Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
File:                     i4gBVDgSBAR31HRCKUZshTfUUXE.mft (raw, json)
Hash identifier:          hihtpc+WepGfJ7bmystUe33gb3R5X+P4xwb7bElEojw=
Subject key identifier:   B2:91:B9:1C:E1:64:22:DE:92:E8:AE:E4:B5:26:B9:BC:5E:9F:7C:8E
Authority key identifier: 8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71
Certificate issuer:       /CN=8b8801543812040477d4744229466c8537d45171
Certificate serial:       01901E58C3ACC51351C29248FE358BA0D609
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
Manifest number:          090E
Signing time:             Sun 16 Jun 2024 00:00:52 +0000
Manifest this update:     Sun 16 Jun 2024 00:00:52 +0000
Manifest next update:     Mon 17 Jun 2024 00:00:52 +0000
Files and hashes:         1: i4gBVDgSBAR31HRCKUZshTfUUXE.crl (hash: cS6OxxG0kn9djBFvwT7IFjtWBRWtZmRSuLDB5F2rLi4=)
                          2: iv1X5_oDya1PShhaqe7eVpxAedQ.roa (hash: WFFNaEIdoqyKNntAnMIeqd6urftS0Xj65824vTaquVU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:58:c3:ac:c5:13:51:c2:92:48:fe:35:8b:a0:d6:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b8801543812040477d4744229466c8537d45171
        Validity
            Not Before: Jun 16 00:00:52 2024 GMT
            Not After : Jun 17 00:00:52 2024 GMT
        Subject: CN=b291b91ce16422de92e8aee4b526b9bc5e9f7c8e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:40:e6:d8:be:e1:09:8c:c8:5b:83:81:4c:65:
                    d1:cb:40:35:6b:37:07:21:11:dd:09:06:19:df:2c:
                    81:89:c9:92:8a:74:5e:64:bc:ee:c4:9f:6a:87:78:
                    9b:c3:c9:59:5c:3b:91:67:88:d4:e8:4b:a6:27:cd:
                    17:6f:0a:75:b4:23:50:7d:a5:5d:e0:cb:71:8c:9a:
                    f2:cd:92:88:99:b9:44:fb:49:56:18:57:61:59:c8:
                    ea:25:70:6d:8b:c4:95:f6:16:7b:ac:29:02:b2:01:
                    f8:90:39:ff:17:ba:4f:81:0c:a1:df:1f:28:cf:3d:
                    b8:ff:02:ef:0e:12:80:85:f3:f5:e4:53:23:ad:60:
                    f6:3a:e6:23:9e:ce:8c:72:87:5d:eb:b5:9d:8e:31:
                    7b:d3:90:71:c1:85:ca:2f:31:2a:2f:17:1c:59:72:
                    6f:e1:f6:8a:ee:53:92:00:6a:e8:41:cf:e8:ad:0e:
                    0c:37:fa:94:93:19:46:10:47:22:ee:e7:a9:4f:57:
                    ca:39:97:65:76:5c:37:d2:9f:64:66:b6:9e:69:18:
                    6b:1c:85:af:71:13:ee:e7:4f:73:29:ae:bd:ab:50:
                    11:2d:5e:61:e5:d8:78:b2:bb:bb:f8:b3:1b:e4:d1:
                    13:6d:bf:3c:63:ab:d4:31:b7:52:8c:00:1d:40:cf:
                    9c:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:91:B9:1C:E1:64:22:DE:92:E8:AE:E4:B5:26:B9:BC:5E:9F:7C:8E
            X509v3 Authority Key Identifier:
                keyid:8B:88:01:54:38:12:04:04:77:D4:74:42:29:46:6C:85:37:D4:51:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i4gBVDgSBAR31HRCKUZshTfUUXE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89bb71-3fe9-42d2-a73b-13ae98aa7d33/1/i4gBVDgSBAR31HRCKUZshTfUUXE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         93:5d:35:f2:f5:4b:6e:0b:d4:b2:91:05:10:39:92:b8:84:29:
         30:e5:71:e3:b7:48:73:e6:df:61:e8:fe:46:e5:da:95:db:d6:
         e9:7c:68:f3:e7:7f:d4:db:3a:64:8e:3c:b8:6d:64:31:cf:0f:
         4f:2a:7a:a1:68:5a:23:61:5b:d2:1e:f5:8f:d6:ac:7c:64:1b:
         1e:2d:c1:5d:c4:2f:6e:bd:32:44:c3:40:61:48:e5:45:ea:b8:
         f0:ab:f1:ab:58:05:17:ff:d2:37:d8:3c:e6:a0:74:87:93:f4:
         23:ab:44:15:dd:d3:fe:ca:a6:bb:1c:d2:42:7b:fd:c3:da:bc:
         49:70:d8:c9:3b:5f:4b:0e:21:ea:ee:86:88:50:82:22:3e:88:
         49:6e:9e:85:d3:99:17:cc:aa:06:2c:f9:d7:69:75:2e:08:25:
         57:d8:84:1d:09:cc:5c:fa:67:84:41:3f:82:ec:d4:b6:12:6e:
         e8:cd:ce:80:dd:09:9f:e3:bf:d6:78:09:ef:73:e2:0c:46:d5:
         84:3f:54:aa:6a:ca:ad:18:ea:b2:c6:9d:37:31:73:2b:4b:af:
         8b:da:c1:a7:f2:19:a2:b9:c1:ce:2c:f9:07:ac:6f:a2:18:1d:
         0b:b9:c6:6e:fb:0d:65:c7:e6:66:5b:ac:d4:ce:26:d5:30:ad:
         c7:2b:36:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:07:28 2024 by rpki-client on console-fra.rpki-client.org