Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
File:                     UYnbLl9XTdoOPBfjldXwW2YlTsU.mft (raw, json)
Hash identifier:          0rh9yxLnERYhCXPRkXcBB8S7S/hXu2ahHxHIoMr1MhY=
Subject key identifier:   AE:31:89:A2:4D:99:51:E7:9C:BD:53:D6:82:D1:B4:EC:1A:AB:63:CB
Authority key identifier: 51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
Certificate issuer:       /CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Certificate serial:       0190384FA98D37869E07AC8420A6F462C167
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
Manifest number:          08BA
Signing time:             Fri 21 Jun 2024 01:01:03 +0000
Manifest this update:     Fri 21 Jun 2024 01:01:03 +0000
Manifest next update:     Sat 22 Jun 2024 01:01:03 +0000
Files and hashes:         1: UYnbLl9XTdoOPBfjldXwW2YlTsU.crl (hash: qH8EHtVfB10E5wUzDdde+nk/i19AuzGTDHeXm9mZJbc=)
                          2: Y-n387oQLQnhIWbb_ctxkkd4U5s.roa (hash: DMj3/IANauNQNka8tc6DrXA5IyGj/jwf9ppZs//Tcu0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 22 Jun 2024 00:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:38:4f:a9:8d:37:86:9e:07:ac:84:20:a6:f4:62:c1:67
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
        Validity
            Not Before: Jun 21 01:01:03 2024 GMT
            Not After : Jun 22 01:01:03 2024 GMT
        Subject: CN=ae3189a24d9951e79cbd53d682d1b4ec1aab63cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:ad:98:ca:4d:13:df:1f:3d:b9:74:c7:95:4b:
                    52:8e:cc:75:5c:41:6c:fa:d6:1b:e3:c5:82:4a:05:
                    4c:63:d9:57:79:f2:0c:c4:41:31:f9:a4:6d:e1:f7:
                    12:da:bc:1d:2f:68:c3:a0:51:82:11:69:1e:c5:86:
                    bc:70:31:8d:1f:df:2b:e7:ad:b3:95:2b:2e:fc:b8:
                    2f:b2:fd:b5:42:17:a4:00:b5:42:ce:c3:3d:26:f1:
                    35:24:91:e2:46:18:a1:cf:4f:aa:42:dd:97:78:e7:
                    b0:5c:98:dc:d5:c7:7c:b0:00:0b:77:5a:b9:66:ae:
                    e1:6d:b2:93:13:c4:11:59:70:2e:cb:fc:12:f2:cf:
                    ea:c7:b3:51:09:c6:5f:1e:d1:ce:66:26:c1:58:c6:
                    85:ba:03:43:c3:b4:a4:70:63:0c:7f:e0:2a:7f:af:
                    eb:77:6a:a3:74:c7:72:ba:32:2c:2e:8d:04:6f:e6:
                    ba:50:0d:a9:1f:d8:4c:43:84:46:f5:e6:1c:0e:f6:
                    5f:3d:38:e0:40:29:b6:27:dc:e4:da:a9:f4:27:4a:
                    57:09:e6:1f:ae:e3:45:f1:8f:ff:22:23:ed:b1:eb:
                    9d:27:ad:10:2a:ef:17:47:31:7d:b4:1f:8e:d4:ed:
                    55:48:ac:1d:71:9d:c3:d6:f9:3c:8c:78:1e:7c:a8:
                    5f:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:31:89:A2:4D:99:51:E7:9C:BD:53:D6:82:D1:B4:EC:1A:AB:63:CB
            X509v3 Authority Key Identifier:
                keyid:51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         76:13:53:6a:4a:72:f5:bd:4d:ba:f1:34:cc:ac:4d:8d:d8:61:
         f6:58:8b:4b:1f:c9:77:18:cc:a6:fe:e9:ef:a5:47:93:73:1a:
         9d:3c:39:4e:ea:e8:9b:be:40:bf:8d:18:45:db:37:50:a0:63:
         e2:2b:4a:f7:78:39:27:46:30:f8:c6:cc:64:06:c7:f2:e1:8f:
         b1:b7:ae:5d:c8:f7:6b:14:76:16:08:5f:87:fc:59:24:6c:b2:
         65:c9:ae:cc:4d:4e:82:a0:13:ca:68:32:69:f3:73:47:bc:b8:
         68:91:0e:c0:50:5a:44:4c:d6:d9:57:7f:12:7e:7d:0b:1a:62:
         19:a5:a1:4b:0b:bb:a1:fe:09:94:d6:8d:54:d9:b6:35:31:53:
         f2:47:f3:76:06:1e:3a:02:67:54:72:38:e7:c0:a2:26:70:53:
         28:66:0a:83:da:7e:a1:4f:e3:43:5b:a4:40:7b:d8:e6:51:90:
         84:aa:b6:12:49:7e:e4:2a:70:09:44:7e:46:8f:6b:f6:9b:66:
         11:69:a5:78:5e:62:aa:d4:3e:74:fb:e6:d6:10:e1:eb:31:a1:
         0a:54:cc:fd:29:5c:64:db:43:6e:79:01:a0:73:a4:91:cf:0e:
         36:f4:41:78:4b:35:76:f6:70:4f:b2:c3:30:fb:29:df:60:01:
         03:41:d3:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 03:54:38 2024 by rpki-client on console-ams.rpki-client.org