Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft
File:                     rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft (raw, json)
Hash identifier:          6G5T/vq5bkfuUMhFql1dBjmXM2eWsQzY61eNNUEUcIE=
Subject key identifier:   C2:9D:B2:D7:AD:99:06:96:EC:60:0F:1D:4A:63:6A:AE:35:47:02:49
Authority key identifier: AE:04:10:6F:30:2C:00:77:E9:0B:66:76:2E:BB:22:2E:61:1B:33:DD
Certificate issuer:       /CN=ae04106f302c0077e90b66762ebb222e611b33dd
Certificate serial:       01901E8FCD136C00CA4B6DC734CF4B862AFA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/rgQQbzAsAHfpC2Z2LrsiLmEbM90.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft
Manifest number:          F8
Signing time:             Sun 16 Jun 2024 01:00:58 +0000
Manifest this update:     Sun 16 Jun 2024 01:00:58 +0000
Manifest next update:     Mon 17 Jun 2024 01:00:58 +0000
Files and hashes:         1: RD9LHwxn_q3N0LwrLKstECpRS7Y.roa (hash: CECoybP3tvh0aO4sjSoeuLnU9yWqpB29IniWKwF1JtE=)
                          2: rgQQbzAsAHfpC2Z2LrsiLmEbM90.crl (hash: JVh/gXqmfdSK+OVdTq2Lso6f+gnnUgCG7fDzpuOI5s0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/rgQQbzAsAHfpC2Z2LrsiLmEbM90.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:8f:cd:13:6c:00:ca:4b:6d:c7:34:cf:4b:86:2a:fa
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ae04106f302c0077e90b66762ebb222e611b33dd
        Validity
            Not Before: Jun 16 01:00:58 2024 GMT
            Not After : Jun 17 01:00:58 2024 GMT
        Subject: CN=c29db2d7ad990696ec600f1d4a636aae35470249
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:11:61:8b:a3:ae:ee:d9:f8:aa:34:ca:1f:28:
                    6c:f7:18:cf:38:a5:1b:2e:fe:22:16:41:eb:7f:86:
                    12:2d:78:69:86:70:2f:d8:54:63:49:e7:41:6c:4f:
                    20:48:11:96:db:b2:4d:9d:0c:fb:71:6e:fe:49:bb:
                    13:ae:2f:52:b0:2e:40:63:dc:e3:18:75:4a:7e:47:
                    0b:93:3b:16:96:27:81:51:f0:99:be:2e:71:d3:c4:
                    61:99:f3:60:5a:c1:9c:b3:15:8f:08:11:a2:00:73:
                    da:26:8a:57:70:be:38:c8:5a:c2:52:a2:c1:ee:76:
                    ec:40:03:bc:9d:30:45:1f:72:3f:0b:98:c3:82:ad:
                    bd:fa:e6:12:d7:97:e1:65:1e:fe:28:b9:0c:d1:5c:
                    04:54:48:c2:b3:21:78:d5:67:d6:9c:d2:ec:fe:e6:
                    a5:17:99:08:3a:2a:1c:0d:50:44:95:9d:15:22:47:
                    e2:6a:df:f1:1f:a1:dd:46:9d:8e:ef:8b:04:33:6a:
                    91:dd:76:92:5d:0e:23:d1:99:1b:0a:f1:75:ca:f4:
                    73:8d:6a:30:b3:ae:61:9b:f2:18:66:96:4e:7d:46:
                    8f:85:b2:bd:a3:2c:70:e4:39:a5:9b:6e:38:53:5f:
                    71:42:4c:a2:50:e1:32:87:3c:2b:eb:bf:7d:58:0b:
                    46:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:9D:B2:D7:AD:99:06:96:EC:60:0F:1D:4A:63:6A:AE:35:47:02:49
            X509v3 Authority Key Identifier:
                keyid:AE:04:10:6F:30:2C:00:77:E9:0B:66:76:2E:BB:22:2E:61:1B:33:DD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rgQQbzAsAHfpC2Z2LrsiLmEbM90.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/93/b90729-83d2-4c18-8063-11fe27d8e170/1/rgQQbzAsAHfpC2Z2LrsiLmEbM90.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:c7:a5:63:8b:20:cf:0b:77:95:a9:75:9d:1e:40:70:ca:1d:
         72:a3:de:0a:ca:56:2c:f7:09:e4:5a:2c:6d:20:48:6c:ad:1d:
         13:7a:2b:49:20:b6:62:23:2e:05:d5:9a:f8:ec:e0:22:6c:a1:
         a3:8b:92:32:54:ca:f0:52:38:e6:37:03:67:dc:27:bd:8f:e2:
         7c:c6:33:b3:ee:e4:7a:2c:12:3f:8a:c0:19:b8:7c:27:ea:fa:
         cc:7d:1b:2a:95:97:d1:5a:ff:ce:78:ff:e9:4d:86:cc:df:6d:
         65:6d:21:6f:df:54:5d:47:dd:53:d7:9d:9c:4a:82:82:57:92:
         17:55:64:99:4c:0b:64:ec:c4:bf:5b:27:ba:ef:59:4e:c2:14:
         cd:0d:17:34:cf:4b:98:fc:c8:f9:37:a5:40:e4:8c:bc:80:a1:
         2f:6a:fa:6b:c9:32:20:b4:c6:34:7e:ae:48:49:13:5e:2a:e9:
         83:68:a9:c4:68:4e:40:51:d3:e6:0a:29:9a:97:91:8e:42:8e:
         b0:2e:1e:5f:c0:f1:2b:c2:c1:2d:da:3f:ce:34:98:30:fd:6d:
         e6:96:b6:66:f4:3c:a9:84:5f:56:96:c6:40:91:ef:72:93:ef:
         e5:91:d2:e3:c8:24:ef:d6:22:b2:e3:0a:23:6c:08:2b:23:c2:
         40:61:8a:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:15:52 2024 by rpki-client on console-fra.rpki-client.org