Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
File:                     ukQzhlmFp7teJpw3lK5vFkz8Lds.mft (raw, json)
Hash identifier:          dOZP7j0gD+5yc30w3EKu9enA839+l81aYDNffwerK3Q=
Subject key identifier:   3D:EE:C0:97:DF:A6:57:86:52:A1:68:E4:47:47:D5:34:58:15:69:44
Authority key identifier: BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB
Certificate issuer:       /CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
Certificate serial:       0190448CA2A285649B1B075907B7D45E7BC7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
Manifest number:          01B9
Signing time:             Sun 23 Jun 2024 10:03:05 +0000
Manifest this update:     Sun 23 Jun 2024 10:03:05 +0000
Manifest next update:     Mon 24 Jun 2024 10:03:05 +0000
Files and hashes:         1: guUGRnzj5pwFHeQhW8ZyJN7k9iQ.roa (hash: gLHmuP0nLF/zGn0SSzgY4xfAayhoAMF8AAfJyBCxfuQ=)
                          2: ukQzhlmFp7teJpw3lK5vFkz8Lds.crl (hash: MnN67Hl5+aMpNc6+rvIxO+GNd8Gi/O/88fEdr0S/8qY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 10:03:05 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:44:8c:a2:a2:85:64:9b:1b:07:59:07:b7:d4:5e:7b:c7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ba4433865985a7bb5e269c3794ae6f164cfc2ddb
        Validity
            Not Before: Jun 23 10:03:05 2024 GMT
            Not After : Jun 24 10:03:05 2024 GMT
        Subject: CN=3deec097dfa6578652a168e44747d53458156944
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:48:c4:08:3f:5a:96:fe:73:b6:ae:6a:f6:68:
                    33:51:15:62:1f:78:6b:e0:97:dd:b9:2f:b7:8d:54:
                    89:5b:cf:28:59:82:c4:f9:fa:7b:00:85:e0:8e:fb:
                    73:9b:7d:3b:e0:55:25:2b:9e:9c:3f:29:ab:81:a1:
                    e6:1e:a5:b7:9b:85:dd:f9:66:92:42:30:ed:b3:fe:
                    92:42:c5:cc:92:17:86:21:0a:20:98:f9:11:40:02:
                    d5:8b:48:60:f9:bf:85:50:ad:d2:38:f2:e3:ab:6b:
                    87:0b:36:4f:8e:0f:bf:84:ab:13:6a:3c:2e:ad:12:
                    cf:43:b9:f2:af:18:6a:d3:f0:5c:0f:a1:2d:b0:47:
                    ca:27:fa:1e:d0:8a:20:75:e3:f0:d1:3f:be:f8:79:
                    15:4a:6b:0f:9c:70:f3:e7:1c:94:f7:62:92:9b:04:
                    dd:c5:45:d6:f0:2a:54:4d:76:f1:84:bb:2c:1b:74:
                    ef:7b:b0:4b:56:07:b2:ef:a6:b9:ec:78:e8:f7:b8:
                    17:0e:d7:1f:d5:ed:c4:76:f8:52:aa:0e:2a:0d:0a:
                    fa:80:ff:02:b5:b8:97:4a:aa:15:c9:9e:dd:e3:61:
                    08:ad:90:b3:31:0e:e9:8b:3a:93:cf:81:64:18:c1:
                    84:e2:fd:f9:74:db:45:3d:33:4f:e0:bc:8a:a4:e2:
                    ac:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:EE:C0:97:DF:A6:57:86:52:A1:68:E4:47:47:D5:34:58:15:69:44
            X509v3 Authority Key Identifier:
                keyid:BA:44:33:86:59:85:A7:BB:5E:26:9C:37:94:AE:6F:16:4C:FC:2D:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ukQzhlmFp7teJpw3lK5vFkz8Lds.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ab3219-c64b-470e-8341-3a12027400e6/1/ukQzhlmFp7teJpw3lK5vFkz8Lds.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:28:f0:96:32:51:3f:ec:31:f8:bd:2c:12:ad:4c:37:98:ca:
         e2:57:ff:41:65:60:b8:f5:34:2c:32:5b:ca:c0:ab:c0:e8:f7:
         ea:92:d1:ed:06:99:f1:56:34:cb:26:59:18:0b:16:5a:87:8b:
         e7:e4:8e:52:10:3c:91:ca:13:07:c7:4d:2c:1c:eb:f6:24:54:
         f5:72:34:42:5a:3b:f7:75:6c:a6:96:e3:cf:c4:38:68:36:45:
         c3:eb:22:57:7b:60:3b:fb:83:10:60:b7:50:d5:3e:68:c9:d1:
         a0:b9:67:5e:98:fe:67:7d:10:3d:db:ba:d2:f7:e8:c9:5f:c7:
         27:46:b3:65:c3:59:26:28:30:b8:22:b2:12:fe:56:ff:18:65:
         34:d3:1b:81:0d:d9:fb:cc:42:44:94:3b:5a:33:86:34:8f:e4:
         27:1e:35:d2:bd:f0:ed:08:12:c7:33:50:28:82:7f:e6:31:e6:
         ed:1b:6b:88:c6:13:bc:e0:18:47:e2:d2:fc:3d:c3:af:7a:8a:
         46:32:20:e7:da:bf:18:d1:19:f7:a8:74:f9:7f:f1:81:44:bb:
         0c:c9:95:3a:92:cf:1d:93:d6:6d:d1:a4:60:97:76:81:ec:a6:
         8f:76:93:8a:cd:25:b4:f0:a6:2b:5a:00:66:9a:44:97:c8:88:
         86:da:81:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 17:54:19 2024 by rpki-client on console-ams.rpki-client.org