Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
File:                     iPQfqz5j6vW98HFm31qmgWLq16Y.mft (raw, json)
Hash identifier:          ePwJnpN8nYFZUD2p8jWCwNgyKa/DvaHx1f3zZ7173bc=
Subject key identifier:   0A:85:E3:FC:F8:AC:B0:56:E3:6B:1C:EA:0A:CE:3D:71:6B:F4:B0:B9
Authority key identifier: 88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6
Certificate issuer:       /CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
Certificate serial:       019752D94D076670BF1E975D9987536A3BEF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
Manifest number:          1582
Signing time:             Mon 09 Jun 2025 04:01:02 +0000
Manifest this update:     Mon 09 Jun 2025 04:01:02 +0000
Manifest next update:     Tue 10 Jun 2025 04:01:02 +0000
Files and hashes:         1: iPQfqz5j6vW98HFm31qmgWLq16Y.crl (hash: lxXGHSP88h+aSJvrnFPuiV15CkegpSb3eIgGsh7eGYk=)
                          2: uNj0vhcUK_UhfSxrxVZLYp2n6nk.roa (hash: xTRc4Rd4GJsupl0R/CzG6nNJAwdCcx0IPu8T4AbYP1I=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 04:01:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:d9:4d:07:66:70:bf:1e:97:5d:99:87:53:6a:3b:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=88f41fab3e63eaf5bdf07166df5aa68162ead7a6
        Validity
            Not Before: Jun  9 04:01:02 2025 GMT
            Not After : Jun 10 04:01:02 2025 GMT
        Subject: CN=0a85e3fcf8acb056e36b1cea0ace3d716bf4b0b9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:d5:aa:17:bf:48:34:6b:34:ab:aa:61:68:05:
                    f1:84:93:02:7a:66:bd:eb:b8:a0:1e:e7:d1:20:03:
                    a2:82:d0:7d:5c:bb:c8:28:00:0a:f3:62:c6:86:0e:
                    61:35:65:f2:01:30:da:99:09:c1:e3:b1:ad:3f:ef:
                    78:e9:5b:19:c7:0e:0c:28:6f:14:8b:1a:1c:bd:63:
                    6e:38:22:0b:61:e9:ae:2e:09:7b:f0:d0:9d:c1:7d:
                    b2:ba:a0:55:25:94:09:cf:33:1f:26:d9:52:2e:f6:
                    16:bb:1c:9e:b8:bf:95:08:cd:51:d7:0c:d8:6e:93:
                    90:d4:bd:59:51:90:2a:ee:d3:bb:e1:24:5c:00:26:
                    d9:10:aa:ce:78:6d:ea:a1:36:4f:86:90:27:59:48:
                    89:f9:ec:82:5c:2c:28:80:6a:62:4c:2f:74:4b:43:
                    d6:a1:40:34:bb:dd:30:cf:10:fa:84:71:6e:c3:c1:
                    5a:5b:ab:61:26:be:3c:da:85:b9:ce:46:65:3a:4f:
                    a0:39:5e:e2:f3:f9:0f:c8:8b:74:62:ee:f7:c1:53:
                    12:76:01:cf:47:89:4d:bd:ee:e8:32:7a:d4:08:c4:
                    49:97:82:08:56:bc:97:f7:49:ca:20:40:50:cd:2a:
                    5e:a2:56:35:20:77:01:5e:a4:1d:da:67:a6:1d:f9:
                    d7:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:85:E3:FC:F8:AC:B0:56:E3:6B:1C:EA:0A:CE:3D:71:6B:F4:B0:B9
            X509v3 Authority Key Identifier:
                keyid:88:F4:1F:AB:3E:63:EA:F5:BD:F0:71:66:DF:5A:A6:81:62:EA:D7:A6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iPQfqz5j6vW98HFm31qmgWLq16Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e06d8b-c758-4b93-b9f3-897cb6a430d7/1/iPQfqz5j6vW98HFm31qmgWLq16Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         74:18:45:d5:31:57:a5:84:34:b4:45:88:ac:8c:5a:aa:cb:b5:
         86:29:d0:fc:b2:cd:e8:06:90:2b:b5:93:6c:b6:e7:a0:ce:45:
         72:36:21:52:4c:28:c6:56:03:b1:39:b1:3b:31:c5:a6:95:17:
         aa:d3:e5:c3:e3:be:9a:4b:54:cf:9c:60:41:41:47:7d:93:97:
         4e:c1:83:0e:b8:78:af:68:8f:e1:b8:ce:cb:88:26:b0:8e:cc:
         b1:1b:10:d2:69:78:dc:7c:d9:88:44:0a:8c:f2:e0:c4:7f:69:
         c1:f7:53:69:4d:79:05:4c:57:4e:22:b7:e1:11:6a:9c:d8:14:
         8e:b1:73:82:d1:85:1f:2f:39:7d:06:91:f2:e1:27:49:e9:ab:
         2b:b0:f1:b6:37:55:76:78:45:40:1e:f3:d6:5e:df:d8:53:48:
         97:36:c9:e9:88:5e:31:c0:90:ab:26:b9:28:27:91:4c:16:e6:
         1d:cc:49:cb:3b:80:d2:ac:e0:db:7e:e5:01:c8:25:94:51:ae:
         85:3c:a9:5c:88:4f:84:b3:60:4f:9e:6e:41:06:3d:50:7f:d8:
         b9:a0:32:a3:60:89:84:cd:a0:a3:22:9c:23:a6:9c:55:31:8e:
         a5:6d:e2:58:df:43:31:df:cd:40:b6:7e:b0:aa:a6:be:5d:79:
         87:87:fa:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 14:04:28 2025 by rpki-client