Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
File:                     JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft (raw, json)
Hash identifier:          JN0fR4wgq85iTjI+mVfgXBnktI8RRDaMtk2oYC+p7io=
Subject key identifier:   11:5A:A9:F0:4E:14:F0:89:87:B6:31:3D:4C:3E:B4:DD:80:DA:0D:06
Authority key identifier: 25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
Certificate issuer:       /CN=258906554d8c8b428ede8cb35026860d3d7771df
Certificate serial:       0190411C32CE317DD421EDB563D4AA3DFEF9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
Manifest number:          08B8
Signing time:             Sat 22 Jun 2024 18:01:25 +0000
Manifest this update:     Sat 22 Jun 2024 18:01:25 +0000
Manifest next update:     Sun 23 Jun 2024 18:01:25 +0000
Files and hashes:         1: JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl (hash: EVjsEy+eQYJ7L+PRT1QFrEnujc4lAitxgKT/OH6v+xM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 18:01:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:41:1c:32:ce:31:7d:d4:21:ed:b5:63:d4:aa:3d:fe:f9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=258906554d8c8b428ede8cb35026860d3d7771df
        Validity
            Not Before: Jun 22 18:01:25 2024 GMT
            Not After : Jun 23 18:01:25 2024 GMT
        Subject: CN=115aa9f04e14f08987b6313d4c3eb4dd80da0d06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:bc:2c:a2:cf:30:4a:c2:04:2d:60:48:3f:00:
                    41:a7:91:01:28:a8:c5:d9:cd:20:6f:02:8b:93:67:
                    ab:a2:c0:1a:e0:3d:70:92:ea:c0:59:d2:4b:0e:5e:
                    48:9a:98:eb:f8:1a:87:e3:11:58:2b:8e:b9:6f:15:
                    7f:37:ee:04:4f:7d:64:2d:0b:99:af:0f:b9:86:c1:
                    58:96:01:7f:c2:de:c1:2b:4c:9b:35:4f:f3:9d:50:
                    8a:5c:56:75:39:57:3e:73:02:85:68:84:e1:37:d3:
                    fe:63:ad:d9:8a:eb:18:d8:d1:bd:d7:f4:c0:08:1d:
                    7f:c5:e6:ec:dd:f9:6b:c2:f7:4c:94:e4:b3:ea:90:
                    db:3f:9e:66:8e:d1:93:87:4f:e0:68:0d:c8:50:41:
                    0f:3a:e9:7f:78:d9:f3:bf:09:ce:fa:13:f0:7d:5f:
                    f8:fa:3a:5f:c7:40:76:2c:f6:6d:7b:6c:50:da:97:
                    68:bc:d9:4c:39:da:1f:6d:d8:e4:db:25:af:71:7c:
                    36:c6:9d:52:1d:67:0e:c3:7f:4e:81:07:d4:48:d3:
                    14:2c:a8:a9:0c:41:16:9d:ac:44:e2:0b:f8:3d:56:
                    2e:f3:fc:4b:72:19:ee:3a:80:c3:39:0d:6d:1a:44:
                    17:e1:cb:91:a7:73:d1:72:fc:4b:93:2d:f1:10:9b:
                    fb:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:5A:A9:F0:4E:14:F0:89:87:B6:31:3D:4C:3E:B4:DD:80:DA:0D:06
            X509v3 Authority Key Identifier:
                keyid:25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         18:45:38:c6:91:ec:a4:8d:26:ba:fd:98:0c:59:ff:c1:5f:4a:
         0c:f9:3e:dc:b8:d4:48:51:74:6d:ed:e8:09:0d:d1:96:ff:cc:
         bc:2b:cb:a7:e0:e2:46:33:b1:fe:71:b4:02:12:f3:30:b3:48:
         0e:fa:42:23:df:47:22:3b:f2:52:59:5f:81:a0:95:cc:92:f3:
         e9:ae:6b:70:00:b5:89:c8:21:cd:f4:4f:3a:b1:53:a7:f5:cf:
         b8:2d:dc:55:90:4a:91:fa:7c:7a:cc:91:69:a1:06:45:d3:b4:
         65:fc:7d:b0:f1:67:87:c8:9a:d0:60:ad:a5:c0:43:13:80:f1:
         c7:e8:37:db:71:45:12:0f:07:ad:4a:7f:7c:54:59:63:88:20:
         52:5b:34:25:78:3a:cb:99:e8:97:f0:ab:e8:79:43:87:1f:69:
         83:ab:16:51:63:8f:4b:04:98:de:f9:f8:a7:40:35:32:a1:c0:
         9e:a4:48:2b:3f:41:55:bb:d9:81:22:30:e3:1d:51:99:be:af:
         0a:74:73:ad:1a:1e:46:3d:9b:f2:b0:73:ae:85:44:ff:e9:bc:
         fa:39:b6:d2:1b:75:f6:b2:06:73:8b:d6:37:91:ac:1e:df:7e:
         fd:0a:1f:9d:76:4e:4b:31:e8:24:f7:85:3d:48:b3:f1:41:ef:
         c8:a0:dd:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:24:58 2024 by rpki-client on console-ams.rpki-client.org