Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
File:                     gEH-6hI_ywfocqjLS92at7jaL88.mft (raw, json)
Hash identifier:          nLHPuzjW9iBnvwL/ijHM+hsAHAA9yObE5+rK5iwOy6o=
Subject key identifier:   84:D7:B9:15:69:E4:62:63:67:A9:AA:ED:7C:06:FE:46:36:18:62:8C
Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
Certificate issuer:       /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Certificate serial:       019033294F74362F1EECE3F0939A8429EC70
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
Manifest number:          05E7
Signing time:             Thu 20 Jun 2024 01:01:03 +0000
Manifest this update:     Thu 20 Jun 2024 01:01:03 +0000
Manifest next update:     Fri 21 Jun 2024 01:01:03 +0000
Files and hashes:         1: gEH-6hI_ywfocqjLS92at7jaL88.crl (hash: txJ+n/lnAUImccGxhWDR7lNhPOSijEw0ceJ5PHP/gz0=)
                          2: uTCBnf3b-yLqqvnCUxCOVWTzq_I.roa (hash: IBgfRhw8lwowyO1fejNqf6FaL0VtSvn1AWjauBJkT6k=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 21 Jun 2024 01:01:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:33:29:4f:74:36:2f:1e:ec:e3:f0:93:9a:84:29:ec:70
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
        Validity
            Not Before: Jun 20 01:01:03 2024 GMT
            Not After : Jun 21 01:01:03 2024 GMT
        Subject: CN=84d7b91569e4626367a9aaed7c06fe463618628c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:64:16:6d:a6:7b:a7:88:a8:c5:89:20:4f:46:
                    a6:10:79:b7:a7:3c:e2:8c:81:a2:b0:f5:4d:9f:7c:
                    c0:1f:f5:14:a1:61:f2:31:d5:91:64:fe:1b:97:12:
                    2f:52:d3:01:1b:ac:16:43:42:96:68:93:59:4d:e0:
                    9c:94:6a:4b:95:29:32:b6:76:60:ea:bf:02:b9:2a:
                    50:75:9b:e4:54:a4:d7:95:50:ad:b0:87:fa:51:06:
                    3b:ee:48:49:4c:43:78:fe:23:47:68:f1:5a:54:2a:
                    57:82:c7:d5:e1:4d:ac:39:f5:2c:5b:c0:57:23:7e:
                    ab:78:25:d7:00:01:db:5f:0e:34:c6:bb:3d:fb:c8:
                    db:bd:0e:e8:2f:aa:fc:48:16:15:a4:99:0a:dd:e1:
                    db:88:25:cb:9a:f9:ba:97:63:d9:e7:1c:2b:c1:8b:
                    ee:20:9d:3f:9b:45:ce:74:3f:5f:df:16:23:3a:b9:
                    03:70:94:e4:17:15:bf:94:d2:e0:06:f6:83:e4:3b:
                    da:19:d1:c4:cf:91:f2:97:cd:b5:12:66:13:65:ed:
                    6d:6d:7a:de:7c:6a:24:fd:e3:57:b4:ed:74:69:b7:
                    ef:d6:95:83:b5:61:79:bd:36:04:a9:3b:6c:30:e2:
                    56:86:26:4f:ff:1b:a4:9a:01:b4:30:36:53:08:56:
                    c2:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                84:D7:B9:15:69:E4:62:63:67:A9:AA:ED:7C:06:FE:46:36:18:62:8C
            X509v3 Authority Key Identifier:
                keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:a6:56:88:99:0e:dd:ed:ea:92:31:00:ac:a0:cf:f5:aa:64:
         a6:78:3c:c9:73:fc:e2:6d:e0:47:a4:88:41:d5:95:bf:43:41:
         a8:24:d8:1d:e0:61:6a:66:b2:c7:98:3c:99:e1:1a:97:ed:cc:
         5a:af:77:94:17:e0:09:b7:58:92:41:57:f0:1e:ca:90:d7:f9:
         85:9f:bc:a6:ac:15:89:fe:8a:d0:aa:ab:6a:48:03:d3:46:3b:
         7e:58:d5:25:2b:bd:30:fc:ac:d5:b6:56:f5:1f:28:49:ab:55:
         b1:fc:76:14:aa:1c:fb:6f:b9:79:76:5b:c1:bc:cf:f9:3e:61:
         e0:a1:76:5c:fd:64:36:09:56:a8:98:3d:29:07:06:3a:1c:9d:
         92:eb:9c:39:45:b7:73:68:29:24:72:be:5c:26:8d:de:e0:e5:
         5c:14:9d:8f:1f:de:7f:4b:6b:6c:a1:d2:8d:75:15:34:71:dc:
         2c:09:76:7c:cc:3f:08:be:c8:d1:eb:93:4e:4a:47:62:f3:a7:
         61:65:c2:aa:3c:c0:1c:b2:bc:54:e7:64:65:0e:1b:0e:7a:df:
         fc:84:b1:7d:f5:68:03:af:b8:ab:a1:c6:af:97:81:5b:39:73:
         01:e0:f3:15:e8:68:6a:1c:61:37:b0:19:a7:35:c5:d8:fc:a2:
         3b:4b:01:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 10:30:46 2024 by rpki-client on console-ams.rpki-client.org