Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
File:                     cHl9sHv21Fl6wtyL40-JKYAI8s0.mft (raw, json)
Hash identifier:          qFUK6vE19tNv2BM278BtKMea8kh8PYmqpASbeRT3PbY=
Subject key identifier:   E5:72:30:E4:00:03:17:23:8F:6E:72:BB:41:77:C7:D4:85:1C:9C:72
Authority key identifier: 70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD
Certificate issuer:       /CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
Certificate serial:       0190448A655E28D5E279DF4ABAD8195E092C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
Manifest number:          11DD
Signing time:             Sun 23 Jun 2024 10:00:38 +0000
Manifest this update:     Sun 23 Jun 2024 10:00:38 +0000
Manifest next update:     Mon 24 Jun 2024 10:00:38 +0000
Files and hashes:         1: cHl9sHv21Fl6wtyL40-JKYAI8s0.crl (hash: GxRlVtaD+7V/MaEqbkfhLCB85W5vQGFvrodNBRSDBVY=)
                          2: v_L2Patzm3vGfLghAapB13-OeEc.roa (hash: LR5IrmH4w9mZM8wdnJGkkWinOJsj/fih5+iV99TigNk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 10:00:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:44:8a:65:5e:28:d5:e2:79:df:4a:ba:d8:19:5e:09:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=70797db07bf6d4597ac2dc8be34f89298008f2cd
        Validity
            Not Before: Jun 23 10:00:38 2024 GMT
            Not After : Jun 24 10:00:38 2024 GMT
        Subject: CN=e57230e4000317238f6e72bb4177c7d4851c9c72
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:a7:55:22:e5:78:ba:56:fd:64:90:7f:bb:2b:
                    5b:cf:9f:9a:b7:67:88:8c:32:0c:af:fd:aa:f7:33:
                    a2:58:ba:da:90:96:f4:73:e1:f1:b9:e0:01:01:81:
                    62:9c:c1:e4:c9:3e:4d:2b:27:ca:f6:8f:33:1c:50:
                    9b:67:4e:68:a8:9f:0d:73:bd:ed:36:8e:a7:44:7e:
                    ee:c5:f7:4e:94:14:02:f6:07:49:43:2a:54:64:28:
                    3d:78:19:cf:e1:c2:ed:1b:9e:01:72:de:b0:cd:02:
                    e6:76:7e:9d:13:40:03:24:b6:db:f4:93:c8:95:f6:
                    75:3d:b9:82:11:eb:87:a6:85:29:15:7f:cc:2e:84:
                    77:8a:39:93:dc:c0:22:43:95:11:c7:12:60:f5:0f:
                    40:4e:48:6f:66:57:31:ec:41:6f:3b:dd:5c:6c:f5:
                    2a:36:70:d5:71:6c:50:c3:6b:da:f3:1a:47:4a:fc:
                    f6:4c:1b:74:e2:54:e6:99:71:5e:c5:46:56:a8:07:
                    c2:c5:fe:7c:76:e8:09:03:ad:f1:54:1d:b9:c8:cd:
                    ee:ce:82:92:c4:f9:d4:1c:d5:a1:31:50:d6:eb:10:
                    37:13:20:b4:ad:8d:d9:76:80:72:2a:17:aa:84:1b:
                    35:ad:3f:5f:66:67:3d:20:78:65:50:cb:6b:dc:d5:
                    71:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:72:30:E4:00:03:17:23:8F:6E:72:BB:41:77:C7:D4:85:1C:9C:72
            X509v3 Authority Key Identifier:
                keyid:70:79:7D:B0:7B:F6:D4:59:7A:C2:DC:8B:E3:4F:89:29:80:08:F2:CD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHl9sHv21Fl6wtyL40-JKYAI8s0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c2ee7a-cbb7-470e-b965-907daa46463b/1/cHl9sHv21Fl6wtyL40-JKYAI8s0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         84:31:fb:bb:60:27:eb:e4:28:3a:e5:7c:3b:c5:6a:ca:3d:80:
         d8:bb:8a:75:0e:21:32:29:c9:8f:24:36:be:b1:11:bf:21:2b:
         76:20:f6:2d:61:11:88:9c:cf:35:fb:0d:a3:b4:75:00:03:30:
         e4:e4:46:c6:af:fc:41:09:22:b9:2f:00:e4:02:60:d0:b0:20:
         10:a9:22:08:9b:af:15:b1:29:ff:5c:e4:0a:68:51:5c:46:17:
         94:53:7f:1d:43:17:b7:0f:95:a1:61:f4:f4:c9:06:9f:fb:24:
         cc:5d:0e:2b:ba:85:2e:7c:f1:b5:11:69:3f:b5:4a:89:67:54:
         77:d7:e0:1e:eb:cb:34:bc:33:82:44:c4:e7:65:fe:4a:a2:58:
         68:fd:20:66:d5:01:7a:83:6a:0e:eb:3b:1e:a7:9d:41:3c:12:
         e0:e9:40:8e:c7:1a:44:4f:b2:9a:00:b7:92:5d:4f:00:3b:e1:
         34:7b:e0:76:c9:a7:d4:de:e0:b6:e0:e0:0e:81:d6:8f:58:3e:
         6a:7f:5c:8e:6c:0f:5e:df:1b:e6:d3:7f:f7:73:51:f1:35:2b:
         0a:22:5a:27:4f:20:c0:8d:35:b5:f6:2b:da:27:c5:60:41:c1:
         c7:db:d6:6b:e8:7c:ca:51:e8:84:d5:86:d5:a3:cc:45:9e:75:
         df:ad:a3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:58:32 2024 by rpki-client on console-ams.rpki-client.org