Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
File:                     khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft (raw, json)
Hash identifier:          QRVsMYP5TB/PywgxoAHsVknn+Oh5JqbAmuQjUCOaQOk=
Subject key identifier:   71:05:60:09:EA:0B:A3:D3:A3:E0:67:01:C5:FF:80:3B:6D:1D:B2:18
Authority key identifier: 92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78
Certificate issuer:       /CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
Certificate serial:       0193B82AFB694A1EC0626D165F1EABFA0323
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
Manifest number:          13A3
Signing time:             Thu 12 Dec 2024 00:00:44 +0000
Manifest this update:     Thu 12 Dec 2024 00:00:44 +0000
Manifest next update:     Fri 13 Dec 2024 00:00:44 +0000
Files and hashes:         1: khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl (hash: UG+fKnvsZNwvQRHIPwdNywzXHyScr5J+4dFqEvbM3rY=)
                          2: xEUM5_-bOrjYIJSfRbII-Ga7hok.roa (hash: iLuKdr2vVKNh7H3vamhLqdEU1vgQTrEk4mF7e51Rcm8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Dec 2024 22:37:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:b8:2a:fb:69:4a:1e:c0:62:6d:16:5f:1e:ab:fa:03:23
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=921b4c85caa8d8b16619bf945a2fd6af1c77fc78
        Validity
            Not Before: Dec 12 00:00:44 2024 GMT
            Not After : Dec 13 00:00:44 2024 GMT
        Subject: CN=71056009ea0ba3d3a3e06701c5ff803b6d1db218
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:50:de:63:65:b4:b2:a5:23:2c:2f:12:db:0e:
                    6c:36:d2:65:a1:d1:a7:94:12:60:28:c3:3e:a0:6f:
                    d5:cf:d7:c8:ed:80:e9:67:ac:89:6d:d8:b3:12:5d:
                    54:88:c1:4f:8f:1c:ce:c4:c2:be:c1:d0:80:03:a2:
                    64:d3:d5:3c:e9:b0:4a:08:0a:a4:28:1d:da:bf:45:
                    5e:4f:31:5d:7f:ea:82:1a:e9:48:85:47:71:35:26:
                    d0:fd:b1:31:34:98:4b:01:20:f4:e8:29:f3:e7:3a:
                    3d:45:cd:a7:81:22:29:75:c8:53:13:cb:d1:75:a8:
                    16:1f:48:c5:ed:94:59:07:63:9c:83:53:8c:99:3d:
                    06:a3:de:e0:e9:e0:08:f0:7b:77:2a:35:0d:6d:87:
                    1d:c0:01:94:81:9f:1d:43:1f:58:eb:23:26:db:54:
                    75:b2:3f:d1:a0:ab:d0:9a:6a:ae:93:e4:ea:e0:e4:
                    dd:55:7a:5f:88:8c:06:5f:25:ee:c5:45:f0:52:00:
                    07:45:63:16:eb:e1:51:e0:e9:8f:e0:93:6c:59:be:
                    41:ce:b8:5e:14:d4:ee:ae:89:90:34:90:56:60:78:
                    88:63:e0:31:eb:36:f0:db:ae:70:3c:45:9e:2e:38:
                    2a:1a:fb:82:c5:93:9d:cd:6f:6d:88:a6:4e:9e:1c:
                    cd:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:05:60:09:EA:0B:A3:D3:A3:E0:67:01:C5:FF:80:3B:6D:1D:B2:18
            X509v3 Authority Key Identifier:
                keyid:92:1B:4C:85:CA:A8:D8:B1:66:19:BF:94:5A:2F:D6:AF:1C:77:FC:78

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/42b179-4790-4520-b174-50505382fd72/1/khtMhcqo2LFmGb-UWi_Wrxx3_Hg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b1:cc:47:a9:22:6d:98:f4:b9:f0:f3:19:ec:bb:cb:e3:80:b0:
         12:6f:ed:c6:e8:9d:a2:b4:23:fd:56:6b:9d:87:4e:ae:71:b3:
         73:97:e7:9d:9c:d2:2b:fc:60:ed:7c:7a:4c:40:99:4d:94:36:
         b2:d4:c9:cf:8b:a2:07:ca:73:1f:fc:06:e7:71:21:1c:77:f1:
         1d:51:bc:1c:46:ad:c9:41:65:99:66:fb:57:73:49:fd:1a:c3:
         ad:0d:dd:1b:c1:a2:c9:9b:f5:f6:6a:ad:6d:5e:be:fc:f9:8d:
         42:47:13:91:75:5f:a8:0d:05:d5:a9:d0:cc:9e:15:3c:ac:6d:
         53:0a:d8:5c:eb:c7:13:ef:ce:dd:fe:db:ce:32:27:e9:f8:bc:
         1e:fa:c8:76:fd:78:1f:fd:81:48:6c:5a:26:c9:38:44:c7:90:
         a4:1f:cc:d7:92:02:0c:ab:aa:70:51:1f:4b:e4:f7:4d:9d:ad:
         0b:68:98:61:b8:fb:08:45:a9:6b:00:b6:62:fe:e2:0d:81:93:
         d5:77:ae:d8:85:9b:3b:d5:fc:4a:39:3c:4b:21:a5:ab:54:1b:
         71:47:03:51:1f:65:7a:6b:d1:2d:eb:a3:65:69:3b:b0:0e:f0:
         fc:8e:50:51:cf:7d:88:f3:ca:d2:00:e9:40:a4:b9:b4:de:fc:
         fa:71:35:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZO4KvtpSh7AYm0WXx6r+gMjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMWI0Yzg1Y2FhOGQ4YjE2NjE5YmY5NDVhMmZkNmFmMWM3
N2ZjNzgwHhcNMjQxMjEyMDAwMDQ0WhcNMjQxMjEzMDAwMDQ0WjAzMTEwLwYDVQQD
Eyg3MTA1NjAwOWVhMGJhM2QzYTNlMDY3MDFjNWZmODAzYjZkMWRiMjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVDeY2W0sqUjLC8S2w5sNtJlodGn
lBJgKMM+oG/Vz9fI7YDpZ6yJbdizEl1UiMFPjxzOxMK+wdCAA6Jk09U86bBKCAqk
KB3av0VeTzFdf+qCGulIhUdxNSbQ/bExNJhLASD06Cnz5zo9Rc2ngSIpdchTE8vR
dagWH0jF7ZRZB2Ocg1OMmT0Go97g6eAI8Ht3KjUNbYcdwAGUgZ8dQx9Y6yMm21R1
sj/RoKvQmmquk+Tq4OTdVXpfiIwGXyXuxUXwUgAHRWMW6+FR4OmP4JNsWb5Bzrhe
FNTuromQNJBWYHiIY+Ax6zbw265wPEWeLjgqGvuCxZOdzW9tiKZOnhzNNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHEFYAnqC6PTo+BnAcX/gDttHbIYMB8GA1UdIwQY
MBaAFJIbTIXKqNixZhm/lFov1q8cd/x4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQt
NTA1MDUzODJmZDcyLzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC80MmIxNzktNDc5MC00NTIwLWIxNzQtNTA1MDUzODJmZDcy
LzEva2h0TWhjcW8yTEZtR2ItVVdpX1dyeHgzX0hnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAscxHqSJt
mPS58PMZ7LvL44CwEm/txuidorQj/VZrnYdOrnGzc5fnnZzSK/xg7Xx6TECZTZQ2
stTJz4uiB8pzH/wG53EhHHfxHVG8HEatyUFlmWb7V3NJ/RrDrQ3dG8GiyZv19mqt
bV6+/PmNQkcTkXVfqA0F1anQzJ4VPKxtUwrYXOvHE+/O3f7bzjIn6fi8HvrIdv14
H/2BSGxaJsk4RMeQpB/M15ICDKuqcFEfS+T3TZ2tC2iYYbj7CEWpawC2Yv7iDYGT
1Xeu2IWbO9X8Sjk8SyGlq1QbcUcDUR9lemvRLeujZWk7sA7w/I5QUc99iPPK0gDp
QKS5tN78+nE17g==
-----END CERTIFICATE-----
Generated at Thu Dec 12 04:13:25 2024 by rpki-client on console-ams.rpki-client.org