Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
File:                     I_IfcxbhvXj4bupkJdXCKbmA-aw.mft (raw, json)
Hash identifier:          IM9DFYoBUDMJmt9i4KuLNHJg54KxllLefatrqe6jiik=
Subject key identifier:   88:FD:21:CB:53:9B:97:1E:92:3F:CB:54:E2:73:FE:36:69:03:B4:FC
Authority key identifier: 23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC
Certificate issuer:       /CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
Certificate serial:       01975A24DBCA4C9358FDFA062B7E8042B9F8
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
Manifest number:          1586
Signing time:             Tue 10 Jun 2025 14:00:54 +0000
Manifest this update:     Tue 10 Jun 2025 14:00:54 +0000
Manifest next update:     Wed 11 Jun 2025 14:00:54 +0000
Files and hashes:         1: 15gQ3l_CTz5DpsQh5tCstrbwJks.roa (hash: NBh6zaBQW3FImxNGTreLJET3gJwOeBKW+FttZU4GhEA=)
                          2: I_IfcxbhvXj4bupkJdXCKbmA-aw.crl (hash: 8ve+kxvO2IHNu+f1rx7NrKx3KY2AV9VgUn5q6bGhtZ4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 14:00:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5a:24:db:ca:4c:93:58:fd:fa:06:2b:7e:80:42:b9:f8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=23f21f7316e1bd78f86eea6425d5c229b980f9ac
        Validity
            Not Before: Jun 10 14:00:54 2025 GMT
            Not After : Jun 11 14:00:54 2025 GMT
        Subject: CN=88fd21cb539b971e923fcb54e273fe366903b4fc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:46:e5:81:c9:e9:5d:1d:82:fc:ca:0d:1c:b2:
                    57:48:76:11:6f:1a:c0:00:47:e6:06:92:84:1c:98:
                    f1:04:8c:85:0c:e6:45:ff:f8:a1:ae:25:d5:c4:27:
                    0d:d9:6c:22:b3:58:0c:45:4f:a2:2e:17:75:b7:10:
                    fe:4d:00:f6:ab:93:4c:d3:7d:ff:ef:e4:4c:6d:a1:
                    2d:1f:0d:4d:8a:17:bf:0b:29:63:13:d6:92:63:e6:
                    09:64:a9:f0:8f:b1:5e:81:ae:ae:df:56:31:96:d3:
                    44:e8:2c:76:ce:36:70:a4:bf:63:43:5d:95:ef:38:
                    c7:69:99:a3:7c:df:38:ae:6d:a5:0e:54:62:22:c5:
                    bf:eb:8d:0b:6a:8c:96:26:96:dd:e9:0b:38:a3:b8:
                    d9:6d:92:7b:d9:98:3b:41:1f:e1:56:33:ee:79:76:
                    08:7a:20:c3:5f:16:81:fb:06:85:f5:96:52:e4:4d:
                    a2:27:2b:63:7c:dc:c0:70:7b:3f:c9:9b:b1:7e:cd:
                    d5:0c:63:64:7f:2c:44:51:b0:47:dd:97:08:ae:50:
                    5c:f1:8e:52:ac:eb:5f:11:28:2a:f8:80:69:e1:44:
                    0e:2d:73:74:a1:9e:40:c7:6c:16:ce:c0:f0:99:fb:
                    d9:7b:2f:6a:dd:ba:de:2e:3a:ff:fd:e0:3c:c0:e1:
                    d2:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:FD:21:CB:53:9B:97:1E:92:3F:CB:54:E2:73:FE:36:69:03:B4:FC
            X509v3 Authority Key Identifier:
                keyid:23:F2:1F:73:16:E1:BD:78:F8:6E:EA:64:25:D5:C2:29:B9:80:F9:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I_IfcxbhvXj4bupkJdXCKbmA-aw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a59cf-5092-474d-81cf-974c31f2660b/1/I_IfcxbhvXj4bupkJdXCKbmA-aw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         aa:e0:cb:aa:01:cb:98:11:79:f5:eb:c6:45:76:4b:3a:fc:ce:
         2c:95:94:26:b1:bc:ba:ab:23:fa:09:5c:9a:90:e5:c6:bb:e5:
         9f:c8:2a:9e:dd:4d:58:d9:2a:d8:80:9c:d8:ef:e5:39:51:bf:
         30:71:67:39:28:3e:7d:49:b5:95:30:a8:97:3e:2f:15:73:e9:
         c9:02:c8:d5:3a:fa:06:82:3b:74:fa:c8:82:a0:43:6e:52:f5:
         74:1e:4b:93:8a:aa:5a:34:8e:41:2a:1d:39:94:8d:78:66:75:
         17:8f:5d:b7:cf:3e:cf:bf:cd:bf:45:7a:2f:89:2c:ed:f2:a2:
         bf:c2:fa:97:69:aa:3b:bc:fc:e8:65:4b:8b:3c:ab:bb:c0:a2:
         bc:05:c1:90:46:ad:b0:f1:29:cc:4d:35:e3:32:75:9f:30:54:
         bd:86:73:3b:a1:de:27:42:16:9e:83:c1:42:93:fd:61:32:94:
         ff:02:3d:75:a8:3c:98:3b:d9:01:af:c8:69:08:3d:6c:5c:79:
         f6:ed:a5:cc:be:74:a5:3c:20:ba:e0:1b:68:50:89:85:72:09:
         aa:5c:09:c0:d9:d4:f5:0d:69:be:9b:49:5a:8b:72:50:04:be:
         95:98:8b:cc:4d:c3:f2:db:b6:52:87:54:d7:a7:94:31:9b:ed:
         70:42:ae:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:03:50 2025 by rpki-client