Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
File:                     4EHIW0dOi2wAiR2VQST_DIEgDYw.mft (raw, json)
Hash identifier:          M3NIzkhCqonrILufOJ7SddVgR7PcV5FRw7kdyie3lOQ=
Subject key identifier:   63:25:B7:9E:E0:01:62:A4:CD:17:EA:DD:6D:96:E9:33:1B:18:DB:33
Authority key identifier: E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C
Certificate issuer:       /CN=e041c85b474e8b6c00891d954124ff0c81200d8c
Certificate serial:       0197670490230A870E41CBCCBD52C2588F18
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
Manifest number:          08E5
Signing time:             Fri 13 Jun 2025 02:00:41 +0000
Manifest this update:     Fri 13 Jun 2025 02:00:41 +0000
Manifest next update:     Sat 14 Jun 2025 02:00:41 +0000
Files and hashes:         1: 4EHIW0dOi2wAiR2VQST_DIEgDYw.crl (hash: kb++mR33EAC23r/cR8KhUftbtuOtItV+JaCxYUboB40=)
                          2: N3RhFZbfRfFlakkE1oKkv4idahs.roa (hash: S19WQvJ0cwuBe3l5agvGw5hBi9jlwv6QitA6NIAiWl4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 02:00:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:67:04:90:23:0a:87:0e:41:cb:cc:bd:52:c2:58:8f:18
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e041c85b474e8b6c00891d954124ff0c81200d8c
        Validity
            Not Before: Jun 13 02:00:41 2025 GMT
            Not After : Jun 14 02:00:41 2025 GMT
        Subject: CN=6325b79ee00162a4cd17eadd6d96e9331b18db33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:c3:13:5d:d8:e4:1e:64:e5:21:ee:70:d6:33:
                    d4:4d:f4:b3:7d:b0:6b:f5:d5:71:fe:eb:88:33:9d:
                    95:31:16:5d:da:b2:18:a7:b1:2b:90:35:ca:11:81:
                    c3:2e:d6:fb:2a:b7:dc:1f:a1:8b:3e:ec:eb:b3:ac:
                    11:02:13:e3:49:46:5f:87:6c:41:07:a4:df:2c:dc:
                    58:47:17:bf:f4:4c:a3:29:c5:c1:b6:08:b7:0f:34:
                    68:02:33:4d:13:5c:27:92:3b:e3:b5:e8:6b:44:fe:
                    ea:ef:d8:bc:e3:3a:75:b8:97:93:c6:b0:44:b4:4d:
                    72:e6:ab:12:d0:ce:1a:97:29:c8:cd:3f:77:37:7e:
                    b0:0e:99:93:93:62:61:4c:5f:87:49:d0:8d:fb:8a:
                    3b:b3:fd:c0:2f:a8:65:be:9f:00:6d:3e:52:aa:db:
                    38:39:3d:16:b2:95:32:b9:41:2a:41:d9:e3:5a:dd:
                    d4:0a:f4:90:3b:83:72:48:7f:6a:4a:0c:a4:6c:c2:
                    5f:ac:f4:26:dc:61:fb:5e:9a:05:ec:88:c4:0d:f5:
                    de:68:48:8c:48:f4:d6:42:51:e4:b9:e9:87:43:91:
                    29:29:b4:d7:a7:6e:89:ac:a5:a2:8a:da:5f:a2:d8:
                    65:8e:c6:ea:e7:b2:50:5f:11:ad:4f:e1:da:c9:57:
                    5c:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:25:B7:9E:E0:01:62:A4:CD:17:EA:DD:6D:96:E9:33:1B:18:DB:33
            X509v3 Authority Key Identifier:
                keyid:E0:41:C8:5B:47:4E:8B:6C:00:89:1D:95:41:24:FF:0C:81:20:0D:8C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4EHIW0dOi2wAiR2VQST_DIEgDYw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/20/549e4d-8dee-459b-9283-46bb3fa28b00/1/4EHIW0dOi2wAiR2VQST_DIEgDYw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0e:11:d9:b1:0b:cc:d5:01:a9:91:a9:e2:d0:fc:ff:44:44:99:
         2c:fd:eb:b8:7e:23:0b:19:7a:8a:d3:20:63:cc:4b:45:77:e6:
         e5:bf:38:d9:af:95:6e:a2:0c:96:c9:cb:f9:71:c5:ca:22:b5:
         b2:05:f6:29:5b:2a:e2:4a:74:2a:1d:74:9d:6b:8e:8a:f2:09:
         10:85:ec:fd:09:d5:22:5f:25:02:bc:01:bd:58:c2:ba:14:2b:
         63:0d:9c:c3:41:bf:f9:6d:f9:5d:88:81:3b:04:9c:79:c6:cf:
         9f:fb:2f:15:c2:f6:9a:df:59:69:8d:69:f9:a4:4a:1a:b8:9c:
         96:24:02:13:51:a1:4d:42:74:a6:88:95:de:af:0a:2b:e4:79:
         dc:5c:de:e6:70:0b:a1:c0:cd:fb:09:2b:70:32:40:db:a8:0a:
         8a:cc:83:12:6b:61:49:c7:15:20:a2:2f:b2:58:86:29:d8:fd:
         6c:c3:31:06:87:ed:ac:50:b5:e6:7f:15:d9:ff:19:54:bd:da:
         f2:b0:ae:76:8c:08:96:58:c4:de:82:70:d4:78:30:b6:4f:42:
         47:40:b5:fd:04:64:ee:9c:eb:79:b0:11:c7:d6:78:a5:b9:81:
         8c:69:d9:96:ed:7c:c4:4e:d0:bd:50:a8:ea:e5:e3:10:bc:61:
         91:1e:37:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 10:01:51 2025 by rpki-client