Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
File:                     28lQCYQ2KBzuVCoedFRlUeHlUoM.mft (raw, json)
Hash identifier:          wHNo00haGhNPVwP1it2pK8gl3prK/+XUla1gSSSKBJg=
Subject key identifier:   CB:31:FF:80:85:33:BD:75:13:F1:67:67:78:1B:14:90:4E:EF:80:1E
Authority key identifier: DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83
Certificate issuer:       /CN=dbc950098436281cee542a1e74546551e1e55283
Certificate serial:       01901FDA412086BBB236CCA895044E1F6BC9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
Manifest number:          11C8
Signing time:             Sun 16 Jun 2024 07:01:55 +0000
Manifest this update:     Sun 16 Jun 2024 07:01:55 +0000
Manifest next update:     Mon 17 Jun 2024 07:01:55 +0000
Files and hashes:         1: 1-J6se5zowrtWItRwtV6xQe6lk2k.roa (hash: XYSY+1SG7aQ0lPBdAc5JVqSBHnpVnHDR9CE5wloK8jA=)
                          2: 28lQCYQ2KBzuVCoedFRlUeHlUoM.crl (hash: FA8VaTvd3YDjlVOGBPSJicRG6Ge2B+5fBrPLAT0jvEM=)
                          3: iunF3EfDLS-7di3NPxJd9ZdH04Y.roa (hash: FmWV3hGBb6NnH91Prx/r2HeBbyV+yFqwxvLATibPORM=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 17 Jun 2024 07:01:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1f:da:41:20:86:bb:b2:36:cc:a8:95:04:4e:1f:6b:c9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dbc950098436281cee542a1e74546551e1e55283
        Validity
            Not Before: Jun 16 07:01:55 2024 GMT
            Not After : Jun 17 07:01:55 2024 GMT
        Subject: CN=cb31ff808533bd7513f16767781b14904eef801e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:de:b2:19:80:f3:71:36:2e:d7:ab:a9:48:57:
                    65:1d:3a:89:96:f3:ea:ad:73:af:58:5e:19:15:e0:
                    d7:97:49:f4:b9:ee:1c:e8:93:e5:13:82:65:f1:2f:
                    46:a4:4c:6d:89:cd:81:00:44:c1:cd:54:ea:18:c7:
                    eb:5d:b2:59:55:61:83:6f:00:98:07:0c:49:dc:45:
                    84:16:17:90:88:4c:95:52:e1:f6:c5:ba:b2:c4:6a:
                    3f:8e:7a:a1:b2:b8:4a:97:cc:ea:17:b1:89:75:07:
                    d2:74:ec:bc:de:b8:53:1f:af:1c:6a:36:b4:c0:4a:
                    5b:b5:6d:d1:46:a0:af:5d:47:1b:22:a7:0e:be:5e:
                    ad:83:aa:01:bf:5e:92:ed:7c:90:57:20:35:cc:3f:
                    a5:c4:12:93:2e:2a:15:3a:e5:c7:7a:1d:b5:ac:1a:
                    3b:5f:f0:e4:af:1e:e7:45:51:16:f3:2f:73:11:6a:
                    76:5c:20:d3:00:8d:38:fe:4c:e0:f8:8c:81:0a:0e:
                    82:20:b2:0b:f6:17:ec:e2:cf:9a:0a:d1:7b:10:53:
                    d7:65:d4:c6:7f:c9:64:8b:a0:a6:01:d2:fb:19:b2:
                    29:71:aa:ae:e3:45:34:aa:08:45:25:40:bb:bd:60:
                    bd:57:58:bb:7e:3a:10:76:8b:74:d6:09:fd:61:6e:
                    5f:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:31:FF:80:85:33:BD:75:13:F1:67:67:78:1B:14:90:4E:EF:80:1E
            X509v3 Authority Key Identifier:
                keyid:DB:C9:50:09:84:36:28:1C:EE:54:2A:1E:74:54:65:51:E1:E5:52:83

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28lQCYQ2KBzuVCoedFRlUeHlUoM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5aa448-643f-4aee-90d9-f47e169266c2/1/28lQCYQ2KBzuVCoedFRlUeHlUoM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6d:2e:9d:70:5d:38:98:06:79:2a:7b:da:4c:ab:88:56:92:dc:
         d7:6c:89:de:25:9e:f8:ba:ad:4a:c4:ce:d6:c5:72:69:c4:bb:
         c9:b7:09:fa:1d:76:04:e0:58:dc:9d:7a:4b:bb:e3:c1:2c:c0:
         9c:a7:b2:87:4e:7f:74:85:5e:b6:5a:7f:50:97:1f:75:96:89:
         d1:1c:83:6c:64:85:9b:d4:c5:e2:1c:40:ad:7a:72:16:9d:5e:
         c4:fd:4c:70:49:7a:7e:78:98:33:6b:72:7d:66:7e:a1:11:e0:
         cb:ff:bd:ff:cf:50:ba:59:19:06:e8:cf:85:5b:19:17:64:a0:
         e7:fd:07:87:03:7c:7d:19:d3:1b:83:60:f0:ad:99:95:2f:5e:
         07:ef:19:84:f1:14:a5:87:e7:8a:bf:6e:63:7c:52:b2:e9:c5:
         66:b3:a9:65:81:d3:cd:da:3a:ea:ea:02:95:cb:3a:f2:c9:6f:
         d4:d3:d6:0e:7f:dc:e3:56:8b:c3:22:00:af:7c:a9:21:4d:30:
         39:d7:94:92:2b:33:cf:a1:da:65:29:48:c4:ea:a0:ff:42:cf:
         89:83:ad:15:e6:63:47:9c:34:33:dc:81:b5:7a:ef:d9:f8:00:
         7c:9f:17:b7:6e:38:d2:af:39:10:de:29:da:66:b6:48:f6:e0:
         3d:36:a5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 11:35:22 2024 by rpki-client on console-ams.rpki-client.org