Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
File:                     28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json)
Hash identifier:          qI0YjYkm4R1Yqw0tCW6DxEpTI1DDKEvIHzN490M4iSU=
Subject key identifier:   6B:2D:74:AD:00:6C:A9:74:15:67:EF:4D:04:58:AD:9B:2B:3D:BA:FE
Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
Certificate issuer:       /CN=dbc950098436281cee542a1e74546551e1e55283
Certificate serial:       01904C44DB734A39732541666998162C8E8B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
Manifest number:          11DF
Signing time:             Mon 24 Jun 2024 22:01:39 +0000
Manifest this update:     Mon 24 Jun 2024 22:01:39 +0000
Manifest next update:     Tue 25 Jun 2024 22:01:39 +0000
Files and hashes:         1: 1-J6se5zowrtWItRwtV6xQe6lk2k.roa (hash: XYSY+1SG7aQ0lPBdAc5JVqSBHnpVnHDR9CE5wloK8jA=)
                          2: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: 5MA6nLJiJAhb4FroYQ1qnvXz+h0Jm45JGaz1GQ0uxsU=)
                          3: iunF3EfDLS-7di3NPxJd9ZdH04Y.roa (hash: FmWV3hGBb6NnH91Prx/r2HeBbyV+yFqwxvLATibPORM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 25 Jun 2024 22:01:39 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:4c:44:db:73:4a:39:73:25:41:66:69:98:16:2c:8e:8b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dbc950098436281cee542a1e74546551e1e55283
        Validity
            Not Before: Jun 24 22:01:39 2024 GMT
            Not After : Jun 25 22:01:39 2024 GMT
        Subject: CN=6b2d74ad006ca9741567ef4d0458ad9b2b3dbafe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:09:12:a2:c3:f0:65:83:31:e7:2f:d5:31:79:
                    5a:df:7a:19:f1:d4:8b:d3:bd:cf:f6:64:7a:fc:d2:
                    f1:cb:93:98:56:52:a5:1f:74:01:c5:81:86:6c:c7:
                    57:7e:d2:80:20:93:64:96:bc:00:a1:5f:71:c6:2d:
                    ec:35:2f:71:39:61:1b:19:ef:49:db:9e:70:7c:43:
                    2a:2f:36:f6:0b:b6:a3:f6:ee:b7:97:e6:a0:e4:20:
                    fc:b9:2a:74:b4:4c:82:af:27:65:76:62:7b:d1:4d:
                    af:c6:85:99:a1:87:b3:cd:c4:ec:a2:8d:79:1f:f5:
                    09:86:6e:bd:d0:7a:8a:ae:1c:31:e2:12:74:8c:a3:
                    f2:08:96:64:fc:cc:bc:bc:34:cf:f4:8c:01:5b:0c:
                    1d:e0:37:ee:93:d4:8b:1d:8d:86:dc:7d:40:ae:f6:
                    d2:93:0e:06:c7:4b:40:73:af:50:c9:36:ac:cd:5b:
                    26:c2:f7:77:ef:50:ed:78:58:a7:c6:e0:00:bb:24:
                    90:62:04:c2:e8:b9:39:d4:b8:e3:25:ed:1e:39:20:
                    a2:d4:1b:04:d5:4b:b5:98:f2:e6:05:12:21:57:85:
                    93:ac:24:95:62:a2:60:d0:7d:1e:b3:fe:72:bb:03:
                    7a:99:77:b1:2d:5a:78:f6:55:cd:e9:69:aa:c6:91:
                    82:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:2D:74:AD:00:6C:A9:74:15:67:EF:4D:04:58:AD:9B:2B:3D:BA:FE
            X509v3 Authority Key Identifier:
                keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         89:ab:9c:34:f5:37:54:d8:2d:49:a6:60:ef:4e:a4:6f:1b:f0:
         2e:aa:a9:d9:e9:2b:c1:86:a7:01:0e:18:c2:62:13:4c:08:ec:
         d0:22:cd:ea:a5:57:9c:a0:6f:31:c6:92:92:fd:26:82:f2:ff:
         f1:b5:af:3d:40:a4:4b:a4:68:ec:47:90:19:bb:4b:45:c9:ab:
         61:dd:e2:d7:02:d5:69:8a:e3:1a:3c:30:16:dd:5e:aa:02:a3:
         16:26:5a:22:6f:b2:fe:a4:46:4c:06:d1:87:7e:ae:62:08:2d:
         eb:34:eb:a8:a3:c9:7b:df:6d:a8:81:c8:1b:ce:9e:d3:9e:68:
         8a:06:c9:27:ab:1d:cb:5e:2b:87:6a:88:d7:64:75:d2:ac:e2:
         67:65:7a:ef:68:c6:90:23:ae:bd:cd:29:ed:37:92:2a:fc:76:
         53:6d:25:46:09:b7:45:0e:72:d3:2d:b1:c4:b8:68:3f:5a:8a:
         0b:46:4a:7a:ca:81:1e:a6:40:1d:78:29:59:15:63:b1:92:3b:
         18:35:31:22:89:67:1e:1a:60:c4:22:6b:01:4c:57:4a:84:42:
         da:f9:93:07:93:94:61:94:b8:29:c5:2d:6f:ef:07:1e:97:b5:
         0d:bd:91:e5:b3:54:7c:8c:fd:67:e8:11:af:92:46:81:a2:56:
         88:c5:b4:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 25 03:15:33 2024 by rpki-client on console-fra.rpki-client.org