Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft
File:                     9kixVYLTS9UXCp3RO4EyW6uuXjo.mft (raw, json)
Hash identifier:          SLtyf3ioItyEYMwxEXouHz7zrVGUmgpe5X44Y6FaFhg=
Subject key identifier:   EE:19:E3:AA:0E:4A:D6:5A:21:2C:38:6B:27:CF:10:FA:3F:BA:FA:FF
Authority key identifier: F6:48:B1:55:82:D3:4B:D5:17:0A:9D:D1:3B:81:32:5B:AB:AE:5E:3A
Certificate issuer:       /CN=f648b15582d34bd5170a9dd13b81325babae5e3a
Certificate serial:       019041F752464320123248F0938D0402266C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft
Manifest number:          11D8
Signing time:             Sat 22 Jun 2024 22:00:45 +0000
Manifest this update:     Sat 22 Jun 2024 22:00:45 +0000
Manifest next update:     Sun 23 Jun 2024 22:00:45 +0000
Files and hashes:         1: 9kixVYLTS9UXCp3RO4EyW6uuXjo.crl (hash: 0x0sm6njxUTRgkMdj/NPXcA5l5ILwJNAexS0Tmjo9vU=)
                          2: ptBNIMLNqAlCqzDfFjBsH3iCrog.roa (hash: 4ruDzpAEWBEx5du+fJI3d8Mdnthq4YE0usrSZf5XXfk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 21:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:41:f7:52:46:43:20:12:32:48:f0:93:8d:04:02:26:6c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f648b15582d34bd5170a9dd13b81325babae5e3a
        Validity
            Not Before: Jun 22 22:00:45 2024 GMT
            Not After : Jun 23 22:00:45 2024 GMT
        Subject: CN=ee19e3aa0e4ad65a212c386b27cf10fa3fbafaff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:e6:7e:f0:de:e9:58:a6:8b:82:ae:f8:7b:6c:
                    48:69:3c:09:78:d2:fa:67:da:9e:1e:23:db:b9:3c:
                    f8:e4:2f:ab:30:b4:39:41:46:c2:25:d1:f9:77:be:
                    ba:07:f1:2b:61:2e:b8:41:99:b7:9a:a3:4b:28:31:
                    a8:cb:d2:b5:70:79:0b:39:54:7e:46:04:7f:45:07:
                    6a:d8:4f:c3:96:af:05:db:12:e1:2e:fd:92:73:7e:
                    0e:52:f8:43:b3:96:ea:eb:b5:b4:f9:76:21:5b:9b:
                    72:55:66:d5:29:77:2a:61:c8:f4:a5:4d:93:65:90:
                    fc:2f:36:c9:01:40:72:b7:3b:b2:b5:d4:be:2b:7f:
                    84:7c:f8:37:7c:58:6c:f7:ad:ae:f7:62:27:f9:63:
                    11:e1:0b:0c:01:69:5a:48:96:b9:a6:bb:9a:a1:d2:
                    5b:8a:1a:30:4a:4a:4e:63:7e:ab:1c:00:bc:ca:38:
                    49:f5:4f:20:a6:85:e9:21:a4:17:d9:76:b0:59:34:
                    53:88:38:b4:2f:d5:97:d2:a7:c4:5b:a9:12:12:07:
                    7c:59:b4:31:94:d6:bd:7f:06:7c:18:f9:c3:43:fb:
                    81:ad:e5:2e:54:53:bf:24:8d:ee:ec:26:e5:fa:94:
                    da:22:5c:1c:ab:87:f5:35:57:e5:2d:4f:62:d3:fe:
                    f5:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:19:E3:AA:0E:4A:D6:5A:21:2C:38:6B:27:CF:10:FA:3F:BA:FA:FF
            X509v3 Authority Key Identifier:
                keyid:F6:48:B1:55:82:D3:4B:D5:17:0A:9D:D1:3B:81:32:5B:AB:AE:5E:3A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9kixVYLTS9UXCp3RO4EyW6uuXjo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d8f672-539f-401d-9dc7-62799b90231b/1/9kixVYLTS9UXCp3RO4EyW6uuXjo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         85:0e:d3:7c:91:30:9c:52:d8:f0:c4:c4:57:c3:83:0f:e0:d4:
         e4:46:87:84:84:92:fa:0d:f8:fc:f6:15:af:b2:ed:ef:3d:5e:
         f8:6d:90:53:cf:cf:ff:5c:1e:37:9f:a9:b6:eb:70:ab:b7:87:
         4c:59:7a:f3:7e:17:30:95:01:bf:20:05:d6:99:45:4c:1a:78:
         94:6f:68:15:0a:3a:da:21:52:8c:33:a7:76:b8:c2:a0:db:e9:
         5c:79:de:99:15:39:fa:3b:81:e2:ed:9f:9f:d7:19:79:b7:49:
         97:93:67:85:c2:e7:29:0b:99:1e:79:b3:50:18:e4:a3:89:5e:
         1a:f8:b0:4d:d7:c0:c7:8f:e5:dd:79:88:d8:48:a8:02:b2:7d:
         cb:73:87:70:10:3e:fe:82:96:49:ef:9c:c9:01:84:1a:f7:98:
         91:28:03:42:68:97:c0:6d:8a:6e:ef:f1:ba:c5:c4:21:3e:c2:
         f6:32:02:2c:38:c3:d5:84:d9:ac:0d:36:cc:6e:2e:1b:2c:97:
         ed:f9:62:ca:d4:1b:2d:96:65:b1:da:38:db:c0:7c:c0:fd:f4:
         b1:28:49:d3:6c:4c:61:cc:41:0c:c4:78:af:ee:96:e0:29:31:
         1c:26:27:ae:08:61:be:39:79:bb:4a:6c:6a:8b:55:08:cb:c7:
         52:1c:d1:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:01:30 2024 by rpki-client on console-fra.rpki-client.org