Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
File:                     kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json)
Hash identifier:          zoL+wIo7Ovw6GLWrwq6le3abjsJ3/HbWNdyVzWsgTy4=
Subject key identifier:   6C:6F:F3:A0:B1:CE:B6:95:01:2A:17:9D:A9:86:2F:29:C1:2D:21:E2
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Certificate issuer:       /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial:       01901BFEF1B07C31C3C21009AD2F27DF209D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
Manifest number:          05B8
Signing time:             Sat 15 Jun 2024 13:03:31 +0000
Manifest this update:     Sat 15 Jun 2024 13:03:31 +0000
Manifest next update:     Sun 16 Jun 2024 13:03:31 +0000
Files and hashes:         1: 4cCd564-DUkGJP3zFXXXfgW9BMk.roa (hash: +324/l2HUarg+liNurHVv+SwTQ0mrDyrplKStHA10tg=)
                          2: CzsFJS601jLpyBJ_62VSzo7I43A.roa (hash: QrmSjUBBwbBc/0OHfpX8SNYUhgZ9NBwJb6+sHhk7lAU=)
                          3: LgNZeRIOd3zN70IRMMp6WzdfhMk.roa (hash: uC0OIlvYaVTQUhtupuqdqYdhMRjDJ6ESjOI/R3LcURg=)
                          4: VGhUqu3l3G0eqwjlWPljA6Z83Xs.roa (hash: I5VQ8TMSfLs3BOwYan1JS4NcGuBoiZLqtqOk2RokXjo=)
                          5: ZhqPDcOCapfROWQiuyGvFSjWEXg.roa (hash: fi2CuUQSUV3xEVgwLqLDdwHdZIDDzlmwMtqZAJe3hA4=)
                          6: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: oRMJaD0YgAuCFPNTE5kTV3hYt15hvYtPS+T+jf06F9s=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 05:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1b:fe:f1:b0:7c:31:c3:c2:10:09:ad:2f:27:df:20:9d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
        Validity
            Not Before: Jun 15 13:03:31 2024 GMT
            Not After : Jun 16 13:03:31 2024 GMT
        Subject: CN=6c6ff3a0b1ceb695012a179da9862f29c12d21e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:92:1c:10:d7:3e:d2:c2:77:a2:62:ef:3e:b8:
                    94:1d:2d:62:af:96:48:47:10:26:1c:c5:bf:50:2b:
                    8a:8f:cd:3a:da:ed:6f:9a:f0:f6:34:02:41:04:ef:
                    4c:84:93:96:8c:37:87:c4:d8:e4:12:50:ec:f3:bb:
                    cd:89:34:f2:9a:c4:ee:bd:fd:dc:10:e9:83:96:cd:
                    ec:95:78:2c:f1:ba:57:ca:d5:14:7f:7b:ab:81:63:
                    90:11:c2:30:89:45:34:42:fc:58:b7:29:83:c4:10:
                    4f:7f:a7:62:ab:20:1b:a6:25:75:af:6f:92:35:1d:
                    53:a5:0b:db:0d:de:76:66:7b:fc:1f:3a:14:f8:46:
                    25:c0:b9:08:e1:97:c5:1e:98:63:55:07:cb:a1:ec:
                    a9:00:cb:4c:dc:7f:20:b5:c5:fd:48:0d:a9:ae:c9:
                    32:86:9c:67:9e:06:d0:81:8e:75:bd:96:b7:9d:ca:
                    9c:40:43:a6:13:b0:6e:de:d8:4e:f4:fc:73:0e:ac:
                    32:a5:27:e1:df:d8:28:10:59:a5:ba:6e:f0:c1:32:
                    d9:e0:23:40:a0:eb:cd:f0:16:f1:f8:af:51:68:18:
                    86:ef:82:4e:5a:bd:60:b5:7c:03:b3:1b:83:9b:e6:
                    0a:ba:7e:70:ce:80:bf:fa:01:94:ef:8f:ac:67:00:
                    2d:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:6F:F3:A0:B1:CE:B6:95:01:2A:17:9D:A9:86:2F:29:C1:2D:21:E2
            X509v3 Authority Key Identifier:
                keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:9d:30:b9:ba:d4:06:9c:f3:58:f8:34:88:1a:bf:93:cd:87:
         b0:90:9a:fc:0e:06:f7:36:7b:33:ed:96:d1:55:1d:64:69:4e:
         5f:fb:1d:ad:76:ea:fe:7d:b3:88:1a:b4:b8:88:c7:dc:7e:d8:
         cc:20:a4:49:3a:f1:4b:28:94:29:c0:54:b4:80:98:ce:fe:ef:
         48:09:19:cb:27:40:4c:dd:f7:dd:74:78:d5:86:8c:83:04:ee:
         40:66:1f:f7:de:aa:41:cd:ee:a9:17:28:b0:77:e7:f6:46:c2:
         42:cf:7b:e4:f6:31:56:97:1e:04:3c:a3:27:49:07:bb:bd:b1:
         9f:1f:be:ed:4c:bc:34:84:3f:9b:68:26:d6:56:29:2c:ae:bc:
         01:5c:8d:9a:a7:91:54:92:5b:e0:aa:7f:5f:95:69:8e:ec:61:
         d9:e0:67:0f:98:9b:82:35:77:81:7c:e2:50:ea:d5:3e:1d:80:
         47:13:8e:17:ef:76:14:c9:4d:08:ec:3a:01:92:5d:77:ba:96:
         b7:39:b2:5d:a3:4d:a8:5f:05:d8:26:70:6d:30:05:90:49:cb:
         1e:20:21:ca:ff:d3:3e:0e:37:f8:38:80:1c:81:97:66:cc:1f:
         fc:22:a5:e6:49:7f:a3:6a:71:16:12:44:90:96:b3:68:8a:40:
         6a:25:67:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 14:29:31 2024 by rpki-client on console-fra.rpki-client.org