Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
File:                     vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json)
Hash identifier:          jVnHk0tFe210LmqYzBnmzydURPKve+1cP6X/CHILizA=
Subject key identifier:   3D:38:27:CA:A2:31:CD:51:70:F9:39:64:D4:FB:A6:95:B7:2D:E7:07
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Certificate issuer:       /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial:       01901E58C2255A76F89A591AD43B7CBFA520
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
Manifest number:          109E
Signing time:             Sun 16 Jun 2024 00:00:51 +0000
Manifest this update:     Sun 16 Jun 2024 00:00:51 +0000
Manifest next update:     Mon 17 Jun 2024 00:00:51 +0000
Files and hashes:         1: oohi7G0i0sl4jQpOW68uQvSyQZ0.roa (hash: ZYFQMZTVFLYbMFU4PuByl5h1/9E9Ex1Y13v0IiHn0D8=)
                          2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: O5WYIQN9/p1UkzBvirSJ69zkcvSDLV5SMRCOFdnoCLc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:58:c2:25:5a:76:f8:9a:59:1a:d4:3b:7c:bf:a5:20
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
        Validity
            Not Before: Jun 16 00:00:51 2024 GMT
            Not After : Jun 17 00:00:51 2024 GMT
        Subject: CN=3d3827caa231cd5170f93964d4fba695b72de707
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:af:bd:9d:0f:46:c4:82:af:fb:52:b7:48:48:
                    90:87:05:86:d7:dd:7a:22:59:c0:dd:a8:8d:44:62:
                    00:ed:59:5b:3b:d4:16:5a:71:5d:bc:66:e2:b7:e3:
                    6a:52:7a:a6:3c:11:b4:ba:45:47:65:79:92:d7:fc:
                    44:b9:d6:e4:08:39:c8:4f:5c:1d:d1:04:2c:25:44:
                    5a:4a:65:83:8b:95:c7:e0:d8:ee:9b:12:13:fd:15:
                    56:a4:16:6a:5c:0b:ca:ce:dd:c4:a1:92:15:83:54:
                    79:3e:7e:7d:b2:1b:ad:65:3a:76:a1:81:eb:7f:93:
                    b2:0a:62:22:b1:97:6a:c9:ca:37:0f:7b:c7:64:66:
                    fb:c3:b8:71:10:ed:39:cd:56:b8:cf:9e:c5:a0:1b:
                    96:28:09:00:45:cf:ed:91:57:a6:4a:ec:a8:90:1c:
                    8a:57:64:81:99:a4:e5:c3:d1:06:e1:c5:77:35:a9:
                    62:b8:d4:5c:e1:ba:73:6f:36:c0:d6:cf:97:11:31:
                    41:7f:ac:1c:ff:ba:ad:c7:57:1e:b5:4b:2e:3c:03:
                    e1:f3:7c:93:11:3e:a5:a0:aa:7f:36:d1:cf:b2:17:
                    c1:8e:ff:01:ab:44:89:a6:01:73:70:f8:a8:c7:ad:
                    ad:33:18:ca:b4:3f:0f:9f:e3:fb:76:9a:72:e5:a8:
                    3e:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:38:27:CA:A2:31:CD:51:70:F9:39:64:D4:FB:A6:95:B7:2D:E7:07
            X509v3 Authority Key Identifier:
                keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         63:6b:2a:a0:42:39:55:a6:45:42:6d:c2:b8:cb:3f:59:19:42:
         3f:a2:0d:a9:77:d1:fc:70:7b:b2:56:72:47:5e:db:8e:2c:a4:
         dd:12:5c:36:bc:05:ac:b8:6a:33:e5:a9:19:56:99:13:d7:5e:
         68:f7:8e:60:b6:e3:21:ae:5d:ac:99:1a:e6:ff:f4:a3:f9:11:
         eb:2c:80:0e:40:4d:b0:39:8a:8c:a3:9a:b4:cf:91:d1:c5:73:
         6e:8f:6f:8c:3a:97:b3:93:55:bc:3a:cb:bf:bd:f4:9e:a1:71:
         c1:e0:13:9f:36:d8:b9:5e:38:59:d6:32:0b:a2:ba:32:78:67:
         2a:9b:e3:b3:92:ee:00:b0:6d:7e:81:0a:11:b7:95:e4:a3:8e:
         65:8d:6b:bb:3f:3a:d1:f1:f2:ca:67:35:e9:ad:b3:dd:1f:08:
         e2:cd:22:65:6d:b9:97:24:c5:ee:42:8b:b7:e9:29:64:85:a9:
         fd:a9:f2:8b:f6:0a:94:ad:35:f2:7b:89:89:b8:f1:07:e3:1b:
         61:15:d5:21:0f:14:d8:ef:d8:84:a8:23:9c:62:a6:e4:23:64:
         f6:5e:e2:25:62:09:85:b8:6e:bc:45:b6:08:11:f1:58:19:94:
         3a:e5:9a:51:81:9f:17:ea:53:42:25:2f:96:61:7e:b4:b7:33:
         2c:e8:e1:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:57:35 2024 by rpki-client on console-ams.rpki-client.org