Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File:                     sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier:          +NTzIY0jdv3+brQJaiitoEDgdVav6SP1eM2qzacPyXI=
Subject key identifier:   06:26:8A:4C:C3:97:B6:72:E5:A5:8B:87:21:8A:32:7F:39:7E:85:04
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer:       /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial:       01901DEB7C1AB5EB86EA9EB8EDDD4936A1F2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number:          11C5
Signing time:             Sat 15 Jun 2024 22:01:30 +0000
Manifest this update:     Sat 15 Jun 2024 22:01:30 +0000
Manifest next update:     Sun 16 Jun 2024 22:01:30 +0000
Files and hashes:         1: Q8-FkkdURaTz5trQDgHu45K9Xro.roa (hash: Dvd26bujUcBv5l5ndhMzmqo67pehmunAkcK7WGhDruY=)
                          2: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: 5xOIhybeTbW5bK5qE1WtKrrswDtUpvd0IgU8RDuX+B0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:01:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:eb:7c:1a:b5:eb:86:ea:9e:b8:ed:dd:49:36:a1:f2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
        Validity
            Not Before: Jun 15 22:01:30 2024 GMT
            Not After : Jun 16 22:01:30 2024 GMT
        Subject: CN=06268a4cc397b672e5a58b87218a327f397e8504
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:cc:2c:de:e2:18:78:8c:ca:fd:63:13:76:c0:
                    71:50:19:1f:6a:eb:2d:ae:cf:fd:62:0a:8b:c0:32:
                    84:62:ef:6f:15:01:6e:2c:bc:f3:81:c8:54:31:c5:
                    2c:f8:53:c5:27:93:3b:e2:61:44:48:8a:12:03:81:
                    23:80:cd:d3:7d:99:7f:e8:11:e5:99:ed:e1:45:10:
                    55:e5:52:ee:7d:62:30:3d:c6:c6:6e:f5:31:23:3d:
                    68:2a:6e:91:24:e7:fc:c6:f4:bc:ad:aa:1c:27:3d:
                    80:77:5b:3c:27:5b:6c:66:64:9f:b8:59:c9:ae:1b:
                    08:a9:c6:10:f5:10:b6:5f:47:f6:d5:2e:fd:09:49:
                    ea:0a:d4:c4:a7:5c:22:7e:fd:59:8f:7e:25:cf:ef:
                    b4:3f:7a:1b:a2:4d:84:cf:98:3c:73:b9:08:82:5c:
                    b4:be:ee:5d:e8:bb:7c:f5:59:c7:d6:be:f3:80:22:
                    26:75:9f:37:88:63:85:fb:e9:74:73:c1:f6:94:2e:
                    fe:ab:e7:03:0c:6f:e4:59:1e:77:2f:58:1b:25:62:
                    93:ea:4d:e0:03:ec:2a:51:83:50:e8:9a:5e:b4:31:
                    c3:7d:43:06:c8:da:7e:79:5b:97:bf:b1:d7:df:41:
                    1f:74:ec:3c:08:62:45:e1:d2:45:b9:c5:ef:12:c1:
                    fe:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:26:8A:4C:C3:97:B6:72:E5:A5:8B:87:21:8A:32:7F:39:7E:85:04
            X509v3 Authority Key Identifier:
                keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9e:24:39:1b:a1:a3:bc:76:9b:04:f5:ad:52:be:a0:53:6c:06:
         d5:ed:08:b9:ca:9a:1d:5d:e8:22:17:41:0a:1c:52:79:a5:48:
         68:e7:e3:2f:cc:6e:59:ab:cd:3f:fe:d9:72:47:0a:48:dc:ba:
         0f:3f:3b:b2:95:fb:69:bd:0c:03:35:05:42:0b:33:74:91:03:
         58:ec:af:b4:e5:14:44:8b:54:2a:92:7e:20:7c:d6:c8:e1:22:
         b6:1a:25:21:c1:b0:98:cd:14:c6:a0:0b:42:0a:ad:7d:85:26:
         c7:4c:38:9b:21:c9:56:68:b8:ae:bd:e1:47:d9:0f:3e:26:ee:
         f4:77:e8:6d:44:91:70:38:87:ac:2d:f5:12:00:97:46:f6:b3:
         f2:69:08:bb:75:a8:a2:a3:c9:f1:cc:09:cb:3b:f7:25:a4:af:
         6e:96:c5:df:64:85:72:38:7f:db:a8:ac:1c:69:b4:55:41:4b:
         9f:c6:14:29:40:2b:8f:a1:1d:ed:48:74:ad:ef:6d:2c:82:eb:
         34:45:ca:42:ad:90:68:ab:8d:2b:13:f8:1d:e2:6b:61:b3:c4:
         37:0a:a6:49:b5:e5:41:18:74:80:c4:dd:24:a7:bf:0e:5d:b7:
         15:bf:57:12:c8:43:2b:46:f3:36:56:d2:f3:1c:0e:94:7f:46:
         14:28:18:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:40:37 2024 by rpki-client on console-ams.rpki-client.org