Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.mft
File:                     y9wl6joKcp7Y5umnPaiW2E-VQ5w.mft (raw, json)
Hash identifier:          tMLFP4vZa4Tsfwuov1e9/HE6bL/8bKmXCY1n/9zFYa4=
Subject key identifier:   2F:6D:5D:55:0A:CD:BF:7D:A2:96:24:6B:7D:57:5C:09:4D:51:E5:EB
Authority key identifier: CB:DC:25:EA:3A:0A:72:9E:D8:E6:E9:A7:3D:A8:96:D8:4F:95:43:9C
Certificate issuer:       /CN=cbdc25ea3a0a729ed8e6e9a73da896d84f95439c
Certificate serial:       01901DED1BCBDF7AA9447A0100684174FAED
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/y9wl6joKcp7Y5umnPaiW2E-VQ5w.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.mft
Manifest number:          121E
Signing time:             Sat 15 Jun 2024 22:03:16 +0000
Manifest this update:     Sat 15 Jun 2024 22:03:16 +0000
Manifest next update:     Sun 16 Jun 2024 22:03:16 +0000
Files and hashes:         1: 29P0CKg1qEGCX2RJptIrYoSU-GM.roa (hash: Ljr4XS+AmQK8aVDdjDm+vSUSgXrRbuugHGP02mS0y7c=)
                          2: y9wl6joKcp7Y5umnPaiW2E-VQ5w.crl (hash: m2yWAqwNo22XSMT2gDQasaHFIboKD1/QVfackTpbhzQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/y9wl6joKcp7Y5umnPaiW2E-VQ5w.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:03:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:ed:1b:cb:df:7a:a9:44:7a:01:00:68:41:74:fa:ed
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cbdc25ea3a0a729ed8e6e9a73da896d84f95439c
        Validity
            Not Before: Jun 15 22:03:16 2024 GMT
            Not After : Jun 16 22:03:16 2024 GMT
        Subject: CN=2f6d5d550acdbf7da296246b7d575c094d51e5eb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:10:3c:58:2e:d7:2c:05:ea:0f:bb:29:1a:98:
                    d1:48:d9:c6:b7:66:cc:16:ce:08:56:98:7d:0d:86:
                    3a:2f:f4:f9:a8:d1:5c:4a:f0:87:74:b2:b3:ec:42:
                    14:15:d2:c5:43:58:81:45:71:9b:eb:ee:88:64:0a:
                    a5:59:bf:c5:7d:24:2c:74:f4:72:a6:40:f4:02:6b:
                    a6:52:80:df:c8:72:64:59:be:33:0f:0e:f4:57:2b:
                    9e:2c:8a:22:9e:42:3d:93:97:d8:a1:1e:85:34:ae:
                    3e:51:f0:ba:00:03:b9:6b:25:b1:89:11:b0:ba:3f:
                    be:dc:2b:f4:11:2d:7d:1e:79:79:83:20:b9:7e:c5:
                    ca:9c:e3:f3:60:13:61:ee:05:10:8e:80:c4:b3:02:
                    14:64:4a:66:fb:cb:26:a8:03:bb:27:51:46:dc:07:
                    aa:ca:a2:33:17:be:09:51:88:23:88:9e:5f:15:89:
                    88:57:a6:2f:9a:98:db:4d:d6:c1:d8:39:bd:71:1e:
                    a0:05:df:97:13:5a:7b:be:f7:ae:bf:e0:6b:d6:d2:
                    53:bf:fb:d2:6f:15:a9:23:75:9b:ed:0c:e0:77:a6:
                    b3:50:82:ea:d8:85:41:3f:6a:c5:c7:b6:e3:f2:89:
                    61:c6:e4:88:d3:95:94:0e:f7:77:f5:7b:e3:bf:7b:
                    08:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2F:6D:5D:55:0A:CD:BF:7D:A2:96:24:6B:7D:57:5C:09:4D:51:E5:EB
            X509v3 Authority Key Identifier:
                keyid:CB:DC:25:EA:3A:0A:72:9E:D8:E6:E9:A7:3D:A8:96:D8:4F:95:43:9C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9wl6joKcp7Y5umnPaiW2E-VQ5w.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5da1e6-246f-4493-992e-22c79aea127c/1/y9wl6joKcp7Y5umnPaiW2E-VQ5w.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:c8:04:47:38:96:49:17:4d:72:b9:ec:de:a4:97:c0:c8:ca:
         bf:00:d8:00:a6:8c:76:c0:44:d4:ee:bf:08:b1:f2:4e:eb:af:
         1d:72:4d:89:18:89:cc:a6:f6:a4:b4:ec:ef:b5:7f:ac:18:fd:
         2f:6a:f0:f5:aa:76:09:fa:57:bd:fb:c7:9c:f9:02:6f:61:eb:
         bb:9c:3f:34:9d:d9:08:60:da:ad:d6:47:69:2e:48:75:08:f7:
         21:c1:cf:59:0e:4a:21:a3:45:f4:de:49:b7:34:98:a8:47:fd:
         93:d1:41:77:1d:6b:38:9f:0f:81:0e:6f:4f:41:f9:ef:e1:f2:
         2e:7c:5f:42:63:86:8a:06:e0:02:b7:2b:64:94:4d:f0:a6:2b:
         f9:c4:d4:e5:4f:09:de:f7:96:ef:44:35:07:db:42:2c:24:d2:
         76:5a:c5:50:59:a1:33:df:cc:6e:ed:2f:f0:6d:4f:76:14:18:
         ab:e7:af:6d:db:bc:93:fd:16:c6:59:f0:ce:fe:7b:f6:ef:1f:
         c3:c3:3e:d8:c0:f4:d0:32:8b:20:6d:f7:c2:51:06:a5:ff:a3:
         73:d7:96:db:f3:0d:5e:6c:c9:36:a5:fe:20:e3:0d:33:8d:7b:
         7f:0a:49:3a:23:26:d3:a3:76:dd:ac:62:08:e3:3d:be:b0:c8:
         5f:fd:89:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:51:44 2024 by rpki-client on console-fra.rpki-client.org