Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
File:                     Dv0crRIZAnVQiePKgLptfMxLm3E.mft (raw, json)
Hash identifier:          iaQumG+nYHC+7EO9kDd+zlhAd6XnfK4SJr4HAe0ga/U=
Subject key identifier:   61:86:42:BF:A5:0B:7A:7A:7F:B1:A6:4B:9F:64:92:02:AF:CF:6C:38
Authority key identifier: 0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71
Certificate issuer:       /CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
Certificate serial:       0190527D92A37F9B86CA6D67904E6A16EF4D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
Manifest number:          07DC
Signing time:             Wed 26 Jun 2024 03:01:19 +0000
Manifest this update:     Wed 26 Jun 2024 03:01:19 +0000
Manifest next update:     Thu 27 Jun 2024 03:01:19 +0000
Files and hashes:         1: Dv0crRIZAnVQiePKgLptfMxLm3E.crl (hash: NA61spML3LQVUzk17VP0rU3zqa15aMjDHI67jdBU4K8=)
                          2: oEUf2fD6ZYVwmgUfpI0SXzUqVDQ.roa (hash: dj08vFzwQ43xNAOX35u9VpszwUSLh9ftgqZtY5j/iBQ=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 26 Jun 2024 23:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:52:7d:92:a3:7f:9b:86:ca:6d:67:90:4e:6a:16:ef:4d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0efd1cad121902755089e3ca80ba6d7ccc4b9b71
        Validity
            Not Before: Jun 26 03:01:19 2024 GMT
            Not After : Jun 27 03:01:19 2024 GMT
        Subject: CN=618642bfa50b7a7a7fb1a64b9f649202afcf6c38
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:3d:37:a8:e8:94:35:f2:b8:03:58:e4:5c:6b:
                    2e:fe:5f:36:43:fa:c2:de:bc:87:98:e7:82:b7:d1:
                    51:87:71:b6:8f:66:83:ae:60:8d:14:36:dd:f8:be:
                    0d:fa:9c:dc:1b:77:b8:b4:15:6b:14:6f:75:47:ac:
                    24:7a:2f:b3:1f:65:c2:2c:92:af:57:09:1c:07:cd:
                    27:cf:66:fb:95:b6:84:8c:fa:cb:35:fd:30:10:29:
                    71:f6:26:aa:e9:a3:65:c3:24:ff:f9:76:e5:58:84:
                    84:8e:b1:52:92:15:3e:53:c9:c5:1b:52:47:a3:3d:
                    98:4d:bf:02:4f:09:96:05:69:e7:51:01:8a:ec:ba:
                    8a:45:4e:0f:6b:f5:40:eb:0e:68:bb:4b:41:08:9c:
                    f7:93:bc:27:bb:2c:6b:7d:e8:78:5c:44:69:98:ff:
                    d5:fd:5f:95:28:1a:ac:e2:90:95:30:c3:a7:c7:6c:
                    8a:0b:d1:b6:6c:10:4d:1b:d4:28:b8:94:28:a1:fa:
                    41:ca:f5:26:cd:23:4c:40:0a:cf:7f:21:a4:d8:df:
                    c0:2e:75:f8:a0:4e:10:f2:41:14:73:27:8e:36:5b:
                    3a:c3:f1:d6:1d:2b:fd:24:7e:f5:a1:9a:ff:9e:f9:
                    98:e5:07:82:b1:83:36:55:9b:8e:b7:76:89:23:c7:
                    cb:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:86:42:BF:A5:0B:7A:7A:7F:B1:A6:4B:9F:64:92:02:AF:CF:6C:38
            X509v3 Authority Key Identifier:
                keyid:0E:FD:1C:AD:12:19:02:75:50:89:E3:CA:80:BA:6D:7C:CC:4B:9B:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dv0crRIZAnVQiePKgLptfMxLm3E.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/33/df99d3-5028-4361-b795-3af4a9463b77/1/Dv0crRIZAnVQiePKgLptfMxLm3E.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:26:fd:95:6c:a3:a5:e7:b8:d1:9d:b6:28:10:b4:9a:de:2e:
         80:a4:46:56:63:6f:3b:b3:66:a6:d7:11:59:19:93:a5:48:e7:
         4a:95:4a:db:89:67:39:ac:73:7f:f8:4c:bc:79:a1:9c:16:ff:
         2d:90:70:d7:fd:ed:aa:32:49:a0:9f:8e:53:89:b9:4f:59:bf:
         47:a5:fd:79:59:4e:02:00:b1:08:e9:e8:32:3c:cd:47:f9:26:
         b4:75:df:1d:11:a4:e4:a8:6f:83:20:fe:b0:51:be:9d:0e:41:
         ae:6e:d1:05:cc:ea:ac:ca:28:9f:02:a0:c4:96:64:3d:68:dd:
         f9:93:74:d1:77:4b:95:82:54:11:8f:05:5f:cd:ef:21:43:e8:
         1d:ae:8c:0f:b2:d8:36:6a:8f:ff:7b:c9:1e:0d:ea:9f:1b:64:
         f3:a0:ec:e4:0b:89:8b:d9:c7:b0:05:f0:6c:b4:02:b7:87:f3:
         66:55:a1:60:dd:6f:1e:8b:f1:f0:0a:34:f2:18:65:bc:83:ed:
         18:54:1d:e4:1a:00:a5:32:9d:24:7c:88:33:80:d1:c0:5b:27:
         0d:34:e6:20:72:a2:da:6c:95:47:9d:a3:3f:59:60:7e:86:cd:
         05:ab:ce:c5:84:4f:d7:a7:9e:4d:19:39:43:8f:61:12:5c:cd:
         28:95:c7:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 08:37:55 2024 by rpki-client on console-ams.rpki-client.org