Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft
File:                     NXwbu7IW2REwR2H6ezE3hHDKtpw.mft (raw, json)
Hash identifier:          5e3INKkO+sWetVG195PPBMuzpueaCVmYHOp1TIY5FUU=
Subject key identifier:   66:5A:17:4C:61:1A:4A:96:9F:43:55:65:4C:77:B4:9D:A1:6E:33:EA
Authority key identifier: 35:7C:1B:BB:B2:16:D9:11:30:47:61:FA:7B:31:37:84:70:CA:B6:9C
Certificate issuer:       /CN=357c1bbbb216d911304761fa7b31378470cab69c
Certificate serial:       01904869BEE74484329355874B57CDFC374E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NXwbu7IW2REwR2H6ezE3hHDKtpw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft
Manifest number:          11DB
Signing time:             Mon 24 Jun 2024 04:03:28 +0000
Manifest this update:     Mon 24 Jun 2024 04:03:28 +0000
Manifest next update:     Tue 25 Jun 2024 04:03:28 +0000
Files and hashes:         1: NXwbu7IW2REwR2H6ezE3hHDKtpw.crl (hash: y1R7no/iVBEHNZxWWZj17GUdY6wFjwsHkuzUS8xeFNM=)
                          2: _ocPOvYevHe-LBrtblIrEjQ0BGg.roa (hash: E18MnggddNZgXl+E0Red/yDDJw5nTwp+JZvjKB0BwrY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NXwbu7IW2REwR2H6ezE3hHDKtpw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 25 Jun 2024 04:03:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:48:69:be:e7:44:84:32:93:55:87:4b:57:cd:fc:37:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=357c1bbbb216d911304761fa7b31378470cab69c
        Validity
            Not Before: Jun 24 04:03:28 2024 GMT
            Not After : Jun 25 04:03:28 2024 GMT
        Subject: CN=665a174c611a4a969f4355654c77b49da16e33ea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:76:2a:74:be:cf:c4:c3:b3:9b:e6:70:3d:23:
                    5d:6c:6d:ea:10:cb:f1:a0:8e:af:0c:c2:1f:f7:01:
                    f4:20:d0:50:73:9c:d9:60:ca:90:57:fc:08:da:3a:
                    26:5f:c0:a4:ca:8c:b8:6e:fb:ba:ca:91:13:1d:33:
                    b2:b1:88:86:72:a9:f4:e2:04:a1:33:be:58:50:e9:
                    9a:62:de:bc:9a:6e:68:98:bc:7a:d9:f2:b5:bf:41:
                    eb:c1:03:96:4f:6d:d4:d6:0d:c5:f8:a5:ab:58:bb:
                    71:c7:55:d5:99:0f:b2:d5:c2:25:70:bd:72:4b:2b:
                    8a:74:a7:ac:6c:ac:93:f3:31:4c:fd:b9:f9:cc:b5:
                    1a:03:00:50:38:6b:3e:0f:ff:d0:10:af:c3:82:c6:
                    24:20:02:e7:5e:29:99:f9:cf:3a:bd:da:1c:4a:20:
                    08:2e:e2:ed:d1:15:df:e5:08:f2:09:0e:0b:3a:07:
                    8b:be:16:e1:a7:a6:2f:4d:9b:b5:35:8b:25:bb:57:
                    21:65:e3:09:9f:20:2a:b2:11:37:af:c4:36:71:6f:
                    bc:41:a2:8d:a5:c8:b8:73:ab:37:09:ae:15:8a:a4:
                    7e:20:fc:d6:85:2d:30:20:90:51:1c:83:d3:2b:82:
                    bd:47:be:be:ff:d0:21:8e:c3:07:ee:4c:a5:05:2c:
                    68:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                66:5A:17:4C:61:1A:4A:96:9F:43:55:65:4C:77:B4:9D:A1:6E:33:EA
            X509v3 Authority Key Identifier:
                keyid:35:7C:1B:BB:B2:16:D9:11:30:47:61:FA:7B:31:37:84:70:CA:B6:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NXwbu7IW2REwR2H6ezE3hHDKtpw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         21:24:89:b2:84:cb:b9:57:fd:e5:f7:d1:0f:70:3a:d3:fd:63:
         06:ca:a1:48:89:a4:f1:2e:e6:03:ee:88:67:9b:70:1e:b0:ff:
         ab:a2:e1:3c:3d:8f:1f:a4:a3:42:64:81:e3:48:ea:8a:c4:76:
         a5:b3:39:e8:49:9e:a0:94:07:62:a4:2b:ce:8d:ef:d4:87:1a:
         f7:2f:33:a3:14:63:db:8d:9d:e2:7a:44:05:d3:06:81:f4:de:
         54:a4:47:d7:44:03:e3:30:5a:34:70:80:4b:d2:63:29:67:c5:
         a4:e3:22:8b:89:81:40:70:cc:13:12:88:26:b1:b7:be:d2:93:
         ea:b9:3f:19:49:72:1b:31:0d:4d:d9:32:5f:f7:cf:78:c6:27:
         37:71:f5:4e:04:4c:3d:81:65:9f:10:34:56:ef:ad:ac:c9:f0:
         3d:2b:53:a6:a9:fb:1e:74:f9:8b:70:45:74:b8:d7:2b:e9:da:
         ea:15:88:48:ed:e2:e0:01:07:bb:30:31:50:f0:71:2b:50:af:
         9c:3d:e5:69:51:57:6b:75:68:0d:50:42:13:03:6d:f2:09:b2:
         86:d5:7f:26:fb:ac:c2:dc:f4:08:f4:7b:1d:be:43:54:95:a5:
         0f:aa:c4:5c:81:0b:d3:c2:1f:5b:56:28:57:96:cf:b6:58:97:
         ca:e7:d1:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 11:44:21 2024 by rpki-client on console-fra.rpki-client.org