Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
File:                     2iTzVyHKMag-L26TfhdAjm57LGE.mft (raw, json)
Hash identifier:          hiFKfGvC1v0A5WqJMQxPppMZTu763HyjeTqT/SuOzHA=
Subject key identifier:   5B:CF:9B:B5:38:F3:5C:B8:4F:AD:A0:B4:08:13:60:60:A9:A2:CB:8C
Authority key identifier: DA:24:F3:57:21:CA:31:A8:3E:2F:6E:93:7E:17:40:8E:6E:7B:2C:61
Certificate issuer:       /CN=da24f35721ca31a83e2f6e937e17408e6e7b2c61
Certificate serial:       019040AEC38C2B90C9BF3D3C0FE52714279B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
Manifest number:          11DB
Signing time:             Sat 22 Jun 2024 16:01:53 +0000
Manifest this update:     Sat 22 Jun 2024 16:01:53 +0000
Manifest next update:     Sun 23 Jun 2024 16:01:53 +0000
Files and hashes:         1: 2iTzVyHKMag-L26TfhdAjm57LGE.crl (hash: F2Wt8YaG2PatRjV7de3jNUa7RFlSE4XrVdM+ft1FhN0=)
                          2: NXAeb9IWUwyD7uJoDFhdlItryvQ.roa (hash: wnXj0dBxbPaa8Mn1Jw3F82zVQWHyblMHNktXthU6r5A=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 16:01:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:40:ae:c3:8c:2b:90:c9:bf:3d:3c:0f:e5:27:14:27:9b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da24f35721ca31a83e2f6e937e17408e6e7b2c61
        Validity
            Not Before: Jun 22 16:01:53 2024 GMT
            Not After : Jun 23 16:01:53 2024 GMT
        Subject: CN=5bcf9bb538f35cb84fada0b408136060a9a2cb8c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:a4:89:78:7f:9f:6d:a3:de:49:b2:3e:6c:26:
                    7a:a3:89:a0:aa:86:47:01:32:3b:99:3f:89:25:39:
                    8b:07:df:aa:5d:0b:8f:3e:8f:a0:09:1a:ca:79:5e:
                    a3:5a:8d:68:97:f0:8a:ec:c9:8e:1a:e1:56:4c:d3:
                    e0:4b:3d:83:07:98:a9:05:12:8b:b2:28:b1:5b:a9:
                    26:d2:26:79:8d:01:e3:96:f2:f4:da:90:8c:f6:3d:
                    8d:af:17:6d:c5:4a:e8:d2:42:50:e5:bc:e3:03:62:
                    dd:69:91:24:67:d9:cc:9f:1f:0a:55:03:01:35:a8:
                    ce:69:80:89:ee:3c:97:c6:31:06:8e:3a:12:39:66:
                    70:e9:43:61:eb:e1:58:32:e2:57:f0:30:46:1b:56:
                    6f:ce:2d:c2:ba:24:97:73:79:29:ac:e6:89:54:41:
                    bb:42:1a:b4:5b:79:db:bd:17:e8:97:99:fc:7e:50:
                    a5:7f:ed:fd:ea:d3:4f:23:b3:8a:ef:55:4a:b6:f9:
                    5a:b9:ac:60:38:d4:17:4c:f1:04:c7:5c:80:ed:bc:
                    17:39:45:ff:91:32:f6:53:7f:71:d7:63:50:ac:6c:
                    02:34:3c:c8:24:d0:53:76:fc:8d:99:c3:b0:67:a0:
                    75:c2:bb:23:79:c1:c8:45:3a:38:76:40:e5:d5:f2:
                    fb:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:CF:9B:B5:38:F3:5C:B8:4F:AD:A0:B4:08:13:60:60:A9:A2:CB:8C
            X509v3 Authority Key Identifier:
                keyid:DA:24:F3:57:21:CA:31:A8:3E:2F:6E:93:7E:17:40:8E:6E:7B:2C:61

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2iTzVyHKMag-L26TfhdAjm57LGE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ececf4-e930-4192-84dd-80f31d3ea152/1/2iTzVyHKMag-L26TfhdAjm57LGE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6a:42:63:95:2e:2f:c1:e7:fa:a4:c2:44:1b:31:16:7f:ee:11:
         66:85:8f:36:b3:b5:b3:7e:7e:a0:3c:eb:55:9a:55:11:81:12:
         8c:b0:82:46:72:86:b7:d3:69:79:0d:f5:03:a5:4e:57:33:ae:
         ba:81:63:f9:a2:52:6d:2a:0b:ac:86:18:eb:fe:a1:aa:2d:70:
         0f:c9:53:a4:41:3f:5d:78:34:4e:ce:e9:8f:3e:9e:10:d4:84:
         25:5f:bd:32:c7:7b:95:07:9a:44:52:68:7b:f5:93:f4:d2:d1:
         80:b9:7e:0c:98:d1:4e:f6:59:14:a5:34:18:32:de:04:6a:0a:
         03:6c:a9:68:b0:5f:3b:51:8e:a0:17:28:c3:b5:8e:02:e4:2c:
         95:57:f9:7d:17:4e:23:c6:78:f1:69:ac:ee:1b:80:21:3b:07:
         28:b1:41:a1:7a:5b:58:bd:a9:26:6c:9e:2f:82:76:cf:b9:67:
         e7:fc:38:a1:29:b8:3a:73:e7:06:5a:0f:5a:ea:41:9d:1f:f7:
         59:4a:56:4a:59:69:82:95:44:19:48:40:e1:08:cf:fd:7f:89:
         e6:ad:9f:37:20:5d:17:d6:e1:d4:f3:eb:25:85:31:47:b7:18:
         ec:3b:0e:fe:69:ec:19:bb:9f:cb:b7:48:23:b4:c1:6f:3c:d1:
         fc:b1:c4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 02:27:06 2024 by rpki-client on console-ams.rpki-client.org