Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
File:                     uqI_dArVZMVpO3cJHHGzwDE2pYA.mft (raw, json)
Hash identifier:          Z7587sfB6bDIkabG6hZLSEnC6NA37KrnTvTC9+S2M1U=
Subject key identifier:   5C:53:74:5E:1D:71:EE:C6:A3:0E:79:BE:C1:4B:C8:66:E4:02:EF:3D
Authority key identifier: BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80
Certificate issuer:       /CN=baa23f740ad564c5693b77091c71b3c03136a580
Certificate serial:       01901EFDBE7524A7DA5E7C6356EF9C86FF81
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
Manifest number:          063E
Signing time:             Sun 16 Jun 2024 03:01:04 +0000
Manifest this update:     Sun 16 Jun 2024 03:01:04 +0000
Manifest next update:     Mon 17 Jun 2024 03:01:04 +0000
Files and hashes:         1: qLPR5OK0CBdJ9SXYZf73vnlyGgs.roa (hash: a97fHkOJsKN720YMSWWsjWA65Jb/MkVCy/H4OsG0+JQ=)
                          2: uqI_dArVZMVpO3cJHHGzwDE2pYA.crl (hash: sUIRVJ4aG/dGing2Or/lIDxzq6OOfLmesfT+377L2tw=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:fd:be:75:24:a7:da:5e:7c:63:56:ef:9c:86:ff:81
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=baa23f740ad564c5693b77091c71b3c03136a580
        Validity
            Not Before: Jun 16 03:01:04 2024 GMT
            Not After : Jun 17 03:01:04 2024 GMT
        Subject: CN=5c53745e1d71eec6a30e79bec14bc866e402ef3d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:e5:5f:e0:82:a0:89:1a:57:45:26:7c:96:49:
                    8a:9e:15:86:60:b0:b8:70:59:e5:39:29:fa:8c:5b:
                    a7:d1:2f:a4:0b:c6:c7:fc:25:d1:a1:8d:3d:68:86:
                    22:0e:46:39:78:6e:8a:07:89:17:b8:a6:d5:78:64:
                    7f:a0:0c:a1:51:1b:c8:2e:b8:ef:11:bf:14:20:ec:
                    04:b3:cc:0b:ca:73:7d:07:42:4e:34:fb:17:89:6f:
                    0b:7d:96:34:54:f8:de:12:91:bd:38:a0:de:1a:57:
                    5d:e2:5b:9b:e6:4e:10:98:69:1c:30:47:fc:e3:4e:
                    56:2c:fc:ef:6d:39:b7:a5:f6:91:a2:5e:83:86:cd:
                    03:5b:ed:ea:d2:3a:ba:34:73:04:15:20:d9:4f:54:
                    26:ad:e5:f7:73:74:0b:66:df:dc:a1:47:a9:be:9f:
                    42:d6:f0:a4:7d:fb:f4:dc:18:8d:f8:6b:d6:da:d0:
                    bc:b8:c2:23:5c:5c:1e:e0:59:06:a0:8b:ef:ca:c1:
                    5d:f8:ec:0c:9f:c8:8d:e9:21:df:cd:08:7a:a2:dd:
                    56:8b:0f:32:38:70:11:1a:b3:a2:25:8a:9e:87:57:
                    f4:2c:aa:22:4a:67:80:eb:9b:74:dd:08:9f:c4:e3:
                    21:39:0d:7c:53:1a:94:39:28:57:61:14:ea:56:6f:
                    54:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:53:74:5E:1D:71:EE:C6:A3:0E:79:BE:C1:4B:C8:66:E4:02:EF:3D
            X509v3 Authority Key Identifier:
                keyid:BA:A2:3F:74:0A:D5:64:C5:69:3B:77:09:1C:71:B3:C0:31:36:A5:80

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqI_dArVZMVpO3cJHHGzwDE2pYA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/8c09b3-f6d8-4c9a-964c-8527c9b3e75f/1/uqI_dArVZMVpO3cJHHGzwDE2pYA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:0f:ea:94:61:61:7d:80:7b:c6:bd:a1:1d:90:b7:2a:b7:a9:
         01:05:8c:9f:49:57:86:14:b6:4a:92:a7:e6:f5:5f:2a:3a:bb:
         14:4a:95:7d:4a:d2:33:d3:d8:9f:b9:8d:72:21:0d:04:81:a0:
         13:0f:85:f5:8c:f8:75:28:89:2d:45:a6:13:a2:15:d1:98:c8:
         16:9e:4c:5b:78:d7:c4:aa:7a:00:a7:2e:17:30:ee:6d:27:2e:
         7d:d9:74:dd:40:28:f8:fe:de:f0:f0:e1:c1:d9:b4:1b:3b:98:
         07:d1:4e:19:e2:83:43:ad:d8:a4:81:4c:ec:32:2f:5d:b8:ac:
         e9:ed:e7:24:dc:1a:16:2d:dd:d0:16:61:81:bf:dc:eb:5d:62:
         da:a7:99:f2:6a:d5:82:79:5a:cb:75:e0:7b:ba:6f:68:cf:7c:
         47:0d:47:a8:59:12:68:3d:4f:ba:0b:ca:2e:b6:f3:6d:d6:74:
         d7:78:f5:1d:d0:10:d8:77:ee:61:d4:3c:14:1e:70:c8:b9:1f:
         7e:be:42:6e:66:16:7e:aa:76:20:77:ee:c6:8f:84:86:26:2c:
         b8:db:fa:ab:cb:5a:69:27:7f:c4:e7:fb:aa:b1:dc:93:a3:a7:
         f5:56:1a:e4:99:65:00:06:54:48:0b:95:35:60:4a:f2:aa:57:
         5d:1b:9a:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 04:46:15 2024 by rpki-client on console-fra.rpki-client.org