Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/1fe3d7-9214-4de3-8f1c-2c0abbd2e85d/1/apz1pXvHRW10C0Xh_gjjaamhcUo.mft
File:                     apz1pXvHRW10C0Xh_gjjaamhcUo.mft (raw, json)
Hash identifier:          tUq5+BbGIA+0SUm9IlcSjPr2I+UNMWQOBu4D4C9O56g=
Subject key identifier:   B1:A2:AA:4A:09:50:EF:99:27:22:A3:0C:80:39:4B:D0:F7:3E:B0:97
Authority key identifier: 6A:9C:F5:A5:7B:C7:45:6D:74:0B:45:E1:FE:08:E3:69:A9:A1:71:4A
Certificate issuer:       /CN=6a9cf5a57bc7456d740b45e1fe08e369a9a1714a
Certificate serial:       01901DED92A444455E5EF2F6BA6A028476D6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/apz1pXvHRW10C0Xh_gjjaamhcUo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/65/1fe3d7-9214-4de3-8f1c-2c0abbd2e85d/1/apz1pXvHRW10C0Xh_gjjaamhcUo.mft
Manifest number:          11C6
Signing time:             Sat 15 Jun 2024 22:03:47 +0000
Manifest this update:     Sat 15 Jun 2024 22:03:47 +0000
Manifest next update:     Sun 16 Jun 2024 22:03:47 +0000
Files and hashes:         1: 6PLJXBtU2gE271O6qfmIgRSfwpI.roa (hash: ZSkMQnUvi//VgXHaK0x+LxgfOW4LWoJMUZzYjht0r78=)
                          2: apz1pXvHRW10C0Xh_gjjaamhcUo.crl (hash: Ar8v1wILL1rHr4R2/BCgN/WRX+7S3t9XlY3RWEUGP0s=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/65/1fe3d7-9214-4de3-8f1c-2c0abbd2e85d/1/apz1pXvHRW10C0Xh_gjjaamhcUo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/65/1fe3d7-9214-4de3-8f1c-2c0abbd2e85d/1/apz1pXvHRW10C0Xh_gjjaamhcUo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/apz1pXvHRW10C0Xh_gjjaamhcUo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:03:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ed:92:a4:44:45:5e:5e:f2:f6:ba:6a:02:84:76:d6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6a9cf5a57bc7456d740b45e1fe08e369a9a1714a
        Validity
            Not Before: Jun 15 22:03:47 2024 GMT
            Not After : Jun 16 22:03:47 2024 GMT
        Subject: CN=b1a2aa4a0950ef992722a30c80394bd0f73eb097
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:5d:15:24:e2:a6:2a:27:a2:ce:23:fb:a8:42:
                    50:ec:23:ff:84:e7:18:07:61:0d:7b:8d:75:41:76:
                    05:02:e6:29:09:1d:53:bc:9a:44:7f:f8:64:74:af:
                    45:ac:26:2c:5b:27:ed:23:e3:d0:cb:e7:d7:3d:99:
                    79:59:7f:4a:05:26:dd:6b:0a:e8:b3:2c:f0:af:b6:
                    01:91:85:56:4a:4d:21:dd:b1:b2:52:df:2a:1c:3a:
                    43:7d:40:67:4b:f4:16:ac:52:a9:ed:de:60:53:79:
                    96:1a:c5:dc:4d:da:bc:dc:27:46:56:0c:41:24:95:
                    a7:bd:bb:6d:36:ee:30:7e:e1:bf:82:bf:10:c3:10:
                    cf:fe:78:45:67:ad:29:c5:59:8b:8e:ab:c4:17:f9:
                    f5:e9:10:c9:b3:48:19:c3:e8:cd:ca:3e:13:fa:80:
                    fa:07:f4:5c:a2:1a:31:e8:b3:6e:4a:aa:cf:a3:2d:
                    e8:fe:2a:32:bd:47:ab:2c:6c:6c:16:49:9c:c9:4f:
                    bc:ba:77:0b:14:e4:ea:43:99:98:f0:f7:ba:9d:a0:
                    13:ed:e4:33:5b:da:84:ae:97:cc:6c:99:b0:91:06:
                    15:05:8c:3a:4e:c8:32:48:40:39:d9:40:42:b3:87:
                    d9:89:3b:5a:8f:31:bc:00:0b:06:f1:8a:dd:27:f5:
                    95:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:A2:AA:4A:09:50:EF:99:27:22:A3:0C:80:39:4B:D0:F7:3E:B0:97
            X509v3 Authority Key Identifier:
                keyid:6A:9C:F5:A5:7B:C7:45:6D:74:0B:45:E1:FE:08:E3:69:A9:A1:71:4A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/apz1pXvHRW10C0Xh_gjjaamhcUo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/1fe3d7-9214-4de3-8f1c-2c0abbd2e85d/1/apz1pXvHRW10C0Xh_gjjaamhcUo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/65/1fe3d7-9214-4de3-8f1c-2c0abbd2e85d/1/apz1pXvHRW10C0Xh_gjjaamhcUo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         07:94:e2:db:98:9e:fb:2b:01:a5:5d:c2:cb:ed:58:60:1d:46:
         29:b0:0a:e4:e9:96:c6:89:05:2f:26:72:55:33:b0:2a:5a:60:
         e6:c1:33:11:a0:15:ea:74:63:3a:97:4a:d3:de:f0:7d:63:67:
         39:bc:8c:71:ec:f4:00:78:78:b3:10:77:39:21:5a:06:17:b9:
         85:03:d1:96:4c:d9:16:10:95:76:65:87:f0:f3:f5:10:91:cf:
         d0:64:7d:bb:d9:8c:87:3e:e7:7c:3e:8b:0d:95:d2:d5:58:d7:
         be:a2:0b:06:84:6d:1e:0e:c4:59:80:e7:bf:74:66:a9:5f:8e:
         a5:16:b8:99:7e:cb:32:6d:83:55:87:5b:d0:fb:c1:93:ad:a4:
         4b:75:da:6c:12:2a:81:b0:13:17:2c:5d:29:eb:98:2a:d2:e0:
         a0:6b:6b:86:b5:7a:85:6c:40:28:af:0b:31:0f:06:38:ad:01:
         ea:41:41:5c:18:b3:cb:60:dd:37:26:4f:ec:e6:30:73:46:24:
         e6:55:a1:57:b4:52:75:fb:3a:a8:be:f9:f6:c8:ae:02:07:41:
         8b:4f:0f:76:95:9f:54:70:22:b1:a4:d1:40:45:ed:10:50:a8:
         6f:68:19:d2:68:88:32:99:40:f0:dd:84:95:93:46:2a:1c:5c:
         2b:be:a4:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:06:41 2024 by rpki-client on console-fra.rpki-client.org