Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
File:                     iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft (raw, json)
Hash identifier:          6XLxlbo1IbyNsJzM1VoWijy+G4NfWexqN0cikFOLtw4=
Subject key identifier:   7E:98:12:82:E5:DF:51:64:22:0D:B3:33:B4:B5:79:F7:7A:32:CA:1C
Authority key identifier: 8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59
Certificate issuer:       /CN=8b03dca76319903152f246e05c069fd1a1db5c59
Certificate serial:       01901DEC8F3E079BA3B78AA2013C7DA98810
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
Manifest number:          02D0
Signing time:             Sat 15 Jun 2024 22:02:40 +0000
Manifest this update:     Sat 15 Jun 2024 22:02:40 +0000
Manifest next update:     Sun 16 Jun 2024 22:02:40 +0000
Files and hashes:         1: iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl (hash: H0te13Nn2mNPtkWodu/6u9QJDAwegp0oibWXHuVmnDc=)
                          2: kXsCl5aANWOJMxq9RWrtG4BUYPo.roa (hash: UAUydXeJe0qPbF8sCXywITMWigUQZjXMBeCDQgMxtkY=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:02:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ec:8f:3e:07:9b:a3:b7:8a:a2:01:3c:7d:a9:88:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b03dca76319903152f246e05c069fd1a1db5c59
        Validity
            Not Before: Jun 15 22:02:40 2024 GMT
            Not After : Jun 16 22:02:40 2024 GMT
        Subject: CN=7e981282e5df5164220db333b4b579f77a32ca1c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:60:b2:e6:77:c5:83:64:18:9b:55:e3:4d:d9:
                    ea:d0:14:4a:2e:7c:ad:85:83:09:22:cc:64:a3:8a:
                    24:d4:ea:7d:71:89:88:61:f6:5d:ce:6e:03:fb:53:
                    4f:6b:98:c7:8d:2f:f7:d1:06:4d:15:7d:55:c6:ad:
                    26:02:f2:88:d5:07:e8:d8:07:7e:b9:ef:c2:1e:7a:
                    91:38:ba:05:8e:a7:22:a9:b7:aa:55:30:06:02:c5:
                    c3:23:02:ad:78:98:f3:ff:3e:00:49:7f:34:e6:70:
                    08:32:10:cb:22:c0:3d:91:70:59:fa:9e:40:95:ab:
                    60:e2:42:c9:96:8b:49:fc:f0:f3:48:61:8b:d1:5c:
                    bb:c0:f5:6a:d8:c3:48:5a:45:a8:78:c7:d2:76:ef:
                    77:e2:c1:04:a4:bf:e8:e9:31:f3:b7:1f:2d:67:f1:
                    46:1b:8e:54:90:15:c9:8d:11:98:bc:6f:ea:31:aa:
                    cf:17:f2:dc:11:8d:68:b7:4d:e3:fe:ea:37:9f:02:
                    fd:30:dc:83:05:c9:62:de:b8:51:cc:80:a8:ee:96:
                    5e:16:05:15:ac:4c:65:ea:31:2c:04:d3:80:0a:9a:
                    dd:27:77:29:61:3e:2b:52:68:b3:d9:aa:34:b1:25:
                    1c:08:24:85:fc:54:fe:8c:3d:c5:61:7f:27:ea:f9:
                    78:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:98:12:82:E5:DF:51:64:22:0D:B3:33:B4:B5:79:F7:7A:32:CA:1C
            X509v3 Authority Key Identifier:
                keyid:8B:03:DC:A7:63:19:90:31:52:F2:46:E0:5C:06:9F:D1:A1:DB:5C:59

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iwPcp2MZkDFS8kbgXAaf0aHbXFk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/30cdbe-11e1-44ca-b654-029e63f0889a/1/iwPcp2MZkDFS8kbgXAaf0aHbXFk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:3f:54:3f:5b:8e:42:31:11:dc:4e:74:14:77:ca:60:a7:ee:
         a8:2e:05:89:43:32:14:e3:73:03:80:67:aa:87:f2:4d:76:4e:
         0b:26:c2:27:87:30:10:bb:91:54:a7:e6:bb:a0:cf:76:7b:91:
         df:54:fc:ce:6d:7b:b8:ed:68:80:5f:3b:20:91:45:82:a8:3d:
         d2:38:96:28:cd:9e:05:96:c4:da:6f:1c:4a:dc:ac:51:af:9a:
         ae:df:25:13:1f:3d:43:6f:57:f8:d0:cf:8f:bd:5b:40:5b:dd:
         05:c9:f8:ad:62:47:98:80:bb:72:a8:79:b8:d0:e0:00:13:4f:
         e4:3d:ac:3f:79:df:e8:a4:8d:21:5f:64:a9:e5:f3:3d:04:09:
         92:b7:ad:e0:49:a5:b1:2a:42:c1:9b:7d:06:e3:87:37:23:2e:
         14:8c:da:59:bf:e9:39:a2:9b:57:fb:b2:a1:60:ca:79:f8:10:
         94:8a:05:b6:6a:eb:ea:9a:bb:bf:a3:75:0c:e3:78:29:d4:ed:
         0f:f2:c5:09:d3:b9:8e:32:d8:1e:3c:57:a7:6a:bc:57:d3:8a:
         4f:15:3a:93:e8:ee:d5:f2:59:2c:4c:06:83:3e:9e:10:96:9e:
         35:13:fa:aa:50:30:3b:65:f3:07:ae:67:af:a5:9b:fd:c4:95:
         54:fe:0c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:45:47 2024 by rpki-client on console-fra.rpki-client.org