Manifest

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/eac7dc25-3daf-47d7-994b-ee487142c0dd/bb40d10524d57adf72ab2d55530078d68f27ac5a.mft
File:                     bb40d10524d57adf72ab2d55530078d68f27ac5a.mft (raw, json)
Hash identifier:          Y5vy4nS3LGzqPbgcKKTR6/aB1PDSsBbCaqVW6WMcCts=
Subject key identifier:   FE:36:36:12:68:D8:31:F1:83:EB:81:7F:79:53:E0:6A:B2:1B:49:1D
Authority key identifier: B3:9D:D1:35:23:58:CA:32:4A:FF:B8:6B:E0:5B:7A:32:BE:C8:6C:52
Certificate issuer:       /CN=bb40d10524d57adf72ab2d55530078d68f27ac5a
Certificate serial:       24D1D9
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bb40d10524d57adf72ab2d55530078d68f27ac5a.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/eac7dc25-3daf-47d7-994b-ee487142c0dd/bb40d10524d57adf72ab2d55530078d68f27ac5a.mft
Manifest number:          0DD9
Signing time:             Fri 29 Mar 2024 06:20:25 +0000
Manifest this update:     Fri 29 Mar 2024 05:20:07 +0000
Manifest next update:     Mon 01 Apr 2024 07:57:07 +0000
Files and hashes:         1: 2d4deb3b25782fb8157858cc54837bec578334f6.roa (hash: xI09ywTwscs4uYcv1b229j7clwbU23rIu01eYj+qcEc=)
                          2: 47a76d631165bb86ded48b894825a6b42d323393.roa (hash: PjUslqePWDa6ovumElCAwcLTPiuwvXEevmLC1bLo5FA=)
                          3: 6da75a2daeb4b73ad4784ae7b124c6e0ba369701.roa (hash: CCWDrj1idGhQ6DTLAtCzEle3AM3ue+i9p9X/J1DCsfM=)
                          4: bb40d10524d57adf72ab2d55530078d68f27ac5a.crl (hash: JqSj8bfEp4R/IBLAt7wD54fLeESk7nBRjHEdfoXjMvg=)
                          5: ddd00b030bbe0d20e95aa7ad3d78283f4ffa7ba8.roa (hash: rR1+tHFdfBHREOJKWyXaCHJN+dFoBPlVnwIS5rIXrEM=)

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/eac7dc25-3daf-47d7-994b-ee487142c0dd/bb40d10524d57adf72ab2d55530078d68f27ac5a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/eac7dc25-3daf-47d7-994b-ee487142c0dd/bb40d10524d57adf72ab2d55530078d68f27ac5a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bb40d10524d57adf72ab2d55530078d68f27ac5a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2413017 (0x24d1d9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bb40d10524d57adf72ab2d55530078d68f27ac5a
        Validity
            Not Before: Mar 29 05:20:07 2024 GMT
            Not After : Apr  1 07:57:07 2024 GMT
        Subject: CN=e08d6b6e747c9bd4df6f6234f3007e1328143bf2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:0a:85:0e:11:cf:3f:63:03:51:e1:8c:76:af:
                    b3:0f:18:bf:e6:3b:be:69:50:89:12:ce:ef:3e:f8:
                    f1:58:29:82:05:23:35:03:9b:7d:60:a5:45:37:c0:
                    7d:ab:7f:c8:fd:48:7d:3a:b7:87:73:8f:a1:e8:8f:
                    63:d3:96:0d:de:20:5f:64:53:f5:88:87:d5:54:79:
                    ae:24:98:54:34:6f:cf:ef:cb:e0:34:db:0e:9c:81:
                    35:75:8e:7b:95:79:58:af:f7:3e:a7:d3:17:60:c8:
                    7d:4e:1d:26:e9:ba:ec:53:ee:b4:48:29:c2:b2:2a:
                    24:e6:e7:b0:34:92:2e:d8:df:80:d2:23:0a:39:24:
                    f6:0e:d3:84:ad:0c:4c:e8:4b:ab:21:1b:b1:5b:b4:
                    a3:d5:c2:49:58:d3:0f:01:33:c0:bd:a7:00:27:d4:
                    d7:4b:6f:8e:3e:ba:7a:77:9b:c1:7b:09:6e:07:fa:
                    e6:2b:08:66:06:00:bc:d8:2f:1d:a8:78:33:2e:e3:
                    11:d0:9d:66:1b:89:b7:c1:66:b6:24:79:fb:58:d7:
                    1e:bb:79:33:1e:db:2a:1f:dc:5e:79:cc:a0:15:32:
                    ba:c8:8e:a6:8e:de:a6:03:86:a0:f2:0e:6b:9b:4b:
                    64:c7:c6:66:c9:d6:ca:15:4a:2a:25:77:0a:ad:ef:
                    e6:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:36:36:12:68:D8:31:F1:83:EB:81:7F:79:53:E0:6A:B2:1B:49:1D
            X509v3 Authority Key Identifier:
                keyid:B3:9D:D1:35:23:58:CA:32:4A:FF:B8:6B:E0:5B:7A:32:BE:C8:6C:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bb40d10524d57adf72ab2d55530078d68f27ac5a.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/eac7dc25-3daf-47d7-994b-ee487142c0dd/bb40d10524d57adf72ab2d55530078d68f27ac5a.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/eac7dc25-3daf-47d7-994b-ee487142c0dd/bb40d10524d57adf72ab2d55530078d68f27ac5a.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:ff:1f:b9:2f:3c:d4:0c:09:8f:5b:ed:14:c5:65:54:ec:f9:
         cc:e8:2f:71:ed:22:8a:b1:b4:cc:55:a5:d6:6d:e9:19:15:16:
         7b:37:b3:71:5a:ed:79:12:ac:c6:13:76:4c:e9:29:07:5c:68:
         53:f1:f6:72:b4:55:dd:13:12:d5:34:7e:c8:6c:37:b9:8d:9f:
         ab:95:cc:50:bf:b7:48:ab:cb:75:fb:7d:c7:86:08:1b:2e:c6:
         81:1b:dc:aa:76:18:2c:d3:64:dc:45:b8:8a:0c:02:6f:ad:d8:
         fb:a4:2a:8b:f5:37:5f:94:f1:b1:d3:74:ff:ca:9c:f7:f8:59:
         f8:6c:f5:f3:06:ff:2a:11:e7:a2:7c:b9:70:c7:7f:47:96:11:
         b0:c4:14:de:e4:0f:9d:01:19:a8:0e:d3:8d:4b:f0:c4:95:3f:
         e6:63:c6:3b:d5:83:8e:2c:59:14:92:01:e0:db:41:ba:c6:1d:
         1c:01:bc:ef:20:df:7a:b2:69:df:4d:a7:05:64:16:cb:8a:41:
         67:77:3d:37:d5:9f:cc:04:9a:a3:70:5c:4b:24:14:de:74:76:
         aa:1e:77:13:e3:a5:3d:bf:e2:98:ba:ec:09:56:f6:b9:b6:42:
         be:00:9e:e6:82:96:ab:db:58:2d:5a:5d:9d:02:60:04:f5:fe:
         4c:cc:a1:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 07:31:03 2024 by rpki-client on console-fra.rpki-client.org