Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File:                     lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier:          cr6KviygrRhyQup5hnk5YqMOJpOe50Qv8NySU0vs9v4=
Subject key identifier:   A7:CB:47:E2:38:80:A2:8B:62:2B:00:E8:28:89:B3:7F:15:AC:24:E8
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer:       /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial:       019038F604B276853FE2989C2AB2175A05B7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number:          0F3C
Signing time:             Fri 21 Jun 2024 04:02:45 +0000
Manifest this update:     Fri 21 Jun 2024 04:02:45 +0000
Manifest next update:     Sat 22 Jun 2024 04:02:45 +0000
Files and hashes:         1: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: fRdVPUJ2ir3apfRqAskR9awHmldO2+m1OirobeIkhYc=)
                          2: uezppMtx20TJ9hSLNKf7oDMfj7I.roa (hash: pjoCbWNfCMy3URyM7PkgUwc2dHIRgW5Ux6bAVtpfczc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 22 Jun 2024 00:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:38:f6:04:b2:76:85:3f:e2:98:9c:2a:b2:17:5a:05:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
        Validity
            Not Before: Jun 21 04:02:45 2024 GMT
            Not After : Jun 22 04:02:45 2024 GMT
        Subject: CN=a7cb47e23880a28b622b00e82889b37f15ac24e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:56:62:81:62:42:a9:20:3b:06:96:ac:d0:e7:
                    c5:40:b9:52:db:71:95:50:21:16:6f:49:65:07:12:
                    64:ac:6d:86:8f:5f:15:7e:dd:72:ee:32:5a:c0:6a:
                    bd:fc:f8:01:65:60:16:49:81:6c:69:0c:2c:94:1b:
                    db:6c:91:48:c7:16:9a:1b:23:ab:9c:e4:51:38:e8:
                    0a:37:65:26:94:24:5a:11:e1:95:8c:25:43:0a:72:
                    50:c9:52:81:a8:4e:ee:29:ad:74:e3:11:ea:dd:49:
                    79:1e:b7:8f:30:ad:59:c7:0a:27:94:47:3c:84:18:
                    04:05:0b:f5:7a:08:d8:90:71:44:60:bf:c5:fd:1b:
                    b7:43:b8:02:a5:7b:6c:ff:1a:32:83:87:f2:58:ca:
                    89:9b:b9:42:cf:77:8a:21:11:d7:66:24:e0:8e:4a:
                    c5:57:e3:6b:75:63:5c:37:fa:92:af:82:fb:1b:fe:
                    e3:bc:b0:a8:83:45:cd:80:51:3e:c4:e7:d5:22:94:
                    22:94:db:b5:2e:3c:7c:84:45:cf:27:fa:8c:ac:65:
                    26:55:a6:90:58:96:27:5f:76:9b:1a:12:2e:c7:a1:
                    da:b4:b2:40:b0:3a:8e:fb:b1:cd:d5:88:11:5b:ef:
                    e8:6c:e3:9f:25:9a:1b:b2:ac:7a:b3:02:ba:a3:8e:
                    a2:5b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:CB:47:E2:38:80:A2:8B:62:2B:00:E8:28:89:B3:7F:15:AC:24:E8
            X509v3 Authority Key Identifier:
                keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:eb:97:ca:f3:76:19:07:3f:5e:25:c3:b5:cb:d6:ed:21:dd:
         8e:eb:a2:db:11:3c:d1:ba:12:6a:be:73:70:61:3a:11:ad:eb:
         c1:4e:8b:41:13:02:a9:33:12:0e:63:76:80:e2:bc:8b:d5:26:
         40:35:ad:bd:9b:2e:63:4b:72:3b:ba:38:09:a0:13:f9:99:5b:
         06:5c:e9:18:4e:73:c4:a5:e3:92:a5:01:68:81:1a:ce:6a:0f:
         ea:65:b6:7a:99:e7:ab:9d:6b:09:50:ce:4f:e6:8f:b1:2f:b0:
         f8:b4:37:35:b5:79:fa:fb:f9:8e:99:0d:97:fd:88:18:b5:c3:
         eb:1d:54:a0:f2:7d:f2:dc:3a:a5:b9:69:42:b6:87:0e:44:ae:
         99:8a:c0:1b:a9:c9:db:84:46:01:7c:f0:ee:57:8a:ae:eb:3d:
         8d:ea:53:67:61:3c:1e:1c:4d:d5:b0:17:f2:d9:98:0d:b5:60:
         26:01:f7:bd:b6:4b:a9:96:9d:6b:0e:fd:23:0b:fb:f2:7a:1d:
         80:a0:21:32:21:85:9f:8a:65:8e:04:2d:32:9c:aa:ed:9e:9e:
         30:9e:89:8c:94:e2:84:fb:d3:17:78:ba:a6:81:99:13:7b:80:
         51:f4:b6:69:ab:90:19:d7:65:99:32:db:b6:91:d7:03:e2:e4:
         13:7b:54:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 05:25:28 2024 by rpki-client on console-fra.rpki-client.org