Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
File:                     N8ZRc24kPV6mzsymOv20oDEtdzA.mft (raw, json)
Hash identifier:          V+21001ZZhMM2iBjQWiZeWa794wqrzjQ9qefG8BgkMw=
Subject key identifier:   7F:09:86:4E:04:69:6A:B2:5F:82:15:75:FD:92:1F:66:ED:9E:7E:C7
Authority key identifier: 37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30
Certificate issuer:       /CN=37c651736e243d5ea6cecca63afdb4a0312d7730
Certificate serial:       019048D563B38EBCC2FA814E199BD9D4A34D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
Manifest number:          11DC
Signing time:             Mon 24 Jun 2024 06:01:02 +0000
Manifest this update:     Mon 24 Jun 2024 06:01:02 +0000
Manifest next update:     Tue 25 Jun 2024 06:01:02 +0000
Files and hashes:         1: E9ssSI1Tn0lrU4RoW8ysqXD2pqE.roa (hash: 0xwkxHL+QCHMv1+8wLygtv/1G5SIpwNNhM2xS9Fewek=)
                          2: N8ZRc24kPV6mzsymOv20oDEtdzA.crl (hash: g5eMJacmwKjDnVjUQcqPwj43IH75SIAp25n6HPT6izs=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 25 Jun 2024 06:01:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:48:d5:63:b3:8e:bc:c2:fa:81:4e:19:9b:d9:d4:a3:4d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=37c651736e243d5ea6cecca63afdb4a0312d7730
        Validity
            Not Before: Jun 24 06:01:02 2024 GMT
            Not After : Jun 25 06:01:02 2024 GMT
        Subject: CN=7f09864e04696ab25f821575fd921f66ed9e7ec7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:ad:37:14:7e:da:8e:88:b6:79:d0:61:d0:2b:
                    71:21:fe:03:71:72:20:e7:de:7f:db:bc:b6:5f:4f:
                    b4:78:a8:01:2f:5c:e0:5c:35:eb:7e:32:8d:2b:28:
                    a8:e8:29:39:8b:1e:e2:94:83:38:09:66:a6:eb:21:
                    3d:4e:95:4d:03:d1:73:7f:44:79:7f:7e:4d:10:40:
                    c4:a2:64:ab:3d:b9:e0:27:81:5f:92:f8:20:90:06:
                    0c:47:8b:3d:d7:d3:88:0a:67:8e:51:5e:06:a3:d6:
                    b9:f5:89:f8:b6:3c:90:4d:b2:cb:8a:64:d0:bf:a5:
                    a9:55:7c:93:8a:1e:d4:b4:a8:85:43:8b:a9:e0:27:
                    7c:ba:3d:e3:3d:88:23:57:c6:59:d7:96:d2:89:30:
                    3a:0f:56:98:ae:52:5a:ca:b0:bf:76:16:c3:30:ba:
                    87:5d:5d:e6:d0:25:75:a3:3d:16:d7:06:1a:ff:c7:
                    ea:1b:26:af:c5:00:14:41:28:cb:90:fb:e5:a4:fb:
                    80:98:d5:87:87:96:8a:e1:47:02:e4:bc:5c:54:de:
                    86:1d:fa:3e:ec:d6:51:88:51:4c:f4:52:d6:cb:cd:
                    d2:94:42:22:bc:8b:8b:63:2d:2f:59:28:d1:b6:f9:
                    7a:3d:fb:66:e1:8e:e9:ab:35:b5:f6:ff:42:06:02:
                    83:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7F:09:86:4E:04:69:6A:B2:5F:82:15:75:FD:92:1F:66:ED:9E:7E:C7
            X509v3 Authority Key Identifier:
                keyid:37:C6:51:73:6E:24:3D:5E:A6:CE:CC:A6:3A:FD:B4:A0:31:2D:77:30

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N8ZRc24kPV6mzsymOv20oDEtdzA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/523c7d-3917-4137-9df3-abea625868a8/1/N8ZRc24kPV6mzsymOv20oDEtdzA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:1b:0a:29:8e:ce:03:3a:28:42:eb:8d:12:48:29:82:8c:04:
         57:e7:0a:a7:30:ae:7c:20:13:64:94:d0:62:a1:d6:77:71:3d:
         dd:3d:ff:62:74:68:85:88:d1:a6:9e:e8:49:a7:5e:63:f3:1e:
         dc:44:ea:9a:6a:55:5f:42:81:42:8a:33:40:db:c7:f0:eb:87:
         84:63:2e:d9:8f:4e:b2:b4:e3:ac:b3:c6:07:5c:23:76:ff:3b:
         f4:bb:3a:46:62:ea:41:03:50:1d:10:89:00:30:9e:f4:98:5f:
         c6:ee:2a:45:9f:be:c8:3a:a1:bb:2c:01:fe:24:3c:7e:08:e9:
         8c:d8:55:e5:63:ac:91:57:b0:8d:98:96:65:79:06:ac:7a:98:
         26:34:ab:75:67:e8:9b:14:c0:00:a5:bc:d5:23:f6:c9:75:9c:
         b4:bf:af:13:1e:78:3d:c4:40:65:40:60:b3:fc:b6:4e:51:e4:
         6d:1e:8f:77:80:11:29:b5:c5:bc:5e:03:5e:59:2f:50:02:af:
         17:ec:26:93:ca:9b:f6:1d:a4:09:e7:66:7b:91:e8:e1:a1:86:
         ff:2b:1b:29:78:13:c4:31:32:90:f6:67:85:b7:7e:ee:a5:73:
         bf:bc:23:0a:49:56:30:61:a7:7d:b6:46:de:d7:95:64:c5:81:
         3f:26:7a:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 11:46:12 2024 by rpki-client on console-fra.rpki-client.org