Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File:                     Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier:          uUhTcBhQazlWU9ucHwwAa/P6UT8IL0IEocCMlsAuH3A=
Subject key identifier:   4A:28:97:37:22:10:9B:FF:AC:5E:1C:E6:22:F4:E1:C6:43:F3:4A:FD
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer:       /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial:       01976884EB4CB24DA52204ECA09489504B77
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number:          1461
Signing time:             Fri 13 Jun 2025 09:00:30 +0000
Manifest this update:     Fri 13 Jun 2025 09:00:30 +0000
Manifest next update:     Sat 14 Jun 2025 09:00:30 +0000
Files and hashes:         1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: MIVT8q1zn7QEboPm1Xb/3xO+kAwJ681+iSN8J+m7724=)
                          2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:84:eb:4c:b2:4d:a5:22:04:ec:a0:94:89:50:4b:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
        Validity
            Not Before: Jun 13 09:00:30 2025 GMT
            Not After : Jun 14 09:00:30 2025 GMT
        Subject: CN=4a28973722109bffac5e1ce622f4e1c643f34afd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:a8:d7:46:49:0c:6d:8d:b5:0a:c2:b3:59:32:
                    c2:08:df:30:3a:b6:f7:d5:92:3b:a9:03:6c:e3:14:
                    35:46:2e:7e:40:57:86:09:ba:0e:10:bf:f6:a4:23:
                    3b:eb:35:53:a4:34:78:51:84:83:6e:aa:8f:2f:d4:
                    3c:59:d2:ee:fd:82:58:9e:84:0e:88:cf:51:df:12:
                    34:86:80:f1:33:c8:67:57:8d:a6:d8:6a:12:37:45:
                    f2:0a:69:f1:e4:ed:3e:05:5a:23:5c:cf:56:7d:a9:
                    d1:fe:3c:1a:04:a0:9f:a5:40:f1:34:de:2e:40:cd:
                    86:4c:69:dd:08:b4:e1:06:6f:60:2c:bb:f5:3c:c0:
                    d2:a3:b8:2d:a5:24:de:74:e4:52:e6:dc:07:4f:4c:
                    77:33:db:cd:5d:e2:0e:78:26:53:7c:2e:21:4f:a1:
                    3b:0b:a2:90:e5:ec:e6:5a:0f:6c:2f:1d:02:d1:e9:
                    73:c9:b5:a8:9d:86:4c:64:77:2e:d6:0d:29:0a:dc:
                    6b:ff:06:62:63:03:32:9e:4b:cb:ac:f1:f4:a9:44:
                    e0:21:14:c3:66:f4:b6:a8:26:70:e0:d9:1f:7b:8d:
                    ec:4a:cc:54:70:ed:f5:c2:80:49:85:58:65:da:b2:
                    1c:a8:94:84:49:03:8c:ab:5e:20:4a:55:35:cb:04:
                    8d:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:28:97:37:22:10:9B:FF:AC:5E:1C:E6:22:F4:E1:C6:43:F3:4A:FD
            X509v3 Authority Key Identifier:
                keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:de:84:8b:db:13:0e:c2:33:ee:ee:ee:09:ec:f4:00:7d:7e:
         d4:0c:fa:23:32:8b:3c:71:30:7f:36:a4:47:61:0d:63:39:f7:
         05:b0:64:db:89:7c:75:e3:d3:c4:19:7f:02:96:5d:83:09:fb:
         b2:95:b9:19:ae:d6:cc:e3:6d:93:e0:0e:f7:31:10:8e:bb:93:
         ca:97:87:fc:c2:f5:0a:cc:fa:00:8d:38:73:8a:cd:d9:0b:8a:
         5c:7a:31:54:ca:51:a7:ba:59:dc:c4:d9:02:07:cd:ff:34:31:
         bd:a9:5a:7b:7f:46:36:1d:87:da:48:28:3f:5f:99:dd:02:7b:
         22:bb:92:87:af:39:49:03:86:cc:70:8f:0b:95:28:04:79:96:
         b2:97:aa:86:70:57:c2:0e:d7:ef:fb:0e:8d:68:af:00:b3:db:
         bc:be:fa:f5:04:de:82:06:ae:c5:f5:92:31:8b:66:2d:cd:c4:
         fc:9c:91:2d:7b:c0:f2:11:7e:25:47:61:0e:10:ea:7f:a0:3c:
         58:da:a9:7c:9f:1e:59:65:ae:4a:50:64:1f:03:a5:c3:0b:c4:
         fd:28:f5:06:a6:bf:62:46:e8:bd:34:98:8a:fb:43:c8:35:3f:
         dd:80:77:52:0e:fe:ca:02:08:50:0f:eb:87:5c:39:c6:2b:52:
         9b:39:24:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdohOtMsk2lIgTsoJSJUEt3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNWNmMGQzMTcwNGI1OWQ3ZWViMDE4NTQ4MjAyZDNhNTcw
ZGE5MzIwHhcNMjUwNjEzMDkwMDMwWhcNMjUwNjE0MDkwMDMwWjAzMTEwLwYDVQQD
Eyg0YTI4OTczNzIyMTA5YmZmYWM1ZTFjZTYyMmY0ZTFjNjQzZjM0YWZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArajXRkkMbY21CsKzWTLCCN8wOrb3
1ZI7qQNs4xQ1Ri5+QFeGCboOEL/2pCM76zVTpDR4UYSDbqqPL9Q8WdLu/YJYnoQO
iM9R3xI0hoDxM8hnV42m2GoSN0XyCmnx5O0+BVojXM9WfanR/jwaBKCfpUDxNN4u
QM2GTGndCLThBm9gLLv1PMDSo7gtpSTedORS5twHT0x3M9vNXeIOeCZTfC4hT6E7
C6KQ5ezmWg9sLx0C0elzybWonYZMZHcu1g0pCtxr/wZiYwMynkvLrPH0qUTgIRTD
ZvS2qCZw4Nkfe43sSsxUcO31woBJhVhl2rIcqJSESQOMq14gSlU1ywSNxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEoolzciEJv/rF4c5iL04cZD80r9MB8GA1UdIwQY
MBaAFCJc8NMXBLWdfusBhUggLTpXDakyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS80ZGY0MjktZjc3Ni00ZmQzLThkZTQt
MDBiYzkwM2QyNjIxLzEvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS80ZGY0MjktZjc3Ni00ZmQzLThkZTQtMDBiYzkwM2QyNjIx
LzEvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMt6Ei9sT
DsIz7u7uCez0AH1+1Az6IzKLPHEwfzakR2ENYzn3BbBk24l8dePTxBl/ApZdgwn7
spW5Ga7WzONtk+AO9zEQjruTypeH/ML1Csz6AI04c4rN2QuKXHoxVMpRp7pZ3MTZ
AgfN/zQxvalae39GNh2H2kgoP1+Z3QJ7IruSh685SQOGzHCPC5UoBHmWspeqhnBX
wg7X7/sOjWivALPbvL769QTeggauxfWSMYtmLc3E/JyRLXvA8hF+JUdhDhDqf6A8
WNqpfJ8eWWWuSlBkHwOlwwvE/Sj1Bqa/YkbovTSYivtDyDU/3YB3Ug7+ygIIUA/r
h1w5xitSmzkkSw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 10:52:18 2025 by rpki-client