Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File:                     Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier:          5Ai8N1iFeHbMV8PF5MaR07kc2d085qmIi7AmEa7I7Jo=
Subject key identifier:   64:9F:7F:DD:15:DF:E3:CC:CC:9B:CD:8C:09:35:68:25:7A:49:A1:DD
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer:       /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial:       01976C61F0087681D573572F8496618941D7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number:          1463
Signing time:             Sat 14 Jun 2025 03:00:46 +0000
Manifest this update:     Sat 14 Jun 2025 03:00:46 +0000
Manifest next update:     Sun 15 Jun 2025 03:00:46 +0000
Files and hashes:         1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: eolfmb/jX/c/vIBZ17inpB7F6K2E2wAHgsaehzIaZlk=)
                          2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 03:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:61:f0:08:76:81:d5:73:57:2f:84:96:61:89:41:d7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
        Validity
            Not Before: Jun 14 03:00:46 2025 GMT
            Not After : Jun 15 03:00:46 2025 GMT
        Subject: CN=649f7fdd15dfe3cccc9bcd8c093568257a49a1dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:33:55:77:03:f2:95:c8:9e:09:68:50:68:4a:
                    9e:07:e4:c2:64:5b:e3:c5:60:3d:31:98:a7:44:d6:
                    ec:9d:0c:71:c3:86:96:ba:63:99:80:65:55:4b:66:
                    ac:51:fb:e1:02:e0:7e:e5:33:80:44:d2:2d:f3:76:
                    07:aa:62:40:cb:c3:e3:2e:fb:dd:e8:b9:91:2b:36:
                    87:af:b5:27:86:ac:58:fd:55:ab:74:12:d1:73:c0:
                    d4:f9:cb:91:df:a3:21:1a:6d:4f:c7:d4:21:5a:25:
                    e1:fe:2a:6e:8b:12:93:de:06:40:ba:95:d2:79:d6:
                    43:a5:1d:47:d9:41:55:87:83:33:61:b7:e9:a4:dd:
                    f7:b9:16:cc:d3:90:1c:a5:25:ee:62:8c:6c:b0:8c:
                    7f:13:42:f0:ef:d7:83:4e:87:82:57:0d:01:71:92:
                    34:66:ba:35:12:49:9a:a2:c5:e1:53:d7:80:92:74:
                    29:e3:30:37:e8:e9:1a:fc:5b:a3:17:71:d4:ec:98:
                    52:03:69:c2:f0:f0:30:0c:87:84:b6:36:52:a0:4d:
                    95:36:cc:25:44:5e:39:02:60:f5:e6:ed:ec:52:d3:
                    71:4e:3b:4e:38:19:a3:2f:86:bd:bd:99:0c:61:49:
                    86:6d:b1:f3:27:f3:dd:73:69:ca:a1:8f:24:e6:82:
                    ea:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:9F:7F:DD:15:DF:E3:CC:CC:9B:CD:8C:09:35:68:25:7A:49:A1:DD
            X509v3 Authority Key Identifier:
                keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         47:c5:92:e4:24:56:35:ad:43:e4:d0:f8:46:f4:24:8e:6e:e3:
         68:80:36:c0:17:a1:67:7b:35:78:6a:d1:06:57:5f:36:1f:87:
         fa:e9:ec:4f:c4:fb:83:44:0d:47:56:c3:a2:e0:f9:6b:1e:c2:
         31:ac:09:10:82:35:0a:36:bf:61:48:60:ed:e2:ac:bf:75:82:
         55:f0:80:0e:20:a1:6a:7e:db:c6:71:05:8b:43:90:14:95:93:
         d5:7f:ee:dd:03:01:5e:8c:a8:fa:29:72:d1:ff:55:e3:bc:20:
         97:1c:15:76:7c:43:a0:12:bc:b2:ee:61:d8:7d:ea:e0:1e:3c:
         7c:44:2d:7b:8a:63:f8:08:d0:a7:d5:75:af:b4:65:58:c7:a6:
         4e:06:22:2b:2b:6d:92:92:84:b7:da:9a:d1:fd:64:b7:c0:61:
         dd:5e:93:5e:25:f4:4c:5a:ef:ca:55:db:1e:a9:5b:87:7f:a0:
         41:36:4f:05:44:be:78:23:ac:fb:86:88:0c:e4:7a:c0:81:84:
         22:f0:a3:3d:35:4a:c0:ea:e7:ef:1f:97:17:44:47:eb:65:5d:
         c5:5b:56:61:d3:11:32:98:7d:11:13:d3:c4:cd:67:fd:68:05:
         7b:b7:cc:b2:1c:e0:73:46:ec:ac:60:00:6c:76:f1:2d:b1:c8:
         a2:26:ea:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 14:09:44 2025 by rpki-client