Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
File:                     YB3AD5pIG0FQhrFDp91M2h_7JHA.mft (raw, json)
Hash identifier:          +9x0CuXYsI8lPceOLfxJ1yKvEQI6UOug84i+2b7Zdvw=
Subject key identifier:   7C:DC:65:A8:19:17:64:84:9D:09:A2:7A:22:91:DB:0F:12:C3:13:4A
Authority key identifier: 60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
Certificate issuer:       /CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Certificate serial:       019037E16D25B8CAA90555140B985E731BD2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
Manifest number:          11D1
Signing time:             Thu 20 Jun 2024 23:00:38 +0000
Manifest this update:     Thu 20 Jun 2024 23:00:38 +0000
Manifest next update:     Fri 21 Jun 2024 23:00:38 +0000
Files and hashes:         1: YB3AD5pIG0FQhrFDp91M2h_7JHA.crl (hash: vCX+I7c1+3X8z+rSkKF/NrURJV0HSryc1mfVzzfbCyI=)
                          2: dXxPvcEY1lDUifBdUW5FdHmRhZA.roa (hash: CE2SrsqfPBy0sNSaxmPpJVQtfsb7CD+SuCxcyck7z70=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 21 Jun 2024 23:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:37:e1:6d:25:b8:ca:a9:05:55:14:0b:98:5e:73:1b:d2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
        Validity
            Not Before: Jun 20 23:00:38 2024 GMT
            Not After : Jun 21 23:00:38 2024 GMT
        Subject: CN=7cdc65a8191764849d09a27a2291db0f12c3134a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:99:5e:a2:7e:17:10:81:53:18:35:5a:db:e5:
                    8c:58:06:ef:22:d9:0d:0e:81:c0:02:4d:c8:9b:f9:
                    9d:58:9b:74:09:2f:8f:a2:77:10:ef:59:75:f8:86:
                    f6:5e:f0:b8:4d:a0:c5:59:76:31:e9:01:15:5a:79:
                    7c:0b:ed:78:63:a5:ea:7b:d9:f1:38:57:c6:51:2f:
                    50:c9:4e:cc:fc:c9:b4:bb:5f:2b:9b:7d:8f:37:e3:
                    70:cf:64:d6:8b:ef:a3:14:c4:09:4f:4a:83:d6:44:
                    ea:9a:4a:e6:7f:6f:d2:86:a2:d9:f6:f8:20:e3:98:
                    7c:f1:4f:fe:e5:5d:9c:cb:ca:fd:17:2b:42:18:64:
                    83:2a:56:80:a8:8b:ad:98:c5:2d:8a:54:98:c2:7d:
                    86:4b:c7:cd:b6:85:d7:48:47:a7:20:b2:83:7e:a0:
                    de:c4:25:38:6e:77:27:fb:0d:87:37:ca:3c:9e:99:
                    7c:dc:a0:31:aa:10:84:24:8f:c6:4d:31:d3:d1:70:
                    b6:2a:70:c8:35:f1:fd:83:8f:67:6a:85:13:56:06:
                    59:84:c7:fa:0f:17:3c:49:cc:57:af:3b:75:b4:26:
                    03:d7:a7:a2:29:b3:b7:47:33:fb:14:b3:85:0c:74:
                    a0:a5:75:a0:28:f8:24:07:8d:46:ff:f4:e5:8b:bb:
                    14:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:DC:65:A8:19:17:64:84:9D:09:A2:7A:22:91:DB:0F:12:C3:13:4A
            X509v3 Authority Key Identifier:
                keyid:60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4d:c4:14:1a:b6:4d:7a:12:03:9a:84:80:23:7e:3d:b3:6e:b2:
         e8:72:27:ac:7a:a3:7b:b2:c1:14:20:d9:91:1d:47:e9:71:56:
         0f:cd:67:09:2b:bc:4d:08:db:2c:bf:aa:2c:95:a7:cb:11:2a:
         1c:47:83:e4:78:fb:c2:ce:36:d0:2b:42:e7:10:e7:6f:c0:70:
         48:f8:bf:b6:92:0d:de:13:14:a3:8e:2f:c0:5c:bd:48:71:02:
         af:5e:b2:08:68:0a:1e:1d:d2:2d:99:8f:35:4f:d8:f3:5a:b5:
         4f:c0:5f:a3:8c:21:9b:59:7e:5d:15:5d:49:3c:36:82:5e:30:
         ea:53:b7:41:de:46:19:85:7b:a1:96:b3:af:98:ad:c4:b0:1d:
         12:8d:e5:a5:9e:69:72:30:11:14:63:c0:ad:15:a6:0b:2b:a2:
         ec:ce:87:82:7d:c4:86:2f:d2:98:7a:13:a7:c3:b3:e6:5b:9b:
         5b:67:da:2b:f1:2e:cd:92:f8:ac:65:80:69:cd:d4:e0:4c:3b:
         00:c1:5a:c5:d6:cb:7e:37:99:8b:84:62:cf:8e:34:9f:4b:e8:
         89:26:4f:3a:8a:cb:4b:31:85:5f:8f:2c:d2:af:72:99:8c:dd:
         76:d5:56:06:ea:2a:a5:1a:09:d3:84:25:94:e2:5e:48:3b:4c:
         27:d9:9b:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 04:01:26 2024 by rpki-client on console-fra.rpki-client.org