Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
File:                     YB3AD5pIG0FQhrFDp91M2h_7JHA.mft (raw, json)
Hash identifier:          qkZZHoJqSTYMR5ef3fPbbvoSm+s8f2muDrkz+iGhX/k=
Subject key identifier:   E8:55:73:FD:C4:22:DD:9D:A9:1A:71:65:4D:DE:D6:D6:11:C9:3C:59
Authority key identifier: 60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
Certificate issuer:       /CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Certificate serial:       01901CD86F1F6DDF5342A3F95C54200587D1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
Manifest number:          11C3
Signing time:             Sat 15 Jun 2024 17:01:04 +0000
Manifest this update:     Sat 15 Jun 2024 17:01:04 +0000
Manifest next update:     Sun 16 Jun 2024 17:01:04 +0000
Files and hashes:         1: YB3AD5pIG0FQhrFDp91M2h_7JHA.crl (hash: I7ertwxrR8pAmRS3LX83IvK7DNs5YAH6IltDkK/Qxvc=)
                          2: dXxPvcEY1lDUifBdUW5FdHmRhZA.roa (hash: CE2SrsqfPBy0sNSaxmPpJVQtfsb7CD+SuCxcyck7z70=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1c:d8:6f:1f:6d:df:53:42:a3:f9:5c:54:20:05:87:d1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
        Validity
            Not Before: Jun 15 17:01:04 2024 GMT
            Not After : Jun 16 17:01:04 2024 GMT
        Subject: CN=e85573fdc422dd9da91a71654dded6d611c93c59
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:2c:64:f0:db:c2:93:f6:8b:24:7e:13:0c:5c:
                    1c:f7:c8:9a:78:3f:3c:61:18:ac:d0:33:79:db:2c:
                    fa:c8:a6:44:b4:a7:99:3a:c1:96:8e:03:78:fc:2d:
                    23:60:50:98:49:c6:16:12:b8:14:5f:bb:1f:f2:72:
                    2f:84:5e:82:b5:13:1e:af:38:7b:b7:78:bf:ce:07:
                    62:49:d5:b0:7a:f1:c2:64:91:4d:ff:de:1c:7d:da:
                    3f:8b:2e:38:e3:f2:88:92:78:dd:d4:0a:d2:b0:15:
                    fa:35:23:ef:56:f8:f1:4e:e2:32:9a:2d:c1:3a:66:
                    9c:99:6a:70:b8:5d:fc:f8:cd:f2:3e:75:c5:4a:f4:
                    5d:23:5c:26:2f:5b:48:d6:fe:ee:c4:05:ea:51:26:
                    ec:8a:4b:f0:cc:95:af:dd:e8:f6:81:20:aa:64:73:
                    f4:66:39:e3:4c:4d:32:8e:ac:de:36:5b:ae:e3:7a:
                    50:d1:82:be:42:f5:49:b5:74:8b:9f:ed:cb:4f:05:
                    cf:ab:f0:b7:27:a3:1f:0d:47:18:2b:26:07:d9:dc:
                    b6:0b:df:02:cb:be:cd:c9:5e:cf:cf:4a:e3:6d:73:
                    69:94:0e:75:a5:b7:3a:9d:cd:68:2e:6c:9d:d0:c4:
                    5d:66:a9:fd:c5:1a:59:7e:b3:ab:1a:42:bc:78:56:
                    e3:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:55:73:FD:C4:22:DD:9D:A9:1A:71:65:4D:DE:D6:D6:11:C9:3C:59
            X509v3 Authority Key Identifier:
                keyid:60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5e:3a:eb:80:9a:0d:5f:03:17:23:9d:6e:e3:48:5e:d1:8d:86:
         6e:82:1c:56:5a:9c:98:d2:a9:7f:1f:57:ca:ed:f0:6b:79:8e:
         eb:37:ff:47:20:4b:ed:d5:51:e9:90:fb:e7:ce:6a:29:e6:9e:
         0f:e1:2c:dc:e1:d9:3a:5f:c0:08:8d:72:a4:35:42:77:03:89:
         e7:c9:df:6f:7d:51:3a:cc:4d:c4:3f:d1:9a:21:c2:06:23:4f:
         89:c9:0c:f6:11:3b:17:ad:82:07:57:51:c3:e9:41:65:44:e2:
         8f:9b:b8:c5:c5:18:81:83:98:c6:f1:c1:1a:15:26:46:c2:02:
         71:63:6f:5e:aa:1d:94:39:9f:08:58:40:33:28:a3:ac:4b:c7:
         ae:bf:3b:84:3e:6c:a4:a0:1e:eb:72:71:e2:46:d0:dc:dc:00:
         ac:b9:c7:1b:51:4a:b5:24:0f:f4:3a:8e:45:9b:f2:3f:0d:ae:
         b9:95:b7:57:e3:24:75:ff:90:6f:a5:09:3e:2e:0e:af:db:98:
         58:9f:c6:81:f8:ff:a5:96:70:a6:3f:a4:50:fc:86:8d:76:36:
         91:df:f6:3b:34:b2:05:2f:da:17:19:5d:aa:49:a5:0d:ac:49:
         6a:ea:8f:eb:0b:71:94:9a:ab:93:56:59:3c:68:e9:c4:5b:ac:
         90:9f:b8:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 20:25:12 2024 by rpki-client on console-fra.rpki-client.org