Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
File:                     2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json)
Hash identifier:          1b/eIAkvwO9lRoK0SmvxSDN7OsJEQNb2dlLaqxA9OD0=
Subject key identifier:   95:79:E0:E7:AE:86:56:60:51:99:39:E8:B4:65:38:DF:D5:9F:54:E2
Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
Certificate issuer:       /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Certificate serial:       01901EC6AF744EC0C97F4553874D6F9112D6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
Manifest number:          11C5
Signing time:             Sun 16 Jun 2024 02:00:55 +0000
Manifest this update:     Sun 16 Jun 2024 02:00:55 +0000
Manifest next update:     Mon 17 Jun 2024 02:00:55 +0000
Files and hashes:         1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: 6+b5ViSIyFLdTLG/ll+4WREIErLTYcCX+i5upi16Pmo=)
                          2: _VVt4OfdWGBs-jce3dtU-jGfKTY.roa (hash: fEnri8C9TJ4wmIOHMUbqYdb4TUqJNQunbXCa8VppDek=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:c6:af:74:4e:c0:c9:7f:45:53:87:4d:6f:91:12:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
        Validity
            Not Before: Jun 16 02:00:55 2024 GMT
            Not After : Jun 17 02:00:55 2024 GMT
        Subject: CN=9579e0e7ae865660519939e8b46538dfd59f54e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:c0:59:77:ef:d6:f9:ec:04:a6:7c:91:54:52:
                    5c:b9:78:5f:cf:b1:a1:2e:8f:f3:da:2d:81:0c:92:
                    53:4e:1c:62:b1:a1:0d:22:e5:9e:69:24:78:e7:b2:
                    88:15:b6:9e:05:60:fe:7e:7e:2e:8d:59:79:11:62:
                    f9:44:35:06:c5:0f:96:38:29:62:f4:e2:e3:28:bf:
                    b7:0c:71:4c:a6:7c:00:2d:8d:d4:a4:dd:68:7f:cd:
                    d7:e8:16:25:93:62:c1:78:73:2f:d1:23:09:82:85:
                    7f:9a:54:4c:c1:1e:af:e6:a9:34:bb:52:a1:40:b0:
                    74:93:23:35:1a:eb:fd:95:a0:ad:bb:0c:d5:cb:ce:
                    05:9e:85:05:b8:de:4b:00:55:ea:f5:85:d3:45:31:
                    5c:73:84:4b:c1:7a:f0:81:08:20:99:17:34:ce:9e:
                    07:fc:f9:a5:ff:db:27:00:62:b0:68:5b:32:bc:e7:
                    fa:17:f5:82:3f:91:d2:57:71:f8:6c:71:c7:ca:75:
                    3f:cc:90:b4:56:6c:0d:0b:4a:ac:bf:ea:69:0b:7c:
                    89:88:e1:8e:3e:fd:2d:b9:eb:ec:db:ae:6e:6b:49:
                    62:91:30:9e:62:a8:bf:f5:1c:3e:10:80:9b:41:fb:
                    d3:88:77:c6:8f:52:7c:3b:0a:3b:97:19:63:c7:69:
                    92:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:79:E0:E7:AE:86:56:60:51:99:39:E8:B4:65:38:DF:D5:9F:54:E2
            X509v3 Authority Key Identifier:
                keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         65:8f:11:19:81:c4:f0:a1:31:b3:d4:b5:a9:c1:af:75:2e:b4:
         4d:01:f6:b8:db:80:e9:e1:e8:bb:73:09:bf:db:40:58:41:d2:
         8f:ad:cf:b6:18:49:27:1a:80:37:9b:78:f9:f3:c6:65:06:07:
         e4:9b:a9:88:c6:8c:ac:15:86:b6:a4:b8:87:16:2b:b0:70:8c:
         02:6f:bb:72:40:a3:e1:df:25:1c:e1:53:a7:ba:ef:93:ac:fe:
         30:d4:1a:26:8b:ad:0d:87:ee:bb:f6:39:43:96:e4:9b:37:e6:
         b8:57:8a:54:22:2a:df:14:72:8b:fe:22:06:4c:b8:6a:e9:6b:
         c6:eb:11:2e:49:18:c8:8e:2d:d2:4e:98:6d:a0:46:c6:ff:61:
         99:db:42:da:f7:31:aa:81:fa:cb:a1:a0:f9:64:b5:2d:0e:fe:
         3f:1f:2a:b4:40:8a:85:44:9d:dc:f5:51:50:9a:ad:49:0f:db:
         b4:69:0c:ca:e9:92:f3:7d:cd:6b:42:ea:96:db:48:f3:fb:61:
         b2:38:ce:a3:5e:11:ee:6d:c3:96:34:14:05:17:37:7d:65:3b:
         35:ae:32:63:ea:d1:a4:0d:29:8b:8f:da:de:f2:71:dd:f4:fc:
         7c:1f:4a:d5:72:99:02:07:8d:61:3d:26:c2:ad:0f:54:04:c6:
         c7:09:fd:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 04:02:24 2024 by rpki-client on console-ams.rpki-client.org