Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft
File:                     Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json)
Hash identifier:          o3bMRzDhiGlhrAmfkoMdMWkpQm1x3pFjQiqgEeFwNeM=
Subject key identifier:   67:76:1B:6A:D6:56:8B:5C:9C:8F:52:57:9D:3F:9A:47:D0:54:00:0F
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Certificate issuer:       /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial:       019352E2E50F3940E4D4D8D05DFF8A4AA653
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft
Manifest number:          0CB8
Signing time:             Fri 22 Nov 2024 08:00:21 +0000
Manifest this update:     Fri 22 Nov 2024 08:00:21 +0000
Manifest next update:     Sat 23 Nov 2024 08:00:21 +0000
Files and hashes:         1: 06lBf6eCb_YiUokSZGBKGW6XyCU.roa (hash: dTUeSqK/nOA3qCd6y/9E7v2aujggQW+n6OCv4RhgGkM=)
                          2: 5pg_93qnaR-AYjTKJ9nzmq2APJw.roa (hash: PQACg8S509/7L2Da5K8T8zd9h+wkXSAplu6/AuHlw6g=)
                          3: EjoRTmXZPogeMLnq4ICj13QYj7A.roa (hash: OvD7i8Zl26+i9FUL4ZqZ/VO7EmmdT74UH3HZYnZTyGM=)
                          4: MU-UHSVfSKw4clHYxj3WpnYDerU.roa (hash: uQmB+Sixqr+N1Pr46JuJB6tokKy89aj4mjz9hA8XjIg=)
                          5: RGRQyycScMgIaEkVRTTYZcBbshE.roa (hash: R251uuvyYJsnRk6nXvAjAQeOdiywSG9AQKpl1Hd9UZs=)
                          6: Ri3uxWYZYfxicfO9aF0S4gl_wY4.roa (hash: +vpzqxaratqvMl0hXb+RS8Epie61aOAbkVqjp/vgRBo=)
                          7: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: f03bQwi0/IzWlOSX6JA8kFpXmMwD5xSAnwWPj5qhCP8=)
                          8: bTBH0Ey8mfNclPT8nJHOIGhxkZc.roa (hash: 75dIjuGrNJrGWF16H7RJVXVTUYqAHnsLxy0NJFria2Y=)
                          9: hETc_Noo1DXEAJOSc1FgCfY8aNQ.roa (hash: shMhgBKLTZH8Y1ZVurt3sV3vlLkOWcaP23XrlyZpHR4=)
                          10: keSNqW0HmxHuMl2TAvvSyKAOilE.roa (hash: 1aj0NjG3HFkz/OnLitnZdRIuNvi5Ol8QieHArNMGG1E=)
                          11: m5wxxPLcNH8N5y_KCLQOLIE612U.roa (hash: x9uefpJ6pz7v8ILgP3vcqpps/Am4lQakGs0woQqebS4=)
                          12: mmhUC8yDo3GA_xcX-H0dxAwTUv8.roa (hash: PVdCfJGBdzSz9vsVphkWbhS9nKzXeLf0DSm46BWLv7Y=)
                          13: nTvm7CMJvHXt3QLnX4gIxcKtVzE.roa (hash: 6geIl+0+4sleg/k2+XsFC1T4ArfuiUpA+bCiJ77RdLA=)
                          14: sKOGTGMrWrZPQX-J7l7m7b9mOww.roa (hash: aO0qjF80YILaufwJQlq93qBWxJYyVeumRnFNFYgwl10=)
                          15: vuH-ReNMpWLFWLMVfh-H6AFK4Vc.roa (hash: IX4Fwx2Gih0U6e78DS0UFJFIHLlwfsnhBvmIYvKwtbg=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 23 Nov 2024 03:00:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:52:e2:e5:0f:39:40:e4:d4:d8:d0:5d:ff:8a:4a:a6:53
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
        Validity
            Not Before: Nov 22 08:00:21 2024 GMT
            Not After : Nov 23 08:00:21 2024 GMT
        Subject: CN=67761b6ad6568b5c9c8f52579d3f9a47d054000f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:0e:0a:2a:e0:d4:30:bd:27:34:3f:63:98:9f:
                    3c:b0:9f:98:c9:7c:0c:d2:44:c0:99:f6:fc:38:9e:
                    ba:b2:02:2b:45:81:b0:ea:09:e7:38:d8:92:63:b3:
                    9e:46:31:e9:8e:4c:34:26:11:cc:6b:d5:f1:36:11:
                    70:9a:7e:dc:35:07:5c:ef:97:85:86:4b:84:04:e6:
                    db:f2:23:0c:ad:c6:77:ff:e8:a4:0c:68:b4:05:7b:
                    d6:3d:eb:57:62:f9:54:42:68:a5:48:41:0b:e2:90:
                    84:c4:6a:03:7f:37:0e:2c:19:1f:de:6c:41:c5:99:
                    3f:34:b6:35:f7:f2:ca:60:75:e7:f9:53:6e:51:83:
                    08:3f:39:f7:d0:bf:76:92:09:c1:fa:61:99:20:6d:
                    9c:77:97:13:34:a6:e8:5c:cb:e9:33:53:f9:4c:fe:
                    f5:a8:55:9e:97:06:02:c7:36:3e:31:3f:f2:76:ef:
                    45:84:32:c6:c0:44:51:0c:4a:5c:27:0b:1a:1d:11:
                    79:8f:09:91:c0:38:79:5e:a6:e7:b4:50:02:20:55:
                    cb:9b:84:80:b2:36:f1:27:d3:10:f5:ac:0a:0c:30:
                    5a:b7:6f:07:bd:29:e9:18:af:8b:83:ff:6c:11:33:
                    5b:57:2d:4b:ba:1f:89:c2:30:34:1a:11:03:2d:e9:
                    6e:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:76:1B:6A:D6:56:8B:5C:9C:8F:52:57:9D:3F:9A:47:D0:54:00:0F
            X509v3 Authority Key Identifier:
                keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:52:f5:96:f8:21:23:18:b7:e9:6f:63:08:f1:60:10:74:ea:
         06:a7:14:58:66:75:cd:3d:11:3c:40:05:a3:01:4c:89:c4:99:
         bd:7b:ad:5e:57:f8:19:1d:82:34:f1:e3:ab:6f:96:cb:65:25:
         02:64:75:c3:fc:2f:d7:ee:9f:04:00:c2:ca:ce:26:35:e3:e5:
         52:3c:34:8a:ca:43:29:05:20:70:d9:e6:03:46:2d:b9:bc:fa:
         ad:30:5d:a3:9b:fa:c4:6a:75:6e:af:97:1b:a5:ae:c9:61:fb:
         63:4f:5d:a5:20:60:c4:7f:58:fc:6f:e2:de:41:5a:b6:46:11:
         1d:01:16:96:6d:40:f0:80:53:0d:0b:35:19:8b:a4:d7:3f:6b:
         d8:ea:c7:78:ac:c5:f3:44:42:c1:90:d9:6c:d8:e9:09:92:b8:
         55:fd:30:f3:35:02:49:4e:f0:91:5a:a3:f3:bc:c0:4a:2c:bf:
         f9:9c:c9:fd:f3:c7:c2:e0:b6:52:10:bc:2e:aa:29:01:1e:df:
         c8:98:6b:8e:7c:e3:63:fd:41:e3:bb:b6:63:42:36:23:6d:dc:
         dc:87:8e:a0:85:c5:72:80:c1:17:50:28:f8:93:0a:ab:07:9a:
         80:27:c5:8e:f3:ea:52:0d:15:d0:55:af:51:fc:54:63:ca:63:
         9f:59:69:2a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZNS4uUPOUDk1NjQXf+KSqZTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl
MmExY2EwHhcNMjQxMTIyMDgwMDIxWhcNMjQxMTIzMDgwMDIxWjAzMTEwLwYDVQQD
Eyg2Nzc2MWI2YWQ2NTY4YjVjOWM4ZjUyNTc5ZDNmOWE0N2QwNTQwMDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2w4KKuDUML0nND9jmJ88sJ+YyXwM
0kTAmfb8OJ66sgIrRYGw6gnnONiSY7OeRjHpjkw0JhHMa9XxNhFwmn7cNQdc75eF
hkuEBObb8iMMrcZ3/+ikDGi0BXvWPetXYvlUQmilSEEL4pCExGoDfzcOLBkf3mxB
xZk/NLY19/LKYHXn+VNuUYMIPzn30L92kgnB+mGZIG2cd5cTNKboXMvpM1P5TP71
qFWelwYCxzY+MT/ydu9FhDLGwERRDEpcJwsaHRF5jwmRwDh5XqbntFACIFXLm4SA
sjbxJ9MQ9awKDDBat28HvSnpGK+Lg/9sETNbVy1Luh+JwjA0GhEDLelu4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGd2G2rWVotcnI9SV50/mkfQVAAPMB8GA1UdIwQY
MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt
YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3
LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVVL1lvgh
Ixi36W9jCPFgEHTqBqcUWGZ1zT0RPEAFowFMicSZvXutXlf4GR2CNPHjq2+Wy2Ul
AmR1w/wv1+6fBADCys4mNePlUjw0ispDKQUgcNnmA0Ytubz6rTBdo5v6xGp1bq+X
G6WuyWH7Y09dpSBgxH9Y/G/i3kFatkYRHQEWlm1A8IBTDQs1GYuk1z9r2OrHeKzF
80RCwZDZbNjpCZK4Vf0w8zUCSU7wkVqj87zASiy/+ZzJ/fPHwuC2UhC8LqopAR7f
yJhrjnzjY/1B47u2Y0I2I23c3IeOoIXFcoDBF1Ao+JMKqweagCfFjvPqUg0V0FWv
UfxUY8pjn1lpKg==
-----END CERTIFICATE-----
Generated at Fri Nov 22 09:35:09 2024 by rpki-client on console-fra.rpki-client.org