Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
File:                     gEH-6hI_ywfocqjLS92at7jaL88.mft (raw, json)
Hash identifier:          IIwKH2I6T8cGHM9tuZa0LCOTtfvnW25XhuRWLy+JE7g=
Subject key identifier:   05:4D:C4:4B:2D:5F:86:5F:9B:7C:72:73:3A:89:D2:05:1C:DC:C5:32
Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
Certificate issuer:       /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Certificate serial:       01901BFC77C0198FFF5B97BA368F08436AA7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
Manifest number:          05DB
Signing time:             Sat 15 Jun 2024 13:00:48 +0000
Manifest this update:     Sat 15 Jun 2024 13:00:48 +0000
Manifest next update:     Sun 16 Jun 2024 13:00:48 +0000
Files and hashes:         1: gEH-6hI_ywfocqjLS92at7jaL88.crl (hash: SUznPZ2OAmwx6bkTDD7uoPlNzdBKiD/byEZP1b2T7uU=)
                          2: uTCBnf3b-yLqqvnCUxCOVWTzq_I.roa (hash: IBgfRhw8lwowyO1fejNqf6FaL0VtSvn1AWjauBJkT6k=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 11:16:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1b:fc:77:c0:19:8f:ff:5b:97:ba:36:8f:08:43:6a:a7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
        Validity
            Not Before: Jun 15 13:00:48 2024 GMT
            Not After : Jun 16 13:00:48 2024 GMT
        Subject: CN=054dc44b2d5f865f9b7c72733a89d2051cdcc532
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:9d:dd:ac:86:0b:bb:f8:0f:eb:d9:2b:26:06:
                    43:10:7a:ce:7f:f6:3d:ed:30:ad:12:c3:c9:9c:a9:
                    a4:5f:ca:fa:2a:2f:d7:34:36:5d:ec:ed:f1:bd:8e:
                    12:a6:5c:76:c7:1f:99:a8:45:f9:73:65:c6:84:c9:
                    ba:82:ab:59:d7:ba:a9:06:00:ed:05:aa:8a:1d:fa:
                    53:52:6e:40:0f:f1:ec:eb:8a:84:16:be:32:a2:64:
                    7a:89:12:9f:b7:d5:82:34:1c:0a:8f:6f:ca:8a:03:
                    41:02:ea:cc:fa:55:46:9f:fd:2d:da:be:44:8e:37:
                    57:3a:fe:39:de:1a:2c:87:ba:c7:76:f4:c1:11:c4:
                    a5:30:d4:45:aa:2f:83:32:7c:c1:96:64:21:89:37:
                    59:63:31:9d:4a:e8:9f:3a:66:d0:98:09:53:48:d2:
                    25:24:ac:d7:49:bb:9e:59:8e:65:56:b9:30:1c:b5:
                    1c:42:36:af:8c:94:c1:75:fa:fc:6f:3d:27:f9:f9:
                    7f:32:ec:c8:a3:a1:93:0b:66:5f:a5:fb:7e:02:6d:
                    7a:28:53:d4:f9:aa:93:83:c7:2f:de:b5:85:12:10:
                    a3:9b:c4:a3:51:01:73:0e:49:e2:ec:79:cd:0a:47:
                    78:5a:b4:9a:0b:b7:fa:48:31:b6:5b:ff:8c:c8:3f:
                    1a:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:4D:C4:4B:2D:5F:86:5F:9B:7C:72:73:3A:89:D2:05:1C:DC:C5:32
            X509v3 Authority Key Identifier:
                keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:f5:13:f8:ef:1a:05:b4:3a:fd:50:88:d7:c2:75:84:8b:5b:
         b5:03:c1:48:68:3f:b8:45:4c:9d:65:9a:a3:d5:96:af:2b:59:
         03:7a:22:9a:14:6e:f9:1d:b7:59:24:a6:2c:20:35:46:15:02:
         9a:10:be:de:f7:a7:a4:70:c1:13:bc:98:f7:8d:3a:8e:b0:97:
         5e:e5:e1:41:77:f0:36:e9:c7:64:00:75:a2:bd:93:09:4b:f3:
         9d:90:26:e9:d3:e0:bd:fc:8d:81:55:ff:13:40:12:44:25:18:
         2d:20:3d:fe:63:e2:1e:e8:3f:e9:d9:9e:3e:15:1c:44:82:b4:
         20:02:45:66:96:59:59:d6:db:87:60:be:13:30:c5:4b:b8:55:
         1a:02:30:bd:87:9e:b2:e3:8c:eb:f5:34:b1:07:64:f1:29:a6:
         60:72:91:80:40:1d:96:48:c1:8e:49:e6:e7:03:64:c2:a4:71:
         4d:4c:ee:e0:b2:99:27:d2:f4:35:46:c7:25:03:74:98:ef:4f:
         2f:e9:f8:ae:51:f7:f1:af:83:a1:7d:4c:35:48:85:4d:9a:86:
         a0:1e:c4:05:c0:d2:02:9b:79:9d:f5:24:77:47:93:a8:5c:3c:
         5f:b9:e3:46:c4:66:54:7c:b1:ba:41:08:a0:ba:ab:fc:20:6d:
         ad:44:57:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 17:25:52 2024 by rpki-client on console-ams.rpki-client.org