Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File:                     sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier:          wf0PPpdgAVRCZSDnCOMUTja7Uywm1s1p0gNEG3XiNOo=
Subject key identifier:   AD:96:2B:4D:B1:D3:72:B0:C4:FB:3C:D1:84:BA:4B:B3:75:DC:FA:10
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer:       /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial:       019048685F717F25E6769D31A2BF05421018
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number:          11DB
Signing time:             Mon 24 Jun 2024 04:01:58 +0000
Manifest this update:     Mon 24 Jun 2024 04:01:58 +0000
Manifest next update:     Tue 25 Jun 2024 04:01:58 +0000
Files and hashes:         1: Q8-FkkdURaTz5trQDgHu45K9Xro.roa (hash: Dvd26bujUcBv5l5ndhMzmqo67pehmunAkcK7WGhDruY=)
                          2: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: Bgovm2VWrXYmsEgbTneQyFj6AHA/noz8nmticI9ybXg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 25 Jun 2024 04:01:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:48:68:5f:71:7f:25:e6:76:9d:31:a2:bf:05:42:10:18
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
        Validity
            Not Before: Jun 24 04:01:58 2024 GMT
            Not After : Jun 25 04:01:58 2024 GMT
        Subject: CN=ad962b4db1d372b0c4fb3cd184ba4bb375dcfa10
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:bc:37:35:57:45:f7:7f:15:f0:30:eb:10:9c:
                    76:2f:e0:6f:13:32:a8:34:ce:03:32:74:6b:de:9f:
                    6c:34:de:66:2d:2e:2c:3c:fc:fa:22:fc:7c:34:e6:
                    64:5b:88:0f:4b:3f:f8:83:4e:c1:d7:a5:2e:ba:d4:
                    af:e1:d1:6d:69:c8:d8:19:2c:b3:36:5a:b1:e0:08:
                    40:12:e9:56:d4:d3:09:df:a4:7d:30:9c:1f:29:d6:
                    bd:a2:9b:7f:4d:84:8f:36:6a:e6:97:a8:37:95:ea:
                    e6:eb:18:eb:f0:43:66:c2:ff:27:80:54:86:6c:24:
                    88:2f:22:09:c2:72:54:d1:be:c7:55:da:e8:11:d0:
                    7c:93:23:44:e0:44:d8:b2:3f:4c:28:e6:7e:6d:44:
                    1b:cf:71:b6:cf:2a:22:22:38:e7:95:93:c0:6d:ab:
                    2e:57:be:03:e5:20:7d:a6:21:be:85:e6:18:3f:7a:
                    e6:6b:f0:75:15:02:f9:0d:96:03:64:29:02:bb:5f:
                    35:78:8c:75:29:99:5f:ee:0e:01:6f:37:c3:fa:b1:
                    a9:a0:8d:27:54:39:f2:66:d9:87:08:42:c7:dd:37:
                    f6:20:02:9b:79:00:e5:57:d0:34:78:98:b7:6f:37:
                    72:85:b4:a8:7e:5a:21:64:0c:88:71:de:7a:35:f3:
                    0d:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AD:96:2B:4D:B1:D3:72:B0:C4:FB:3C:D1:84:BA:4B:B3:75:DC:FA:10
            X509v3 Authority Key Identifier:
                keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:81:68:c0:05:5b:89:32:45:4e:b5:8e:e3:a6:62:69:05:eb:
         f8:ec:bc:96:de:e3:e7:b8:f4:4e:87:87:8f:6a:08:cc:79:4c:
         30:5f:fc:9d:93:42:23:e6:4a:dc:ac:18:62:b0:a8:56:5e:04:
         35:5a:4c:bf:7a:65:b8:7a:29:c2:b9:43:47:61:fd:c7:29:1d:
         3b:f2:b0:d2:50:83:07:15:27:3e:69:89:4f:33:e2:e8:a6:bf:
         c4:fa:13:ae:a8:34:74:ef:1b:7d:d5:fb:dd:0f:41:83:00:26:
         2c:3c:a1:52:16:ba:d4:b3:45:d2:1d:19:07:e5:6a:bf:9d:35:
         41:d3:fd:c4:e9:a8:d0:a4:39:b6:51:d1:f2:d1:52:86:66:9d:
         47:6a:ae:f3:26:cd:4d:20:40:39:79:41:00:1d:e8:09:c6:99:
         78:5b:60:ee:7f:98:91:a9:8e:ac:36:2e:2b:ee:ae:ef:3e:30:
         68:6d:4d:0e:0e:bc:2e:99:e9:c9:36:a2:7d:87:07:01:fb:7e:
         b4:8c:86:0f:82:4f:4d:5f:26:b7:7d:97:38:07:4b:79:10:b3:
         a7:e7:87:73:28:dd:00:55:4b:7d:04:3e:71:2f:04:a1:cc:45:
         da:4e:04:97:bd:d2:6f:85:6e:b0:1e:99:53:f8:12:43:98:60:
         93:80:af:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 11:41:25 2024 by rpki-client on console-fra.rpki-client.org