Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
File:                     noBwLuah3L864lehmUFfWbgzjqQ.mft (raw, json)
Hash identifier:          BY2wYgc9cN0szeCsi6oXkaVmH/slgV8Eq/3P4J0GHvk=
Subject key identifier:   61:F8:9E:53:3F:8E:45:D3:D1:42:66:01:99:46:01:20:B8:CA:9E:D5
Authority key identifier: 9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
Certificate issuer:       /CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Certificate serial:       0190448D644A767637022FB9060DEB59E253
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
Manifest number:          11DA
Signing time:             Sun 23 Jun 2024 10:03:55 +0000
Manifest this update:     Sun 23 Jun 2024 10:03:55 +0000
Manifest next update:     Mon 24 Jun 2024 10:03:55 +0000
Files and hashes:         1: XLUWggG6y5ST84omTAbqN-ueLNE.roa (hash: sFhOJjcwt+0vPQ3YugcOZ7IO+agFqgV/vHf8FXUQuH0=)
                          2: noBwLuah3L864lehmUFfWbgzjqQ.crl (hash: iycOAW9dU8x0OnzgNiH9mCYba+7xlwYwdLhNOdpnnCw=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 10:03:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:44:8d:64:4a:76:76:37:02:2f:b9:06:0d:eb:59:e2:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
        Validity
            Not Before: Jun 23 10:03:55 2024 GMT
            Not After : Jun 24 10:03:55 2024 GMT
        Subject: CN=61f89e533f8e45d3d142660199460120b8ca9ed5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:e7:a6:38:59:21:ab:11:79:92:5a:5b:6e:99:
                    a8:1e:7a:3e:66:77:fd:b5:ae:79:1a:bf:e8:6f:d1:
                    52:06:9c:10:19:0c:d6:19:1e:21:17:d9:a0:2f:16:
                    ff:3d:1f:23:49:8f:ee:62:a4:59:b1:00:b7:0e:5e:
                    21:dd:82:83:04:bd:70:d6:28:40:9b:03:ee:63:26:
                    d5:e7:18:20:2b:34:0d:81:33:48:0a:f9:07:60:92:
                    ed:11:12:12:51:d3:55:f8:04:bf:f9:b2:bb:05:b3:
                    82:9e:76:19:96:7c:57:30:1b:46:4a:00:89:5f:76:
                    fe:57:e9:4b:0c:46:cf:26:80:92:e8:9b:ab:19:84:
                    a7:cf:32:2b:01:fa:e7:6d:f3:d1:43:ff:23:cf:aa:
                    31:92:2f:a5:c3:b1:79:2c:1c:b3:38:c5:d5:54:a7:
                    08:8c:c6:78:0d:9a:c1:ed:de:53:ef:cd:db:2c:61:
                    f6:66:7b:d4:9b:62:10:bb:be:61:aa:95:9e:12:69:
                    d4:0a:be:a5:57:8a:2c:ed:0b:79:d0:e6:39:b5:60:
                    76:78:5f:f3:6d:12:b0:30:fc:ff:77:47:f2:04:d3:
                    61:45:c7:aa:a8:f3:bb:4b:77:4b:a9:e1:02:83:fe:
                    65:c9:0f:9c:39:24:4c:6e:de:cf:cd:2f:8b:83:92:
                    77:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:F8:9E:53:3F:8E:45:D3:D1:42:66:01:99:46:01:20:B8:CA:9E:D5
            X509v3 Authority Key Identifier:
                keyid:9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         20:54:50:7a:3c:64:3e:2f:a9:4d:dc:bb:9d:01:e3:c5:e6:dc:
         5e:4f:04:3b:f0:44:73:6f:f3:58:c8:61:7a:6a:15:56:20:3c:
         16:70:2e:ef:a5:8c:c7:0c:53:ed:3b:1b:b1:ae:e0:85:97:9c:
         21:ba:f3:8b:bb:c3:6d:04:bb:c0:20:1a:56:d7:f2:59:1a:d1:
         d5:a6:7a:83:0a:4e:69:bd:42:d6:b7:32:e0:ef:a5:05:93:5e:
         9a:ef:91:70:5e:df:fc:f4:90:69:b8:9e:85:e6:a1:20:17:ec:
         c5:34:55:2b:83:e9:3e:08:c4:40:be:a1:8f:3c:27:31:8b:8e:
         5c:49:8d:f7:5d:12:7b:fa:28:15:ce:51:f1:09:cc:ed:da:89:
         b4:b1:51:42:60:2b:e5:22:2b:cf:e7:8c:0a:16:8c:ba:2e:e6:
         d7:93:30:19:42:72:e6:67:3b:7a:35:19:42:68:5c:d0:3b:37:
         28:ff:f8:37:0a:b5:07:11:1c:62:a8:bb:8f:31:b6:01:61:cf:
         46:da:74:53:cf:05:27:68:8d:b9:fa:e7:56:8c:bd:18:e3:17:
         95:10:ed:aa:e1:53:75:cd:f4:ac:06:78:b2:d1:3d:0f:ca:0f:
         8a:da:e4:14:d4:53:82:34:53:8f:22:c2:d1:00:f2:b0:7b:e6:
         8c:54:e3:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 17:39:14 2024 by rpki-client on console-ams.rpki-client.org