Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
File:                     aPYGg7N3JXQn279uzjXixYWjsB0.mft (raw, json)
Hash identifier:          IOBRWNuFOMhfclo/JgGLrNPeTcdvAPVgXR4Fm4PyTAY=
Subject key identifier:   14:0F:E2:24:1F:16:89:E0:FA:69:0B:A5:6D:DD:DC:3F:27:16:35:04
Authority key identifier: 68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D
Certificate issuer:       /CN=68f60683b377257427dbbf6ece35e2c585a3b01d
Certificate serial:       01901F34EE240A70A5A760E07308D9C325BF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
Manifest number:          11C6
Signing time:             Sun 16 Jun 2024 04:01:20 +0000
Manifest this update:     Sun 16 Jun 2024 04:01:20 +0000
Manifest next update:     Mon 17 Jun 2024 04:01:20 +0000
Files and hashes:         1: aPYGg7N3JXQn279uzjXixYWjsB0.crl (hash: v9kafHSmrgYMkM31GNZfSd1d0B7Szup+zooink0tU2M=)
                          2: nv5zmiI_HQYcesEtxbHLMJOVHRY.roa (hash: U8D5OVPBL0BY/JCRsxufmTTkUB6ai46Td6srvyNaVVI=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1f:34:ee:24:0a:70:a5:a7:60:e0:73:08:d9:c3:25:bf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=68f60683b377257427dbbf6ece35e2c585a3b01d
        Validity
            Not Before: Jun 16 04:01:20 2024 GMT
            Not After : Jun 17 04:01:20 2024 GMT
        Subject: CN=140fe2241f1689e0fa690ba56ddddc3f27163504
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:57:07:7c:6f:13:e0:07:84:12:d3:46:93:d9:
                    3c:21:88:b4:97:16:bd:b0:1e:97:cb:fe:33:37:be:
                    00:39:81:81:63:4c:06:5b:a9:59:1f:11:bd:03:bc:
                    ef:ff:51:32:39:49:55:be:d8:23:dd:25:ed:ab:62:
                    ad:40:26:02:3c:a4:45:46:06:ed:4f:5a:7f:87:58:
                    8c:d2:96:21:e8:fe:c1:03:44:ad:27:7c:0c:39:16:
                    e4:d9:46:fb:ed:71:7c:5e:32:d2:f4:25:78:b1:1a:
                    39:8f:86:d4:7d:2b:4a:3f:83:dd:c1:23:a0:b3:ca:
                    04:93:27:31:c8:bc:0c:b0:fb:d7:f1:4e:ec:77:af:
                    5a:88:88:4a:af:c3:e5:29:31:83:73:a9:24:ac:b3:
                    21:42:47:76:73:78:23:67:99:6a:65:90:db:03:e9:
                    06:04:06:c0:bb:4d:66:a8:a9:58:7f:88:10:d0:4d:
                    fd:0c:a8:df:57:13:62:2f:17:09:bf:2c:45:ac:fa:
                    96:09:33:60:a4:90:9d:19:d9:bd:29:51:10:b2:de:
                    6b:c1:ac:35:bf:81:d6:7d:36:8d:59:8c:54:25:8f:
                    a2:a8:bc:85:65:64:a2:d1:f9:13:00:43:67:52:7c:
                    9e:d0:70:58:7c:65:9b:f6:53:e7:8d:5c:e9:bf:aa:
                    c5:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:0F:E2:24:1F:16:89:E0:FA:69:0B:A5:6D:DD:DC:3F:27:16:35:04
            X509v3 Authority Key Identifier:
                keyid:68:F6:06:83:B3:77:25:74:27:DB:BF:6E:CE:35:E2:C5:85:A3:B0:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aPYGg7N3JXQn279uzjXixYWjsB0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/2eb969-863a-462d-9f9d-35474036a9d7/1/aPYGg7N3JXQn279uzjXixYWjsB0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:28:57:e2:6e:fa:21:94:da:31:c6:46:df:a1:14:24:93:8c:
         ad:69:9d:b8:d3:54:d1:cc:15:d0:fa:f9:2c:dd:97:10:ff:29:
         4f:e3:2a:91:46:b3:be:78:7c:23:97:00:9a:b0:7e:82:5a:f0:
         9a:d1:c9:a0:2e:a8:9b:1e:03:74:bc:90:78:d9:dd:d8:10:13:
         09:fe:5a:17:db:84:59:91:8f:e0:41:3a:c6:e7:6a:d5:ec:93:
         14:48:e3:4e:69:95:e7:6e:e8:dc:bb:bb:57:fe:99:3b:c2:b3:
         24:35:e3:df:1e:01:b3:36:5f:af:93:39:4d:29:0e:1e:33:ea:
         18:8d:bf:65:9c:4b:69:dc:4c:2e:ce:ad:03:89:d8:b4:3d:b6:
         09:57:a2:a6:e5:5e:c4:f7:b4:a3:00:f4:b9:d1:2d:8b:f1:cc:
         57:c8:f8:36:1f:24:f6:ec:8d:b5:60:3a:c4:e6:8a:f5:d8:81:
         d7:12:b3:ed:8e:c5:b4:d8:87:ed:01:e4:dd:d3:35:8f:a8:f5:
         61:83:f9:d0:f1:ba:2a:29:36:08:2b:bd:fa:a2:c0:ba:95:e4:
         ca:3a:5b:d8:17:35:7b:01:fb:b1:0d:ae:30:98:80:f4:61:d4:
         5b:43:34:70:5b:61:c3:8e:3c:f5:04:0b:40:c8:91:d5:c8:7c:
         50:6d:d9:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 06:30:21 2024 by rpki-client on console-ams.rpki-client.org