Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.mft
File:                     ZCurhFmUi3l0dkjhPpm50KWCUGo.mft (raw, json)
Hash identifier:          hYq0QKBQCfJMvfX+S0ZVny/tz+O2HtWPCCRkHmy3gEc=
Subject key identifier:   B7:E6:20:40:80:D7:9A:3A:3C:28:6A:F4:82:9D:64:BF:8A:5A:4E:D8
Authority key identifier: 64:2B:AB:84:59:94:8B:79:74:76:48:E1:3E:99:B9:D0:A5:82:50:6A
Certificate issuer:       /CN=642bab8459948b79747648e13e99b9d0a582506a
Certificate serial:       01901CD834755C5806241AE4C5F2E2D2B5A4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ZCurhFmUi3l0dkjhPpm50KWCUGo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.mft
Manifest number:          052E
Signing time:             Sat 15 Jun 2024 17:00:49 +0000
Manifest this update:     Sat 15 Jun 2024 17:00:49 +0000
Manifest next update:     Sun 16 Jun 2024 17:00:49 +0000
Files and hashes:         1: Vf9M-SczmQ3vZ3eeTgDHIENgmGc.roa (hash: QRL6YWCOIeLBde+vKvti2RnLZFuyn0+SUGW/y+qPjRA=)
                          2: ZCurhFmUi3l0dkjhPpm50KWCUGo.crl (hash: Zgm/EKpCmRlehdcbSmY07GH2dyab8Le0M1iIFiC7v9w=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ZCurhFmUi3l0dkjhPpm50KWCUGo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 11:16:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1c:d8:34:75:5c:58:06:24:1a:e4:c5:f2:e2:d2:b5:a4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=642bab8459948b79747648e13e99b9d0a582506a
        Validity
            Not Before: Jun 15 17:00:49 2024 GMT
            Not After : Jun 16 17:00:49 2024 GMT
        Subject: CN=b7e6204080d79a3a3c286af4829d64bf8a5a4ed8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:6d:ef:d7:4a:6f:da:22:07:c2:fb:cd:34:f3:
                    a3:e6:21:7a:65:16:70:e6:e2:e3:9b:ae:6e:02:ed:
                    01:3b:6e:24:06:4f:80:5b:d7:4e:7a:79:ff:33:8c:
                    da:4c:c8:e8:25:24:8c:23:12:aa:4d:1c:c3:9a:cf:
                    c4:56:01:11:79:1c:35:67:03:f1:2c:8b:55:7e:56:
                    8c:8f:02:2d:6c:59:ba:69:d2:ce:06:e6:e9:8d:b5:
                    a3:dd:77:6b:d0:1e:d2:27:6c:a7:27:af:c3:d4:b9:
                    f3:22:0e:50:27:ab:4c:c3:b1:db:3a:9e:15:5a:bb:
                    16:b9:c2:4c:90:48:79:2e:be:88:15:4d:aa:9a:93:
                    df:de:29:02:75:a7:84:91:db:f3:c5:8e:0e:c3:8e:
                    47:73:4d:8b:da:e2:53:fc:23:91:19:35:49:d4:15:
                    3b:69:03:09:03:a9:9a:d2:99:36:89:7a:da:35:a8:
                    72:dd:92:22:df:84:9d:ea:11:99:9f:2b:e6:3c:b6:
                    bc:65:35:ab:2b:5d:02:ea:e7:6c:66:ed:eb:86:df:
                    87:37:a7:0f:a3:6b:da:f0:48:15:e0:9f:c3:5a:32:
                    d5:ba:59:2c:c4:6d:d8:a1:b3:40:fa:61:00:3f:87:
                    dd:55:ce:8e:3a:e7:3c:7c:56:f5:32:da:af:67:d8:
                    67:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:E6:20:40:80:D7:9A:3A:3C:28:6A:F4:82:9D:64:BF:8A:5A:4E:D8
            X509v3 Authority Key Identifier:
                keyid:64:2B:AB:84:59:94:8B:79:74:76:48:E1:3E:99:B9:D0:A5:82:50:6A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZCurhFmUi3l0dkjhPpm50KWCUGo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/5ec30c-2aef-47ab-b0ec-5b15523bfcbb/1/ZCurhFmUi3l0dkjhPpm50KWCUGo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7d:32:d5:1a:48:2a:6c:05:27:a7:06:61:d3:15:6b:81:e5:f5:
         78:83:5b:e4:de:fa:ed:4a:51:24:27:a3:36:f9:7a:19:d0:89:
         58:91:c4:5e:5c:58:ea:1b:cb:50:28:50:9e:98:90:c0:e7:0b:
         11:ba:3b:e7:e3:1c:6a:65:fb:39:6a:52:45:f1:29:1c:70:c8:
         a9:5f:75:68:7a:0c:b4:05:41:d9:56:a0:a6:4a:07:26:da:90:
         27:ff:53:8e:47:b7:59:3c:26:82:ff:a0:50:4a:5c:e4:b8:1b:
         a7:00:f1:5c:d8:b6:c0:78:24:41:44:f8:f4:76:77:72:8a:85:
         0d:09:ac:d2:ce:1e:2f:95:b5:2c:9b:06:9d:f3:41:c2:22:8e:
         49:a8:c3:6d:ab:97:f9:e2:9d:c9:54:5a:89:cd:93:b4:66:21:
         ac:d0:d0:e0:7f:de:2c:d1:76:c7:3e:de:67:ce:72:e3:d2:bd:
         9d:d0:d0:4c:29:1c:0a:5c:fb:d0:f1:50:04:7e:3e:d8:2e:58:
         b6:a8:3c:a3:9e:77:1e:64:44:72:8f:ce:ba:c6:a9:b4:d3:9a:
         47:5d:af:96:b3:21:af:6f:73:eb:f4:6c:e4:5f:12:10:57:01:
         9d:26:18:5d:71:76:22:e6:4a:76:4a:c5:1f:da:49:c1:22:5d:
         6a:1e:9f:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 17:42:48 2024 by rpki-client on console-fra.rpki-client.org