Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
File:                     iOuqLxdpo932X4c9wx81HvB4rSU.mft (raw, json)
Hash identifier:          ezqJMcfH8pcqM+P4a3+7lJWDSJTH8MNp2hLlinkiYkk=
Subject key identifier:   75:46:28:3E:00:CB:50:6F:63:2D:C3:B2:AA:2D:16:30:A5:51:B6:A6
Authority key identifier: 88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25
Certificate issuer:       /CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
Certificate serial:       01976A05A286C3C45D85242BA7A0E257C118
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
Manifest number:          0D2B
Signing time:             Fri 13 Jun 2025 16:00:43 +0000
Manifest this update:     Fri 13 Jun 2025 16:00:43 +0000
Manifest next update:     Sat 14 Jun 2025 16:00:43 +0000
Files and hashes:         1: P5TwA4gqR6DNAZ9Tx38K6wVBeSw.roa (hash: JFHWlXs6ts8+WEohOsphMs0bmJPDZeURLkqEXMqad1U=)
                          2: iOuqLxdpo932X4c9wx81HvB4rSU.crl (hash: yFcf+qr7pocXfAri98g+h6zJzVszxMuyRGN3Y/MDrOc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:05:a2:86:c3:c4:5d:85:24:2b:a7:a0:e2:57:c1:18
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=88ebaa2f1769a3ddf65f873dc31f351ef078ad25
        Validity
            Not Before: Jun 13 16:00:43 2025 GMT
            Not After : Jun 14 16:00:43 2025 GMT
        Subject: CN=7546283e00cb506f632dc3b2aa2d1630a551b6a6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:d9:46:c8:4e:67:e8:17:19:e6:18:a5:58:60:
                    8b:3a:2a:da:2a:b0:8a:d6:b1:be:ce:2a:52:7f:6a:
                    23:df:60:d6:38:d1:d2:16:a7:bb:8b:6b:9a:67:fd:
                    ce:2f:24:15:da:29:98:9d:c3:de:41:56:46:23:7d:
                    93:07:4e:c9:63:a1:29:7f:fb:2f:2c:03:4d:11:d3:
                    2b:5f:fa:ad:13:cd:9a:f8:f6:b7:ef:f2:24:37:11:
                    bc:46:ea:15:20:b9:30:2a:1e:20:e9:13:54:77:e8:
                    c9:47:c0:a7:66:df:d3:1c:ef:b8:3d:e3:6a:4d:51:
                    7c:59:76:01:32:f0:d8:20:1d:2f:16:34:5a:2f:a4:
                    0e:21:77:7d:48:cf:f7:4a:6b:e2:69:8f:c8:d6:da:
                    00:0d:c1:b7:39:81:36:a5:51:73:1f:66:40:15:23:
                    33:82:72:9c:e7:24:8b:7e:b5:4f:b8:4d:ff:ba:a8:
                    92:8a:a8:99:47:f4:71:ba:f5:f3:ef:46:82:3f:cd:
                    3c:91:8d:fb:b3:f3:1c:f8:43:e9:72:02:ce:3f:07:
                    02:c2:7b:1f:a0:fc:4f:72:f0:a4:86:64:2a:51:2a:
                    ed:06:81:2a:3b:17:75:aa:ef:2d:76:8a:b3:14:c7:
                    69:fa:d2:b5:81:1b:eb:46:2c:e4:e8:11:2a:eb:19:
                    3f:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:46:28:3E:00:CB:50:6F:63:2D:C3:B2:AA:2D:16:30:A5:51:B6:A6
            X509v3 Authority Key Identifier:
                keyid:88:EB:AA:2F:17:69:A3:DD:F6:5F:87:3D:C3:1F:35:1E:F0:78:AD:25

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iOuqLxdpo932X4c9wx81HvB4rSU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8bfcc2-5def-44aa-87c1-2bbf46884585/1/iOuqLxdpo932X4c9wx81HvB4rSU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         73:e0:ca:48:b5:5d:c7:10:cf:0c:ff:d5:a2:e5:dd:69:ed:26:
         7e:b3:cc:bc:a7:5d:3f:21:17:15:9c:8d:53:98:29:ae:82:9e:
         28:86:91:07:26:e6:fc:51:25:af:fd:25:c8:40:cf:3b:48:a7:
         f0:8b:96:2a:20:f2:2f:32:a7:66:7b:70:7a:75:14:fe:b6:6b:
         d6:81:37:f1:3a:c8:aa:91:2a:bc:f0:98:95:68:e1:2a:9c:5e:
         04:95:f1:f0:14:4c:4f:ff:d3:b7:58:e9:c6:ad:a7:64:c6:69:
         b7:9e:37:2e:eb:b2:da:08:6a:81:60:2c:9b:11:2d:b8:e6:11:
         cd:d9:ad:e6:ee:32:63:b4:31:80:55:e6:3d:25:7c:d2:9a:6a:
         b8:70:ba:b4:ab:e5:c3:78:f2:7e:ce:b7:08:a2:cf:b2:c9:7c:
         03:13:02:a1:3d:28:8b:bb:db:91:87:4d:6f:7f:38:bc:3a:63:
         80:8e:b2:5a:83:c3:50:4f:1e:cb:b9:01:f7:3c:5d:dd:b3:e3:
         ca:13:54:19:96:4f:4c:05:a6:fe:65:31:03:57:cb:a2:7f:fa:
         a7:e0:61:e7:9f:ef:6b:ce:74:75:33:66:45:cd:47:47:e8:47:
         2e:cc:49:40:9b:c3:e4:04:a0:2c:c3:bb:92:78:8b:9a:6a:52:
         ee:90:f9:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 20:50:56 2025 by rpki-client