Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
File:                     1OKJaJepchZ45oRpOZOlqISQM2Q.mft (raw, json)
Hash identifier:          4e6WigM7r43nL2/vR3AqRwbz2Zu25xHdxFK05VaFC3M=
Subject key identifier:   18:F5:71:B9:F4:11:4B:E5:8B:E5:CA:9B:7A:D8:99:DD:F7:37:E1:2E
Authority key identifier: D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64
Certificate issuer:       /CN=d4e2896897a9721678e684693993a5a884903364
Certificate serial:       0193568AC4BE21A06D76171BC3670B938BA8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
Manifest number:          1371
Signing time:             Sat 23 Nov 2024 01:02:35 +0000
Manifest this update:     Sat 23 Nov 2024 01:02:35 +0000
Manifest next update:     Sun 24 Nov 2024 01:02:35 +0000
Files and hashes:         1: 1OKJaJepchZ45oRpOZOlqISQM2Q.crl (hash: tobT7/3TiNOMmz7ZrfEoxJXgNz7R3ZW09ZUmBv7TrtY=)
                          2: 9-atg-Ye-a9VuJliRIyQGI_3EC4.roa (hash: iqcuj9i4tdkePAOz+ViJLaoXHvWRUm7WQoYpKU2vdQ0=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Nov 2024 01:02:35 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:93:56:8a:c4:be:21:a0:6d:76:17:1b:c3:67:0b:93:8b:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d4e2896897a9721678e684693993a5a884903364
        Validity
            Not Before: Nov 23 01:02:35 2024 GMT
            Not After : Nov 24 01:02:35 2024 GMT
        Subject: CN=18f571b9f4114be58be5ca9b7ad899ddf737e12e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:d7:fa:d3:28:aa:af:61:79:d5:d6:0e:41:89:
                    bc:6e:3f:03:50:26:d5:b7:08:52:3a:9a:1c:59:68:
                    dc:96:30:ef:91:c2:3e:22:38:92:f7:4f:c1:96:f3:
                    1a:48:3a:a0:b2:a1:6f:f6:92:b9:73:47:ae:e4:fc:
                    9e:3e:e1:82:94:84:c4:9d:44:a7:72:19:50:d3:da:
                    45:67:d5:a7:45:e4:76:f7:cc:43:dd:06:72:72:c3:
                    02:aa:6f:f9:e4:b6:b1:a9:54:39:e4:f1:87:e4:31:
                    eb:96:9c:cc:ae:90:a0:fd:6a:0a:3f:8c:cd:33:ec:
                    70:c5:50:ed:31:ae:13:c8:bb:fb:df:fa:8a:b3:d6:
                    c4:66:1c:c1:69:0f:93:1a:99:12:26:09:8d:51:7a:
                    ed:c2:88:d8:3d:10:c3:dd:16:f1:b3:40:81:85:8d:
                    7e:48:85:4c:76:53:cd:78:44:bc:c4:09:9e:7c:66:
                    2e:a7:38:fc:39:4a:9d:13:23:f2:05:18:c8:7c:7e:
                    fe:0a:d4:79:31:77:f3:84:4d:39:c9:2c:08:77:27:
                    7c:00:77:c2:2e:e8:0e:31:54:58:30:d1:01:b6:10:
                    f3:43:c9:8c:4d:85:e7:a8:d6:2a:44:c9:bc:9c:37:
                    ea:6d:54:e1:9e:fb:d6:47:18:ec:d7:4e:9d:80:14:
                    55:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:F5:71:B9:F4:11:4B:E5:8B:E5:CA:9B:7A:D8:99:DD:F7:37:E1:2E
            X509v3 Authority Key Identifier:
                keyid:D4:E2:89:68:97:A9:72:16:78:E6:84:69:39:93:A5:A8:84:90:33:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1OKJaJepchZ45oRpOZOlqISQM2Q.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/e28103-a0fb-4227-bcb1-e497d40f4e2a/1/1OKJaJepchZ45oRpOZOlqISQM2Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5c:37:4d:96:3c:e2:d9:18:eb:8e:60:f0:80:7c:c8:09:7e:59:
         38:28:33:71:4e:2a:4b:4c:f6:a9:03:7b:4b:73:80:34:fa:a1:
         57:10:31:14:ed:81:ab:15:a0:f2:e6:58:8f:b4:91:74:d9:07:
         f6:87:0c:79:be:65:6f:2b:c3:d3:35:33:b0:e8:af:b4:4b:6c:
         07:51:3c:f7:7e:7b:f6:61:51:7f:a1:43:16:85:94:0c:31:c5:
         51:bb:d4:8a:eb:2b:3d:1a:ee:83:ee:70:8b:4d:9a:cf:00:8a:
         bb:23:8f:10:92:41:4e:12:90:0c:ff:3b:76:f3:1c:eb:e3:32:
         16:dc:61:52:05:d0:ac:68:e8:09:64:53:1d:f2:6c:83:a4:ef:
         77:d9:7d:97:00:70:8f:a6:8f:59:a0:9b:40:88:f7:e9:ee:79:
         ba:f3:8f:79:98:ca:fd:13:fd:15:e2:37:66:3e:b4:86:d0:52:
         e9:9d:ad:a0:f0:b7:96:31:ed:62:d4:23:12:2f:81:fc:90:37:
         83:f9:af:b7:52:98:81:cb:31:86:d6:c5:b0:b0:3d:a7:a9:a4:
         94:44:6b:71:c5:14:e3:85:28:63:62:5e:64:93:5e:c8:b4:3e:
         16:a9:6d:82:da:0d:37:78:b6:13:ae:08:4f:c5:15:19:07:e1:
         f7:71:00:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 10:53:21 2024 by rpki-client on console-ams.rpki-client.org