Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/c139a4-6da2-4329-aae2-a17882b926a0/1/kNPlNxtkq5QtbcugSt_yrnq3xxI.mft
File:                     kNPlNxtkq5QtbcugSt_yrnq3xxI.mft (raw, json)
Hash identifier:          7cp4etFjsUap+n5BvnxmeVo/uCwR74Xa3MRBe5RRNnM=
Subject key identifier:   E0:29:D8:5B:35:AC:ED:DA:80:3F:9E:AA:2A:A4:45:5B:15:DE:43:B3
Authority key identifier: 90:D3:E5:37:1B:64:AB:94:2D:6D:CB:A0:4A:DF:F2:AE:7A:B7:C7:12
Certificate issuer:       /CN=90d3e5371b64ab942d6dcba04adff2ae7ab7c712
Certificate serial:       01901DEABAEA780B2BA114AE216BC149DFDE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kNPlNxtkq5QtbcugSt_yrnq3xxI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/c139a4-6da2-4329-aae2-a17882b926a0/1/kNPlNxtkq5QtbcugSt_yrnq3xxI.mft
Manifest number:          11C4
Signing time:             Sat 15 Jun 2024 22:00:40 +0000
Manifest this update:     Sat 15 Jun 2024 22:00:40 +0000
Manifest next update:     Sun 16 Jun 2024 22:00:40 +0000
Files and hashes:         1: kNPlNxtkq5QtbcugSt_yrnq3xxI.crl (hash: Hcm2okcykjxRS4+pigxNVa2dlpdYnKtpg0fZLbYu7pI=)
                          2: qAjfZNCoJ-vtgY1BdrteWBQJWcY.roa (hash: vZNqVy6I29QNE9cWvI73cZETZ2uE/okVEg0T5UcnkMo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/c139a4-6da2-4329-aae2-a17882b926a0/1/kNPlNxtkq5QtbcugSt_yrnq3xxI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/c139a4-6da2-4329-aae2-a17882b926a0/1/kNPlNxtkq5QtbcugSt_yrnq3xxI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/kNPlNxtkq5QtbcugSt_yrnq3xxI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ea:ba:ea:78:0b:2b:a1:14:ae:21:6b:c1:49:df:de
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=90d3e5371b64ab942d6dcba04adff2ae7ab7c712
        Validity
            Not Before: Jun 15 22:00:40 2024 GMT
            Not After : Jun 16 22:00:40 2024 GMT
        Subject: CN=e029d85b35acedda803f9eaa2aa4455b15de43b3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:f5:de:6b:fb:08:cf:ab:31:97:1b:56:d7:77:
                    32:01:64:01:eb:4f:81:d4:97:29:e3:8c:66:db:1d:
                    dc:d9:5a:63:0c:8d:a5:9b:a8:91:2a:0d:cf:e0:0b:
                    4e:ce:d7:9e:eb:ed:d4:e3:e7:21:da:49:43:28:8c:
                    4a:50:db:a3:56:b5:8c:45:3c:a5:18:41:07:71:30:
                    e3:7f:d2:ef:db:c2:a2:35:61:a9:b4:c4:08:3a:13:
                    cd:62:5e:c4:f9:ec:44:23:45:e3:be:59:40:fe:64:
                    c0:fb:a1:e3:05:1e:19:25:c8:68:66:f2:db:a5:67:
                    71:3f:a3:20:bd:17:c6:37:91:b2:39:9f:40:3f:da:
                    3b:0c:99:3a:84:65:5c:e7:fb:52:7e:fb:13:6f:4e:
                    fc:e9:83:b1:ae:be:fe:1e:5a:ef:b1:ab:07:59:60:
                    96:a6:8d:26:8a:a6:bf:cf:50:e7:d1:41:9b:1f:4d:
                    23:b2:86:a1:1e:e3:6a:80:39:61:44:45:4c:8f:48:
                    fb:7b:b9:4f:dc:a7:13:dd:ac:75:e7:7a:c0:a1:52:
                    ab:4b:e0:39:d3:b0:43:bd:bc:49:94:e2:c9:ec:67:
                    c0:ea:f5:51:86:35:ce:75:ba:9c:bf:ad:76:e6:8c:
                    99:91:22:23:4f:c9:54:db:14:9d:6b:82:73:db:92:
                    51:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:29:D8:5B:35:AC:ED:DA:80:3F:9E:AA:2A:A4:45:5B:15:DE:43:B3
            X509v3 Authority Key Identifier:
                keyid:90:D3:E5:37:1B:64:AB:94:2D:6D:CB:A0:4A:DF:F2:AE:7A:B7:C7:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNPlNxtkq5QtbcugSt_yrnq3xxI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c139a4-6da2-4329-aae2-a17882b926a0/1/kNPlNxtkq5QtbcugSt_yrnq3xxI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/c139a4-6da2-4329-aae2-a17882b926a0/1/kNPlNxtkq5QtbcugSt_yrnq3xxI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:0c:62:e1:63:a1:81:90:e7:ef:59:12:1e:68:3a:5b:9e:4e:
         09:22:ef:48:d6:86:64:6f:fc:5d:a1:ec:37:8f:48:a7:e8:2c:
         d7:7e:a5:50:b0:8d:8d:39:b3:15:3a:0a:65:13:19:15:d3:6d:
         dd:63:2c:49:e4:de:8a:e9:4f:7f:44:c5:77:9b:9e:a4:df:fe:
         72:c2:e6:da:cd:85:3f:71:1a:ef:b0:2d:79:78:6d:23:7b:f5:
         ea:de:1a:63:d2:39:67:39:19:a4:03:d9:75:c5:9c:32:2c:59:
         93:98:83:61:81:b7:77:3b:26:8b:7f:0e:0c:0f:27:7e:38:99:
         63:60:3d:26:33:a1:20:22:7b:30:b2:12:90:1b:27:73:f8:c9:
         d0:f8:81:7f:62:12:23:c5:c0:4f:de:7a:8d:e0:f2:08:94:11:
         b6:1c:e5:de:1b:2e:a0:84:16:b5:f1:83:cd:70:ab:49:54:e9:
         53:1f:c7:b8:d7:23:68:f6:7e:d4:92:71:99:6a:c8:18:7e:c9:
         d9:bf:ad:9d:b6:c6:f1:f6:34:ec:c4:fa:f0:ee:18:9d:fe:fb:
         fe:7f:aa:4c:77:fc:de:a4:8d:4f:e4:d1:20:20:8a:d2:6c:db:
         6e:f4:97:5e:a0:3a:8a:50:00:d9:bf:5a:d7:39:d7:c7:31:06:
         da:8f:78:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 23:37:02 2024 by rpki-client on console-ams.rpki-client.org