Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File:                     CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier:          Npq1CpNuXGL2hiVEExAvdNwbl/I7Fzs5tmEzHM1lNhY=
Subject key identifier:   92:A0:30:07:E7:52:33:81:2C:85:65:E9:C9:73:B1:0C:A1:96:64:DB
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer:       /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial:       01947E01A47793DF58188A77017063E92B50
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number:          081A
Signing time:             Sun 19 Jan 2025 10:00:24 +0000
Manifest this update:     Sun 19 Jan 2025 10:00:24 +0000
Manifest next update:     Mon 20 Jan 2025 10:00:24 +0000
Files and hashes:         1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=)
                          2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: YPGK5Isw6BNKb2CW8f8mhchbGaAyOTp1Lq6T/P8Fh2o=)
                          3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=)
                          4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=)
                          5: Jc9D6pL0tybtqLuuNbwlYUh4B68.roa (hash: qj9Ku8qt3QMrLU+senB/+rsFyVvP7pOUp5NAuPmXysg=)
                          6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=)
                          7: Q7ylfuCC8FIAA0S7lneAelCvwiE.roa (hash: IgBth00dtUmBF0nZpBo0VG8Ndo3/qKj9XZ2f/WUzp8U=)
                          8: _8-3Qs_qZ1htreiN1JNh0Xfjgzw.roa (hash: vjBjNUyiud1IqRH6IpSBed0Ql8B7vtUZBKWlZlCokKM=)
                          9: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=)
                          10: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 20 Jan 2025 05:00:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:94:7e:01:a4:77:93:df:58:18:8a:77:01:70:63:e9:2b:50
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
        Validity
            Not Before: Jan 19 10:00:24 2025 GMT
            Not After : Jan 20 10:00:24 2025 GMT
        Subject: CN=92a03007e75233812c8565e9c973b10ca19664db
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:c9:1b:40:19:f4:92:0e:06:de:fd:85:34:2a:
                    66:f5:a9:80:8b:f1:c0:00:fe:61:e9:4a:16:2f:6a:
                    8b:7c:e1:40:ee:93:8a:14:2f:7f:e7:0d:6c:2d:16:
                    00:b4:50:cf:15:e3:37:e5:8e:c1:89:34:be:c4:bb:
                    59:50:c3:21:6a:02:92:d7:25:40:b4:a9:9c:e7:af:
                    4c:6d:72:20:e8:ab:ef:df:36:c6:45:c0:9a:98:89:
                    d7:5d:aa:86:1c:94:6b:f8:5a:e0:86:9c:f5:9e:3d:
                    90:83:b2:10:1b:4b:b0:7a:54:68:5d:24:02:05:16:
                    90:ac:08:b0:a8:8a:b0:93:09:0a:98:80:26:5f:b3:
                    82:6e:b1:92:ec:a8:cb:fb:c5:4f:3d:fc:94:24:17:
                    05:6e:16:eb:a3:d2:1e:e3:03:f5:b2:c9:59:d9:04:
                    cd:74:8d:20:9c:4b:7d:57:8d:90:b3:59:75:ba:5d:
                    a1:92:b0:8a:43:5d:0a:34:43:68:b0:16:48:dd:6e:
                    13:8f:cd:fe:d8:0b:4d:d7:f2:2d:47:ce:aa:4f:4d:
                    d1:7e:62:24:94:1d:ea:d2:f2:61:1f:b2:eb:2a:4f:
                    96:0e:04:83:38:16:1b:7f:15:fe:40:56:b5:9c:13:
                    05:16:98:34:d5:2a:26:81:3f:19:1c:3b:15:61:31:
                    d9:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:A0:30:07:E7:52:33:81:2C:85:65:E9:C9:73:B1:0C:A1:96:64:DB
            X509v3 Authority Key Identifier:
                keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:10:ec:36:2e:40:e2:a8:96:4a:7b:f3:33:97:b4:7c:e9:c3:
         4e:e5:f5:d5:a9:44:f6:83:71:50:c2:1e:c8:54:05:61:0f:66:
         8a:63:fc:3e:4f:2c:46:12:fd:d4:53:bb:13:c7:d3:18:43:26:
         94:d6:a0:14:08:d4:2a:be:5c:c0:d0:fa:a0:fb:b8:89:d8:91:
         ad:7a:3c:9b:da:da:25:ea:6d:9c:ae:2e:28:d5:44:d8:38:83:
         12:52:c4:b8:3f:ac:ec:7e:63:a2:f7:60:c1:e9:93:74:af:7d:
         6d:3e:68:3e:4f:72:65:69:3c:05:d6:36:2d:fe:76:91:45:20:
         c6:93:cc:08:08:87:b0:39:a9:b0:33:4d:e5:1a:65:f0:ab:ce:
         8d:40:de:39:14:b6:07:cb:4d:aa:d2:92:f6:2f:11:61:16:c4:
         84:71:d3:e4:7e:a2:ca:e3:b7:bf:ed:ce:ab:c8:ee:a5:42:aa:
         86:b3:5b:de:98:1e:54:09:ac:97:4b:4f:58:5b:bb:89:06:35:
         4e:ec:9c:da:9f:03:20:90:51:9f:73:2a:5e:4e:63:36:4a:70:
         30:71:9d:07:fa:f0:c0:01:26:5b:51:df:18:ef:be:0d:4e:c5:
         29:bd:28:14:2d:0c:2e:0f:66:56:59:88:b3:f6:54:5e:ba:ea:
         a0:8b:66:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jan 19 13:09:54 2025 by rpki-client on console-fra.rpki-client.org