Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
File:                     kkecrihHZdYoBEEZAJiA0op1YLE.mft (raw, json)
Hash identifier:          CXPsREldH5fcPoQs3kBBOaNWyErOO/lObyCw2PTlokY=
Subject key identifier:   EC:B7:72:7F:4A:E6:D5:A9:44:E1:91:59:72:29:0C:3D:FB:3B:6C:C9
Authority key identifier: 92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
Certificate issuer:       /CN=92479cae284765d628044119009880d28a7560b1
Certificate serial:       01901EFD4BF0E3892931E94ADD91E4286BA3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
Manifest number:          11C5
Signing time:             Sun 16 Jun 2024 03:00:34 +0000
Manifest this update:     Sun 16 Jun 2024 03:00:34 +0000
Manifest next update:     Mon 17 Jun 2024 03:00:34 +0000
Files and hashes:         1: 2Qgx7oq4VD8_uihrhYGo5S_-d-w.roa (hash: v6DV21F0BPvstCYPM3OgqjUWCfxuP54LKWgIsqvBryA=)
                          2: kkecrihHZdYoBEEZAJiA0op1YLE.crl (hash: rUA6qbBeQ/Kw8vaJF2mCx2JWw1my7DNEoy3sY/4tm+4=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:fd:4b:f0:e3:89:29:31:e9:4a:dd:91:e4:28:6b:a3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=92479cae284765d628044119009880d28a7560b1
        Validity
            Not Before: Jun 16 03:00:34 2024 GMT
            Not After : Jun 17 03:00:34 2024 GMT
        Subject: CN=ecb7727f4ae6d5a944e1915972290c3dfb3b6cc9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:e3:a2:4e:a3:d7:ca:b3:aa:5e:08:79:27:c3:
                    2a:2c:0e:5a:63:4c:0c:61:ec:20:d4:03:bb:b3:4d:
                    23:f8:e7:f6:d5:01:c6:68:d5:b5:55:d9:1e:7b:b3:
                    20:be:02:3f:d6:7b:1d:a8:7d:07:ad:82:de:5c:67:
                    71:4c:13:84:63:93:9a:8b:1b:bf:f2:fb:d0:61:81:
                    7d:77:91:0d:95:1d:56:05:34:0f:66:25:77:e0:25:
                    a8:21:d7:e8:5d:5a:ff:04:7e:06:ac:ba:9b:ee:4b:
                    82:f7:c5:b4:0e:fd:48:ae:fa:2c:28:0b:e0:98:0f:
                    37:08:3f:fb:39:20:d6:cf:2c:7e:56:a4:fa:49:26:
                    25:a9:c1:d6:8b:8c:cd:88:a3:93:2c:a7:5f:c4:2f:
                    57:c2:30:2d:c9:c2:56:10:93:07:8d:31:b4:70:6e:
                    86:2d:df:40:fb:d0:26:b3:2a:6e:20:07:f3:64:3d:
                    20:b1:21:3c:9d:a4:75:ad:cf:b6:44:d7:e9:7b:ca:
                    4b:c4:60:1e:9c:d7:a4:00:d9:4c:6b:b8:f6:41:8b:
                    c6:ba:7d:01:2f:71:e8:4f:20:9f:75:42:fa:14:80:
                    c0:68:87:5f:93:a6:96:21:fc:15:e5:4b:80:9c:13:
                    ed:f6:ef:bd:82:20:76:41:ec:3d:c1:46:5d:64:03:
                    df:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:B7:72:7F:4A:E6:D5:A9:44:E1:91:59:72:29:0C:3D:FB:3B:6C:C9
            X509v3 Authority Key Identifier:
                keyid:92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         53:a5:49:78:67:7e:7c:33:f6:03:00:d3:ae:98:59:43:47:6b:
         2b:bd:37:65:5a:74:26:50:10:b9:dd:77:e6:8a:9b:e3:39:d8:
         ac:0c:b8:9d:10:2b:a5:01:0d:58:89:23:a4:4f:da:b6:80:0a:
         c2:d3:75:fb:5f:86:9e:ee:c1:0d:d3:ab:79:cb:aa:e3:17:8b:
         4c:85:93:05:fb:47:f3:9d:42:d7:39:ce:ba:d3:bd:e6:6f:01:
         eb:42:61:ee:be:2e:b1:94:db:c8:26:27:b2:18:97:a3:07:37:
         87:ea:e3:34:e3:c6:27:81:4d:cd:af:5e:84:79:ee:5d:23:fd:
         2b:5b:08:83:75:db:cb:90:9c:75:66:b1:a6:6b:ce:de:fb:ba:
         90:fa:f8:ec:5b:2a:1f:ee:e7:bb:05:b6:c3:01:a5:90:9d:c9:
         35:61:c5:78:f6:b1:08:71:91:cb:9a:a2:59:83:77:a3:18:2a:
         f7:a1:50:92:b9:ab:01:d7:cb:9d:78:36:f4:54:97:c8:20:6c:
         44:26:64:48:34:cc:de:20:42:b9:b4:a9:e9:56:e6:94:b1:68:
         1b:93:f1:e0:70:0f:07:d9:83:ff:17:e1:2b:8d:78:fd:f0:6f:
         a0:3c:19:c7:88:20:91:70:00:94:29:be:31:b8:11:ea:2d:4f:
         ab:d8:36:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 04:45:29 2024 by rpki-client on console-fra.rpki-client.org