Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.mft
File:                     om-n7jCto1qx_ATzQP7fZHqfgWI.mft (raw, json)
Hash identifier:          kh7zkiqVj3wPA1xaA2ZNP3z2s0mADgIifX5n8um6uDw=
Subject key identifier:   1D:C8:66:2B:4C:99:FB:44:53:AD:4D:AF:B6:19:EC:E4:8E:90:7C:F3
Authority key identifier: A2:6F:A7:EE:30:AD:A3:5A:B1:FC:04:F3:40:FE:DF:64:7A:9F:81:62
Certificate issuer:       /CN=a26fa7ee30ada35ab1fc04f340fedf647a9f8162
Certificate serial:       019038F484A59A00D2ECA1E75EB35A8B7E55
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.mft
Manifest number:          1166
Signing time:             Fri 21 Jun 2024 04:01:07 +0000
Manifest this update:     Fri 21 Jun 2024 04:01:07 +0000
Manifest next update:     Sat 22 Jun 2024 04:01:07 +0000
Files and hashes:         1: om-n7jCto1qx_ATzQP7fZHqfgWI.crl (hash: dcvk642zqgmLuyHS9Si7Q7DdRC9dXdThDPZ/893+kvk=)
                          2: t8AOqiiVLrqHOmbMV2EgnMXdJF0.roa (hash: uX4fzT84Go7utu7L4w2u81tugcSvjA5inHY211Hu2oA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 22 Jun 2024 00:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:38:f4:84:a5:9a:00:d2:ec:a1:e7:5e:b3:5a:8b:7e:55
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a26fa7ee30ada35ab1fc04f340fedf647a9f8162
        Validity
            Not Before: Jun 21 04:01:07 2024 GMT
            Not After : Jun 22 04:01:07 2024 GMT
        Subject: CN=1dc8662b4c99fb4453ad4dafb619ece48e907cf3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:40:43:be:38:82:5b:6a:b4:a1:20:d3:ac:82:
                    7e:ab:70:5e:ba:4c:5e:a6:af:0e:45:a9:b6:32:1c:
                    69:ad:3e:1c:94:ce:d1:f4:78:e8:ba:02:45:4d:fc:
                    eb:09:34:74:8a:7e:ef:c2:1f:29:38:43:3d:5e:00:
                    a3:a5:7b:42:01:8f:c2:78:16:7b:db:03:d7:99:df:
                    51:7b:e9:33:87:50:43:81:ae:1c:83:75:d7:75:74:
                    9f:d5:09:12:94:0c:4d:5d:ac:4a:9e:bb:26:26:ea:
                    53:9c:f1:3b:c2:5f:c0:e8:06:5a:22:83:96:c7:4c:
                    79:46:f7:37:ba:8f:d3:66:c0:67:33:af:3b:7f:7f:
                    63:93:50:6f:68:a7:95:97:77:78:c2:d1:0a:1e:e4:
                    0a:d4:d9:49:ed:d5:9c:da:2c:61:38:31:57:57:dc:
                    85:a4:3d:83:66:7d:19:55:56:eb:83:ab:f2:42:ef:
                    65:ee:09:f4:4a:36:8a:20:86:6f:2b:84:76:e0:17:
                    cf:a7:d6:5d:10:1a:d1:5f:d6:80:86:d0:03:82:90:
                    cc:79:9f:75:f6:cb:39:cd:7d:1b:96:3c:74:c6:f4:
                    ee:64:30:bb:75:18:8a:67:0b:ca:02:35:9d:b6:ac:
                    5c:6f:27:ce:22:4c:7c:b3:c7:48:5a:df:a5:82:cb:
                    fe:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:C8:66:2B:4C:99:FB:44:53:AD:4D:AF:B6:19:EC:E4:8E:90:7C:F3
            X509v3 Authority Key Identifier:
                keyid:A2:6F:A7:EE:30:AD:A3:5A:B1:FC:04:F3:40:FE:DF:64:7A:9F:81:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/om-n7jCto1qx_ATzQP7fZHqfgWI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/b87a0d-cc4c-4825-a7e4-e924ce5a75b3/1/om-n7jCto1qx_ATzQP7fZHqfgWI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8b:bb:c1:10:0e:e6:d4:78:0c:8a:24:94:70:3b:60:c4:76:82:
         f3:02:1c:5a:84:ed:ed:16:fd:d7:fe:ae:c5:f6:30:b3:8d:34:
         cb:01:09:be:1c:2f:8c:cf:88:9c:56:65:82:f1:47:fb:00:ba:
         4b:d7:60:88:cf:11:54:54:94:a5:8c:ed:b1:02:4d:63:7b:12:
         94:9c:db:71:d4:61:19:76:3c:28:cc:ac:15:72:70:6f:40:ba:
         b2:54:57:8e:f1:10:5e:79:e2:78:15:e9:77:30:3b:0f:57:d0:
         28:cf:b0:d4:38:e9:1f:1d:55:56:ea:3d:98:2e:87:00:ab:c5:
         a2:bd:38:39:2a:9b:2f:14:c4:0c:86:0d:78:59:e9:89:6e:f2:
         4d:c0:e6:94:f5:a4:ad:39:c5:be:23:f4:26:30:b2:a8:6e:d3:
         79:2f:cd:f5:4b:aa:5c:6f:94:37:37:38:0b:07:c0:6d:37:b5:
         01:bb:3a:da:2f:23:b0:63:14:4e:69:ae:12:5b:57:9f:a6:ac:
         09:71:67:b2:9c:f7:08:b1:e3:c5:d7:d3:b8:d8:76:2d:ad:7e:
         d4:d0:53:f1:eb:8a:00:ee:fc:b2:fe:f1:89:c7:50:bf:5c:71:
         6b:65:74:a2:15:7e:5a:a1:4c:9b:53:55:91:69:a6:9a:49:ec:
         63:63:39:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 05:28:58 2024 by rpki-client on console-fra.rpki-client.org