Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File:                     Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier:          AWBHgErzN4HTsLKPrTOjNNSH/E0bGGL+uXOFQwmpgkk=
Subject key identifier:   41:97:F9:E9:DA:E7:40:89:0B:9F:A3:65:1F:9C:7A:DD:CF:65:86:3D
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer:       /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial:       019764A82D114C8344E5F89C66D671A0680E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number:          145F
Signing time:             Thu 12 Jun 2025 15:00:32 +0000
Manifest this update:     Thu 12 Jun 2025 15:00:32 +0000
Manifest next update:     Fri 13 Jun 2025 15:00:32 +0000
Files and hashes:         1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: KOHObO4L3f1jWWu2wZdoJsmC0iJ+Wa23RQecMgMIOnM=)
                          2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:a8:2d:11:4c:83:44:e5:f8:9c:66:d6:71:a0:68:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
        Validity
            Not Before: Jun 12 15:00:32 2025 GMT
            Not After : Jun 13 15:00:32 2025 GMT
        Subject: CN=4197f9e9dae740890b9fa3651f9c7addcf65863d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:4b:43:aa:81:9b:f6:66:5e:5b:b6:54:a8:45:
                    89:53:08:0f:ad:12:48:cc:a0:5a:1f:41:be:69:fc:
                    26:3e:00:75:c1:5c:47:35:33:a4:3f:3c:45:00:64:
                    95:13:cb:b1:cc:05:e1:26:6e:13:53:37:ae:f7:a4:
                    d5:8f:70:09:39:bf:1b:35:ff:49:f1:53:37:21:1a:
                    ca:3b:3e:97:d1:70:f1:d4:c7:1b:c2:de:d7:18:30:
                    b1:69:dd:88:40:7c:34:b5:1f:a1:9e:fe:1d:5f:fd:
                    0f:41:c7:a6:6b:3e:f1:c6:21:e1:a2:fc:f9:cd:52:
                    af:c8:df:f9:38:36:e8:5b:3d:af:1c:cd:1e:da:37:
                    9e:c2:a3:28:c2:52:62:f9:f1:77:e9:b9:98:24:24:
                    49:39:81:78:7f:cb:fc:58:c8:64:c9:6c:9c:e8:d2:
                    3c:c7:74:13:7b:3c:15:bb:eb:55:6f:aa:dd:62:1b:
                    51:b0:b3:4a:a4:6f:3d:33:44:29:ca:b7:c6:0e:fc:
                    fd:b6:7f:71:e4:66:c5:9c:0e:04:fc:57:9d:fb:6e:
                    1b:92:6b:d6:0f:85:5b:4b:35:48:fa:50:91:62:f8:
                    c0:b0:e6:60:6f:ba:cf:29:26:82:de:0b:9a:00:3b:
                    c8:29:3d:71:40:dc:17:77:48:cb:84:4d:ab:aa:aa:
                    c6:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                41:97:F9:E9:DA:E7:40:89:0B:9F:A3:65:1F:9C:7A:DD:CF:65:86:3D
            X509v3 Authority Key Identifier:
                keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         95:af:ae:44:dc:cf:5c:ad:58:41:4b:a2:b0:eb:e1:4c:ea:b8:
         a4:8d:95:9a:f5:ef:2c:8e:f3:40:25:46:24:57:1e:ba:22:1d:
         b2:93:0f:b4:ea:6c:49:9a:66:d6:e5:19:0d:64:ee:16:0c:84:
         a8:65:0a:35:7e:e4:2e:42:c0:dd:31:04:cd:f5:5b:f6:45:d9:
         f7:30:b5:a1:8e:2d:e4:0f:4a:81:47:5f:db:ed:cc:b4:61:60:
         85:c7:99:17:d7:33:ed:21:06:0f:f4:b4:c9:a1:ff:21:af:11:
         2f:1b:e2:54:68:b8:f2:e7:fd:0d:b7:ee:55:37:77:2f:61:5b:
         ef:23:72:16:4c:d8:71:c5:15:97:54:d7:98:70:16:fc:08:33:
         a2:82:83:46:73:17:61:00:78:34:b4:6d:25:3b:7f:07:9b:a1:
         6d:57:f0:a3:c0:57:13:7a:b3:83:55:8f:fc:76:04:24:c1:7c:
         5a:4e:81:1b:7d:eb:1f:ae:fd:95:30:c8:07:a3:6e:cf:36:23:
         e4:f6:df:02:35:c2:91:a8:b5:cf:54:69:67:c4:0d:74:9a:f7:
         b1:ee:79:64:54:90:70:20:6e:92:01:cd:2a:d2:e7:9f:b4:1b:
         4c:21:d5:af:b3:ec:c9:7f:19:d9:8f:7b:03:27:05:f7:6c:b9:
         d6:ae:5b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:57:14 2025 by rpki-client