Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
File:                     OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft (raw, json)
Hash identifier:          buUd8Qfdp+CwQCtBkl5DfLpcgCQH3EyaWl0Gi6SkO0M=
Subject key identifier:   79:3C:C3:2C:AE:65:0C:04:24:20:20:D7:03:C6:4C:1B:29:AE:0E:E0
Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
Certificate issuer:       /CN=3a611bc291ff1de02256f2315345680603fa4edb
Certificate serial:       01904867F2003F71618A70EA4630B308F7D3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
Manifest number:          A1
Signing time:             Mon 24 Jun 2024 04:01:29 +0000
Manifest this update:     Mon 24 Jun 2024 04:01:29 +0000
Manifest next update:     Tue 25 Jun 2024 04:01:29 +0000
Files and hashes:         1: OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl (hash: ocDg/a+QI/cSuuM7JDE2vrDWPlljA3rCxo1XA/Uo804=)
                          2: SEKqTsvFv3DYusiJWxxFvtR5U9A.roa (hash: HvxHxpGa6KSH5FUkEQUnn7Uik9Op5qM5HgUm2FlVkyk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 25 Jun 2024 00:00:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:48:67:f2:00:3f:71:61:8a:70:ea:46:30:b3:08:f7:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb
        Validity
            Not Before: Jun 24 04:01:29 2024 GMT
            Not After : Jun 25 04:01:29 2024 GMT
        Subject: CN=793cc32cae650c04242020d703c64c1b29ae0ee0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:65:d0:38:6a:e7:ab:f0:86:e9:bb:93:b3:59:
                    e2:c8:66:45:8d:d2:59:0d:31:ee:c7:ed:21:db:7d:
                    b6:99:69:67:c5:14:0a:44:e6:9c:c1:57:cf:78:79:
                    71:2a:03:fd:9f:a1:67:0d:40:91:95:01:5f:d8:81:
                    b9:7f:9d:f9:20:8e:e9:2b:6f:15:8f:92:fb:b5:7c:
                    9f:bd:cb:d9:79:fa:93:7d:b5:f0:38:15:97:72:f2:
                    55:c0:a4:92:fe:7c:d0:b0:be:3f:cf:22:9d:50:87:
                    ca:c2:c5:63:9d:91:0d:f9:a5:42:46:8f:3b:28:31:
                    cd:c2:59:d4:b7:b0:ab:e4:f5:2f:f0:f2:ea:ab:ce:
                    b5:7d:f1:9b:92:21:06:eb:73:dd:de:21:6d:51:1b:
                    24:6c:55:7c:15:68:07:56:b7:67:e3:31:76:69:1b:
                    67:49:db:05:5f:d5:74:d7:77:80:94:d1:5f:34:0f:
                    c6:b3:7e:ca:f7:1c:5b:af:99:b2:df:02:96:58:2d:
                    43:f8:bc:b3:e1:d1:da:c4:0d:05:6b:83:f8:58:02:
                    ef:a0:7e:0e:e3:ca:96:91:8a:74:2e:7e:5a:2e:56:
                    49:83:b7:6d:1d:2b:de:20:fb:22:e5:51:05:eb:09:
                    f3:22:c5:1f:15:08:b2:24:e7:ee:b1:7f:f9:4c:09:
                    64:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:3C:C3:2C:AE:65:0C:04:24:20:20:D7:03:C6:4C:1B:29:AE:0E:E0
            X509v3 Authority Key Identifier:
                keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         9b:9a:c7:57:b0:a8:89:98:26:83:62:01:4b:b5:fb:4c:5f:4d:
         a1:38:92:d4:c0:96:c5:cb:05:aa:de:2b:fd:1f:0d:1f:8b:01:
         ce:c2:43:e6:cd:a7:8c:10:5b:a0:e9:3d:d7:43:63:e3:35:71:
         ae:c9:c3:35:4c:cc:71:e4:ff:85:65:8d:df:89:b0:1f:28:3d:
         bc:bf:dc:bf:6c:cf:47:f6:5b:dc:0c:34:a9:5c:ee:ad:47:63:
         d2:f6:f0:83:e8:db:46:e0:76:fe:2a:fe:ea:20:6a:b0:a8:83:
         6d:0c:43:82:a0:61:1f:f9:95:a8:78:8d:a5:95:a4:09:a7:6c:
         ca:df:3c:b9:76:44:44:9a:5c:b1:57:b3:7f:22:1e:c4:3d:53:
         4f:a5:7c:ff:fb:ab:15:b0:94:d6:7a:d7:8b:45:1d:e6:80:14:
         d3:a9:32:52:58:d7:b5:8c:dc:d4:26:bd:38:e2:7b:2e:9a:ac:
         ca:d1:e9:54:eb:ee:72:94:9c:89:5b:82:dc:e2:50:cc:06:45:
         69:d8:7b:25:74:2b:9b:03:7b:dc:92:65:dd:6c:6a:63:48:8c:
         6b:e9:cc:56:7c:23:da:fe:06:a9:15:f2:16:7a:4c:86:5e:b5:
         d2:93:1e:d6:49:84:ec:55:f2:2a:93:33:11:95:1e:24:49:15:
         02:53:ea:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 09:52:04 2024 by rpki-client on console-fra.rpki-client.org