Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
File:                     Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft (raw, json)
Hash identifier:          XEu52XWLVPJACQ7RIF4axMs8v9Kc4X6i6wxBtqInJDA=
Subject key identifier:   EC:A0:75:75:52:8A:32:6B:85:FE:02:74:68:00:90:83:74:D8:9F:8A
Authority key identifier: 22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32
Certificate issuer:       /CN=225cf0d31704b59d7eeb018548202d3a570da932
Certificate serial:       01976696C0A292840BC14FF5B99EF15F7378
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
Manifest number:          1460
Signing time:             Fri 13 Jun 2025 00:00:45 +0000
Manifest this update:     Fri 13 Jun 2025 00:00:45 +0000
Manifest next update:     Sat 14 Jun 2025 00:00:45 +0000
Files and hashes:         1: Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl (hash: y6YiDPJGBkgoxTx26db4V/3ASHE+ber/+V9L87apKPM=)
                          2: rRTGMxhiOpV_X766sLDj0H5s3lk.roa (hash: Fk8zZgs5ltomuLpQlhRuRyNBCQpASYJvnVS5AQLwlOo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:66:96:c0:a2:92:84:0b:c1:4f:f5:b9:9e:f1:5f:73:78
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=225cf0d31704b59d7eeb018548202d3a570da932
        Validity
            Not Before: Jun 13 00:00:45 2025 GMT
            Not After : Jun 14 00:00:45 2025 GMT
        Subject: CN=eca07575528a326b85fe02746800908374d89f8a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e3:a4:81:c4:5f:d8:00:b8:a7:78:a9:f9:20:6a:
                    71:e8:eb:40:a5:8f:7e:7b:e7:d1:51:01:43:16:63:
                    50:23:06:2d:b8:db:f5:75:44:c7:fa:45:96:93:14:
                    60:bc:9f:48:68:85:49:d4:56:49:28:e9:67:46:63:
                    c5:87:99:01:32:9a:3f:e5:d6:b8:85:db:01:fa:cd:
                    53:ec:68:50:fe:24:21:20:0f:dc:73:4c:94:3c:ea:
                    5f:b1:0e:f3:7b:69:cd:c3:6b:7a:b4:69:36:e6:8d:
                    f7:a9:0e:2b:3f:18:b6:37:3a:0d:b3:c1:60:c6:8b:
                    4f:c6:25:c8:a0:3e:2f:eb:4f:03:33:4d:7c:7b:d6:
                    7d:a3:0d:d6:a7:8d:0f:28:8f:80:a8:31:5e:c8:88:
                    00:13:e9:6f:33:5f:4e:d5:00:ca:c1:9b:8f:7a:1c:
                    87:de:15:4b:48:da:90:ca:ae:c6:2b:25:b0:ec:18:
                    62:cb:78:d3:53:4b:67:26:30:8a:3f:9f:15:80:aa:
                    b9:53:60:90:c0:db:c1:b9:3a:77:e5:d2:a0:ed:f9:
                    e8:e9:a6:4d:1e:5d:b4:5d:6f:69:1f:75:a1:b6:94:
                    3a:8a:f0:93:32:65:b0:5d:54:0e:2a:8a:ea:a2:d6:
                    c1:79:c1:8b:6a:40:1b:a6:1a:5b:d5:ea:0f:49:fa:
                    22:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:A0:75:75:52:8A:32:6B:85:FE:02:74:68:00:90:83:74:D8:9F:8A
            X509v3 Authority Key Identifier:
                keyid:22:5C:F0:D3:17:04:B5:9D:7E:EB:01:85:48:20:2D:3A:57:0D:A9:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/4df429-f776-4fd3-8de4-00bc903d2621/1/Ilzw0xcEtZ1-6wGFSCAtOlcNqTI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0b:b5:03:d2:f4:7d:5a:53:2f:27:9b:64:e6:a3:c2:2a:9c:7a:
         d0:3b:55:c9:05:b9:4d:09:31:93:fb:39:db:5c:bd:8a:45:42:
         dc:f6:28:db:21:db:71:fe:12:a6:8f:23:8d:91:40:8c:95:c1:
         aa:f5:f0:4b:3a:16:a7:8f:27:73:f4:e3:79:13:5a:b2:2f:35:
         fb:a7:9b:b9:ea:5c:27:77:b1:1e:38:2d:2e:ab:d1:c6:e3:86:
         fa:c0:75:34:68:1c:68:58:57:04:fd:30:a7:d4:d2:a0:37:57:
         36:e6:90:fe:06:58:de:28:9a:4e:7e:4a:4c:64:80:41:c0:0b:
         24:44:b3:a9:09:0c:07:3a:12:0e:72:29:ff:2e:3e:b5:cf:03:
         eb:e6:e0:3d:dc:e8:2f:13:f6:b8:b2:51:8e:71:03:55:a6:5f:
         77:2b:68:f0:ad:aa:c3:3f:9a:30:04:cb:67:8d:b9:3d:7f:be:
         32:c0:37:d0:70:bf:6c:fd:66:08:8f:6d:98:de:39:ee:d5:9b:
         98:c6:4f:02:44:23:8c:23:d1:01:a2:9e:6f:2e:3a:ce:45:34:
         e6:65:e3:7f:05:71:c7:3b:54:11:02:5c:76:fb:89:89:9f:32:
         e5:eb:8f:1f:4b:48:c4:f5:a0:ed:f8:a0:c9:3f:fe:18:4b:b3:
         82:26:04:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 03:31:50 2025 by rpki-client