Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
File:                     OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft (raw, json)
Hash identifier:          k9NVoGBudzWgXXd1AFoaKVR1GdGXWjczO6zWl3BpwWg=
Subject key identifier:   CC:73:F8:23:E1:0C:B6:B3:BE:0E:A8:F1:10:06:1D:DD:1D:4E:3C:1B
Authority key identifier: 3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
Certificate issuer:       /CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Certificate serial:       019045D4620EF669DE08862CCE6C8BA59B0F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
Manifest number:          020D
Signing time:             Sun 23 Jun 2024 16:01:04 +0000
Manifest this update:     Sun 23 Jun 2024 16:01:04 +0000
Manifest next update:     Mon 24 Jun 2024 16:01:04 +0000
Files and hashes:         1: OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl (hash: cH90HKWkp8FZyVh+v+2r6CEQsrpOwfgTDzrT2go+2GU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 15:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:45:d4:62:0e:f6:69:de:08:86:2c:ce:6c:8b:a5:9b:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3b2aa720568171620e9bc9b97dadcc74b513394f
        Validity
            Not Before: Jun 23 16:01:04 2024 GMT
            Not After : Jun 24 16:01:04 2024 GMT
        Subject: CN=cc73f823e10cb6b3be0ea8f110061ddd1d4e3c1b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:c1:82:d8:47:ca:01:29:77:a3:57:66:7b:99:
                    fa:3c:cd:b8:6e:f1:d3:84:31:37:ac:18:e2:42:6a:
                    13:48:35:5d:24:4e:b5:53:e1:c8:5d:ca:34:66:c2:
                    45:2e:41:ff:dd:9b:58:be:32:24:a6:06:68:0d:f0:
                    66:45:90:57:3d:26:6c:5c:ae:f5:67:d6:fc:f7:31:
                    7c:4c:fa:fa:df:e4:6a:77:ca:76:a6:c1:be:f1:76:
                    66:4e:5f:b2:02:70:32:1e:9f:49:48:da:d5:c3:dc:
                    bc:a5:0d:5b:a6:26:4f:c2:c5:e2:5c:fb:46:70:3e:
                    6b:43:c4:ed:58:aa:df:4a:0e:55:ca:a6:89:56:28:
                    67:48:39:04:eb:06:66:de:9a:6e:62:cc:61:15:f4:
                    75:6e:1d:fc:91:3e:7f:db:b6:76:a0:7a:fd:80:e2:
                    a2:ff:c4:b7:d0:db:4e:ae:d2:f1:4f:2a:ae:63:b2:
                    4f:50:dc:e1:13:ee:d4:d4:47:f0:32:44:d5:96:6c:
                    76:cb:94:7e:67:c6:9d:f2:8e:99:37:07:44:23:b6:
                    6c:fd:f0:41:1c:88:95:83:75:72:63:a8:47:73:51:
                    5a:3a:ba:5b:61:15:5a:df:01:34:09:dd:ec:68:2b:
                    2a:3e:e5:1c:17:1e:a2:2a:f8:36:b2:14:0f:9f:b2:
                    77:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:73:F8:23:E1:0C:B6:B3:BE:0E:A8:F1:10:06:1D:DD:1D:4E:3C:1B
            X509v3 Authority Key Identifier:
                keyid:3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         91:6f:02:93:64:67:9e:25:4e:c1:8b:7d:db:44:70:8a:05:03:
         d9:15:6b:1d:2a:d7:d2:6d:8f:02:a3:d1:38:d0:b5:0f:bb:46:
         3d:2f:09:4e:a2:29:e7:4e:ee:53:4b:99:e4:ee:7d:bd:51:12:
         c5:5a:ff:ce:67:b5:a2:ea:30:d6:65:77:61:a8:57:d4:ff:b1:
         75:50:a0:61:f8:4d:3c:27:78:c4:b6:69:a7:2d:33:b7:11:c3:
         1e:2e:f0:7d:05:d2:ee:66:86:b6:9d:26:fd:66:49:83:1e:51:
         4b:11:b8:b4:1e:56:7f:8a:9c:b0:f5:92:8d:b5:ca:b1:c3:ff:
         ac:e2:2e:6c:45:14:da:8b:42:f8:66:66:52:d6:36:84:52:84:
         c7:02:9a:cc:8a:2d:ac:3b:b2:51:df:0d:f5:b2:ee:93:b7:6c:
         61:47:d8:8e:58:de:3a:26:59:7c:93:8c:bd:3a:08:72:3d:93:
         ec:4c:41:ed:3b:16:6a:a0:cd:a7:b9:bb:4f:5b:2f:0f:dc:df:
         ed:9a:23:34:36:57:49:9e:dd:12:ad:c7:55:b1:43:68:9a:9e:
         4d:03:ba:d2:f7:e2:7d:55:17:be:c5:5d:a6:e4:21:f9:a9:15:
         c9:25:57:c8:14:ad:c2:64:14:bf:a8:8a:5d:ea:ff:2b:9d:a7:
         6a:5c:91:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:31:43 2024 by rpki-client on console-fra.rpki-client.org