Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fdb003-fae3-4a69-9c91-e3d2f64fddd4/1/HGce_RKBEUKXWJ51k6fgUFTZJVs.mft
File:                     HGce_RKBEUKXWJ51k6fgUFTZJVs.mft (raw, json)
Hash identifier:          GCQEH2R7Pt5ykg2QSeiBp/LOFTSQHfqrgu2GWJc+aT0=
Subject key identifier:   19:C2:DA:5A:6F:C5:2B:EC:37:53:14:76:C3:A6:7D:BB:1B:24:7B:EB
Authority key identifier: 1C:67:1E:FD:12:81:11:42:97:58:9E:75:93:A7:E0:50:54:D9:25:5B
Certificate issuer:       /CN=1c671efd1281114297589e7593a7e05054d9255b
Certificate serial:       01901D4694E7701FB7A45E3DEE607E8139EA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/HGce_RKBEUKXWJ51k6fgUFTZJVs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/87/fdb003-fae3-4a69-9c91-e3d2f64fddd4/1/HGce_RKBEUKXWJ51k6fgUFTZJVs.mft
Manifest number:          0CC5
Signing time:             Sat 15 Jun 2024 19:01:23 +0000
Manifest this update:     Sat 15 Jun 2024 19:01:23 +0000
Manifest next update:     Sun 16 Jun 2024 19:01:23 +0000
Files and hashes:         1: HGce_RKBEUKXWJ51k6fgUFTZJVs.crl (hash: MBJ7K1/VqkJpKgR3YCtflbcgEr+5x3GV14ixDZ8Uh0Q=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/87/fdb003-fae3-4a69-9c91-e3d2f64fddd4/1/HGce_RKBEUKXWJ51k6fgUFTZJVs.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/87/fdb003-fae3-4a69-9c91-e3d2f64fddd4/1/HGce_RKBEUKXWJ51k6fgUFTZJVs.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/HGce_RKBEUKXWJ51k6fgUFTZJVs.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:46:94:e7:70:1f:b7:a4:5e:3d:ee:60:7e:81:39:ea
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1c671efd1281114297589e7593a7e05054d9255b
        Validity
            Not Before: Jun 15 19:01:23 2024 GMT
            Not After : Jun 16 19:01:23 2024 GMT
        Subject: CN=19c2da5a6fc52bec37531476c3a67dbb1b247beb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:fe:62:f8:64:8e:a7:1c:01:13:b2:ed:65:e5:
                    82:14:86:26:23:58:37:ce:9c:05:49:e6:4a:1d:a1:
                    a3:28:4a:f2:4d:7f:ff:2e:77:d0:82:98:20:2d:c6:
                    87:70:70:ad:96:08:aa:a0:08:1c:e9:44:9c:98:9f:
                    da:f8:00:21:cc:13:8c:56:6b:2a:10:cc:15:55:b4:
                    22:13:07:60:91:7d:8e:1b:93:14:d4:d1:bf:57:3e:
                    cc:9e:67:ba:ab:e4:44:80:92:40:d8:3f:52:28:51:
                    9a:90:c7:2d:f0:8c:78:d1:94:fa:78:ea:fe:97:ff:
                    1c:db:91:68:17:23:5e:06:85:19:bf:02:ad:c7:ae:
                    28:7b:41:1a:8b:94:2d:ed:ba:1c:3b:9e:92:e3:4c:
                    82:4f:46:ff:7f:32:f8:05:f0:00:ad:bc:97:91:a1:
                    88:29:5a:b1:b0:0b:f6:48:d4:0f:4e:ee:30:08:de:
                    79:83:c7:0e:c7:0c:cb:bb:66:21:4d:cf:ba:f7:79:
                    05:94:83:9f:d9:89:85:0a:51:bc:1a:e0:14:2d:28:
                    ae:d9:f3:f2:9c:1f:fa:bd:4c:97:22:3e:d4:dd:b1:
                    28:c2:8d:54:f8:ad:d4:6b:27:77:95:d4:a4:4d:c8:
                    78:1f:02:2b:13:d7:5a:ae:59:e0:2a:a0:a9:ad:95:
                    7b:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:C2:DA:5A:6F:C5:2B:EC:37:53:14:76:C3:A6:7D:BB:1B:24:7B:EB
            X509v3 Authority Key Identifier:
                keyid:1C:67:1E:FD:12:81:11:42:97:58:9E:75:93:A7:E0:50:54:D9:25:5B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HGce_RKBEUKXWJ51k6fgUFTZJVs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fdb003-fae3-4a69-9c91-e3d2f64fddd4/1/HGce_RKBEUKXWJ51k6fgUFTZJVs.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fdb003-fae3-4a69-9c91-e3d2f64fddd4/1/HGce_RKBEUKXWJ51k6fgUFTZJVs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a8:34:be:79:e2:65:ac:fd:18:42:b2:e8:91:08:0c:a8:9c:9c:
         f0:fb:ff:07:aa:d0:5f:bf:7f:ad:1c:c3:3d:1c:fa:05:5a:ed:
         59:7e:a4:c3:fb:21:9a:af:e7:89:40:5c:76:79:c9:fc:b8:c2:
         f5:f4:36:80:95:90:80:97:88:05:02:9a:e0:6c:c7:c9:8f:43:
         03:ff:77:3e:66:ac:aa:01:38:2f:84:50:73:5d:20:d2:6d:fc:
         1a:c9:19:3c:08:8c:7d:74:50:29:e1:85:6d:b0:4f:71:c5:e2:
         78:dd:a4:c1:f9:8d:7d:80:70:07:f4:c6:dc:0a:ee:04:f8:16:
         b2:a0:0c:a6:0a:31:d5:ee:33:64:b8:9d:30:2a:ab:89:53:89:
         77:50:b8:e8:31:de:2b:aa:c7:c4:f8:7f:3d:f5:36:5e:2a:77:
         d2:72:a1:c3:dd:3c:4b:7d:a3:39:37:c0:96:6b:74:5a:34:f5:
         80:ca:a2:d2:a9:bc:44:2f:0f:72:0e:1c:9a:f1:0e:d3:37:fd:
         8e:c0:b7:0a:55:96:ce:27:90:04:ab:42:da:b2:ef:2a:08:6b:
         03:eb:3a:1d:b4:90:02:4f:ba:ba:ac:56:41:22:a3:01:ac:2d:
         62:34:14:df:fd:a9:48:0f:7b:e5:d2:14:56:e1:60:ca:d3:a8:
         82:16:bf:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 21:25:33 2024 by rpki-client on console-ams.rpki-client.org