Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
File:                     Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft (raw, json)
Hash identifier:          fxCoFAlAkePlaaN8vXsKY8a4rIfwq3vVNSAmHnINTqA=
Subject key identifier:   33:36:74:0C:E4:90:0C:F3:EF:58:9B:A0:FC:67:C8:26:42:87:C4:1B
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Certificate issuer:       /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial:       018710F24C8B4C94C5788198F74525380180
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
Manifest Number:          051D
Signing time:             Fri 24 Mar 2023 00:08:47 +0000
Manifest this update:     Fri 24 Mar 2023 00:08:47 +0000
Manifest next update:     Sat 25 Mar 2023 00:08:47 +0000
Files and hashes:         1: 7Bdqw4R_5mSChtSAPIp1Woksnbk.roa (hash: SOQ5CqjQFFrrRj1Zhs78/6qCb2pNdJ5eUzWLN0z5kXc=)
                          2: AGlFttT_TuQ6wbuxR3Mk5ShYWvY.roa (hash: LXH85ufTMO0+GUvzaZ6x9TjdkIZkU/IC4VRjXtnrtYs=)
                          3: Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl (hash: eVBkOqk+tHTVbF7K0QqnRWtAYQQUqGZPlNEs0swVDOA=)
                          4: PwPFL4M0dfV9WOFUJ6X8LQhzQqE.roa (hash: M6623udqcfjbEXtSacWS3wFvY6Gyev6qWpY5miovwrI=)
                          5: W2MOWE9fFYRIviS8JtrZFMQkST4.roa (hash: C2HLl3m3slmj7NM18WK0990XMqD32whMlohLNi1DbkY=)
                          6: X_6mxfxZFhCVsxSJU-H3XUNYvPo.roa (hash: Yw0oe3v3EnVgxGQWPJAdmYKoUMiF7Ui7oN5RRHPLI0A=)
                          7: cxdmue-JnbfHqCHKY8qLu2HTzAo.roa (hash: H+UW3Kc31QXoavKNjU2ObvIsDUgiG4V8CjR6aBTC7XQ=)
                          8: ip_2yeLq-C4bgim8UiOU2Ky50Yo.roa (hash: grtkj/xl+8Zdtrg6fzZQxVG3gx3xRBnDszBhOUZ07JI=)
                          9: lkIgdfOPgyR6UMFoiAyIWkqpCFU.roa (hash: v9Ioj01IApC/Va2SNZEe1kwrMZnZKn8vlLS86tu1Fu0=)
                          10: zjH-fMag__1qT2eOV3cLqg3Oios.roa (hash: /5SyA6E4uAFmcbVkt275R8pXzIiny0PpUzj6i/4U6c8=)

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl
                          rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft
                          rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 24 Mar 2023 19:52:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:87:10:f2:4c:8b:4c:94:c5:78:81:98:f7:45:25:38:01:80
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
        Validity
            Not Before: Mar 24 00:08:47 2023 GMT
            Not After : Mar 25 00:08:47 2023 GMT
        Subject: CN=3336740ce4900cf3ef589ba0fc67c8264287c41b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:c5:b2:e8:0c:ef:d6:56:ad:c7:90:98:fa:8c:
                    00:51:f4:9c:24:d7:4c:5b:86:81:6a:04:3a:c9:95:
                    b2:85:2c:2c:12:6a:a0:31:7a:38:2a:3a:d1:82:70:
                    0a:c9:0f:be:6d:a4:c3:be:c4:c6:3c:76:ee:ae:7b:
                    ef:07:fb:91:ec:ab:96:aa:6b:46:97:98:57:b1:51:
                    e7:4d:10:73:26:f1:13:ac:c4:13:bf:81:bb:5c:ef:
                    40:0a:4a:fe:12:54:5b:84:8b:fe:ab:4a:29:e9:b8:
                    b5:26:78:ab:b7:21:f7:d1:4c:b8:cd:08:95:18:78:
                    3e:5d:c1:9f:8d:81:0f:eb:3b:55:3b:a1:c0:5a:78:
                    c5:80:4e:6b:d8:b5:06:b9:6a:72:78:2c:06:60:ff:
                    a6:e3:2f:ae:a4:4c:fe:6b:bc:20:5e:4b:67:0c:e2:
                    bd:32:d2:bc:0c:7a:fb:73:3d:7a:84:60:cf:a9:f0:
                    00:47:86:29:32:36:8b:a7:d7:db:a0:e7:20:81:4b:
                    01:c8:cb:af:79:6f:20:f5:41:d7:91:39:68:da:61:
                    c4:e6:71:a5:cb:17:71:42:2b:c6:f7:42:9a:8b:1f:
                    af:9f:bf:38:9b:31:5d:73:74:60:66:f3:f0:01:3e:
                    d6:70:56:6c:27:8b:08:bc:5b:78:69:5f:98:5e:27:
                    b5:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                33:36:74:0C:E4:90:0C:F3:EF:58:9B:A0:FC:67:C8:26:42:87:C4:1B
            X509v3 Authority Key Identifier: 
                keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.mft

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:9b:11:a0:2b:ae:5a:13:c7:3e:b5:0b:ff:0f:58:d4:4e:ad:
         cf:32:b1:42:0b:33:08:b6:86:b3:30:a9:0f:85:41:66:86:63:
         98:01:f3:0b:1c:bc:ff:8e:82:09:97:d0:84:92:9d:0a:63:2a:
         b7:f7:cb:23:64:8b:0f:73:cf:fd:36:c2:63:85:3e:f2:e0:72:
         8f:17:7a:35:46:0f:b2:e3:2c:82:06:6b:0e:43:b0:1c:16:d5:
         77:41:a0:23:47:66:ec:b9:37:25:0f:20:0b:e2:61:09:3b:92:
         98:af:85:0c:18:44:41:82:63:ef:5d:a1:c8:99:6d:50:54:be:
         bb:7c:63:e6:a8:ab:49:24:32:13:0d:fd:51:c5:ce:b0:1a:39:
         aa:27:c5:83:8b:2b:3d:97:40:99:72:d2:15:63:6c:d9:0c:4d:
         26:84:61:95:f0:ec:c7:70:c2:60:58:81:bb:eb:6c:ce:85:1d:
         cc:7a:03:c9:d8:04:5e:f3:88:18:36:10:cb:90:81:2a:53:23:
         d0:6f:5c:8f:7b:96:9d:d3:15:39:8a:71:62:3c:12:7b:f6:e7:
         3c:09:c8:31:8b:24:1d:25:cf:db:ee:23:78:4b:e6:70:bf:25:
         23:ed:a5:df:63:3e:6f:81:ef:8c:ee:70:73:d7:4d:0a:ac:c3:
         ea:c2:f3:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 24 00:30:01 2023 by rpki-client on console-fra.rpki-client.org