Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
File:                     PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft (raw, json)
Hash identifier:          emmzCKfbhZ7TVt9d/j0ElqvbT1GOQKrH5Ted7Polx5g=
Subject key identifier:   3F:B6:BB:6A:D8:43:EB:82:50:C7:38:B7:BE:AD:F6:34:43:CD:BE:A3
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Certificate issuer:       /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial:       019045D4277F7842D20F0EA275672CA31ECA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
Manifest number:          0CAE
Signing time:             Sun 23 Jun 2024 16:00:49 +0000
Manifest this update:     Sun 23 Jun 2024 16:00:49 +0000
Manifest next update:     Mon 24 Jun 2024 16:00:49 +0000
Files and hashes:         1: PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl (hash: yo/3IklyVJldHX+duCP/+izU2ov9HykpdOmdXAM1t7I=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 15:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:45:d4:27:7f:78:42:d2:0f:0e:a2:75:67:2c:a3:1e:ca
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
        Validity
            Not Before: Jun 23 16:00:49 2024 GMT
            Not After : Jun 24 16:00:49 2024 GMT
        Subject: CN=3fb6bb6ad843eb8250c738b7beadf63443cdbea3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:7e:36:c5:09:f3:bd:f5:f7:96:39:69:fc:23:
                    96:ba:71:16:ca:39:46:03:60:c8:70:28:c4:cb:f1:
                    60:08:9b:c8:ca:ab:cb:ab:72:b4:e3:8f:05:c0:67:
                    14:00:bf:e2:87:ca:17:85:4a:ba:12:e2:b5:b4:f3:
                    d0:f1:d6:fd:3a:62:3b:12:94:25:e7:15:b5:d0:b9:
                    c4:a1:19:9d:c1:5c:56:0d:90:7b:70:8f:6e:8e:30:
                    6c:96:03:0c:66:aa:61:a9:a8:0d:64:19:9e:01:eb:
                    e8:10:75:bf:f9:fc:95:4f:30:aa:6a:d3:e1:d2:c6:
                    28:4b:9e:96:ad:46:f2:73:ce:83:9f:a4:d4:8e:91:
                    35:a2:d7:53:91:5a:d0:19:97:ca:cc:94:96:d3:11:
                    b4:de:6e:bf:d8:c0:27:f2:63:f2:58:ba:4c:9c:a8:
                    14:85:bf:a0:a2:9f:c8:ef:90:73:7e:a6:ea:2a:04:
                    b9:ed:6d:34:1c:c1:80:33:58:7f:2f:62:ff:36:d2:
                    95:d4:ce:a6:0f:be:be:ee:0b:13:ff:4d:b9:16:e9:
                    f3:7b:8c:8f:82:05:ec:69:1a:3d:4b:81:4c:66:f1:
                    82:5f:a8:4b:75:18:e7:9b:59:6f:7c:7e:c5:01:e1:
                    ef:36:14:7e:6d:a0:fe:40:d0:a5:7a:7f:57:24:d0:
                    b0:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:B6:BB:6A:D8:43:EB:82:50:C7:38:B7:BE:AD:F6:34:43:CD:BE:A3
            X509v3 Authority Key Identifier:
                keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a7:cd:08:c5:d3:40:87:2b:02:74:76:42:8f:ff:85:27:97:53:
         80:c2:78:ed:d6:60:f7:f0:05:03:23:49:4f:0b:cf:b0:90:33:
         17:0a:9b:96:50:bd:9a:23:a8:87:55:a8:e9:12:be:fa:2e:f7:
         5d:44:4b:0e:2c:26:2c:4f:28:7b:6c:4f:85:9f:42:71:36:93:
         31:11:89:b4:1f:25:d8:06:22:50:03:2e:9d:73:19:64:14:48:
         c0:37:56:80:06:46:3e:10:f2:19:c5:1e:30:04:fe:d9:2d:b2:
         3a:ba:1d:c0:db:c6:02:7f:a9:1a:49:56:b9:6d:e2:42:ec:2d:
         11:ad:bc:c0:5b:76:a3:e6:0f:cf:c8:d6:cc:9e:ff:8f:63:ab:
         13:16:1f:d0:ca:44:c0:f5:ac:bb:4a:32:b4:24:78:49:50:ab:
         30:3b:86:a3:d3:98:c6:03:ef:83:b3:2a:2b:78:81:66:04:db:
         ff:94:4a:7a:f7:ea:65:35:d4:55:a5:df:a3:71:c0:69:e9:d3:
         c7:16:88:1c:78:7c:d6:c1:74:97:14:59:7a:55:b3:f3:d2:e2:
         f0:8c:e9:9a:77:f2:d4:fa:89:dd:6f:ce:a7:28:e4:e9:ab:c6:
         83:31:07:0f:85:93:61:71:87:55:11:67:c3:1d:43:4e:ca:ec:
         79:45:30:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:22:45 2024 by rpki-client on console-fra.rpki-client.org