Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
File:                     68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft (raw, json)
Hash identifier:          ZF/QWRrT3u3G9y2wWF/XSGqUnLlljLxqnc/JrduxD8E=
Subject key identifier:   0D:9F:5A:77:E8:99:1C:9B:27:73:A2:9D:F3:F3:B8:BC:F3:E7:7C:61
Authority key identifier: EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54
Certificate issuer:       /CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054
Certificate serial:       019040B0416C222BDC113661CA70371F61BC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
Manifest number:          0AE4
Signing time:             Sat 22 Jun 2024 16:03:31 +0000
Manifest this update:     Sat 22 Jun 2024 16:03:31 +0000
Manifest next update:     Sun 23 Jun 2024 16:03:31 +0000
Files and hashes:         1: 68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl (hash: nHx3XUifTFTWT/7zzA2LEWSyU/ij3vHFrNwusli8OJo=)
                          2: rXYAsgpop4FJnePlGJv5Vaz1SR8.roa (hash: /+MrVQeGg9NyhozDwBDr6CNIwsovR2RGxqLjplAyURo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 23 Jun 2024 16:03:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:40:b0:41:6c:22:2b:dc:11:36:61:ca:70:37:1f:61:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ebc8c4a066e2c150313ee1c087471f3c8b0de054
        Validity
            Not Before: Jun 22 16:03:31 2024 GMT
            Not After : Jun 23 16:03:31 2024 GMT
        Subject: CN=0d9f5a77e8991c9b2773a29df3f3b8bcf3e77c61
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:17:af:b8:0a:cf:7a:4b:90:2b:19:cf:dd:ff:
                    e0:2f:ed:79:3e:f8:fe:53:3b:d6:2e:ec:96:65:fb:
                    9f:03:29:a6:2c:1c:72:97:3d:0a:36:1a:2f:2a:98:
                    4c:3b:c0:22:55:e7:5a:94:2a:51:63:73:d0:0f:61:
                    b1:22:4d:62:8d:87:2d:2d:57:db:8c:2f:da:e3:fc:
                    b8:0c:fa:58:34:90:9b:58:9e:75:d6:98:03:a0:da:
                    0d:31:96:b4:e5:1a:a0:05:a1:f8:11:01:15:57:9f:
                    9d:84:c5:23:5d:d7:fa:f8:a4:fa:71:3c:19:6e:23:
                    96:d5:43:b2:81:4a:33:6d:92:aa:97:33:1d:2f:23:
                    22:cb:b3:44:12:33:4d:82:a0:81:2e:2b:dd:a2:9f:
                    99:be:65:c3:50:ac:69:e5:07:76:e9:d2:b0:7a:84:
                    9d:d5:1a:01:b7:1f:df:4a:07:25:09:07:71:4a:0d:
                    1c:29:53:64:c1:f7:4e:77:81:ec:ae:8e:f5:7e:3f:
                    bd:46:1a:ed:d0:08:0e:71:8c:36:48:4b:88:80:61:
                    98:b0:60:23:15:58:61:aa:76:35:ce:4f:7b:8a:62:
                    78:95:a5:3a:d5:c3:58:bb:1f:ad:86:ae:2d:aa:9b:
                    7b:e7:8e:08:42:7e:a4:b3:38:82:eb:d7:16:e9:a5:
                    a3:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:9F:5A:77:E8:99:1C:9B:27:73:A2:9D:F3:F3:B8:BC:F3:E7:7C:61
            X509v3 Authority Key Identifier:
                keyid:EB:C8:C4:A0:66:E2:C1:50:31:3E:E1:C0:87:47:1F:3C:8B:0D:E0:54

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68jEoGbiwVAxPuHAh0cfPIsN4FQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/8e44e3-1b54-479e-a54c-47ead5372bfb/1/68jEoGbiwVAxPuHAh0cfPIsN4FQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         96:db:9b:07:0e:7d:f4:35:c8:40:6d:ee:51:1e:6d:60:d8:4c:
         6b:9a:0e:3e:a5:be:61:85:50:91:75:fa:23:0a:e8:6c:d5:03:
         7e:58:34:bc:ca:34:41:9e:50:7b:c7:6d:84:4c:ad:28:64:be:
         97:e0:71:51:6d:16:4a:a0:1f:70:e8:eb:0a:7f:a9:d5:09:7c:
         ca:e8:76:49:c7:56:74:a3:06:df:69:6c:e0:cf:a2:8b:93:c1:
         b5:4a:71:3b:a2:74:ba:fb:e3:cc:a4:23:df:07:b6:5f:58:af:
         f5:4f:6b:c8:11:1f:b0:25:92:f1:79:52:6a:18:c7:bf:4b:c1:
         31:94:7b:cf:b1:1f:83:d4:78:53:5e:b4:bb:1c:09:9e:87:13:
         3a:70:4c:e7:78:a3:b6:df:6a:b8:fa:28:39:bc:5f:1f:10:a2:
         00:b7:13:42:e5:fb:b0:55:f2:eb:dc:dd:62:c5:ae:54:31:89:
         29:af:f6:bf:58:34:65:ac:3e:d0:c6:35:3f:5d:ca:ad:1e:c2:
         90:79:0c:06:25:77:38:c9:b2:c8:89:8c:45:da:fd:6c:a4:07:
         37:77:96:69:22:00:88:9c:4a:6b:81:ac:04:48:18:b5:6e:8d:
         56:32:a3:ce:fc:2a:17:81:36:74:99:e0:c4:74:78:23:d1:2f:
         5d:bc:f4:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 01:42:53 2024 by rpki-client on console-fra.rpki-client.org