Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/s2dOgi84dtJ96u1fZtvpwaQi6xY.mft
File:                     s2dOgi84dtJ96u1fZtvpwaQi6xY.mft (raw, json)
Hash identifier:          3Ajvvb4D0sdKJsFsDJXheLTVwyJelFOA59OT6gKeqng=
Subject key identifier:   6E:AA:3E:D5:A6:68:7B:C5:1F:27:7D:10:3F:E3:E8:F4:98:1B:BD:33
Authority key identifier: B3:67:4E:82:2F:38:76:D2:7D:EA:ED:5F:66:DB:E9:C1:A4:22:EB:16
Certificate issuer:       /CN=b3674e822f3876d27deaed5f66dbe9c1a422eb16
Certificate serial:       01901EFD8DDEB357F37D5C06F89A9045D51B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/s2dOgi84dtJ96u1fZtvpwaQi6xY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/s2dOgi84dtJ96u1fZtvpwaQi6xY.mft
Manifest number:          0195
Signing time:             Sun 16 Jun 2024 03:00:51 +0000
Manifest this update:     Sun 16 Jun 2024 03:00:51 +0000
Manifest next update:     Mon 17 Jun 2024 03:00:51 +0000
Files and hashes:         1: DGensIxGf8XhnTgA6Zh5Xccheuo.roa (hash: n4LQZKgjWlJtsj9XBGINrSrdTHtIqF5pfsMkVasokpI=)
                          2: s2dOgi84dtJ96u1fZtvpwaQi6xY.crl (hash: fQlSpzQ5CSBebrobdnvFobeu0HjPQXkyoiungU4YsoM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/s2dOgi84dtJ96u1fZtvpwaQi6xY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/s2dOgi84dtJ96u1fZtvpwaQi6xY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/s2dOgi84dtJ96u1fZtvpwaQi6xY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:fd:8d:de:b3:57:f3:7d:5c:06:f8:9a:90:45:d5:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b3674e822f3876d27deaed5f66dbe9c1a422eb16
        Validity
            Not Before: Jun 16 03:00:51 2024 GMT
            Not After : Jun 17 03:00:51 2024 GMT
        Subject: CN=6eaa3ed5a6687bc51f277d103fe3e8f4981bbd33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:83:8e:79:ac:8f:2c:c6:77:3f:8b:5d:29:95:
                    f6:4b:f7:9c:9e:0d:77:ef:94:b5:10:97:b9:a6:10:
                    05:ec:26:f8:79:13:ff:d7:d1:d5:63:b1:fa:0d:e2:
                    67:fd:8a:a0:12:50:6c:b9:a9:b4:27:20:f0:42:3f:
                    6f:85:34:67:ad:46:86:04:ea:27:da:0b:78:41:7e:
                    6b:c9:ce:78:75:9f:f3:84:03:1f:55:10:cf:f7:5c:
                    8e:ca:b7:fd:0b:22:31:43:02:08:c5:2f:86:18:63:
                    9c:52:a0:aa:ff:21:c1:00:2a:74:6b:50:77:9b:22:
                    6b:06:cd:53:46:b3:60:a9:e3:0b:cb:44:43:e8:f2:
                    1d:f6:23:d8:ba:c5:49:64:a0:68:9d:b3:da:82:0c:
                    46:1f:99:de:b9:25:62:2e:71:f0:62:27:de:94:f0:
                    fb:36:6a:f3:d3:72:82:33:91:f6:4f:5f:3b:df:25:
                    02:ab:f9:98:00:6c:a8:31:e6:0f:3a:21:d3:6b:69:
                    a8:66:df:b0:2b:91:b5:0f:1a:ab:bd:9b:0b:56:c9:
                    6e:9b:26:64:fc:d2:60:06:bf:84:c3:20:0f:4c:bf:
                    ff:3e:6e:b4:52:25:a4:41:e5:06:0f:d9:3f:e5:e6:
                    1b:f8:0e:b8:7f:da:68:21:08:5e:c9:d7:89:56:f1:
                    43:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6E:AA:3E:D5:A6:68:7B:C5:1F:27:7D:10:3F:E3:E8:F4:98:1B:BD:33
            X509v3 Authority Key Identifier:
                keyid:B3:67:4E:82:2F:38:76:D2:7D:EA:ED:5F:66:DB:E9:C1:A4:22:EB:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s2dOgi84dtJ96u1fZtvpwaQi6xY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/s2dOgi84dtJ96u1fZtvpwaQi6xY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/s2dOgi84dtJ96u1fZtvpwaQi6xY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:14:cc:9e:74:fb:e2:67:ed:3a:3d:78:91:44:4e:f8:79:d9:
         18:6b:c4:ad:78:e5:0e:6d:7e:99:cd:a5:31:79:1f:3b:1d:c3:
         25:0e:ad:49:9c:eb:a9:5c:b8:6c:b0:00:bc:a4:1d:12:59:e9:
         e9:09:ae:f0:9c:07:9c:f3:32:fa:52:95:1f:bc:6c:72:db:1c:
         be:0f:07:8e:40:b0:35:d2:6c:5b:17:d3:d9:3c:2f:cc:47:f0:
         50:44:f8:26:cc:cd:c8:60:a3:66:ef:00:be:c5:7b:7b:a6:34:
         27:01:16:34:86:9a:65:c8:00:2f:9b:b4:01:7c:5e:08:8d:6d:
         2b:98:63:b2:d4:72:73:17:16:39:37:3d:c3:86:ea:26:cc:95:
         c5:ab:15:c0:a3:a2:37:4a:8a:e2:c7:29:6d:d3:de:dc:6f:e1:
         69:64:61:e2:d0:25:9f:f7:34:eb:72:71:55:47:73:f9:1e:d4:
         bc:e5:e8:c7:63:8e:ab:e1:21:0a:4f:78:ce:ed:f1:2d:2a:82:
         6f:bf:7f:e8:b4:21:2e:c3:49:47:59:5e:4f:47:6f:d8:91:94:
         82:e5:b8:31:26:1c:70:5d:a9:f6:53:f8:33:40:a0:e9:4f:39:
         62:d1:2c:7c:e3:07:2e:35:fa:7b:4e:e6:f1:85:e8:aa:86:59:
         d0:57:1c:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 04:49:04 2024 by rpki-client on console-fra.rpki-client.org