Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
File:                     noBwLuah3L864lehmUFfWbgzjqQ.mft (raw, json)
Hash identifier:          3Y0z0O+KJRhSCpx/x45GiY+EUflsX+spT6tpnr/1ti0=
Subject key identifier:   B2:24:30:08:B4:2F:5C:4E:C3:04:48:9C:01:9A:6E:4A:83:2A:2C:3D
Authority key identifier: 9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4
Certificate issuer:       /CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
Certificate serial:       01901DEAC942EAC6D35F1929C0132E5F57F1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
Manifest number:          11C6
Signing time:             Sat 15 Jun 2024 22:00:44 +0000
Manifest this update:     Sat 15 Jun 2024 22:00:44 +0000
Manifest next update:     Sun 16 Jun 2024 22:00:44 +0000
Files and hashes:         1: XLUWggG6y5ST84omTAbqN-ueLNE.roa (hash: sFhOJjcwt+0vPQ3YugcOZ7IO+agFqgV/vHf8FXUQuH0=)
                          2: noBwLuah3L864lehmUFfWbgzjqQ.crl (hash: hidGmFgzcCdFtVdVOtaC+X0R8wTcaBaEQnOSxKool1g=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ea:c9:42:ea:c6:d3:5f:19:29:c0:13:2e:5f:57:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9e80702ee6a1dcbf3ae257a199415f59b8338ea4
        Validity
            Not Before: Jun 15 22:00:44 2024 GMT
            Not After : Jun 16 22:00:44 2024 GMT
        Subject: CN=b2243008b42f5c4ec304489c019a6e4a832a2c3d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:c5:88:96:f6:c8:70:1d:b8:ca:a2:66:5b:76:
                    2b:50:8c:3f:2d:16:41:98:32:e0:d3:51:54:fa:da:
                    69:b2:da:29:c4:60:08:2b:a7:f8:3e:5c:c4:35:0a:
                    45:c2:dd:ab:ad:03:cc:0f:3b:f6:ed:05:ca:45:a8:
                    0b:c8:60:4c:3d:89:3f:68:5f:67:4d:49:55:06:51:
                    ec:73:5e:79:24:13:b4:22:28:25:05:aa:1f:1f:60:
                    25:7c:2e:48:ce:60:5b:72:e8:b7:ab:c1:bd:b0:33:
                    ab:6f:e3:12:bb:e8:aa:b5:8b:44:ec:8c:35:9d:92:
                    9d:b9:36:e7:9b:18:be:95:e1:4e:8b:61:0a:d7:e1:
                    7d:f9:20:68:0b:c5:0d:fd:22:26:96:d1:c8:60:ce:
                    28:b6:ac:6d:61:3f:ba:fc:60:7c:f9:51:b7:88:88:
                    c3:67:39:f9:2d:9f:43:e7:d6:ea:97:a2:f6:b7:4e:
                    2e:f4:14:cb:5c:0f:ba:07:de:25:e9:ef:6a:66:b6:
                    02:ee:ac:64:04:6a:67:28:c3:74:f4:22:d2:4a:3b:
                    ea:30:8f:7c:d7:1a:6e:6f:f2:e4:64:73:0e:60:0c:
                    1d:9e:55:09:22:12:05:2f:8d:a7:84:f1:b2:80:4e:
                    12:25:b9:0d:87:97:38:4a:c5:66:e3:67:23:4c:93:
                    16:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:24:30:08:B4:2F:5C:4E:C3:04:48:9C:01:9A:6E:4A:83:2A:2C:3D
            X509v3 Authority Key Identifier:
                keyid:9E:80:70:2E:E6:A1:DC:BF:3A:E2:57:A1:99:41:5F:59:B8:33:8E:A4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/noBwLuah3L864lehmUFfWbgzjqQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/1bde39-b6d5-46ec-a813-26ef96643d84/1/noBwLuah3L864lehmUFfWbgzjqQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:f3:b3:b6:74:bf:d7:83:bf:73:0b:bf:82:a3:04:4d:24:af:
         5a:bc:5b:93:b3:79:cb:fb:1f:ca:dd:ac:a7:ac:0c:09:9c:04:
         ee:9d:35:71:fc:d6:60:48:03:39:40:7c:83:b8:99:39:36:6b:
         b0:13:0e:19:2a:3e:26:9c:7d:9b:0b:79:0a:0b:77:ad:3b:23:
         2c:fd:89:8f:19:6f:69:79:03:03:ea:ac:b9:ce:10:00:fb:d9:
         0e:2c:e3:bf:60:29:90:17:4c:4e:66:04:3f:f2:8a:17:bf:68:
         1c:7d:a9:86:6c:40:a2:b5:9c:27:fd:5b:a0:53:43:06:6f:54:
         07:d6:5b:4e:8e:66:b1:66:18:ef:e1:e9:0d:fc:51:90:2b:0f:
         0c:79:46:b9:23:55:92:b7:82:89:16:11:17:97:98:20:5a:43:
         4e:df:ad:e6:8c:8e:41:65:d0:2d:11:fa:b2:c5:a8:50:34:53:
         4c:b6:2a:d9:93:05:f2:f5:c2:09:04:59:4d:a0:4b:ac:de:7f:
         e6:2b:39:09:c2:8c:00:47:e2:72:ca:c5:b4:bc:b8:96:a6:22:
         e9:e7:22:e3:04:27:73:94:47:e7:b7:02:b6:92:c9:5e:69:ce:
         ec:4c:41:c2:5e:fb:c1:f3:2a:b3:0f:09:cc:2e:9c:2c:9a:6d:
         ad:fb:c9:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:50:23 2024 by rpki-client on console-ams.rpki-client.org