Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
File:                     lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft (raw, json)
Hash identifier:          CyNX9hRF6ZBvFDlUAUM5MRzjgxtbN6l6LQ/Gan673y0=
Subject key identifier:   5A:5E:82:C5:F7:6C:DF:2D:7E:02:E5:E7:D2:77:C8:8C:14:D4:AA:A5
Authority key identifier: 96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC
Certificate issuer:       /CN=96199360259fa5b35b82953c5ed97999228341ac
Certificate serial:       01901BFEA846566A8F5B3D797A8333751BFF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
Manifest number:          0F2D
Signing time:             Sat 15 Jun 2024 13:03:12 +0000
Manifest this update:     Sat 15 Jun 2024 13:03:12 +0000
Manifest next update:     Sun 16 Jun 2024 13:03:12 +0000
Files and hashes:         1: lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl (hash: txP8bcTH9Ar7dhMgZTYOPHscIa9FpNNc3b9rEbLXDV8=)
                          2: uezppMtx20TJ9hSLNKf7oDMfj7I.roa (hash: pjoCbWNfCMy3URyM7PkgUwc2dHIRgW5Ux6bAVtpfczc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 05:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1b:fe:a8:46:56:6a:8f:5b:3d:79:7a:83:33:75:1b:ff
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=96199360259fa5b35b82953c5ed97999228341ac
        Validity
            Not Before: Jun 15 13:03:12 2024 GMT
            Not After : Jun 16 13:03:12 2024 GMT
        Subject: CN=5a5e82c5f76cdf2d7e02e5e7d277c88c14d4aaa5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:01:74:1e:bd:dc:89:c5:a2:2b:7a:ad:77:b9:
                    f9:19:2b:f6:2d:bf:c0:68:60:ad:1b:54:b6:7c:6c:
                    78:43:6f:8e:25:68:57:0e:de:6a:10:fa:af:ce:dc:
                    06:a5:86:67:ed:e1:ba:20:81:0e:48:00:08:e4:74:
                    a9:1d:f4:23:c5:1a:ff:77:5b:3c:90:e3:f2:67:e2:
                    fb:84:7d:14:d8:8d:8a:bf:14:22:66:08:79:a3:6a:
                    ad:52:b9:bb:a4:20:d9:20:5b:ab:f0:07:0e:e2:0c:
                    c9:9d:3f:29:dd:50:3e:8f:ae:c4:a1:ad:6b:5e:b8:
                    4b:06:45:cb:cd:e6:ac:e7:43:05:20:dc:2d:9c:b6:
                    d1:c2:45:f0:bd:f7:b1:9b:8d:5b:e7:3f:77:64:29:
                    9e:04:b5:66:a7:49:74:0d:9a:89:9f:ac:94:6c:60:
                    64:c1:2c:52:4a:0d:1d:79:20:da:7b:71:15:db:1b:
                    53:fd:9d:9e:bb:65:8a:83:35:7c:ad:68:75:e0:e0:
                    ae:50:c1:00:e6:af:2c:02:29:ae:eb:d6:15:71:3c:
                    a0:fb:da:06:f9:61:5c:03:66:2b:01:a7:01:3e:bf:
                    ac:68:19:b2:53:c3:b7:a4:2b:62:13:78:72:af:2b:
                    f9:f8:be:68:b0:e3:78:0a:4c:6f:89:81:6c:95:37:
                    ba:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5A:5E:82:C5:F7:6C:DF:2D:7E:02:E5:E7:D2:77:C8:8C:14:D4:AA:A5
            X509v3 Authority Key Identifier:
                keyid:96:19:93:60:25:9F:A5:B3:5B:82:95:3C:5E:D9:79:99:22:83:41:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bf70d3-70fa-4a32-809f-2a591c149d7a/1/lhmTYCWfpbNbgpU8Xtl5mSKDQaw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b7:c1:62:74:b0:23:5d:4c:dd:09:cd:dd:2c:e2:89:6a:62:f5:
         74:38:b1:65:dd:4b:c1:f6:65:8b:18:eb:27:c4:61:f4:15:88:
         26:fe:fc:b7:56:43:1d:25:40:74:87:c8:de:84:c6:c6:ef:17:
         db:f6:44:a0:b6:12:55:6c:7d:18:64:d7:6c:55:9f:75:04:ba:
         a4:75:3f:63:0f:31:23:41:3e:bf:65:b5:17:99:3e:a8:b6:ca:
         6a:ad:ca:6b:d3:08:4b:e3:8e:9c:63:50:6e:7d:d0:9a:9c:55:
         81:0c:9c:48:76:fa:6f:05:49:e6:5a:83:d3:c7:23:3a:8f:76:
         ce:f4:52:0e:20:5d:62:ae:f7:77:2d:60:b0:bb:74:4b:4f:80:
         3b:64:22:88:e3:8c:d1:93:ca:ce:39:c9:75:56:33:18:76:6b:
         02:12:1b:9f:36:73:7f:78:17:4f:e7:e2:26:fe:4c:56:2d:55:
         cb:52:b6:e9:42:3d:1c:ac:8c:1c:77:28:82:47:d2:79:77:1a:
         22:49:2c:10:47:6c:fc:cf:56:60:b7:1e:18:78:46:9a:ad:a2:
         41:e7:7c:87:34:83:16:5d:77:95:f7:0f:a6:c4:17:dd:1a:f7:
         f9:e3:1c:b2:44:53:2b:91:b4:94:1a:64:1a:dd:7e:bd:4a:3f:
         fc:7e:fd:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 14:27:27 2024 by rpki-client on console-fra.rpki-client.org