Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
File:                     O8RoMnEppQF7l23I7aydG56aFMw.mft (raw, json)
Hash identifier:          /humoBuGsMTA9t3lnEeFlhkgdowAZEVGE+8sklRHAqs=
Subject key identifier:   D8:EC:FB:DE:52:9B:57:41:03:45:14:F1:EB:04:D8:87:99:B7:18:0E
Authority key identifier: 3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC
Certificate issuer:       /CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc
Certificate serial:       01901D4647550D303C5AB62FE29975A70B9C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
Manifest number:          1151
Signing time:             Sat 15 Jun 2024 19:01:03 +0000
Manifest this update:     Sat 15 Jun 2024 19:01:03 +0000
Manifest next update:     Sun 16 Jun 2024 19:01:03 +0000
Files and hashes:         1: O8RoMnEppQF7l23I7aydG56aFMw.crl (hash: +IxpLsdaqiASaDVgyxkYPUdCUrK9tda/55PQoUoknwU=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:46:47:55:0d:30:3c:5a:b6:2f:e2:99:75:a7:0b:9c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3bc468327129a5017b976dc8edac9d1b9e9a14cc
        Validity
            Not Before: Jun 15 19:01:03 2024 GMT
            Not After : Jun 16 19:01:03 2024 GMT
        Subject: CN=d8ecfbde529b5741034514f1eb04d88799b7180e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:e9:fa:6e:84:bd:64:88:fc:af:42:bd:9f:b8:
                    97:cd:c5:b6:0e:ad:03:72:26:06:00:72:dc:fe:04:
                    81:02:1b:29:62:25:73:fc:15:6c:81:26:d8:9f:59:
                    01:55:e1:90:32:d3:dc:c0:c3:c7:91:14:af:f1:35:
                    5c:85:39:8b:bb:80:49:35:22:00:17:90:86:cc:01:
                    a0:49:f4:71:07:0b:39:4b:b2:54:ec:1b:33:b0:a3:
                    66:24:82:4f:14:56:06:2f:c3:d8:3b:24:3e:16:42:
                    81:a1:a2:1e:7d:0e:40:7e:ab:9a:42:f9:98:4b:50:
                    1d:72:6e:46:e3:dd:8a:7b:fc:51:5c:41:8c:96:c8:
                    a4:da:ac:14:ad:ea:47:db:a1:f1:e6:99:ce:75:6b:
                    82:16:9b:7d:4a:3b:96:01:e8:b3:58:dd:72:a5:62:
                    96:07:3c:2c:43:b2:0b:b0:7f:60:4d:3b:df:10:29:
                    d4:be:e5:51:1f:1b:66:58:74:23:60:c9:5f:23:14:
                    a3:2e:4d:a6:f9:a3:68:22:e8:dd:7d:80:cd:14:a1:
                    b3:55:a6:4a:01:91:99:e2:be:bc:86:21:5d:64:56:
                    c4:ab:7e:48:a3:a5:d5:a5:58:bf:c5:5c:fe:10:5a:
                    ea:d2:67:b8:17:7c:95:83:ac:15:7c:7a:bc:0a:a8:
                    90:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:EC:FB:DE:52:9B:57:41:03:45:14:F1:EB:04:D8:87:99:B7:18:0E
            X509v3 Authority Key Identifier:
                keyid:3B:C4:68:32:71:29:A5:01:7B:97:6D:C8:ED:AC:9D:1B:9E:9A:14:CC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O8RoMnEppQF7l23I7aydG56aFMw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/64/8d4c03-5fc7-41ac-94f6-1f02c7e923b3/1/O8RoMnEppQF7l23I7aydG56aFMw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:80:61:b3:bb:0f:80:f4:ee:07:0a:64:07:d3:13:1c:18:79:
         a3:2d:c7:f0:b6:fb:43:ca:d2:17:3e:88:65:65:30:d6:71:3d:
         d5:2f:dd:b0:34:3d:7a:00:76:fe:12:bc:4a:e0:b0:51:0c:70:
         ed:1b:ab:50:93:69:b3:f5:88:d0:ca:9b:e8:96:d6:f2:24:e1:
         39:e6:e9:9b:5b:e7:cf:0f:f2:c2:5e:4e:51:ef:08:f5:c5:5e:
         16:82:cd:64:7f:6f:7b:46:77:ac:f1:bf:41:8e:42:ae:95:c6:
         08:80:b2:be:0a:39:f5:d4:8d:d5:f1:97:5a:c6:b9:d7:2d:59:
         ec:bb:e9:66:a0:13:b6:ce:41:15:26:fc:d9:85:8b:15:a2:f6:
         27:c6:bb:5f:b7:ed:af:d8:4d:bf:be:1d:9b:e4:c6:fb:ac:37:
         6e:a0:96:23:09:99:91:55:ba:61:ee:b0:11:db:63:b1:6f:08:
         41:34:9c:1e:69:33:90:d7:37:16:d9:f2:43:b2:76:21:49:80:
         f8:fd:3a:e8:7d:94:b6:1d:6e:e6:60:75:d9:e7:27:2a:ee:51:
         b0:68:df:d3:a2:b5:9d:65:b8:48:38:56:06:e1:72:33:a9:08:
         9f:d5:a7:51:66:82:b9:42:cd:11:18:f6:ea:4c:8e:49:c1:93:
         7c:36:c4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 21:16:19 2024 by rpki-client on console-ams.rpki-client.org