2024 22:01:00 +0000
Manifest next update:     Sun 16 Jun 2024 22:01:00 +0000
Files and hashes:         1: HBlrISMkGjYErc-7bkPnAGvi9H0.roa (hash: WNcDvJWj9gxz/xIMjRChhjhgAuYZ+tJ5HQlgCFZAPUo=)
                          2: KBoLv1LY0tSFlDQ6VUCfwQu3txo.crl (hash: LNzuL0LZ8i4WtxfNCZkA11bfXZOQWobe3Fh3JXmw+j0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KBoLv1LY0tSFlDQ6VUCfwQu3txo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:01:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:eb:09:2c:af:01:e1:40:20:64:d5:4f:1a:e4:3b:08
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=281a0bbf52d8d2d48594343a55409fc10bb7b71a
        Validity
            Not Before: Jun 15 22:01:00 2024 GMT
            Not After : Jun 16 22:01:00 2024 GMT
        Subject: CN=661934455f75a6b83d0f46d8673840d8c054f794
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:d0:8e:2d:35:3e:81:93:22:c6:54:33:e2:6f:
                    99:6d:a6:a8:53:49:5b:ed:73:39:3c:53:25:a4:8d:
                    97:f2:6f:2e:92:c0:64:f1:1c:09:0f:31:80:62:93:
                    55:6e:6f:5a:95:97:b9:6d:a0:8a:60:3a:c2:c7:0a:
                    a8:62:86:64:81:ee:da:04:24:e9:90:01:f7:76:ce:
                    e0:dc:02:91:45:b5:2f:7a:82:91:e4:f9:7d:cd:db:
                    08:b7:b8:97:b0:30:cb:ff:5d:a7:10:11:0d:73:44:
                    6a:87:99:0c:e3:33:e7:a6:64:ec:39:13:ab:6c:6e:
                    e6:99:7e:04:6f:90:a1:23:eb:02:ac:7d:86:d9:49:
                    04:99:3f:ed:da:30:5d:f3:17:98:61:dd:47:1f:3f:
                    15:59:c8:46:f9:0e:12:47:90:9f:c8:d8:ae:8c:2f:
                    1c:e2:ee:f9:48:8a:91:83:5d:1e:d1:0c:1d:8d:9c:
                    d1:8c:17:8a:a0:eb:07:af:45:8e:aa:ba:46:6f:ff:
                    a9:fb:6c:cf:3c:73:a0:84:3b:38:ef:c2:0e:ea:c7:
                    20:fd:75:5a:39:e0:da:80:e6:c4:82:d3:d4:14:0e:
                    d6:cb:2a:21:62:26:e4:f9:b9:cf:29:26:f0:1a:59:
                    39:14:74:53:4c:e3:bf:a4:0d:bd:c5:97:65:67:5b:
                    5b:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                66:19:34:45:5F:75:A6:B8:3D:0F:46:D8:67:38:40:D8:C0:54:F7:94
            X509v3 Authority Key Identifier:
                keyid:28:1A:0B:BF:52:D8:D2:D4:85:94:34:3A:55:40:9F:C1:0B:B7:B7:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBoLv1LY0tSFlDQ6VUCfwQu3txo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/09/3f5154-63d8-4a4b-9a48-1c9c4a1bbd43/1/KBoLv1LY0tSFlDQ6VUCfwQu3txo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1d:97:2a:78:dd:6f:f3:59:37:28:e8:58:ce:2f:f6:4e:07:b0:
         73:b0:28:db:30:2b:33:18:04:44:b7:00:35:cc:76:bc:80:14:
         fa:25:08:b1:10:25:64:64:eb:b9:64:d8:6f:b4:99:92:83:05:
         56:4b:1c:df:57:80:d5:03:f8:e1:41:84:9c:1b:82:ee:40:01:
         f4:a8:43:b3:f6:0b:53:86:01:8a:12:3c:c6:93:ce:49:6e:00:
         32:2e:76:92:6c:0e:7d:37:d0:c4:02:13:90:35:e1:15:34:b2:
         43:e2:7e:bb:01:4a:6f:e4:82:c7:c4:5e:28:78:84:23:e4:ce:
         6c:b9:a8:25:b4:d2:2e:23:92:80:5a:46:ba:5d:7d:71:8b:ef:
         1c:c1:cd:85:76:64:40:f3:30:20:c4:94:a3:66:e0:13:07:60:
         3b:9a:f9:6c:b6:bd:b1:2b:b8:74:77:3c:12:2f:f3:72:05:7e:
         4f:ca:8c:7f:72:aa:64:26:76:26:16:af:e6:3a:7d:fb:e8:8a:
         b4:cd:f5:9c:ea:50:dc:fe:79:29:2f:bf:cd:77:fa:f3:96:0c:
         5b:1a:73:4d:d0:bc:6c:fa:85:df:a7:b2:bf:65:83:3e:ed:16:
         8f:c2:b4:3c:5b:41:e0:19:33:65:02:de:7c:2a:ba:b7:a8:e8:
         02:19:ab:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 02:47:28 2024 by rpki-client on console-fra.rpki-client.org