Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.mft
File:                     o_GyKyBUUCv9OIkTgpEQPYO2pQ4.mft (raw, json)
Hash identifier:          sKVTL6Z7IZ9uF/H4qNTkvwBlKEt2xrXLNmijTwK7yfM=
Subject key identifier:   6D:EC:D8:26:17:70:6C:E9:8B:E7:32:1E:C9:87:91:01:DE:D8:E9:04
Authority key identifier: A3:F1:B2:2B:20:54:50:2B:FD:38:89:13:82:91:10:3D:83:B6:A5:0E
Certificate issuer:       /CN=a3f1b22b2054502bfd3889138291103d83b6a50e
Certificate serial:       019041894D833307758B0015F404A3C29844
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.mft
Manifest number:          0113
Signing time:             Sat 22 Jun 2024 20:00:35 +0000
Manifest this update:     Sat 22 Jun 2024 20:00:35 +0000
Manifest next update:     Sun 23 Jun 2024 20:00:35 +0000
Files and hashes:         1: b_m9zZPukWU3nxRyS1fTJliQhN8.roa (hash: I6eJlnuSLUHMr8STy0Ufi4WiqQwQieCRudOds8B8sdc=)
                          2: o_GyKyBUUCv9OIkTgpEQPYO2pQ4.crl (hash: qMrqJuXYwPqhfQwc2rvRovcvieGpzNb2qHwM1rJOPZ4=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 20:00:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:41:89:4d:83:33:07:75:8b:00:15:f4:04:a3:c2:98:44
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a3f1b22b2054502bfd3889138291103d83b6a50e
        Validity
            Not Before: Jun 22 20:00:35 2024 GMT
            Not After : Jun 23 20:00:35 2024 GMT
        Subject: CN=6decd82617706ce98be7321ec9879101ded8e904
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:24:22:e6:eb:f4:6b:43:75:73:89:3d:11:20:
                    f0:03:50:6f:fd:ac:f0:f1:ad:6d:9e:66:0b:53:0c:
                    f7:aa:65:5e:94:13:41:16:d3:86:92:3d:38:96:c6:
                    fc:28:95:e3:fa:0d:e6:9c:a0:6a:f7:5a:5e:e4:e5:
                    fc:ad:be:6c:d5:d3:c0:77:6f:59:3a:46:34:66:f0:
                    41:33:3d:ae:f8:c9:d8:58:46:98:4b:12:44:7c:6a:
                    9e:a6:4b:28:1e:45:d9:ce:37:81:45:c8:ac:56:4d:
                    e3:bd:59:4d:da:ad:12:6d:b8:d0:0b:a6:b1:15:d1:
                    26:03:dc:c6:71:6d:0c:9e:fc:f6:a8:70:13:42:95:
                    af:6f:62:aa:b6:97:5f:13:73:61:c9:b5:3d:fa:f3:
                    aa:b9:b2:f8:71:f8:4b:94:86:c4:fa:34:6d:75:a3:
                    9e:36:d8:84:b8:42:5b:bb:fd:ee:e9:54:88:6a:51:
                    96:38:c6:52:77:3e:0b:a6:0a:ce:e0:d9:ac:5e:15:
                    3d:fa:23:8d:bd:e5:76:67:81:59:3f:45:2a:17:f1:
                    d5:3e:74:0c:2f:26:41:31:33:30:f6:c6:8b:f5:a6:
                    0e:89:af:d5:9a:33:e9:8f:45:ea:5f:6c:b3:47:12:
                    b0:c1:98:3d:c0:77:e1:a7:fc:46:66:d3:b9:3d:73:
                    ce:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6D:EC:D8:26:17:70:6C:E9:8B:E7:32:1E:C9:87:91:01:DE:D8:E9:04
            X509v3 Authority Key Identifier:
                keyid:A3:F1:B2:2B:20:54:50:2B:FD:38:89:13:82:91:10:3D:83:B6:A5:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/a8aaff-12a1-4641-8b9d-24d272ce11e3/1/o_GyKyBUUCv9OIkTgpEQPYO2pQ4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:5a:0d:0d:9d:6e:a1:42:ed:c2:4c:7a:62:17:93:f1:43:62:
         72:86:84:11:3f:44:1b:8d:e1:5d:21:ab:e7:bd:a8:b8:89:b9:
         71:4d:dc:78:61:9d:76:b2:b8:7e:b6:95:cd:6e:6d:d5:eb:b3:
         12:aa:71:f1:f9:b9:fd:54:33:10:67:6d:4b:2d:70:b0:63:d8:
         72:39:82:a5:03:d0:29:fd:b1:d0:8c:43:c3:df:03:6a:8b:0a:
         e9:5c:a2:cf:71:a7:cc:5f:6d:94:e3:1c:c3:fc:66:86:91:7f:
         35:82:75:80:7a:a6:23:94:90:98:21:07:bd:4d:d6:0d:5d:cd:
         e9:76:04:8b:54:32:15:f1:42:e5:14:d8:c7:d7:b7:0b:d4:49:
         ca:3d:48:f0:21:99:dd:2f:fd:9e:69:f6:eb:41:59:3f:35:19:
         7e:a7:52:2e:20:42:a6:78:c8:42:a9:14:0f:42:19:74:94:57:
         81:c8:83:e5:4a:c4:18:0c:d6:1a:6b:08:2b:e1:e3:e9:9a:8f:
         9f:ac:37:60:d4:a8:92:4f:4f:fd:51:a6:de:fb:2e:d3:ab:30:
         30:90:2c:de:63:16:a3:59:73:37:c8:3f:22:73:c1:55:70:f4:
         e1:c1:5e:d4:db:6e:6c:4a:bf:f4:1b:f9:2a:71:56:28:92:a0:
         8f:21:ac:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:41:48 2024 by rpki-client on console-ams.rpki-client.org