Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
File:                     3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft (raw, json)
Hash identifier:          wFLAEeSzsLDcjWUjMvfMbcdpzz7IQ+y0qQaFfG0plyg=
Subject key identifier:   12:8A:5B:6B:B8:24:D7:5D:22:88:4E:78:2D:AE:74:6A:B7:CA:E8:B4
Authority key identifier: DD:75:FC:8C:45:D3:61:01:00:88:37:11:9C:BF:A8:4A:EE:19:E2:9A
Certificate issuer:       /CN=dd75fc8c45d36101008837119cbfa84aee19e29a
Certificate serial:       01904867FB32294D143EB55A534772E98303
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
Manifest number:          016E
Signing time:             Mon 24 Jun 2024 04:01:32 +0000
Manifest this update:     Mon 24 Jun 2024 04:01:32 +0000
Manifest next update:     Tue 25 Jun 2024 04:01:32 +0000
Files and hashes:         1: 1ohC5SImO6uA6qXlh4fSsvjaoWw.roa (hash: Yb5e20vz0C/vVixtxyWPNd0Jz+e+uTnxB8RA6FMOT3o=)
                          2: 3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl (hash: QcCfMX0Mj9n+icjvyT1CLGO8GPmWQuBYVIyi1X/R6gs=)
                          3: cBKVs6q0cxYCdeIY5DzEzBhM_3s.roa (hash: DJBsYfnemPKjQutyRco9f0EsmcmnBCB/iyPUDzRITXM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 25 Jun 2024 00:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:48:67:fb:32:29:4d:14:3e:b5:5a:53:47:72:e9:83:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dd75fc8c45d36101008837119cbfa84aee19e29a
        Validity
            Not Before: Jun 24 04:01:32 2024 GMT
            Not After : Jun 25 04:01:32 2024 GMT
        Subject: CN=128a5b6bb824d75d22884e782dae746ab7cae8b4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:a1:1a:f2:78:20:9e:a7:ba:01:20:39:5d:3e:
                    70:87:38:cc:83:ed:61:67:ff:66:4d:bd:be:47:92:
                    3f:aa:7b:64:a8:1f:7b:ca:3e:54:21:19:31:22:3b:
                    c0:38:de:b1:aa:73:10:2b:8f:12:87:5a:b5:9e:b2:
                    1a:d2:21:83:c9:aa:c9:8f:1b:8f:ff:89:00:39:5f:
                    80:1c:3a:e0:7d:70:3a:76:a6:5b:94:49:60:73:ee:
                    71:e2:b3:08:83:69:dd:36:51:66:81:1c:7e:90:85:
                    ce:35:b1:75:45:3b:db:d9:14:93:e2:d3:07:bd:8e:
                    3b:4e:66:73:56:09:9f:8f:64:30:21:ac:e6:8d:e2:
                    6b:1c:f8:cc:e0:47:71:a1:0b:9a:dc:d8:33:b6:ee:
                    d2:ff:0c:af:64:f1:4d:85:12:f1:70:93:52:3b:4d:
                    d3:33:07:f0:b7:16:81:39:28:28:1e:de:39:b2:2e:
                    17:58:84:0b:07:ce:73:59:ec:c4:aa:00:53:65:de:
                    0b:15:e4:89:95:19:e6:f6:51:3c:e3:01:ef:cd:37:
                    74:50:c2:71:63:f8:da:4a:ef:c2:e6:ef:a7:9a:33:
                    bd:7c:44:08:67:53:b2:0d:dd:6d:df:02:6c:76:24:
                    3b:7b:50:c3:f3:15:85:7f:72:7e:31:f2:5c:de:78:
                    5f:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:8A:5B:6B:B8:24:D7:5D:22:88:4E:78:2D:AE:74:6A:B7:CA:E8:B4
            X509v3 Authority Key Identifier:
                keyid:DD:75:FC:8C:45:D3:61:01:00:88:37:11:9C:BF:A8:4A:EE:19:E2:9A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3XX8jEXTYQEAiDcRnL-oSu4Z4po.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/68500d-a781-4739-b26c-0cc5168ea15a/1/3XX8jEXTYQEAiDcRnL-oSu4Z4po.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         30:b5:b4:9d:c0:67:04:ef:46:d2:8e:4e:9f:5d:58:bf:a6:a0:
         6a:dd:f9:d5:14:df:9d:c7:32:e0:9c:57:72:b2:c5:44:f5:8d:
         3d:f3:41:3a:5b:9b:c0:5e:a9:ed:f2:2f:04:54:aa:e2:bb:ee:
         10:20:00:f5:b3:51:fd:80:1e:34:08:22:07:79:2e:67:b9:7e:
         d5:7c:d3:de:06:05:b5:a4:46:11:94:67:8e:3a:a2:1c:c1:36:
         98:66:14:b2:63:ca:b0:b6:10:fc:c9:92:02:3c:7f:84:68:aa:
         98:25:35:12:b5:4b:82:b0:ce:44:7c:6d:d6:e6:fb:cc:26:5b:
         cc:c1:06:ce:8f:67:db:9c:a1:19:67:f6:85:02:21:73:67:28:
         72:58:c4:a9:c9:42:9f:1c:93:aa:48:57:1c:57:07:92:5d:4b:
         26:fc:1b:c8:4c:76:3a:5f:9c:8c:d2:64:80:6d:05:40:2b:94:
         d0:e1:5f:9e:55:e6:7f:39:0d:fe:a2:da:67:47:ad:2b:02:48:
         ff:8b:00:38:0e:35:72:ee:26:d1:15:d6:f7:e3:ac:90:92:55:
         fe:0e:40:51:b1:f3:4a:1a:db:10:fb:3e:f6:fb:6c:ef:7f:24:
         bf:49:93:fc:fa:aa:bc:f8:b6:63:91:2e:66:f3:48:e0:dd:30:
         12:7b:54:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 10:14:44 2024 by rpki-client on console-fra.rpki-client.org