Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/NhfAZZZmmF4YXYQSHowgo2ROqY0.mft
File:                     NhfAZZZmmF4YXYQSHowgo2ROqY0.mft (raw, json)
Hash identifier:          JAx0IOnQkboFQaJ056zvone6pe/RR3e5iLn07NeuSkM=
Subject key identifier:   49:BC:74:AD:CF:FC:E7:78:12:32:83:FB:97:DE:A7:99:81:CE:67:E6
Authority key identifier: 36:17:C0:65:96:66:98:5E:18:5D:84:12:1E:8C:20:A3:64:4E:A9:8D
Certificate issuer:       /CN=3617c0659666985e185d84121e8c20a3644ea98d
Certificate serial:       01901FDC09FD06E60B73F69A4472DB689DE6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NhfAZZZmmF4YXYQSHowgo2ROqY0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/NhfAZZZmmF4YXYQSHowgo2ROqY0.mft
Manifest number:          0A4B
Signing time:             Sun 16 Jun 2024 07:03:52 +0000
Manifest this update:     Sun 16 Jun 2024 07:03:52 +0000
Manifest next update:     Mon 17 Jun 2024 07:03:52 +0000
Files and hashes:         1: NhfAZZZmmF4YXYQSHowgo2ROqY0.crl (hash: rBfVwPWFJIyd2FNIET8eSMN3lK58jP1lcIUjklrhlhI=)
                          2: mSexcdv3THphjss5gs2IMjhKK7Q.roa (hash: YntZtWxXwZ22DeBEbrX9imY10T1i8wOzOIBLiJPftZ8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/NhfAZZZmmF4YXYQSHowgo2ROqY0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/NhfAZZZmmF4YXYQSHowgo2ROqY0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/NhfAZZZmmF4YXYQSHowgo2ROqY0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1f:dc:09:fd:06:e6:0b:73:f6:9a:44:72:db:68:9d:e6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3617c0659666985e185d84121e8c20a3644ea98d
        Validity
            Not Before: Jun 16 07:03:52 2024 GMT
            Not After : Jun 17 07:03:52 2024 GMT
        Subject: CN=49bc74adcffce778123283fb97dea79981ce67e6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:1d:17:6a:6c:d7:d8:a0:1c:82:e2:95:4e:dc:
                    01:e1:f2:8d:5e:4d:d5:22:f6:3f:0c:45:80:52:da:
                    9a:ba:87:a8:3a:6a:db:8d:ae:4e:9c:00:17:b4:f9:
                    82:24:5c:ad:32:3e:b5:3c:01:63:fa:5d:96:0a:e4:
                    65:5b:3f:8a:40:81:86:11:39:1e:e7:bd:b8:21:d9:
                    43:d6:d4:28:35:b9:6b:0a:dc:48:66:62:0a:53:fd:
                    3d:ca:27:b5:50:e5:f6:a9:50:c3:53:eb:95:eb:15:
                    c6:c0:14:86:0a:12:a5:57:e4:1e:4b:37:fc:70:4a:
                    6b:93:6f:2a:6d:5a:11:d2:87:18:14:1a:78:ba:ea:
                    87:23:8e:05:ed:6d:eb:c6:b3:b6:b4:be:62:6a:2a:
                    21:f2:32:fc:d1:0f:a5:03:2a:19:11:de:48:f5:80:
                    9a:47:0c:e4:67:b5:5b:58:71:99:fc:17:ce:c6:ef:
                    e8:b3:f3:78:21:a0:0f:e9:5b:0f:8c:ce:14:df:11:
                    44:b6:ed:64:67:8e:d9:74:7b:f3:d2:f7:dc:02:64:
                    b4:2a:8a:ff:db:dc:c7:fa:6e:b1:a5:93:3f:e5:3a:
                    f8:e1:4a:af:95:9f:cd:d0:3f:e7:70:1a:07:cf:be:
                    7d:08:3a:2c:cf:85:82:a6:26:e3:fc:b9:23:48:e8:
                    21:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:BC:74:AD:CF:FC:E7:78:12:32:83:FB:97:DE:A7:99:81:CE:67:E6
            X509v3 Authority Key Identifier:
                keyid:36:17:C0:65:96:66:98:5E:18:5D:84:12:1E:8C:20:A3:64:4E:A9:8D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NhfAZZZmmF4YXYQSHowgo2ROqY0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/NhfAZZZmmF4YXYQSHowgo2ROqY0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d1791d-1c94-42e6-9e3c-67acd2c88051/1/NhfAZZZmmF4YXYQSHowgo2ROqY0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         16:a9:58:79:6e:80:7f:83:09:9d:2e:59:cc:f6:b6:9c:30:59:
         4d:09:12:66:8a:ff:d3:3c:90:72:a6:28:55:4f:81:cf:2d:31:
         16:ad:6c:df:6f:17:34:54:b7:75:6f:47:37:23:d8:c2:a8:29:
         80:f6:52:79:03:53:a1:fd:2c:99:87:6d:1b:d5:1d:03:87:77:
         9b:cc:99:c8:cc:6b:b5:e5:d3:f6:65:38:68:9d:6f:b1:cc:17:
         98:af:34:29:9b:af:ad:22:c6:17:17:96:d5:61:2f:09:42:5b:
         44:96:2c:34:ab:0a:c2:d1:14:ea:ab:97:ef:6d:6c:56:79:d8:
         20:ec:8e:5b:06:a9:8f:44:0b:0d:bc:29:fa:eb:08:0a:82:7e:
         43:6a:7b:cf:3d:0f:15:70:a8:ee:9b:7e:58:50:96:dc:b0:00:
         2c:d6:0f:86:e5:c3:eb:62:1e:4a:e1:79:c1:10:b6:49:90:86:
         22:a2:f1:1e:99:9f:6f:a1:54:49:aa:26:de:87:5f:95:48:bc:
         b0:2e:34:12:06:88:ae:06:ee:5e:a1:03:6f:84:88:47:1a:8f:
         cc:be:8f:05:6a:a9:5e:5a:18:d0:1b:d1:03:42:cd:12:68:b3:
         dc:7a:2d:c9:e5:0a:1b:d7:46:34:38:20:53:dc:4a:5c:ce:5a:
         db:9f:70:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZAf3An9BuYLc/aaRHLbaJ3mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2MTdjMDY1OTY2Njk4NWUxODVkODQxMjFlOGMyMGEzNjQ0
ZWE5OGQwHhcNMjQwNjE2MDcwMzUyWhcNMjQwNjE3MDcwMzUyWjAzMTEwLwYDVQQD
Eyg0OWJjNzRhZGNmZmNlNzc4MTIzMjgzZmI5N2RlYTc5OTgxY2U2N2U2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwh0XamzX2KAcguKVTtwB4fKNXk3V
IvY/DEWAUtqauoeoOmrbja5OnAAXtPmCJFytMj61PAFj+l2WCuRlWz+KQIGGETke
5724IdlD1tQoNblrCtxIZmIKU/09yie1UOX2qVDDU+uV6xXGwBSGChKlV+QeSzf8
cEprk28qbVoR0ocYFBp4uuqHI44F7W3rxrO2tL5iaioh8jL80Q+lAyoZEd5I9YCa
RwzkZ7VbWHGZ/BfOxu/os/N4IaAP6VsPjM4U3xFEtu1kZ47ZdHvz0vfcAmS0Kor/
29zH+m6xpZM/5Tr44UqvlZ/N0D/ncBoHz759CDosz4WCpibj/LkjSOghKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEm8dK3P/Od4EjKD+5fep5mBzmfmMB8GA1UdIwQY
MBaAFDYXwGWWZpheGF2EEh6MIKNkTqmNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTmhmQVpaWm1tRjRZWFlRU0hvd2dvMlJPcVkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9kMTc5MWQtMWM5NC00MmU2LTllM2Mt
NjdhY2QyYzg4MDUxLzEvTmhmQVpaWm1tRjRZWFlRU0hvd2dvMlJPcVkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9kMTc5MWQtMWM5NC00MmU2LTllM2MtNjdhY2QyYzg4MDUx
LzEvTmhmQVpaWm1tRjRZWFlRU0hvd2dvMlJPcVkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFqlYeW6A
f4MJnS5ZzPa2nDBZTQkSZor/0zyQcqYoVU+Bzy0xFq1s328XNFS3dW9HNyPYwqgp
gPZSeQNTof0smYdtG9UdA4d3m8yZyMxrteXT9mU4aJ1vscwXmK80KZuvrSLGFxeW
1WEvCUJbRJYsNKsKwtEU6quX721sVnnYIOyOWwapj0QLDbwp+usICoJ+Q2p7zz0P
FXCo7pt+WFCW3LAALNYPhuXD62IeSuF5wRC2SZCGIqLxHpmfb6FUSaom3odflUi8
sC40EgaIrgbuXqEDb4SIRxqPzL6PBWqpXloY0BvRA0LNEmiz3HotyeUKG9dGNDgg
U9xKXM5a259wAA==
-----END CERTIFICATE-----
Generated at Sun Jun 16 08:04:20 2024 by rpki-client on console-ams.rpki-client.org