Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
File:                     he1PzEWWTU6nL8RJLE15VxMyEMM.mft (raw, json)
Hash identifier:          aTZp94yLvKpKe17c2f8uFRVeP9WRO/ilInaaY3p6i9w=
Subject key identifier:   32:46:91:53:B9:8F:75:E9:50:B4:BE:0A:22:FC:27:65:81:97:CB:85
Authority key identifier: 85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3
Certificate issuer:       /CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
Certificate serial:       01901CD83B099B0169AFBA8026551032C01A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
Manifest number:          11C4
Signing time:             Sat 15 Jun 2024 17:00:51 +0000
Manifest this update:     Sat 15 Jun 2024 17:00:51 +0000
Manifest next update:     Sun 16 Jun 2024 17:00:51 +0000
Files and hashes:         1: he1PzEWWTU6nL8RJLE15VxMyEMM.crl (hash: MJSBvmj6gtilnRefnVdGwNwGVE4xjeMBQzEVo4www2Y=)
                          2: mZGPbFaLBsHgguDfmAi8_TEEi2s.roa (hash: UljmrIj007cf+lf1x882L5xCfcCqUtJduwq/P7Qzm8o=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1c:d8:3b:09:9b:01:69:af:ba:80:26:55:10:32:c0:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=85ed4fcc45964d4ea72fc4492c4d7957133210c3
        Validity
            Not Before: Jun 15 17:00:51 2024 GMT
            Not After : Jun 16 17:00:51 2024 GMT
        Subject: CN=32469153b98f75e950b4be0a22fc27658197cb85
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:ba:aa:5e:c7:df:f4:7a:5a:ac:d5:3c:1e:1e:
                    2f:51:f1:c7:c3:69:95:89:e7:22:65:ba:94:b7:9a:
                    73:8f:3c:eb:98:43:06:a1:06:b1:92:7a:60:9f:38:
                    77:4f:ef:ba:1f:58:36:81:e7:a1:20:8a:f4:d5:7f:
                    92:4d:40:de:2e:44:04:c5:aa:27:50:cb:c4:88:3a:
                    2a:79:9c:37:2c:15:50:25:18:ed:d4:8f:dc:78:81:
                    b6:c9:73:ad:44:e4:80:7a:b7:a9:ea:88:b9:8a:c1:
                    89:3d:d1:1d:b3:80:7a:71:65:88:80:b8:53:2e:1f:
                    d6:b7:85:7b:70:1e:9d:84:1c:8a:fb:b3:8b:e9:47:
                    92:5e:3e:2f:4f:01:fa:92:97:4a:ac:d3:33:f3:fd:
                    dd:77:20:cb:8c:80:61:ca:3d:b9:40:5f:1c:3e:52:
                    fa:91:5d:29:a9:a0:8c:31:3d:36:84:a6:87:bd:f9:
                    c9:56:7c:ab:d5:f4:e9:44:43:60:bb:86:33:b9:e2:
                    82:c4:f5:d7:3b:b5:0f:50:d5:c1:60:70:ed:45:4a:
                    c4:5f:e8:90:cd:4c:eb:89:15:31:b3:31:3e:e0:53:
                    c9:d9:4f:62:ae:a4:82:73:01:ae:ad:eb:30:a9:15:
                    8e:0a:85:ad:e4:59:04:6a:10:e0:de:be:7d:3a:17:
                    9e:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:46:91:53:B9:8F:75:E9:50:B4:BE:0A:22:FC:27:65:81:97:CB:85
            X509v3 Authority Key Identifier:
                keyid:85:ED:4F:CC:45:96:4D:4E:A7:2F:C4:49:2C:4D:79:57:13:32:10:C3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/he1PzEWWTU6nL8RJLE15VxMyEMM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/84/ca460e-6635-481b-b6e9-f85a7cb1d192/1/he1PzEWWTU6nL8RJLE15VxMyEMM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:32:fb:14:55:02:6f:29:6b:ab:22:e0:7e:05:62:36:59:49:
         64:25:d4:28:97:ad:17:4b:cd:b6:53:76:05:dd:75:f4:bc:0d:
         47:9b:39:f0:b8:3b:f9:78:69:1e:c0:68:ef:c0:18:34:5c:0a:
         54:57:f1:33:b0:79:38:1a:3c:14:a0:f6:36:57:ab:a2:35:8c:
         35:c2:17:13:f5:40:8c:81:7c:e4:dd:8a:24:3f:6f:30:45:18:
         cb:cb:09:6a:a6:d1:80:e5:ed:98:6d:58:90:a7:51:cf:3d:bc:
         7f:84:81:8b:d8:40:2f:2b:f0:56:24:0f:ba:7d:e8:68:9d:be:
         f6:09:2a:64:21:4d:76:d8:1e:13:a0:8b:d5:95:5d:0f:f7:29:
         7d:da:40:20:8d:29:c6:8f:73:fd:88:ad:f2:c0:05:77:ff:4a:
         79:b9:f9:97:67:96:77:dc:b7:5e:7a:c6:5a:e0:49:44:63:b1:
         93:1a:f2:8f:0a:94:c0:27:54:32:9a:d5:22:1e:36:13:85:85:
         a7:5f:c5:01:e7:ba:e5:86:25:db:48:ea:f4:f8:8f:82:a5:0d:
         e0:eb:e9:80:8a:4d:18:14:d8:29:0d:47:17:ba:14:0f:f2:52:
         76:4c:db:1c:50:9b:8c:5f:46:6d:52:0e:c3:30:07:49:fa:4a:
         c5:07:90:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 20:02:55 2024 by rpki-client on console-fra.rpki-client.org