Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft
File:                     OpL12TZ1K68tDfcTKZSZzs-p9I0.mft (raw, json)
Hash identifier:          DVTVwPgZX/VawhPK779VtIrGZ6lV14UQCh9EWA1sEtg=
Subject key identifier:   EE:21:59:B1:7E:EF:DA:6F:C7:AA:EA:33:ED:91:6F:13:C2:67:FE:BE
Authority key identifier: 3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D
Certificate issuer:       /CN=3a92f5d936752baf2d0df713299499cecfa9f48d
Certificate serial:       01901E90244279073B0B2C3114E207B6687E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft
Manifest number:          11C9
Signing time:             Sun 16 Jun 2024 01:01:21 +0000
Manifest this update:     Sun 16 Jun 2024 01:01:21 +0000
Manifest next update:     Mon 17 Jun 2024 01:01:21 +0000
Files and hashes:         1: OpL12TZ1K68tDfcTKZSZzs-p9I0.crl (hash: 2ZxLCtRPs4S8cdqcp2KbZvmIV2Rbf+hnpHtDUTKNnA4=)
                          2: qnGMjAtEp4CZgXyTx8LyPrrXTBI.roa (hash: 0txBDG2KHO342XzT9v22DY4vX4KlGOIRvrY4etH88GA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:90:24:42:79:07:3b:0b:2c:31:14:e2:07:b6:68:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3a92f5d936752baf2d0df713299499cecfa9f48d
        Validity
            Not Before: Jun 16 01:01:21 2024 GMT
            Not After : Jun 17 01:01:21 2024 GMT
        Subject: CN=ee2159b17eefda6fc7aaea33ed916f13c267febe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:b7:49:73:76:58:a2:ac:6f:d5:a9:5d:57:92:
                    4a:f9:8f:67:76:eb:bf:81:2b:69:2f:f7:6f:f2:23:
                    af:6a:3c:4b:cd:7a:30:d6:74:33:a2:58:ee:e8:0f:
                    bc:3e:c1:2b:5b:db:bd:d2:34:b4:a0:fb:f0:dc:6d:
                    e3:17:c2:e4:00:68:1b:83:be:9f:be:6d:74:d6:c5:
                    ff:46:09:7e:63:68:36:ff:79:f2:a4:5d:ff:56:79:
                    d1:5d:77:81:7c:52:7f:52:31:72:2c:a1:01:ed:26:
                    0f:22:da:b7:19:02:97:4e:84:95:57:be:58:8e:0e:
                    f5:64:cf:e5:6b:74:6d:1f:3f:7e:9d:a0:ed:7a:92:
                    42:77:e5:2a:37:ec:72:c1:57:3f:f2:a4:5e:51:b5:
                    f8:97:30:9f:2f:b6:0d:d1:36:9a:64:53:99:c1:b0:
                    47:a3:60:c3:f8:35:7d:0f:bc:e2:b6:09:a2:70:46:
                    4c:3e:7d:34:cf:98:d7:87:b8:a9:3d:50:79:5c:6c:
                    17:ff:fb:12:fe:51:75:86:f0:58:12:0d:3a:84:c1:
                    e6:e8:19:28:be:2d:39:d7:9b:ee:7c:19:46:8c:56:
                    d0:8e:0e:5e:5d:d5:6b:37:cc:b3:33:e3:a9:05:7a:
                    90:ed:9b:15:c3:d3:ba:11:60:73:75:db:d2:35:e5:
                    27:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:21:59:B1:7E:EF:DA:6F:C7:AA:EA:33:ED:91:6F:13:C2:67:FE:BE
            X509v3 Authority Key Identifier:
                keyid:3A:92:F5:D9:36:75:2B:AF:2D:0D:F7:13:29:94:99:CE:CF:A9:F4:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OpL12TZ1K68tDfcTKZSZzs-p9I0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7cd157-c58f-4cb9-8252-1696b246cd50/1/OpL12TZ1K68tDfcTKZSZzs-p9I0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         45:34:81:12:95:db:46:5a:54:68:7e:02:b0:87:10:d2:ca:56:
         16:6a:61:9c:81:f4:98:ac:7a:a3:e2:20:d2:8b:c9:9f:20:2e:
         d7:22:08:ce:a7:ac:72:d2:64:e4:33:db:36:03:53:07:1b:8b:
         36:3a:8e:d1:c6:b4:32:9e:8e:6c:3a:91:b9:1c:86:4a:61:a1:
         b0:6f:c3:46:8a:81:aa:af:ae:44:6f:78:d0:3d:99:d9:65:75:
         78:74:df:f7:01:83:48:7f:99:d0:dc:cd:da:73:91:9a:52:38:
         25:40:3c:e4:1b:a7:34:93:9d:3d:b3:c0:bc:42:5d:7e:b4:09:
         18:e4:da:68:d4:cc:fa:9f:07:19:10:06:af:20:ef:ba:57:d9:
         70:4f:2c:9f:5a:50:14:1f:08:b3:c6:81:a7:c4:dc:6f:16:6a:
         d5:d6:85:a8:3f:b0:3f:38:79:5c:93:be:44:65:5f:fa:07:4f:
         ae:5e:b9:96:c1:a9:09:05:bc:d4:a6:02:af:4d:76:cd:e1:9d:
         6c:df:5d:bf:7b:7a:4d:5a:44:69:33:23:12:52:a5:a2:65:eb:
         e2:a4:9b:06:a7:fb:b9:30:26:73:1a:94:8a:9b:05:d5:23:a6:
         e1:c6:c8:86:e1:f7:e2:63:80:fe:85:b3:67:5a:a2:bd:6c:a0:
         94:d1:56:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:53:52 2024 by rpki-client on console-ams.rpki-client.org