Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.mft
File:                     Hb2JgdcNHE4cTwU4vQT3AR-tw7k.mft (raw, json)
Hash identifier:          5YotXtg+z7cIQJJyYjyRMSRG68bFieYEPc2ZCnZAM6o=
Subject key identifier:   80:7F:18:5D:63:1F:B8:11:7E:89:D4:D7:AA:59:58:FF:CF:DE:EF:9D
Authority key identifier: 1D:BD:89:81:D7:0D:1C:4E:1C:4F:05:38:BD:04:F7:01:1F:AD:C3:B9
Certificate issuer:       /CN=1dbd8981d70d1c4e1c4f0538bd04f7011fadc3b9
Certificate serial:       019041F7EBDDC33B1A5711F662BBAE524D47
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.mft
Manifest number:          059A
Signing time:             Sat 22 Jun 2024 22:01:25 +0000
Manifest this update:     Sat 22 Jun 2024 22:01:25 +0000
Manifest next update:     Sun 23 Jun 2024 22:01:25 +0000
Files and hashes:         1: 2A1M9twGPD1-4PIkttPdprW7aBM.roa (hash: pfzZjAP4oOXZVW16atseLgUkhdLMr4uAWy0Rj7f1Rr0=)
                          2: Hb2JgdcNHE4cTwU4vQT3AR-tw7k.crl (hash: ZKqa/BLvKVQyUkqoMgu/TOiupbMTQ2YaY6hrXVxPf2w=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 21:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:41:f7:eb:dd:c3:3b:1a:57:11:f6:62:bb:ae:52:4d:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1dbd8981d70d1c4e1c4f0538bd04f7011fadc3b9
        Validity
            Not Before: Jun 22 22:01:25 2024 GMT
            Not After : Jun 23 22:01:25 2024 GMT
        Subject: CN=807f185d631fb8117e89d4d7aa5958ffcfdeef9d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f2:dd:88:83:dd:2c:28:85:c1:c4:d5:18:60:44:
                    31:31:0e:8f:78:5e:f6:62:4f:e6:32:18:c1:02:d4:
                    ea:37:24:e6:93:d0:b8:5e:38:e4:53:4d:f6:e0:89:
                    39:20:82:87:fe:57:9c:d6:30:0d:91:bc:e8:61:c8:
                    9d:ae:ed:36:92:9e:9f:19:70:c9:5e:14:14:9f:e7:
                    3f:3e:a3:83:76:23:43:ca:26:6d:7f:db:5c:8c:b4:
                    14:45:43:d1:ac:58:df:51:1c:bd:4f:a8:b2:59:4d:
                    19:c3:15:e3:3a:94:94:fe:32:ab:cc:5a:50:30:21:
                    40:1c:f6:c4:16:ff:c9:3e:85:fc:2d:3c:79:ad:57:
                    91:da:29:63:f5:40:93:2a:94:2d:1d:82:9d:08:3a:
                    5f:a8:8d:2f:a8:78:79:48:41:d5:93:0b:ad:24:83:
                    33:7a:6b:7f:a4:d6:09:17:34:af:0c:14:60:64:e1:
                    a1:5a:71:f0:c3:e7:f0:76:67:c1:e0:ce:33:ab:a2:
                    e9:2a:76:a5:17:45:da:8e:c9:e0:58:05:37:4a:8e:
                    04:3f:71:7a:ab:d1:26:d2:8a:bc:4c:0f:28:6f:81:
                    a4:25:bc:7a:7a:17:79:32:40:fd:2e:7d:25:75:a0:
                    a5:5f:97:02:02:ed:87:fd:1b:f7:b6:73:8c:b8:a9:
                    b8:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:7F:18:5D:63:1F:B8:11:7E:89:D4:D7:AA:59:58:FF:CF:DE:EF:9D
            X509v3 Authority Key Identifier:
                keyid:1D:BD:89:81:D7:0D:1C:4E:1C:4F:05:38:BD:04:F7:01:1F:AD:C3:B9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ef25e5-fc90-427b-a849-3a158d1722dc/1/Hb2JgdcNHE4cTwU4vQT3AR-tw7k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d1:4e:18:47:11:4f:08:e9:ac:79:c4:4e:3c:ce:c0:94:4c:08:
         c0:ac:06:e7:1a:20:96:f1:04:af:c4:12:08:01:18:47:27:5c:
         f7:50:db:94:c1:33:43:81:18:40:f1:e2:db:ad:b5:13:42:67:
         10:1a:51:83:91:c0:6d:6b:71:4e:ee:a0:55:42:93:eb:d4:35:
         17:c6:35:84:1a:1c:c5:cc:f6:3a:ca:5e:bf:b9:09:73:15:d0:
         05:57:ed:eb:ca:f1:00:ee:c8:d4:17:9a:7d:19:cb:53:47:53:
         ea:ec:93:62:b6:06:3e:10:a3:0b:3c:af:bc:1c:62:90:8a:49:
         bf:52:d8:39:df:23:63:9d:10:55:d5:19:cf:f0:11:dd:95:0d:
         86:fb:e2:db:c6:ce:be:52:ba:1c:6f:c0:50:36:f8:fa:ec:8b:
         10:b2:4f:ad:90:e4:3c:73:2b:be:09:c8:f6:79:de:28:b5:69:
         2c:c7:fd:6f:31:d4:e9:0e:d5:c5:02:df:87:d5:4c:67:28:5e:
         67:c9:1a:32:83:51:c0:87:14:5d:c6:f0:7c:af:43:3a:d3:c4:
         f8:9d:36:59:b4:55:da:0e:1b:71:ec:90:94:00:0c:71:17:c3:
         de:4d:e5:c6:bd:90:ec:86:8c:54:ee:44:ec:bc:6d:06:ac:69:
         78:a7:2d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:35:48 2024 by rpki-client on console-fra.rpki-client.org