Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft
File:                     orEujfOr1VWfnPloCvZd0WWJ3oY.mft (raw, json)
Hash identifier:          sPnSHshmDtyJUtot/vN4+9jJr5uopLldgLHopkTp/y8=
Subject key identifier:   C6:76:2D:5E:ED:54:5F:A2:B0:FE:C8:E2:0A:A4:B5:D9:21:01:5B:D5
Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86
Certificate issuer:       /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
Certificate serial:       01901D4684A32994EF61D102AA19CCBB4565
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft
Manifest number:          11C6
Signing time:             Sat 15 Jun 2024 19:01:19 +0000
Manifest this update:     Sat 15 Jun 2024 19:01:19 +0000
Manifest next update:     Sun 16 Jun 2024 19:01:19 +0000
Files and hashes:         1: 2EB3S2UwJnkON7osqsPM0jaYtUY.roa (hash: J3C/eVoIt0b1nOUwNH27BivAd8Wkd1BejZEaqiCgDAY=)
                          2: XEtJeFdkjism6SpbVYheQ4pGw5o.roa (hash: EOAYeNZwF2WAc+Q/WFDNqpw5eovC3WR8S+hg0Cewls0=)
                          3: d2AQ3l_bs9Fyhv8WHOV-5bJ326w.roa (hash: WDeyxX+YSqMX4bpsv4YRs9nGPVShr/aU8HX41yvN8B8=)
                          4: kDO5E3nKCcXWjuz24aZxcaDYXtQ.roa (hash: yTWoZlP0pGuDrnHnxbcn7osYDNv7VUKKZXxBPRAbYbw=)
                          5: l3Dqhvzk2A1PNdMUBeKT-E5ofk8.roa (hash: 4zzSGY3DsTBW08un8lJfY23hsq3akXsHvqmqpacVGpo=)
                          6: orEujfOr1VWfnPloCvZd0WWJ3oY.crl (hash: zNMi4LDUfRQlQ6UzEI98jFbIBjXo6YtrbWxTjOHyag8=)
                          7: oylhCGOREsIo8jHEk5gk_LxHAhI.roa (hash: qkFmAooASJ9WLJEN+aOvuiiI6R3sk1+rQ1mYQ/xPAKM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:46:84:a3:29:94:ef:61:d1:02:aa:19:cc:bb:45:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86
        Validity
            Not Before: Jun 15 19:01:19 2024 GMT
            Not After : Jun 16 19:01:19 2024 GMT
        Subject: CN=c6762d5eed545fa2b0fec8e20aa4b5d921015bd5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:27:6a:6f:b9:66:13:72:48:5b:c6:90:a7:4e:
                    6c:ad:51:bd:2f:ce:d3:a5:3f:55:3a:0b:81:39:f9:
                    ba:0a:25:bf:59:f8:0e:fa:a6:83:68:db:b6:aa:d6:
                    59:d3:64:8a:bb:08:80:62:07:24:e6:27:25:15:8b:
                    36:d0:19:09:79:41:58:7f:8a:80:c3:71:8d:e8:9e:
                    19:a9:59:28:c3:69:bc:f5:64:15:d5:48:06:a7:7e:
                    6f:74:28:e6:58:7e:a4:3f:07:93:5c:75:6c:0c:5a:
                    2c:b6:7b:04:0b:31:18:02:e3:d8:6c:f0:9c:56:35:
                    97:d6:3a:00:f3:c2:57:b5:9e:c9:70:4b:d0:56:1a:
                    c7:5a:f3:61:9d:af:cf:05:04:f1:61:84:b2:b6:82:
                    23:f7:0f:49:e4:c6:5e:42:a0:68:03:00:43:fa:18:
                    d0:11:6c:2b:ec:a9:3d:3a:b5:d5:4c:24:78:2e:40:
                    0a:5a:aa:08:98:6b:01:76:d5:ae:10:92:9f:2b:54:
                    05:b1:88:2f:6f:35:52:45:06:35:e4:8c:bd:51:7a:
                    12:85:46:df:6c:68:45:00:4f:46:3e:a1:34:35:f8:
                    64:0b:c2:d8:e3:92:b2:c8:71:65:16:63:a3:12:7c:
                    a1:a2:cc:cf:55:73:9d:70:14:5d:61:62:13:f8:21:
                    cc:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C6:76:2D:5E:ED:54:5F:A2:B0:FE:C8:E2:0A:A4:B5:D9:21:01:5B:D5
            X509v3 Authority Key Identifier:
                keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:1d:e1:bc:ef:f5:a0:6c:f7:6e:aa:95:13:c5:1c:dc:e2:fc:
         1e:80:ac:5f:22:ed:5b:47:53:97:ef:fc:b7:c7:7d:21:58:b0:
         e2:9b:7a:c6:47:f6:2f:95:16:41:41:8d:6c:ba:98:98:fa:ee:
         3f:fd:34:4b:d1:43:b1:cc:77:c2:30:1d:f0:3f:aa:ea:87:df:
         ce:87:76:b6:c3:48:ab:b6:0a:de:a8:8a:70:7e:c0:b7:73:dc:
         77:3b:44:b1:cc:b6:80:d1:14:63:c0:3a:8b:9c:46:69:bc:fa:
         b0:80:4e:71:cf:e3:61:6a:4f:32:3f:b3:e1:b2:fa:d8:9a:db:
         14:59:1d:7a:bd:61:fd:68:12:ca:47:a8:e8:b5:42:04:5d:0b:
         c8:d5:e4:98:ce:4a:10:fb:78:71:e4:7c:a2:04:d9:64:b0:7e:
         06:3c:1b:8b:93:48:6b:a3:97:39:6f:0f:74:1f:89:65:06:14:
         e0:3c:ad:c4:75:6e:b4:c0:de:e2:60:3c:b0:7b:d1:a7:d1:30:
         8c:32:2f:f6:0f:1d:7f:54:93:9e:03:3e:0d:be:45:f3:b5:d8:
         2c:96:44:bd:a2:c3:ac:de:b5:61:cd:31:7a:45:54:90:7f:ed:
         b8:5e:c2:79:f5:b5:5b:fa:74:a4:ba:75:44:23:d8:8d:68:1b:
         e9:4e:c2:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 21:03:52 2024 by rpki-client on console-ams.rpki-client.org