Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
File:                     I3ikqcUjJahZIICboaTYniHALxc.mft (raw, json)
Hash identifier:          21Z1ZRlmhwfaVLzO+DqgpsgbXnqItixCj9ZPsvuAkqM=
Subject key identifier:   1C:60:D8:56:9F:31:44:AD:A7:59:37:2A:24:F6:4C:1E:E3:26:F5:6A
Authority key identifier: 23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17
Certificate issuer:       /CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
Certificate serial:       01901C33664526CE4CBE197DB8D8446B9F08
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
Manifest number:          0F13
Signing time:             Sat 15 Jun 2024 14:00:48 +0000
Manifest this update:     Sat 15 Jun 2024 14:00:48 +0000
Manifest next update:     Sun 16 Jun 2024 14:00:48 +0000
Files and hashes:         1: I3ikqcUjJahZIICboaTYniHALxc.crl (hash: Lw4Fp6ybp5M5nOG913TULt5Wf6wfTI1kCOGrMGv1wHw=)
                          2: RXTtArR93Rerlpri9PWjeI-8kis.roa (hash: axDvwSJYg/G/W+09aQOKGsgNkaSO2gx0YVarpLt7F74=)
                          3: TSKXIl3B5M0kt9Mbo14NMbKNVpE.roa (hash: sCpjvm9AdXWMgiVU+ChgT2BrtfrjO9ma14rZIbGSgjM=)
                          4: V9mKfQuesGhFqG9kLm0TlWxMFNs.roa (hash: kCz/MHD5l+BKBNbCZS/7Pmw0Z5mXIFBiTqK65QEdCJg=)
                          5: qLX5pl0nHD9CtP61VlWI8P7V0BA.roa (hash: 8xg5DWHnPxE1h3CxQQRtDmjqiAE+sviUoH0K61D7svs=)
                          6: qpXhWP0ICLdV1tLHc8aqCcOXeVk.roa (hash: clRen8iz5xzf/iGrIAoUFbZTxn/8QK1L7hkXg1OUcVg=)
                          7: xoOavhKvnH_w5Z_4AOJmbnrvWT8.roa (hash: dPftbMUjcbTQaWcCcKFH7ovJ0ljScdiPpSc3WrYbnOA=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 14:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1c:33:66:45:26:ce:4c:be:19:7d:b8:d8:44:6b:9f:08
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2378a4a9c52325a85920809ba1a4d89e21c02f17
        Validity
            Not Before: Jun 15 14:00:48 2024 GMT
            Not After : Jun 16 14:00:48 2024 GMT
        Subject: CN=1c60d8569f3144ada759372a24f64c1ee326f56a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:48:32:3b:1e:70:9c:94:30:a7:b6:5e:58:6d:
                    d9:0a:7b:b4:9a:9d:2c:2d:23:33:9a:93:9e:16:c7:
                    d4:bc:a3:9b:6e:e6:32:df:f0:a5:72:30:00:86:54:
                    01:fe:7c:e8:f1:e8:18:ab:9f:29:8f:32:94:4b:12:
                    18:c8:76:35:78:da:7d:33:6d:19:44:e6:36:ce:cf:
                    48:b0:76:46:61:bb:55:67:40:55:d6:4d:f8:32:9c:
                    74:2a:20:d6:5e:40:94:01:93:79:9c:61:69:78:05:
                    0c:ed:fa:31:d4:bd:08:ba:01:ba:51:e7:e9:e1:a9:
                    dd:e8:ff:01:f7:59:1d:2e:42:e8:0f:04:60:96:88:
                    f6:7a:b9:e4:4f:ea:c0:14:1c:d3:ff:13:2a:f9:39:
                    ed:4e:b7:cc:4e:2b:84:68:e1:18:94:45:5e:38:24:
                    9e:32:34:87:44:9d:48:23:7d:56:6b:6d:ac:39:6a:
                    5e:f7:65:d3:d6:cd:97:4c:16:46:a7:e2:e5:2a:af:
                    e0:94:61:45:54:82:9d:36:95:15:10:e1:91:3c:b2:
                    1e:2c:f7:8a:cb:e6:16:d1:e2:b7:05:cb:1a:f6:88:
                    2a:a3:6c:b2:cc:fd:db:85:05:64:3f:5c:5c:1c:17:
                    bf:33:7a:f5:83:b4:da:3e:44:87:da:9b:cc:d4:61:
                    15:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:60:D8:56:9F:31:44:AD:A7:59:37:2A:24:F6:4C:1E:E3:26:F5:6A
            X509v3 Authority Key Identifier:
                keyid:23:78:A4:A9:C5:23:25:A8:59:20:80:9B:A1:A4:D8:9E:21:C0:2F:17

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3ikqcUjJahZIICboaTYniHALxc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/d654be-174e-41f7-9cfb-937e27ee1b5b/1/I3ikqcUjJahZIICboaTYniHALxc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9d:7a:8c:53:af:5e:37:0f:35:cc:f9:0e:91:f8:35:13:3f:d9:
         17:77:82:e4:21:e5:7c:b1:46:ee:be:f1:b6:d4:63:11:bb:65:
         fd:a2:d2:83:df:a8:9b:42:be:82:bd:94:97:51:98:2c:de:a5:
         f6:3d:c3:8e:b1:f9:f9:ab:c5:e2:2a:04:43:92:f2:68:82:5a:
         34:4a:90:40:2d:3c:87:28:72:89:d4:da:38:68:b4:07:eb:b9:
         ec:b0:c0:c4:39:bc:cf:ab:66:6f:b0:62:ba:ce:7a:1a:e0:4c:
         67:bc:7f:47:9f:14:f1:5a:7b:e2:e8:4c:a2:7b:8d:f9:b3:fc:
         18:f7:a4:fb:43:2a:95:7e:78:08:06:98:41:57:b9:6b:20:63:
         9a:e4:8f:26:15:15:b4:d2:24:b8:77:8e:b9:26:3d:c7:75:e3:
         71:f1:00:4e:98:d3:0f:93:5b:f0:91:0d:ae:48:8d:ed:10:8f:
         d5:28:46:be:f9:6b:36:6e:bf:b0:66:00:44:08:28:50:ea:64:
         6b:c5:92:8f:b5:06:3a:66:73:29:22:97:1d:57:e0:9d:c4:39:
         0b:e8:a4:20:e5:08:6e:c7:ce:6e:2a:ae:11:f1:cd:9c:78:35:
         5d:bb:88:4b:f3:71:55:d3:39:9a:1e:88:eb:43:38:ed:bb:fc:
         f5:42:1a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 20:04:34 2024 by rpki-client on console-fra.rpki-client.org