Manifest

$ rpki-client -vvf repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.mft
File:                     02876C11924CBDA01BE1AD39A3206CFACDCC58A3.mft (raw, json)
Hash identifier:          o53cyxieLoTi8BGRDPj1sKgqSM2DoZt9GmigPgUqIVc=
Subject key identifier:   FB:25:73:F1:3A:D4:E9:B9:85:B9:46:7E:9B:E4:06:A2:BF:7E:EB:C7
Authority key identifier: 02:87:6C:11:92:4C:BD:A0:1B:E1:AD:39:A3:20:6C:FA:CD:CC:58:A3
Certificate issuer:       /CN=02876C11924CBDA01BE1AD39A3206CFACDCC58A3
Certificate serial:       7A643FF3C10C184C1854DC44D7CC515BBBD5E15B
Authority info access:    rsync://rpki.co/repo/AS945/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.cer
Subject info access:      rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.mft
Manifest number:          0234
Signing time:             Tue 18 Jun 2024 20:01:47 +0000
Manifest this update:     Tue 18 Jun 2024 19:56:47 +0000
Manifest next update:     Wed 19 Jun 2024 22:32:47 +0000
Files and hashes:         1: 326131323a646434373a383630623a3a2f34382d3438203d3e203530353535.roa (hash: P8JskXQq8rhMqJmwd4lSnoyKOklqs5FaDVyanSYeqcg=)
                          2: 326131323a646434373a383630303a3a2f34302d3430203d3e2030.roa (hash: bVgB6CY0EAnJitkx1Xv6J5wT2KqsqRck5c0cRpR6E6U=)
                          3: 326131323a646434373a383630373a3a2f34382d3438203d3e203530353535.roa (hash: Rd+dhCr5rYQwNoo+Nfmrr7x2WYwry9aUIha3WakJOtM=)
                          4: 326131323a646434373a383630353a3a2f34382d3438203d3e203530353535.roa (hash: 8eFv2RBBtby1mcmk3KpRwsZCQZSgRLjiy2M/X1iLuSk=)
                          5: 326131323a646434373a383630303a3a2f34382d3438203d3e203530353535.roa (hash: bCptdjmvnQpm+VU0b5omGZ2gseXuWLCMxMKaXw2vivs=)
                          6: 326131323a646434373a383630323a3a2f34382d3438203d3e203530353535.roa (hash: HoZAYr0ETH2ygTyVLT/TWLTc95YKlgYR4RlonB/RlJc=)
                          7: 326131323a646434373a383630613a3a2f34382d3438203d3e203530353535.roa (hash: UUvAqv9dTkpD3vnCpeK0nyckqw5fsjh4xIE1BuffKT4=)
                          8: 326131323a646434373a383630343a3a2f34382d3438203d3e203530353535.roa (hash: q33k4Pm8Tc9+J+nVAuAOoyc9sZ/RYxCpNBmpPMyinh4=)
                          9: 326131323a646434373a383630383a3a2f34382d3438203d3e203530353535.roa (hash: yvJARCYuZKCcQdrZehBg3pmqGSxsDFgahe/Ya4VuMCA=)
                          10: 02876C11924CBDA01BE1AD39A3206CFACDCC58A3.crl (hash: c4aBwBYV+za0TLe7nlaPGkItVQV8FO5TxfpnSKLD7X8=)
                          11: 326131323a646434373a383630303a3a2f34342d3434203d3e203530353535.roa (hash: Y30p0MzCB2JiuAvDBKLSZwu+ZD8hbij5EEaa/uw9slo=)
                          12: 326131323a646434373a383630313a3a2f34382d3438203d3e203530353535.roa (hash: xB9YMf9WLWlWJJykuB4jTj50Tz2/aBV24p0/bWTRB1I=)
                          13: 326131323a646434373a383630333a3a2f34382d3438203d3e203530353535.roa (hash: TVIb8+DyhB/YMbNeWImxDAGqBc36mjWnaSKjIIF5q1w=)
                          14: 326131323a646434373a383630663a3a2f34382d3438203d3e203530353535.roa (hash: KdHvWmuZQHcbpceQ+U8MEcEFLjMenHgqGnoMsp2lirk=)
                          15: 326131323a646434373a383630363a3a2f34382d3438203d3e203530353535.roa (hash: WhLiHVWIRrDdTM2/q/GOyUAgwW6kR1FOY914Re+OVhA=)
                          16: 326131323a646434373a383630393a3a2f34382d3438203d3e203530353535.roa (hash: 1rnTFeDfRItQJKSerIoroO/PmIgosaC04bWnM0thBoA=)
                          17: 326131323a646434373a383630653a3a2f34382d3438203d3e203530353535.roa (hash: g1At5H1WGB9pJd143T4S3ULq7iOWiXWKs6MoqCgmWaY=)
                          18: 326131323a646434373a383630633a3a2f34382d3438203d3e203530353535.roa (hash: 5jqra/OjEkdlCmNdY3X6oPmDKMUiE1/Q7yXAt6z6K6A=)
                          19: 326131323a646434373a383630643a3a2f34382d3438203d3e203530353535.roa (hash: pSS9lyg/r63hrLK6N28zfZCmJTpAFyPUHcuhnyC7Nds=)

Validation:               OK
Signature path:           rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.crl
                          rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.mft
                          rsync://rpki.co/repo/AS945/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.cer
                          rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
                          rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
                          rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
                          rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
                          rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 19 Jun 2024 02:42:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7a:64:3f:f3:c1:0c:18:4c:18:54:dc:44:d7:cc:51:5b:bb:d5:e1:5b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=02876C11924CBDA01BE1AD39A3206CFACDCC58A3
        Validity
            Not Before: Jun 18 19:56:47 2024 GMT
            Not After : Jun 19 22:32:47 2024 GMT
        Subject: CN=FB2573F13AD4E9B985B9467E9BE406A2BF7EEBC7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:17:d0:6f:ea:0d:be:56:d4:99:b5:0f:9e:7b:
                    80:f6:6c:d8:99:79:10:3f:49:8b:ff:f8:25:d5:cd:
                    c5:6b:02:13:24:7d:be:d2:93:93:1b:d1:06:1f:b4:
                    36:4c:2b:36:86:c2:be:0f:6d:6b:ef:76:11:a1:ae:
                    b1:34:38:37:27:81:ad:fd:84:0f:73:b9:83:9e:82:
                    47:7d:c1:be:9d:3e:8a:76:5c:70:c7:07:ea:b2:ec:
                    2f:13:9a:03:d5:c8:77:bd:e6:78:c3:f8:86:d5:ab:
                    ba:19:55:10:e6:73:e6:27:d2:08:0a:8c:57:9d:4b:
                    d6:79:81:4a:e6:58:cc:cf:84:10:e9:84:c5:dc:40:
                    ad:21:11:8c:18:b4:ab:01:ac:4c:38:e6:ff:0c:42:
                    28:45:7f:c2:68:3c:48:b1:7b:79:01:a1:12:ab:3f:
                    b1:ea:b1:3a:b1:c1:15:16:1a:a1:d4:1e:82:5d:d2:
                    84:6d:a4:ca:20:81:81:f6:ca:42:a1:f6:9b:0c:75:
                    d2:7e:5a:48:94:1d:89:37:8e:cd:e9:74:be:a9:b8:
                    57:96:24:10:10:b1:6e:13:f7:ff:7c:0c:45:92:e9:
                    cd:51:16:f7:56:a8:bc:00:2a:09:25:49:39:ac:80:
                    86:1f:fa:11:33:ca:34:91:8f:e7:8c:ed:e6:85:59:
                    32:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FB:25:73:F1:3A:D4:E9:B9:85:B9:46:7E:9B:E4:06:A2:BF:7E:EB:C7
            X509v3 Authority Key Identifier:
                keyid:02:87:6C:11:92:4C:BD:A0:1B:E1:AD:39:A3:20:6C:FA:CD:CC:58:A3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.co/repo/AS945/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo.kagl.me/rpki/KeatonAGLair-TEST/1/02876C11924CBDA01BE1AD39A3206CFACDCC58A3.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         33:26:26:95:84:61:d0:29:8c:74:01:a2:af:12:c0:90:a7:51:
         b7:cb:22:ad:fc:86:fc:89:4e:de:66:e6:58:58:a4:9d:1c:25:
         75:a3:4e:da:13:59:10:f3:a0:3d:00:bd:a8:e8:da:18:0c:0a:
         a3:ab:c0:54:07:85:38:37:79:b6:b3:44:e2:cc:b3:ee:17:d4:
         41:0d:73:d5:e1:50:91:c3:3b:b6:e9:09:98:38:c1:9b:71:9d:
         61:a7:58:5f:d0:0c:29:e6:71:18:80:ba:c1:6e:ea:78:8b:2a:
         70:88:74:50:c7:43:68:bf:f0:31:24:a7:2e:cb:3d:ba:24:48:
         1c:2f:42:bf:2f:69:e9:0b:e6:e8:6d:0e:be:b3:5e:7a:ad:26:
         fc:da:4a:e5:3c:9e:2a:2a:a4:57:57:82:ae:4a:47:17:a4:ed:
         aa:8d:4f:cc:60:da:68:c1:0c:6f:62:b9:10:75:39:2b:ad:0b:
         99:9e:c0:8b:11:4b:08:00:73:2f:ca:8f:12:ce:02:4b:21:e4:
         3d:9f:59:85:3b:4d:c9:4e:4e:ef:0a:3b:c6:80:bd:97:2b:05:
         88:f4:d7:d8:5f:25:1e:90:72:c7:3c:29:31:ef:58:ff:79:eb:
         82:1a:82:65:bb:d3:70:03:cc:db:4b:9f:22:20:44:22:d6:eb:
         3b:c5:51:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 18 20:57:49 2024 by rpki-client on console-ams.rpki-client.org