Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
File:                     OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft (raw, json)
Hash identifier:          Tso7c7W76DDVOTm9LAJE+6t3UOI4s/DJIEN6KFufww8=
Subject key identifier:   C4:30:2B:95:FD:4F:92:A8:6C:EF:CF:A3:2F:AC:68:5F:CD:80:F1:B2
Authority key identifier: 3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB
Certificate issuer:       /CN=3a611bc291ff1de02256f2315345680603fa4edb
Certificate serial:       01901DEBCDEEAB3DF2271DFF079428C75167
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
Manifest number:          8B
Signing time:             Sat 15 Jun 2024 22:01:51 +0000
Manifest this update:     Sat 15 Jun 2024 22:01:51 +0000
Manifest next update:     Sun 16 Jun 2024 22:01:51 +0000
Files and hashes:         1: OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl (hash: ++S0TQLo4xWvfYdw0hoxgq2OUFmNZ0M8mTsfJxpghkE=)
                          2: SEKqTsvFv3DYusiJWxxFvtR5U9A.roa (hash: HvxHxpGa6KSH5FUkEQUnn7Uik9Op5qM5HgUm2FlVkyk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 16 Jun 2024 22:01:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:1d:eb:cd:ee:ab:3d:f2:27:1d:ff:07:94:28:c7:51:67
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3a611bc291ff1de02256f2315345680603fa4edb
        Validity
            Not Before: Jun 15 22:01:51 2024 GMT
            Not After : Jun 16 22:01:51 2024 GMT
        Subject: CN=c4302b95fd4f92a86cefcfa32fac685fcd80f1b2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:76:eb:d1:ce:77:48:98:da:6f:b7:1e:24:c1:
                    d0:3b:86:18:8b:06:6b:13:24:c3:97:7a:20:9b:9a:
                    ff:bf:fc:16:f0:a4:b6:53:79:4d:83:62:1b:f7:9e:
                    14:ae:db:bb:6a:9c:13:87:2f:e1:c7:b1:4e:1d:6e:
                    36:ae:bf:8b:9b:82:3c:f9:e7:ce:b9:c5:b5:8e:42:
                    8f:7c:76:66:30:8d:b2:9e:86:73:68:9c:f5:46:f8:
                    4a:df:f9:23:e6:db:9e:c9:69:0b:3c:27:93:24:15:
                    70:51:f9:06:0a:52:98:a6:a5:cd:a8:4e:1e:62:88:
                    2d:fd:68:80:d4:57:75:80:3d:83:a5:f5:64:a5:9c:
                    ff:ee:08:39:0c:bc:71:8d:60:93:33:eb:0e:87:e8:
                    2c:5e:49:63:4b:bc:f7:ac:94:27:81:38:0a:d3:fd:
                    50:56:17:85:60:9f:02:1d:5d:8a:21:63:91:4d:2e:
                    7e:80:1a:da:4f:18:f1:90:a3:cb:ff:d7:04:5b:7c:
                    2a:7c:b4:f3:ee:2a:6a:53:87:dc:d0:af:9c:99:41:
                    80:cc:e6:9c:aa:46:13:51:69:06:5f:77:4b:ca:9c:
                    3c:19:ef:3d:d3:bc:89:00:d9:32:57:6c:8a:62:f3:
                    b4:90:61:68:5d:d8:be:0f:33:0c:47:b2:d3:60:9c:
                    07:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:30:2B:95:FD:4F:92:A8:6C:EF:CF:A3:2F:AC:68:5F:CD:80:F1:B2
            X509v3 Authority Key Identifier:
                keyid:3A:61:1B:C2:91:FF:1D:E0:22:56:F2:31:53:45:68:06:03:FA:4E:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmEbwpH_HeAiVvIxU0VoBgP6Tts.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/d14728-442e-44ea-afd7-1b5cd5b4d399/1/OmEbwpH_HeAiVvIxU0VoBgP6Tts.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         37:e1:b2:30:8a:8b:27:e4:2c:61:1d:9e:27:70:97:75:87:be:
         a1:ad:66:49:81:13:4d:d2:05:5b:1d:e3:e3:9f:a1:3f:4c:b0:
         79:e5:c6:42:f0:e0:1d:d8:f6:87:bc:6f:32:f0:7d:eb:fe:3d:
         29:86:31:4e:57:fc:aa:7b:06:9d:8e:6b:21:b4:26:3c:60:5d:
         c3:27:df:8a:9b:6e:5e:52:cb:f6:68:45:03:20:cb:cb:e9:3d:
         aa:61:18:d7:67:83:62:90:8f:e9:82:6b:4c:51:17:e1:d0:02:
         91:40:50:38:01:37:4f:08:bd:96:ea:85:d1:ee:5d:f0:25:51:
         05:8f:96:68:9c:55:c6:e3:35:29:a3:34:03:38:e2:e5:ca:5a:
         6e:59:0d:6f:43:3e:9e:e5:32:b2:c2:48:7f:31:b2:dc:10:0c:
         37:d9:84:e5:7a:43:ef:42:8d:73:e1:e0:ff:7d:35:4a:7d:10:
         c6:94:6a:b9:16:a1:c7:e3:9a:a6:cf:74:db:f8:0b:b1:34:f3:
         ba:9d:c1:7c:0e:80:14:41:93:2f:55:f6:0d:fe:b5:e0:9b:e1:
         11:7d:f4:2e:99:f5:ad:f3:9e:b2:0a:ae:eb:71:f6:43:46:7a:
         79:14:62:b9:42:18:b1:21:08:ba:ef:ce:e3:4b:07:83:02:e4:
         33:ca:8d:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 03:17:38 2024 by rpki-client on console-fra.rpki-client.org