Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
File:                     KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft (raw, json)
Hash identifier:          1Td09k3aYYwXRMWuArfCaIeZmQP7H5NfiGkvU8FZvM4=
Subject key identifier:   00:5A:27:52:C0:54:A1:61:40:85:9C:9C:77:C5:A2:0C:C9:98:80:08
Authority key identifier: 28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
Certificate issuer:       /CN=283624007f44dcaf568c370e7f71f950cb1940ef
Certificate serial:       01901EFD892431DFD135C87F26AF589F18F2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
Manifest number:          0341
Signing time:             Sun 16 Jun 2024 03:00:50 +0000
Manifest this update:     Sun 16 Jun 2024 03:00:50 +0000
Manifest next update:     Mon 17 Jun 2024 03:00:50 +0000
Files and hashes:         1: KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl (hash: 9hWwGvE6VHUjohcqDevGGXGWkD+Q8LIYIP0LauTThic=)
                          2: PpquALWoevaAEas_ik0oKPWiWL8.roa (hash: DMtWb4HLB0ogDWPzafLlXP8tz8Xg4wcPh+6EDNLWeAM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:fd:89:24:31:df:d1:35:c8:7f:26:af:58:9f:18:f2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=283624007f44dcaf568c370e7f71f950cb1940ef
        Validity
            Not Before: Jun 16 03:00:50 2024 GMT
            Not After : Jun 17 03:00:50 2024 GMT
        Subject: CN=005a2752c054a16140859c9c77c5a20cc9988008
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:88:5b:4d:42:28:75:33:b3:ab:32:f2:06:a6:
                    fc:71:97:9b:e5:e0:af:0a:ef:2b:b4:7a:1b:87:6d:
                    dc:2d:8e:0f:a4:07:cd:01:bf:f0:60:00:8c:f1:bc:
                    8e:80:5d:52:dd:46:85:05:5c:20:71:85:8c:1a:f8:
                    12:ee:c3:87:ac:80:65:f6:1e:af:13:e1:ed:c6:c5:
                    8f:a6:05:55:65:04:45:ac:7a:ed:d9:a7:ec:64:c7:
                    ec:65:ea:84:cd:53:97:93:b9:85:6e:7a:07:a9:94:
                    20:c6:07:61:b2:1b:da:a0:ee:c0:c4:27:d4:a5:16:
                    a2:b3:6e:db:61:01:b8:34:85:26:6d:dd:bb:c4:cd:
                    1d:1f:78:e9:9a:8a:61:1c:07:ef:5b:47:c1:d1:bc:
                    c0:d3:3a:f2:d7:5e:b8:ad:cf:e3:5e:d8:15:f9:12:
                    96:42:33:c3:8f:7f:b6:d8:ad:74:6c:3f:c6:c1:02:
                    59:1c:c6:b1:c5:e5:fe:04:dd:ef:54:b1:bd:a9:ab:
                    78:a7:83:ac:ed:a3:2c:9b:74:34:fc:64:53:12:c3:
                    4a:d9:07:af:7b:85:d1:e0:84:5f:69:72:b3:07:88:
                    98:13:e1:d6:27:27:ec:bc:11:38:26:17:f0:da:2f:
                    71:f6:07:2b:59:33:5d:03:db:5e:91:10:ee:12:ba:
                    45:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:5A:27:52:C0:54:A1:61:40:85:9C:9C:77:C5:A2:0C:C9:98:80:08
            X509v3 Authority Key Identifier:
                keyid:28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0c:73:56:c4:c0:c1:a7:48:97:a6:82:cd:a7:ba:f3:c7:86:26:
         84:02:5d:0e:c1:7f:56:eb:e7:eb:23:e1:d6:81:1e:79:8a:a5:
         34:77:88:d3:12:8f:7c:98:d4:1f:94:bd:58:f2:09:75:e8:18:
         c6:45:e0:01:4b:c1:de:cd:bd:81:76:e1:a9:0f:1c:2a:1e:d2:
         2d:74:4d:0b:d5:9a:02:c9:02:8b:07:c6:21:4c:f1:1c:4b:da:
         b1:69:71:2e:de:7a:d4:a2:4e:1c:73:a8:c3:80:b7:77:8b:7c:
         91:ec:a9:0c:32:76:14:b5:54:20:0d:25:8f:f6:88:42:9c:a9:
         fb:cc:a7:19:15:f4:e0:36:ad:c6:f6:1d:2e:d7:e3:e3:eb:87:
         a1:2f:ca:61:1c:73:f2:ae:61:9a:45:5b:7d:4c:24:3c:81:8e:
         35:81:10:0f:da:1c:02:85:76:2e:64:32:1a:95:98:ea:2e:80:
         71:6a:f0:c0:af:df:16:7d:10:cb:da:95:53:87:10:17:fa:8f:
         13:74:2b:9b:76:b7:cd:3f:4f:c1:a3:8d:82:89:82:9e:b1:fa:
         f8:b2:69:ab:89:22:79:68:8a:11:3f:35:b7:f2:94:cc:23:20:
         eb:0d:6d:db:17:fb:1e:7d:1f:17:d2:26:31:4c:0e:bd:33:59:
         b9:fe:32:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 04:45:49 2024 by rpki-client on console-fra.rpki-client.org