Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
File:                     MuFdOEw49IcrD_k1L_GcTW37ZMY.mft (raw, json)
Hash identifier:          JVZqbioY4cmN4sMGUiqS2uxojG3iV08xx9fZ0zZfSu4=
Subject key identifier:   37:1C:47:79:FB:D8:29:72:A9:4F:ED:8E:DD:E4:11:B0:D8:5F:ED:FD
Authority key identifier: 32:E1:5D:38:4C:38:F4:87:2B:0F:F9:35:2F:F1:9C:4D:6D:FB:64:C6
Certificate issuer:       /CN=32e15d384c38f4872b0ff9352ff19c4d6dfb64c6
Certificate serial:       0190411BC42B0C5D0F67C4D4132A0D99E009
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
Manifest number:          08E9
Signing time:             Sat 22 Jun 2024 18:00:57 +0000
Manifest this update:     Sat 22 Jun 2024 18:00:57 +0000
Manifest next update:     Sun 23 Jun 2024 18:00:57 +0000
Files and hashes:         1: K6JKEnIOmt7wFLlSySuaocbgjKA.roa (hash: yP7QhTUhpyaXmtWJpKNDmVoI0hLBJCkqT2QANV38Mas=)
                          2: MuFdOEw49IcrD_k1L_GcTW37ZMY.crl (hash: PkLsNxaef2d4+0MrlFUT3oeIsbllK33ityXePXI+7Nw=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 18:00:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:41:1b:c4:2b:0c:5d:0f:67:c4:d4:13:2a:0d:99:e0:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=32e15d384c38f4872b0ff9352ff19c4d6dfb64c6
        Validity
            Not Before: Jun 22 18:00:57 2024 GMT
            Not After : Jun 23 18:00:57 2024 GMT
        Subject: CN=371c4779fbd82972a94fed8edde411b0d85fedfd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:ce:a3:55:8f:21:d4:91:51:8c:b5:f0:c1:37:
                    68:84:e1:7d:a5:08:03:55:7b:3e:95:7d:0e:9b:eb:
                    2c:86:0a:32:f8:b0:ea:d3:57:f7:f6:91:24:35:9d:
                    0b:67:3a:76:8f:a3:8b:95:34:bd:5c:e1:0b:0e:c5:
                    5f:df:7c:18:c9:2b:57:aa:08:83:a0:ac:76:7e:94:
                    b3:33:67:1d:68:6e:37:b1:88:94:cf:1c:24:bd:51:
                    4e:db:fc:e7:b6:6e:97:d7:42:e9:92:1d:a3:72:ca:
                    d1:8f:fe:40:0b:7e:97:ed:e9:0a:e8:8f:e9:fc:39:
                    27:74:aa:1c:51:5e:d2:0f:9f:cb:48:b4:06:aa:fb:
                    b1:c9:b1:7a:e5:d4:56:a8:17:97:97:29:61:4f:2c:
                    e8:3d:b1:c7:9b:98:56:70:4a:74:04:d9:bb:10:40:
                    eb:7e:92:d8:31:2f:aa:14:21:07:e3:06:0b:ed:43:
                    19:b4:98:d9:a8:af:aa:67:ac:d9:be:92:37:9c:56:
                    5c:35:e6:20:be:8a:ab:b8:06:41:c6:48:23:99:2c:
                    b8:c8:79:3d:e8:f1:35:7e:91:b6:34:14:08:7a:51:
                    aa:ed:0c:9e:2c:e8:dd:f8:28:2a:5c:39:23:81:20:
                    8c:30:64:3b:18:a8:1c:87:85:63:50:43:47:ab:89:
                    44:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:1C:47:79:FB:D8:29:72:A9:4F:ED:8E:DD:E4:11:B0:D8:5F:ED:FD
            X509v3 Authority Key Identifier:
                keyid:32:E1:5D:38:4C:38:F4:87:2B:0F:F9:35:2F:F1:9C:4D:6D:FB:64:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7b:fc:0e:b0:a9:90:8e:57:3a:f3:11:45:ea:57:e2:72:81:fc:
         d3:0d:2c:62:5e:80:4d:9e:33:14:61:e8:65:6c:85:26:ee:6e:
         c1:81:17:69:91:b6:a3:65:19:e5:cb:a1:1a:8f:43:e5:88:9f:
         ca:5f:3a:c4:17:ac:31:54:f0:39:74:77:0d:e7:77:b1:36:c0:
         91:aa:47:1a:10:bf:4a:9f:56:7a:2f:7b:31:67:3a:6e:40:61:
         40:30:85:32:e2:5f:9f:25:e5:c3:45:26:37:b9:0a:83:b1:60:
         25:ac:b4:3a:14:7e:4c:d4:1a:35:cb:19:0f:a9:dd:75:a4:d1:
         86:e9:20:c2:bf:4e:25:9a:fb:c1:11:6f:71:7f:8b:5e:d0:67:
         0d:dd:f2:bd:ac:9b:7b:7e:66:04:25:18:94:ff:17:57:f0:ae:
         e8:6e:31:8c:49:50:18:5a:c5:5a:76:63:d3:9d:8e:4d:70:cd:
         34:79:a6:f0:3a:1a:ae:c4:68:60:2c:77:7a:d5:ab:8c:62:a9:
         3c:64:d6:5e:a2:59:04:1d:09:dd:df:f7:45:00:d2:fd:8d:d8:
         82:20:dd:5a:35:eb:c7:c8:bb:87:b4:51:12:58:fd:69:86:dc:
         48:78:7e:a4:9f:cd:25:6b:4d:f6:40:e2:a2:55:e4:3a:65:3b:
         b6:98:5f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:37:52 2024 by rpki-client on console-fra.rpki-client.org