Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
File:                     pkHn9ngj7vUqGf4dyODmp_QclDM.mft (raw, json)
Hash identifier:          X2Y1zUw9qWusJ3aWoyc7nmhgSF/Rrk9SEjuMKEpxYZg=
Subject key identifier:   91:C4:9F:6F:4E:C6:B1:48:23:D6:68:1B:A4:85:B9:E3:60:22:96:10
Authority key identifier: A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33
Certificate issuer:       /CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
Certificate serial:       0192F7E927A531C74205B677D6A8804500E6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
Manifest number:          06DC
Signing time:             Mon 04 Nov 2024 16:01:45 +0000
Manifest this update:     Mon 04 Nov 2024 16:01:45 +0000
Manifest next update:     Tue 05 Nov 2024 16:01:45 +0000
Files and hashes:         1: Ckv9KG2nf9K_EO-UzkYshDbT_Lk.roa (hash: SbVSz3drx1Bfl5NS5uyz56wfvS5jbkQj2bpd6kpHHp4=)
                          2: pkHn9ngj7vUqGf4dyODmp_QclDM.crl (hash: hYm9qKAakHN9YFWdQNTprqn3u0nnGa5dCvR9yI6H090=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Nov 2024 14:58:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:92:f7:e9:27:a5:31:c7:42:05:b6:77:d6:a8:80:45:00:e6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a641e7f67823eef52a19fe1dc8e0e6a7f41c9433
        Validity
            Not Before: Nov  4 16:01:45 2024 GMT
            Not After : Nov  5 16:01:45 2024 GMT
        Subject: CN=91c49f6f4ec6b14823d6681ba485b9e360229610
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:eb:70:27:c7:50:52:c4:d9:e0:f0:c7:e2:ae:
                    3a:3d:a1:2d:d9:8a:3f:84:2a:71:36:b7:de:2c:e7:
                    64:6f:e8:0d:06:47:dc:eb:4e:e0:47:28:dd:25:75:
                    ac:33:62:4d:05:d7:30:20:e8:0e:48:c9:f0:ae:b4:
                    9d:16:c7:12:08:32:d2:fb:b1:0e:c5:f7:b3:3b:06:
                    bf:b8:dd:aa:0f:7b:c3:05:0b:a9:26:04:79:60:25:
                    75:11:a9:7a:10:1a:05:ad:e1:99:19:e1:c7:ec:aa:
                    d9:97:57:f4:db:12:04:0a:0a:02:de:ec:3f:38:b4:
                    3c:6e:74:2a:57:95:a8:a6:dd:49:c4:0f:4e:e9:56:
                    80:b0:44:51:35:d0:a7:12:f7:20:d6:1b:8c:68:ff:
                    33:36:14:80:ff:e7:85:fa:ad:dd:b1:ef:3e:66:10:
                    38:e6:8e:b6:b6:bb:f6:df:ca:86:16:b5:f9:9e:13:
                    1b:31:ef:58:ca:22:7e:07:9e:91:48:94:42:64:f2:
                    d8:ae:66:bf:32:18:27:02:82:e4:e2:ee:29:a1:8a:
                    7e:6f:b9:23:f9:57:68:ea:42:61:3e:3c:71:59:dd:
                    13:a8:19:d1:e5:e7:77:38:41:34:0f:0a:2a:4c:e8:
                    06:47:f6:77:9d:cf:8c:61:0d:ea:94:83:a2:19:3b:
                    a2:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                91:C4:9F:6F:4E:C6:B1:48:23:D6:68:1B:A4:85:B9:E3:60:22:96:10
            X509v3 Authority Key Identifier:
                keyid:A6:41:E7:F6:78:23:EE:F5:2A:19:FE:1D:C8:E0:E6:A7:F4:1C:94:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkHn9ngj7vUqGf4dyODmp_QclDM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/0ac21c-c72b-4719-a085-0788f7921852/1/pkHn9ngj7vUqGf4dyODmp_QclDM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:29:d8:3b:c0:0c:f4:58:3b:ce:7b:7c:92:88:c8:a4:e9:d4:
         61:27:4b:f3:5f:97:80:15:c9:4c:e1:8a:e7:68:57:83:68:23:
         02:1c:46:57:39:14:2e:a0:b7:cb:f6:00:46:b8:5d:a7:53:c4:
         03:4e:20:cc:f3:c0:55:fb:4e:bc:fe:3b:bd:bc:33:b6:59:d7:
         1b:e3:24:48:74:e0:71:91:fe:5e:1f:b9:17:3e:58:87:50:54:
         e9:ad:04:e8:72:64:5e:97:73:9a:3c:37:58:3b:b0:b4:13:64:
         a3:0d:be:75:fc:b3:a9:58:0e:e9:87:05:52:db:df:a4:15:f4:
         94:34:54:f4:7f:38:fe:88:7e:ca:cc:88:4f:55:91:f9:52:79:
         02:c4:8a:38:8f:77:d8:03:46:dc:d2:37:26:7c:7d:5c:44:dc:
         45:15:f8:04:54:98:75:28:e2:28:87:f8:0c:2d:a6:85:3d:0a:
         c1:28:b1:4c:72:2b:fd:ed:5d:66:18:4c:ce:97:74:4b:00:ee:
         fb:48:5f:42:c0:9f:6d:1f:b1:6a:98:9c:ba:6f:14:73:07:46:
         37:f0:ec:ab:32:2e:17:92:aa:9c:fe:db:66:90:25:31:1e:d8:
         7a:90:5b:a7:4b:30:b0:f0:c8:5b:03:a7:c7:67:03:fa:fa:a9:
         1c:56:db:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 20:54:49 2024 by rpki-client on console-ams.rpki-client.org