Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
File:                     H9CHXNAFHQwJJaygQQNOeECmdws.mft (raw, json)
Hash identifier:          ITavYZ0YCJAeDZYucXd7cDComiB069fJCNMUup+lgr8=
Subject key identifier:   A2:3D:3D:6C:67:3F:DC:17:6D:C4:E7:B4:97:CE:17:E2:B7:40:EE:9D
Authority key identifier: 1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B
Certificate issuer:       /CN=1fd0875cd0051d0c0925aca041034e7840a6770b
Certificate serial:       01901E21A650335D9C5ADB42F8CA09AE1C4B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
Manifest number:          0190
Signing time:             Sat 15 Jun 2024 23:00:40 +0000
Manifest this update:     Sat 15 Jun 2024 23:00:40 +0000
Manifest next update:     Sun 16 Jun 2024 23:00:40 +0000
Files and hashes:         1: H9CHXNAFHQwJJaygQQNOeECmdws.crl (hash: aYAshEIeaoF99HROv+XEZ+j0O5O7vRnUlwElGimauOM=)
                          2: vjCb31anXB6oWaUQw6Q4B-k6_38.roa (hash: u/xWSzZGyLpQB89GlVzUSQGw3KklbeBXVXgVFlR0zEc=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 19:09:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1e:21:a6:50:33:5d:9c:5a:db:42:f8:ca:09:ae:1c:4b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1fd0875cd0051d0c0925aca041034e7840a6770b
        Validity
            Not Before: Jun 15 23:00:40 2024 GMT
            Not After : Jun 16 23:00:40 2024 GMT
        Subject: CN=a23d3d6c673fdc176dc4e7b497ce17e2b740ee9d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:f4:a9:0b:bd:ac:7f:0b:01:9f:f1:0d:b7:18:
                    30:e1:be:d0:5e:26:db:50:3f:7c:e1:15:17:5b:82:
                    86:a2:84:f0:96:15:e9:34:c2:ac:cd:f2:26:65:ce:
                    ef:b5:6c:0e:ad:3c:4e:28:88:4c:fb:cb:17:ed:87:
                    a4:2f:74:06:cd:55:f3:c3:e9:ef:71:3a:c8:ed:46:
                    58:89:40:a9:a8:c3:d1:06:f2:20:8b:3a:eb:ce:4f:
                    c1:5a:89:3c:37:53:ec:af:e4:23:83:7e:11:75:05:
                    c1:69:e4:b7:e8:ed:19:0b:c6:37:5c:f8:5b:78:f0:
                    5b:18:91:57:ac:6d:fa:a7:3c:44:c7:fb:cf:8c:ac:
                    f5:fb:a1:e1:12:c1:32:a4:97:9a:79:35:9f:08:7e:
                    21:ae:e4:c3:94:dd:55:cd:19:e6:ff:87:f3:11:0e:
                    8a:e9:61:9d:06:23:10:7f:a3:81:ed:e9:db:d2:b8:
                    d6:f0:01:43:a6:bb:02:62:7c:8f:d0:3c:c9:46:87:
                    2c:ff:50:b1:7e:5c:7d:a7:11:07:2e:97:70:20:7e:
                    92:50:8a:17:67:e5:83:36:58:9d:c4:48:c9:15:68:
                    b2:9e:04:8e:27:fa:6d:90:cb:6c:94:d8:fe:05:5d:
                    03:43:01:14:ef:8a:ff:a7:e0:78:02:a5:34:11:d7:
                    bb:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:3D:3D:6C:67:3F:DC:17:6D:C4:E7:B4:97:CE:17:E2:B7:40:EE:9D
            X509v3 Authority Key Identifier:
                keyid:1F:D0:87:5C:D0:05:1D:0C:09:25:AC:A0:41:03:4E:78:40:A6:77:0B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H9CHXNAFHQwJJaygQQNOeECmdws.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/221048-3bad-469c-b933-e0802f474444/1/H9CHXNAFHQwJJaygQQNOeECmdws.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:7f:d3:26:f1:37:e6:be:7f:00:5b:98:a8:d8:0b:65:11:1c:
         86:bb:0f:46:6c:a4:0d:31:f4:a0:31:f8:19:35:77:95:7b:66:
         0a:ed:c0:31:2d:0b:fb:f2:e8:5c:ee:a0:5c:d9:91:dd:9e:31:
         34:58:93:6a:62:8e:81:5f:0b:68:88:e0:b4:9a:48:25:c6:ae:
         1b:d7:f7:41:e9:9d:73:33:10:81:93:31:3d:73:ec:34:48:3a:
         4c:dd:1f:4a:05:8d:21:7c:32:45:5d:b7:ef:13:3a:d8:71:f7:
         55:05:52:4d:ab:fd:a9:99:ca:a3:48:d7:bc:ef:d3:80:f0:92:
         b7:9e:9e:ed:23:e6:bc:b7:76:cc:47:25:39:b6:6e:6f:c5:b7:
         f0:be:93:09:09:16:e3:94:76:b0:cd:63:ec:0d:2d:03:ef:6e:
         4e:32:2d:d9:4c:b0:b8:eb:fe:55:f6:b9:30:85:55:ab:f7:8d:
         4e:88:3c:e8:c4:09:a5:d8:e0:5e:d2:bf:15:07:d8:d8:c4:bb:
         ea:51:34:6f:93:45:de:22:d0:97:8d:08:e5:c4:f7:14:b6:ee:
         fb:a8:28:ab:eb:51:c3:11:27:b7:bc:97:5d:69:8f:a0:e1:01:
         71:1b:7c:a7:e3:51:85:9b:43:ec:11:7f:13:6b:7e:22:cb:cb:
         9a:d5:06:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 01:05:35 2024 by rpki-client on console-ams.rpki-client.org