Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
File:                     I_IfcxbhvXj4bupkJdXCKbmA-aw.mft (raw, json)
Hash identifier:          fA+R5UqT0gaZ32AxdW9hOoORaAoCm2/IIL+w1WjyiVo=
Subject key identifier:   93:4C:ED:1A:C5:DF:44:35:79:98:09:1A:95:E1:1D:CF:08:10:EF:03
Authority key identifier: 23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
Certificate issuer:       /CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Certificate serial:       019754598AED4772E604D420C2F7C647BF4B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
Manifest number:          1583
Signing time:             Mon 09 Jun 2025 11:00:43 +0000
Manifest this update:     Mon 09 Jun 2025 11:00:43 +0000
Manifest next update:     Tue 10 Jun 2025 11:00:43 +0000
Files and hashes:         1: 15gQ3l_CTz5DpsQh5tCstrbwJks.roa (hash: NBh6zaBQW3FImxNGTreLJET3gJwOeBKW+FttZU4GhEA=)
                          2: I_IfcxbhvXj4bupkJdXCKbmA-aw.crl (hash: 0FsWy4vR6kz6RPHKc2izhuxwuS7W/8oz7yr8zV09izo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 06:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:59:8a:ed:47:72:e6:04:d4:20:c2:f7:c6:47:bf:4b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
        Validity
            Not Before: Jun  9 11:00:43 2025 GMT
            Not After : Jun 10 11:00:43 2025 GMT
        Subject: CN=934ced1ac5df44357998091a95e11dcf0810ef03
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:fd:f7:bd:a7:03:3c:93:92:ee:a8:7e:35:f9:
                    b7:c8:82:f3:fa:ce:25:fb:1d:2b:86:cf:b6:d3:f7:
                    28:a1:cd:5a:e5:63:c6:bd:78:38:36:16:b5:db:f8:
                    4b:9f:41:2c:d0:38:17:dd:97:49:02:88:d6:68:28:
                    ce:f1:d6:df:82:7f:60:6e:38:73:73:6b:27:7c:7e:
                    60:cb:95:57:a8:10:dc:ce:70:b1:b5:ec:68:c1:4a:
                    e6:a7:c4:c4:75:a6:1c:07:b7:ac:03:2b:6b:06:7a:
                    43:e8:d1:da:d4:aa:48:5e:71:3c:c2:6a:0f:a5:d8:
                    a0:c4:e5:37:fd:05:5e:d5:09:1b:5a:f4:3a:1e:5f:
                    83:b9:db:b7:6b:09:4a:91:66:b4:bd:2b:73:fc:e9:
                    22:03:07:a0:ef:85:4f:ce:a0:8e:74:a5:dd:be:d5:
                    41:38:f7:45:48:98:4d:f2:75:41:1d:c9:a9:cb:c3:
                    a0:a9:d1:70:f1:44:d5:7c:66:e3:5b:ea:a6:f7:ac:
                    b8:59:1c:7d:a8:14:0f:3a:71:b0:10:3f:c0:83:d0:
                    16:77:7a:76:2e:5a:aa:9c:1c:25:01:55:1e:16:19:
                    64:04:65:f7:cf:3c:6e:e3:97:0c:a0:d6:c8:fd:3b:
                    19:56:ce:61:f1:90:00:3d:d8:0c:af:be:ce:14:64:
                    af:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:4C:ED:1A:C5:DF:44:35:79:98:09:1A:95:E1:1D:CF:08:10:EF:03
            X509v3 Authority Key Identifier:
                keyid:23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:56:df:d0:27:f0:ce:59:59:16:36:83:c6:37:75:52:3f:14:
         22:64:07:aa:74:ba:60:13:69:8b:b4:aa:57:62:a2:72:52:c5:
         cf:e4:32:4a:54:08:1d:f4:93:a6:1e:ff:9f:6c:da:4c:ca:e5:
         28:c0:59:43:bb:92:1b:4d:c0:25:c8:ff:9c:ca:07:b2:e1:3f:
         1d:31:fc:2c:bd:98:79:2a:4e:41:b7:91:e0:b8:68:78:b3:d8:
         44:b3:c0:2f:ed:3b:30:e4:0d:23:2b:c7:8e:9d:15:36:ad:89:
         f9:61:09:7e:1c:d6:1f:56:9b:88:7c:40:7d:63:34:f7:68:5f:
         ce:95:87:31:fc:e1:4b:fc:f9:8f:ae:e2:3e:3c:75:cd:ec:a9:
         c6:3e:77:91:9e:c0:e7:b1:52:09:5a:ee:49:9e:68:c6:27:8f:
         c0:5e:68:db:80:e4:03:8d:af:d4:cc:20:ac:5a:85:f2:27:36:
         18:78:02:1d:f5:33:91:ea:98:04:69:d2:b3:e8:6d:cf:03:55:
         d0:02:46:28:82:ed:d5:df:e9:14:aa:1c:36:2b:a2:4d:fc:9d:
         da:37:e2:34:43:65:c7:73:1b:fc:44:2b:82:6e:35:77:ed:55:
         fa:f0:7c:7e:05:70:56:c9:43:5e:0f:68:4b:94:d5:49:0d:1b:
         c9:93:0b:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 13:55:42 2025 by rpki-client