Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File:                     Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier:          23OWqqqugba+jxG/Gb58DzukP2UISok7FhZbA2S08c0=
Subject key identifier:   54:F6:44:F1:02:46:6D:6F:A6:13:62:64:12:06:6C:5C:D5:13:DD:F5
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer:       /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial:       019759122FC91D30AEF0A4A27A5A3D08CAA8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number:          1459
Signing time:             Tue 10 Jun 2025 09:00:53 +0000
Manifest this update:     Tue 10 Jun 2025 09:00:53 +0000
Manifest next update:     Wed 11 Jun 2025 09:00:53 +0000
Files and hashes:         1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: h6chmo3LQm45btjVDAhU4nFxFFV+rGG+j6GIzmGFGEY=)
                          2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:12:2f:c9:1d:30:ae:f0:a4:a2:7a:5a:3d:08:ca:a8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
        Validity
            Not Before: Jun 10 09:00:53 2025 GMT
            Not After : Jun 11 09:00:53 2025 GMT
        Subject: CN=54f644f102466d6fa613626412066c5cd513ddf5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:1b:af:97:23:32:2f:df:0a:ff:72:2e:8b:63:
                    31:12:5b:a0:a4:9b:4a:8e:e2:71:6c:28:34:fc:1d:
                    3f:fc:b2:98:ea:bb:af:a0:ae:88:55:10:72:04:64:
                    ef:68:6a:05:3d:4c:73:d1:67:b6:ca:72:ac:c8:fb:
                    d0:f4:a6:12:bf:a3:22:67:24:2e:10:c0:a5:33:df:
                    41:0b:58:a6:4e:07:6d:5a:d1:58:c4:c6:f1:8f:cf:
                    62:5e:6c:c8:5a:d8:00:07:35:54:c0:59:ec:17:83:
                    59:9d:ba:b7:e9:f8:54:d1:52:6a:e2:98:2e:b0:a9:
                    c5:27:38:55:da:1c:97:45:a4:e4:09:25:d8:0c:7d:
                    c1:31:ed:c4:b0:ab:59:9f:84:9a:65:5b:d1:b6:6e:
                    f2:a5:69:a4:76:3a:6b:a3:a4:f8:29:64:51:22:77:
                    2b:62:e1:0c:59:c8:a8:49:15:73:55:54:55:5b:83:
                    54:54:e7:fe:e8:20:fa:e4:40:aa:a0:3c:3c:04:d3:
                    57:59:b2:04:17:9d:68:05:35:cf:0b:9f:18:aa:27:
                    99:4c:a3:ad:22:0e:3b:c0:64:e6:ed:b3:61:40:a7:
                    89:a0:55:4e:ff:37:46:a8:51:49:30:10:50:c9:74:
                    52:1f:99:e8:a2:04:0c:bc:e5:f7:5e:93:b0:c6:37:
                    30:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                54:F6:44:F1:02:46:6D:6F:A6:13:62:64:12:06:6C:5C:D5:13:DD:F5
            X509v3 Authority Key Identifier:
                keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         a2:ac:37:b0:8f:ea:ad:e8:aa:7d:6c:85:61:af:e0:5c:7a:eb:
         b4:53:3e:a9:bf:f3:06:ff:12:ac:2a:ff:51:a3:27:a0:df:36:
         fd:b2:81:33:9c:7d:74:4f:ad:f0:c2:ce:a0:f9:f5:e4:7b:ba:
         7e:a0:42:85:de:6d:bb:cd:d5:0c:b2:56:a3:4a:53:50:f8:2b:
         d2:d2:2e:1d:83:fc:ae:ff:9c:63:89:59:f6:69:50:df:d6:4c:
         c2:79:4c:4e:f3:3b:be:1e:e5:8a:8b:3d:01:f3:7a:63:f1:82:
         d1:38:ee:37:eb:50:3c:9f:6f:48:92:2d:73:6d:5d:1b:fd:d9:
         5b:07:63:8d:15:81:77:0a:e3:28:f5:4e:76:96:ef:7f:7b:da:
         6e:30:ed:37:37:70:e4:b9:a1:16:8d:89:c0:50:9a:bf:d2:d8:
         ce:dd:40:ab:da:29:5a:65:5b:a2:b2:26:a3:43:39:1e:c9:de:
         83:70:06:55:d2:db:36:df:ba:8a:c6:53:ce:d8:da:d4:d4:43:
         c6:ee:e5:01:6f:4d:11:f6:8d:87:c2:55:e9:bc:41:9e:9e:f8:
         e0:4e:b6:4a:07:d4:39:06:b7:c2:b8:d4:37:bc:42:c9:79:6f:
         a6:1b:47:8c:24:c2:cf:15:b1:06:ae:06:c6:67:61:69:78:84:
         78:12:62:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdZEi/JHTCu8KSielo9CMqoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyNWNmMGQzMTcwNGI1OWQ3ZWViMDE4NTQ4MjAyZDNhNTcw
ZGE5MzIwHhcNMjUwNjEwMDkwMDUzWhcNMjUwNjExMDkwMDUzWjAzMTEwLwYDVQQD
Eyg1NGY2NDRmMTAyNDY2ZDZmYTYxMzYyNjQxMjA2NmM1Y2Q1MTNkZGY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjhuvlyMyL98K/3Iui2MxElugpJtK
juJxbCg0/B0//LKY6ruvoK6IVRByBGTvaGoFPUxz0We2ynKsyPvQ9KYSv6MiZyQu
EMClM99BC1imTgdtWtFYxMbxj89iXmzIWtgABzVUwFnsF4NZnbq36fhU0VJq4pgu
sKnFJzhV2hyXRaTkCSXYDH3BMe3EsKtZn4SaZVvRtm7ypWmkdjpro6T4KWRRIncr
YuEMWcioSRVzVVRVW4NUVOf+6CD65ECqoDw8BNNXWbIEF51oBTXPC58YqieZTKOt
Ig47wGTm7bNhQKeJoFVO/zdGqFFJMBBQyXRSH5noogQMvOX3XpOwxjcwDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFT2RPECRm1vphNiZBIGbFzVE931MB8GA1UdIwQY
MBaAFCJc8NMXBLWdfusBhUggLTpXDakyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS80ZGY0MjktZjc3Ni00ZmQzLThkZTQt
MDBiYzkwM2QyNjIxLzEvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS80ZGY0MjktZjc3Ni00ZmQzLThkZTQtMDBiYzkwM2QyNjIx
LzEvSWx6dzB4Y0V0WjEtNndHRlNDQXRPbGNOcVRJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoqw3sI/q
reiqfWyFYa/gXHrrtFM+qb/zBv8SrCr/UaMnoN82/bKBM5x9dE+t8MLOoPn15Hu6
fqBChd5tu83VDLJWo0pTUPgr0tIuHYP8rv+cY4lZ9mlQ39ZMwnlMTvM7vh7lios9
AfN6Y/GC0TjuN+tQPJ9vSJItc21dG/3ZWwdjjRWBdwrjKPVOdpbvf3vabjDtNzdw
5LmhFo2JwFCav9LYzt1Aq9opWmVborImo0M5Hsneg3AGVdLbNt+6isZTztja1NRD
xu7lAW9NEfaNh8JV6bxBnp744E62SgfUOQa3wrjUN7xCyXlvphtHjCTCzxWxBq4G
xmdhaXiEeBJixw==
-----END CERTIFICATE-----
Generated at Tue Jun 10 13:15:38 2025 by rpki-client