Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
File:                     kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json)
Hash identifier:          79ET/r9+y5UsTz8i3ZNqFLnW4VLYDsQdvFyus1qPS/s=
Subject key identifier:   41:1C:F4:D4:FE:7E:88:7A:A9:CF:16:81:F0:32:88:A5:C1:27:CB:F2
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Certificate issuer:       /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial:       01901DEC8BA71E97B7D40B2056B5AAE5F451
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
Manifest number:          05B9
Signing time:             Sat 15 Jun 2024 22:02:39 +0000
Manifest this update:     Sat 15 Jun 2024 22:02:39 +0000
Manifest next update:     Sun 16 Jun 2024 22:02:39 +0000
Files and hashes:         1: 4cCd564-DUkGJP3zFXXXfgW9BMk.roa (hash: +324/l2HUarg+liNurHVv+SwTQ0mrDyrplKStHA10tg=)
                          2: CzsFJS601jLpyBJ_62VSzo7I43A.roa (hash: QrmSjUBBwbBc/0OHfpX8SNYUhgZ9NBwJb6+sHhk7lAU=)
                          3: LgNZeRIOd3zN70IRMMp6WzdfhMk.roa (hash: uC0OIlvYaVTQUhtupuqdqYdhMRjDJ6ESjOI/R3LcURg=)
                          4: VGhUqu3l3G0eqwjlWPljA6Z83Xs.roa (hash: I5VQ8TMSfLs3BOwYan1JS4NcGuBoiZLqtqOk2RokXjo=)
                          5: ZhqPDcOCapfROWQiuyGvFSjWEXg.roa (hash: fi2CuUQSUV3xEVgwLqLDdwHdZIDDzlmwMtqZAJe3hA4=)
                          6: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: C/P0cicrwiKa15MZemsVgCC6xLvhFZT359jr6QCILtQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ec:8b:a7:1e:97:b7:d4:0b:20:56:b5:aa:e5:f4:51
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
        Validity
            Not Before: Jun 15 22:02:39 2024 GMT
            Not After : Jun 16 22:02:39 2024 GMT
        Subject: CN=411cf4d4fe7e887aa9cf1681f03288a5c127cbf2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:97:f7:57:cb:fc:85:7e:f4:98:36:2d:06:92:
                    c5:ae:aa:6c:1e:00:ea:d5:d6:25:d7:71:5c:c6:cd:
                    f7:51:90:dc:22:3c:e9:03:5b:db:b6:c6:e1:85:d5:
                    5b:8d:f4:a1:05:44:f7:75:c5:a3:14:ae:3d:5f:bf:
                    0b:ba:36:18:16:c3:f7:c4:82:89:ef:86:aa:e1:bd:
                    0c:f6:9d:67:94:20:9e:d1:51:f7:4e:24:0b:5e:c1:
                    a3:b0:83:cb:b5:2b:2b:29:ed:7b:24:65:2e:87:ee:
                    21:e7:6e:92:cc:d7:d5:96:d1:b6:ac:de:0a:1b:3e:
                    5a:40:77:d1:63:2a:c4:89:ad:78:f4:6e:20:ac:fe:
                    5e:fd:ff:21:eb:47:95:d3:f9:54:ea:c9:83:6e:a9:
                    60:8a:c5:cf:3b:53:21:6e:48:01:ce:36:91:5e:94:
                    57:f6:36:fc:b9:45:61:f7:3f:70:cb:7f:f8:e6:ba:
                    3c:74:c4:7b:36:46:e9:a4:7b:ae:31:f5:67:85:59:
                    3d:6f:70:55:af:fb:74:c7:7d:19:11:f3:96:c7:d9:
                    79:2b:64:d1:b0:b2:f5:28:7d:c7:96:0f:17:10:a7:
                    1d:de:7a:fc:ad:72:f4:8c:94:78:aa:1d:de:4d:6a:
                    94:8f:7c:c5:2a:f1:68:da:f5:7c:06:ca:c4:3b:b9:
                    4e:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:1C:F4:D4:FE:7E:88:7A:A9:CF:16:81:F0:32:88:A5:C1:27:CB:F2
            X509v3 Authority Key Identifier:
                keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:c7:0d:d0:6b:03:aa:40:d5:79:47:a2:99:91:08:0b:c4:bd:
         b0:41:15:65:ee:f5:63:c1:95:5e:33:ca:1a:a7:89:8a:aa:c4:
         ab:af:9d:6b:9d:2a:96:43:c4:f2:83:00:4c:51:c2:a6:f0:dc:
         07:ad:02:50:f6:1d:12:56:8b:80:1d:3a:3a:05:b4:51:f4:3e:
         b6:d1:8d:11:6a:cb:b7:00:35:8d:79:52:a8:b9:bc:c6:42:1b:
         a0:26:76:59:ea:9d:8f:51:fd:62:b9:7d:ba:f7:0b:97:77:f8:
         8e:d2:78:9d:28:4a:e2:d8:e1:ea:50:27:90:d6:18:17:c5:c4:
         5d:a5:d9:99:23:b9:de:60:d3:0e:8e:39:aa:7b:06:92:bc:b8:
         5f:23:91:99:47:8a:12:97:a1:49:1b:c7:9d:6c:19:2b:50:1d:
         ac:3b:4c:91:80:4c:49:2a:af:61:6c:bc:76:76:95:f1:ea:43:
         10:c0:17:39:49:b2:68:a1:63:14:b9:8a:c1:23:61:da:71:aa:
         b3:70:ee:34:bd:ff:df:f7:ce:48:d4:30:41:81:03:0e:c2:4d:
         b1:4e:13:44:f2:8c:da:bb:80:1d:f0:05:87:1d:1f:f7:24:db:
         d4:e8:48:f8:dd:e0:28:03:3b:a3:ac:44:a2:4a:c8:84:b5:4e:
         6d:55:13:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 22:51:28 2024 by rpki-client on console-fra.rpki-client.org