Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
File:                     UYnbLl9XTdoOPBfjldXwW2YlTsU.mft (raw, json)
Hash identifier:          +IU1SHyPgGpRToV++Al2yjNeSweMleMfiB24GBuVH+A=
Subject key identifier:   80:71:48:53:2B:0F:17:87:7E:6C:72:1D:4E:7C:C1:88:88:A4:5E:10
Authority key identifier: 51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5
Certificate issuer:       /CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
Certificate serial:       01901B57C0CE5EA704EF55B3C24C280C040D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
Manifest number:          08AB
Signing time:             Sat 15 Jun 2024 10:00:54 +0000
Manifest this update:     Sat 15 Jun 2024 10:00:54 +0000
Manifest next update:     Sun 16 Jun 2024 10:00:54 +0000
Files and hashes:         1: UYnbLl9XTdoOPBfjldXwW2YlTsU.crl (hash: 3GiZ31+Ti1rVsfFdbJw6E5I9CzdjuAONJzsWDHpJ2Ww=)
                          2: Y-n387oQLQnhIWbb_ctxkkd4U5s.roa (hash: DMj3/IANauNQNka8tc6DrXA5IyGj/jwf9ppZs//Tcu0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 05:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1b:57:c0:ce:5e:a7:04:ef:55:b3:c2:4c:28:0c:04:0d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5189db2e5f574dda0e3c17e395d5f05b66254ec5
        Validity
            Not Before: Jun 15 10:00:54 2024 GMT
            Not After : Jun 16 10:00:54 2024 GMT
        Subject: CN=807148532b0f17877e6c721d4e7cc18888a45e10
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:03:31:ec:77:95:01:b9:f7:a8:a2:c7:91:09:
                    70:d0:76:f5:dc:15:1e:e5:24:8f:e5:09:b6:11:b3:
                    f3:17:72:34:14:14:21:7c:7f:4d:a1:09:85:a8:03:
                    7a:5d:3f:de:12:2c:bb:7b:94:55:ce:37:0e:a7:ce:
                    38:c8:2d:47:cb:15:d7:c7:3c:0a:a6:b2:e1:ae:83:
                    72:0d:6d:b3:95:5c:45:77:d5:12:6c:ce:c3:c6:6c:
                    87:74:e1:00:ae:2d:b7:e2:fb:44:79:65:5d:41:06:
                    49:50:76:ed:34:a3:70:16:39:1b:af:fe:b8:6f:5a:
                    af:0b:b2:ac:6f:2a:8e:eb:36:02:fa:e4:72:99:d1:
                    83:27:17:e5:93:8d:7c:ce:fb:5d:4e:06:e0:9f:7c:
                    6f:f1:a4:c0:2e:ba:75:85:06:83:70:c3:5b:9c:3d:
                    ad:04:a6:8e:1a:1a:98:80:98:5c:3c:6b:2e:44:21:
                    98:f6:17:c8:ce:4b:40:31:24:35:c6:0f:bb:e1:e1:
                    9a:b6:f2:d4:c6:57:25:7c:43:75:b2:ea:37:b5:29:
                    30:de:5f:58:d4:fb:1a:2d:81:2a:91:56:25:38:de:
                    44:4e:4e:b0:4c:8f:66:f5:e4:c0:b9:8f:fa:e3:8a:
                    cd:42:e2:d9:af:ac:e4:06:04:da:ea:5c:d1:d3:6d:
                    82:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:71:48:53:2B:0F:17:87:7E:6C:72:1D:4E:7C:C1:88:88:A4:5E:10
            X509v3 Authority Key Identifier:
                keyid:51:89:DB:2E:5F:57:4D:DA:0E:3C:17:E3:95:D5:F0:5B:66:25:4E:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UYnbLl9XTdoOPBfjldXwW2YlTsU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/380c3c-f308-4dfe-a3a3-e21c6d0f8f04/1/UYnbLl9XTdoOPBfjldXwW2YlTsU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:9b:18:ba:30:b3:08:4c:91:e4:e3:b3:00:fb:6e:79:97:ee:
         05:07:99:30:f6:fa:fe:86:70:4b:ab:1b:13:5a:e4:2e:98:2e:
         1a:62:93:38:3e:c1:a1:0d:15:25:8a:ce:08:88:54:3c:a3:01:
         87:e7:b6:ed:e6:6a:bb:75:29:f7:b5:98:7c:ed:5d:ce:21:5c:
         06:8b:36:b3:e2:91:0a:ad:d9:51:12:0f:e5:fb:3c:0c:b4:8f:
         45:5b:19:61:61:82:0f:f6:24:0f:1c:25:f9:77:15:49:aa:4e:
         db:18:ff:1e:a5:f0:fb:4c:f2:46:1f:d6:08:60:ea:5a:00:a8:
         d9:51:6c:31:ff:d2:2a:19:10:be:40:18:8e:f0:af:67:20:c0:
         18:5a:30:01:4a:e6:2f:29:5d:cc:38:26:30:6d:1c:c3:dc:5d:
         86:00:ac:55:6d:ec:17:b4:ce:3d:89:ae:31:c0:16:54:5b:34:
         23:d4:ce:67:fe:ee:62:86:d7:11:0b:0c:ff:fd:56:35:5b:cf:
         1e:be:b0:24:10:87:c0:d8:4d:6c:67:6f:68:ff:e0:51:8d:cd:
         19:0d:65:6d:b1:59:cb:ef:07:13:72:64:90:4a:eb:fe:12:b6:
         25:4a:1f:30:78:bd:fa:87:ef:2f:0b:d0:1c:88:2b:be:72:2e:
         30:69:cf:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 14:30:12 2024 by rpki-client on console-ams.rpki-client.org