Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
File:                     skTScYj-UmvXJjZzgZXR639gYzU.mft (raw, json)
Hash identifier:          3O3uS20YHQK/8ERKwByjdabIaJ/kNscLDs7A4Z9KSSc=
Subject key identifier:   0F:EE:6A:A8:29:B4:37:F4:12:8B:FB:04:A6:D7:6A:D6:6A:0A:B3:1C
Authority key identifier: B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35
Certificate issuer:       /CN=b244d27188fe526bd72636738195d1eb7f606335
Certificate serial:       01903EC1DCDBE0CB2B25AFB3E8BED6457FA0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
Manifest number:          11D6
Signing time:             Sat 22 Jun 2024 07:03:30 +0000
Manifest this update:     Sat 22 Jun 2024 07:03:30 +0000
Manifest next update:     Sun 23 Jun 2024 07:03:30 +0000
Files and hashes:         1: sMfyarJxsPXbx1K7f3ed-c6ZkHc.roa (hash: QZvxFDM9IBp1mlJCkqCssOQkKDFvliXkVTRvP9Qe3cs=)
                          2: skTScYj-UmvXJjZzgZXR639gYzU.crl (hash: 7K4Dqepurz8NB3VzR7p0m+797ogn+w5x56sQlDhXE5o=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 03:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:3e:c1:dc:db:e0:cb:2b:25:af:b3:e8:be:d6:45:7f:a0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b244d27188fe526bd72636738195d1eb7f606335
        Validity
            Not Before: Jun 22 07:03:30 2024 GMT
            Not After : Jun 23 07:03:30 2024 GMT
        Subject: CN=0fee6aa829b437f4128bfb04a6d76ad66a0ab31c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:b5:4e:41:d7:4a:de:f0:63:fc:bd:3c:e3:85:
                    b2:88:58:64:1e:3a:21:a8:20:44:99:ae:21:c2:17:
                    b3:59:66:0c:84:c4:ef:59:83:51:1d:a8:50:4d:46:
                    e2:09:21:ff:53:4c:bd:98:98:b1:60:39:81:5f:2f:
                    1c:e0:8c:57:1a:d9:d8:01:ac:f5:c9:0f:78:32:c0:
                    2a:49:15:89:c4:6c:fd:bf:bf:9d:0f:4f:20:b7:40:
                    25:36:16:52:ef:73:d9:8f:94:fa:1a:1c:15:0a:bb:
                    84:47:91:8e:2d:9e:95:92:51:cb:c1:a0:90:25:9f:
                    9b:5b:a6:b9:2d:e8:50:71:e9:20:5a:42:11:e8:40:
                    bc:ba:89:fa:d1:a2:6e:ab:27:ca:81:ca:fc:54:c4:
                    a0:1e:5c:67:60:28:65:9c:50:4c:25:ed:dc:9a:02:
                    6e:5a:d7:81:2f:82:77:ae:20:1e:42:8a:16:b0:af:
                    e6:37:42:5d:a5:d3:6e:95:e4:5b:ee:cf:ee:d2:61:
                    6d:e7:58:d8:32:4d:d3:63:b0:4e:55:35:33:fe:8e:
                    65:26:f2:4e:8e:90:93:b0:0f:83:9d:4e:0d:d6:3a:
                    d0:29:97:0a:73:f5:8e:69:68:16:e7:7d:ee:8a:ca:
                    dd:bc:ff:24:59:8b:df:ab:00:22:55:d5:10:70:c4:
                    ac:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0F:EE:6A:A8:29:B4:37:F4:12:8B:FB:04:A6:D7:6A:D6:6A:0A:B3:1C
            X509v3 Authority Key Identifier:
                keyid:B2:44:D2:71:88:FE:52:6B:D7:26:36:73:81:95:D1:EB:7F:60:63:35

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/skTScYj-UmvXJjZzgZXR639gYzU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/2a727b-a745-4339-925a-4d00d6032afe/1/skTScYj-UmvXJjZzgZXR639gYzU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ae:24:19:8c:c4:41:67:dc:53:e5:1c:95:e8:ae:e5:f9:f9:97:
         f0:87:c7:e3:7c:74:61:5f:4f:30:cc:d0:1d:47:c6:e0:04:1b:
         ac:8f:c4:cf:7e:da:6f:ed:19:64:3a:8f:dd:b4:48:e7:1b:17:
         d0:40:aa:1f:53:37:8f:55:f0:16:24:2d:a5:e6:12:07:43:22:
         73:64:10:39:66:20:9c:b5:c3:c9:e1:b6:64:0a:65:23:54:5c:
         e5:17:3c:57:d3:86:d4:bd:66:1b:ad:16:43:df:8f:1f:eb:96:
         b0:f4:f4:8a:b8:2b:f7:c7:f3:9a:42:39:fa:2a:cb:58:66:35:
         ce:34:45:44:30:ea:6b:8a:be:20:60:9d:54:db:73:5d:9b:53:
         68:14:06:d2:eb:69:08:2c:c5:be:2a:f9:f5:55:95:1f:c8:1b:
         5a:ae:d5:68:b2:d3:8f:1c:8c:95:e1:54:8d:28:56:81:3d:b0:
         6f:13:25:85:a2:fd:32:63:a3:1c:8a:ac:f7:d6:7a:2c:75:7b:
         ec:45:46:92:15:28:b3:69:a2:5c:38:6c:a8:d1:94:af:2e:40:
         f8:cb:bc:9e:84:27:f5:92:d2:ca:82:c0:a7:46:87:00:ea:48:
         ed:56:47:a4:2d:22:17:51:31:de:e3:85:90:2b:ba:0a:77:a2:
         b1:67:23:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 08:13:59 2024 by rpki-client on console-fra.rpki-client.org