Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
File:                     4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json)
Hash identifier:          RQsEk6PNZ5MftYUpi1IbkTr5fQZ59WXbEPb1g+SClPs=
Subject key identifier:   49:F4:F7:5B:4F:E4:D6:82:87:FB:28:58:CB:D1:FC:B2:7E:10:1D:96
Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
Certificate issuer:       /CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Certificate serial:       01975B6E0B20A70C2230D6AA997736BC8A30
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
Manifest number:          08DF
Signing time:             Tue 10 Jun 2025 20:00:27 +0000
Manifest this update:     Tue 10 Jun 2025 20:00:27 +0000
Manifest next update:     Wed 11 Jun 2025 20:00:27 +0000
Files and hashes:         1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: hX2TBXnQGdVim7f+Zv17ySRulFNY2SpK50YRMR8heVo=)
                          2: N3RhFZbfRfFlakkE1oKkv4idahs.roa (hash: S19WQvJ0cwuBe3l5agvGw5hBi9jlwv6QitA6NIAiWl4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 14:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5b:6e:0b:20:a7:0c:22:30:d6:aa:99:77:36:bc:8a:30
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c
        Validity
            Not Before: Jun 10 20:00:27 2025 GMT
            Not After : Jun 11 20:00:27 2025 GMT
        Subject: CN=49f4f75b4fe4d68287fb2858cbd1fcb27e101d96
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:ef:98:7d:4f:5e:54:f5:82:f3:d6:0f:19:d5:
                    6b:37:cb:f5:01:af:34:2c:48:25:3f:8d:ea:16:3e:
                    fe:2a:e6:62:1c:e7:b7:e5:60:4c:88:ab:e1:4d:6a:
                    39:3d:92:3c:77:24:ee:aa:9b:26:cf:b3:ee:a8:bf:
                    f9:15:fc:67:20:d5:73:f4:06:5b:1a:ce:0e:08:2c:
                    98:7f:76:03:42:73:db:e2:cb:bd:9b:27:7c:43:65:
                    1e:e6:0e:2d:cf:3a:17:ea:93:13:b1:90:0e:7f:88:
                    11:dd:9b:bf:d1:81:58:fc:89:21:c5:6f:b7:4c:e3:
                    bc:e8:ae:b4:61:d9:b8:b3:9d:5e:ab:90:64:79:d8:
                    65:68:80:fd:38:3a:47:8b:2c:a6:47:c2:0b:09:c2:
                    6a:8a:34:cb:af:8b:e6:e7:0f:9a:49:6e:77:36:d9:
                    37:ec:76:a2:ff:08:3b:1d:2f:98:09:0f:13:21:96:
                    f5:ab:0c:d6:28:05:41:95:bc:89:34:43:33:70:7e:
                    76:a8:ea:02:db:50:12:2d:fb:75:2a:ed:df:5e:3b:
                    0d:d8:b2:19:a4:91:a8:91:77:1d:ed:c9:0c:e0:5c:
                    76:39:6e:29:4b:fe:03:d4:10:c3:d9:1c:f8:d8:4e:
                    2d:ad:08:cc:e1:3f:99:8b:8b:50:be:9f:5f:fb:15:
                    c1:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:F4:F7:5B:4F:E4:D6:82:87:FB:28:58:CB:D1:FC:B2:7E:10:1D:96
            X509v3 Authority Key Identifier:
                keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         55:45:24:18:8b:8e:54:6c:4b:fd:61:5b:60:42:32:9f:7d:ef:
         02:c1:c7:bd:dd:46:06:c9:05:67:14:a5:fc:d5:95:49:71:9f:
         5f:24:6c:91:59:5e:41:09:94:2e:4a:05:25:25:56:a5:35:12:
         8f:d4:65:0c:14:8c:cc:0e:cb:63:c0:8f:01:bb:33:bb:37:20:
         14:6f:b8:43:9a:89:3f:9b:84:0d:d3:b9:1e:d9:3a:33:26:40:
         3f:63:3b:ab:86:e7:18:3b:90:8a:94:d0:ba:ab:7d:d7:92:f6:
         ca:17:8c:c8:b0:11:a4:85:6f:67:87:6f:3e:09:41:55:15:8e:
         f6:11:65:97:7f:60:60:8c:2f:9c:cc:0c:de:ee:5d:cb:e4:3d:
         b7:a8:98:61:e9:35:c5:db:20:21:87:9b:36:f1:a5:f7:b9:60:
         40:99:82:aa:7f:a8:62:e4:a6:5c:30:9d:51:d4:db:d6:ae:cd:
         c0:aa:5f:c7:33:22:e7:88:34:81:cc:8d:2c:75:1c:69:c9:bf:
         83:32:9b:88:6c:8f:b5:d8:51:db:c0:e8:07:18:52:39:88:4b:
         9b:df:26:aa:46:6b:40:9f:ea:bf:2e:17:46:70:b3:24:d8:16:
         a3:05:c2:fc:39:56:ea:00:7c:e9:17:d0:36:8f:c4:1a:9d:12:
         e3:6d:b9:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 01:18:25 2025 by rpki-client