Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
File:                     gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json)
Hash identifier:          +sA4eoCnbnH9up9h2/qr7T+Caj5evuKyk2YmbtXlL8g=
Subject key identifier:   A9:C3:45:F8:19:10:D7:3F:C4:5C:C0:7D:62:75:54:31:3A:29:85:1E
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Certificate issuer:       /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial:       0187385C86CC2293FD635FD893491C174617
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
Manifest Number:          0750
Signing time:             Fri 31 Mar 2023 15:50:00 +0000
Manifest this update:     Fri 31 Mar 2023 15:50:00 +0000
Manifest next update:     Sat 01 Apr 2023 15:50:00 +0000
Files and hashes:         1: 2w-GjBnf44ojGKZ6ywpg9LDoGA8.roa (hash: b92WiKAhthA6flKaX1wJ+U0YHfWWhr5aaIy1cE7qWHw=)
                          2: 96c2nU_hu3HjQigUB4_Uj5IoXmk.roa (hash: 0JR0MpokKeojMPwWbWDsT++TOsk94RE4FdhPPS9fqz0=)
                          3: Detvo6TIHiDJwbu_atJOt9C1cUg.roa (hash: p5KxuRrWg1ngYqyDwG2Bkrz/iqvaIGrJnllMaQoRVR0=)
                          4: EPmzclW5x_y2_oCayGw8ctzbe9E.roa (hash: AUBSF6kvUsRIvvcE7TSjc2s47a86K5SJpzb9jd7tJJs=)
                          5: Kbr39OP8qKuCCxcXZKDNHLJDT0k.roa (hash: 2EPKc9JOZgktnt6KBrAe6w7pluOv5/jkr1vZ2/Alumw=)
                          6: QVkvmrBOHYXsGWHQBjARH3bSviw.roa (hash: RUvxtesxn411kZQ70ps45Atx88911IPwTgx3Zof0wYw=)
                          7: X3bVgJ3m3KOzCXPjJ5x5t_NFF30.roa (hash: 2wpmHIMxO6cw+zAhCesBM0WxM9v8sZ8X2K3l2Qd6kSw=)
                          8: dTDJJnDEgvFXnq8TQwe4RguVNT0.roa (hash: /2TW0LlACXny5Kq09x2SlLUxByEhqOjbA8346v1jONs=)
                          9: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: il0nQV9NgmgkXSV6o6twwZfu7PYUWWLqM5yihEC9rR8=)
                          10: jo4DyXtP3o31HwDFoPKwgAsFyvM.roa (hash: Z1j17T0SbNzMNDuqeWK6Q82TpIfdSub5bkI/T7pWjHE=)
                          11: kOOnYVPdCHHLfEozWicN9y4zWx4.roa (hash: A6NwlSXTYVqumCadGi1L286+0YOCRn8VoDj0DeWlSlk=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
                          rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
                          rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 01 Apr 2023 14:55:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:87:38:5c:86:cc:22:93:fd:63:5f:d8:93:49:1c:17:46:17
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
        Validity
            Not Before: Mar 31 15:50:00 2023 GMT
            Not After : Apr  1 15:50:00 2023 GMT
        Subject: CN=a9c345f81910d73fc45cc07d627554313a29851e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:25:ca:72:ca:f1:8a:be:ba:45:f8:f5:4a:92:
                    b8:d9:8b:45:ac:bb:04:af:c4:09:98:a6:35:5e:b5:
                    25:b9:41:8f:ae:cc:96:3f:4c:3b:7b:b1:a1:bd:df:
                    38:0f:a8:5c:76:7d:65:f2:fa:6b:32:93:55:c8:9f:
                    96:91:e1:90:0c:f4:49:f6:fb:bd:aa:ce:9c:71:6b:
                    0f:31:31:a6:32:fd:84:3b:e9:5b:db:99:0d:e7:e3:
                    43:24:12:c2:b5:2c:11:30:0e:91:ce:13:30:02:97:
                    1c:a9:47:19:72:36:bd:53:f3:75:3e:69:72:30:bf:
                    57:91:7c:73:6a:9e:b5:50:65:ec:33:a7:93:1e:3b:
                    e7:5a:74:ed:d6:75:7c:5e:b0:c5:e7:cb:4d:78:9a:
                    b3:b1:a8:9a:db:3d:e7:06:7b:53:da:5f:01:ef:98:
                    53:b5:fc:80:96:c9:a2:ca:c5:7b:ab:df:d7:9e:9d:
                    4c:62:33:4c:4f:5a:05:e6:09:7a:ed:37:5b:7b:96:
                    5c:a3:a5:df:8d:13:d3:8d:02:80:5e:6f:cb:c2:ab:
                    68:e2:e0:d4:68:7a:6e:25:91:55:a8:c8:8e:9f:ad:
                    54:bc:bc:f2:c4:92:fd:29:ea:9e:40:34:94:8f:34:
                    02:96:ab:33:b9:8e:0e:b2:5a:61:fa:95:fd:eb:b9:
                    3b:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                A9:C3:45:F8:19:10:D7:3F:C4:5C:C0:7D:62:75:54:31:3A:29:85:1E
            X509v3 Authority Key Identifier: 
                keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         af:c0:d7:14:84:36:68:4e:30:8f:31:c0:ee:d0:a4:89:03:34:
         52:9b:21:5b:10:7f:6b:09:85:3c:b6:41:3e:16:94:4e:f4:aa:
         92:2a:f0:2e:b0:a0:4f:07:73:69:c5:a6:cd:ab:46:02:e0:21:
         49:1f:a2:59:d8:aa:1f:1b:c8:32:37:f7:3c:a4:ea:aa:42:f4:
         49:32:65:be:6a:b8:05:e5:6f:01:6d:27:c4:ab:af:7b:55:d7:
         6f:7d:01:9b:12:e5:ac:df:e4:bb:aa:fb:63:22:b9:0d:6b:f6:
         e6:28:34:97:73:3f:02:97:b4:79:74:ad:7a:80:f8:e7:92:ef:
         fb:78:31:85:3d:1b:29:9f:4d:2c:77:a9:a3:91:74:43:01:58:
         30:a3:c5:5e:a6:54:af:88:4c:06:b8:88:5a:36:c0:be:51:16:
         f8:96:6c:12:49:05:84:d2:27:ed:6e:b1:4d:94:6a:eb:14:39:
         22:79:df:00:10:4f:29:7a:b2:42:0b:5b:78:48:57:6d:a2:8d:
         11:09:b1:13:7e:d0:98:ee:40:5c:90:07:65:a1:ad:44:06:c7:
         42:7e:b8:c6:91:6f:1b:bf:cc:0d:ea:06:f4:da:52:c3:4b:3a:
         a6:dc:2e:4d:da:67:d5:65:42:07:0e:b4:d0:bd:28:59:c6:6c:
         79:e8:c1:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 31 16:20:14 2023 by rpki-client on console-fra.rpki-client.org