Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File:                     dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier:          Kgd0+cHFbauR+t9/G5+9iiKXZ+I/EUmMISYMOMO6Kbs=
Subject key identifier:   E5:00:48:D5:AF:88:01:77:5B:8F:51:53:BA:27:C5:AB:1E:18:C7:75
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer:       /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial:       0197534CE5FAE920120A3D446EB3885B4671
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number:          074F
Signing time:             Mon 09 Jun 2025 06:07:17 +0000
Manifest this update:     Mon 09 Jun 2025 06:07:17 +0000
Manifest next update:     Tue 10 Jun 2025 06:07:17 +0000
Files and hashes:         1: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: s+7+Xe1TL6v5dsfiMUdmIlwvBK8RdhG+mF8v+YjzBDM=)
                          2: prlrwENsP0XShm7WiJaiosrpyn4.roa (hash: N21LSr0oJqwv0f3injM4CthwAR4LuE5viTe41DT0nbI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 02:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:4c:e5:fa:e9:20:12:0a:3d:44:6e:b3:88:5b:46:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
        Validity
            Not Before: Jun  9 06:07:17 2025 GMT
            Not After : Jun 10 06:07:17 2025 GMT
        Subject: CN=e50048d5af8801775b8f5153ba27c5ab1e18c775
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:fa:3a:a6:36:87:3d:f3:41:d3:72:86:06:66:
                    92:04:b5:e0:41:f2:23:44:c6:43:b1:41:c0:f2:82:
                    6f:66:d6:30:45:31:8f:49:0f:b8:19:72:85:5f:f3:
                    4c:f5:ab:2e:cc:a9:a7:14:88:31:1f:4b:b7:22:3e:
                    f1:9f:b6:e5:2d:3a:21:9c:7c:04:d6:99:f0:b3:43:
                    0b:a1:59:44:d1:ae:ec:9f:c4:ba:3f:4c:22:78:2c:
                    9a:55:76:1b:49:b5:d8:f9:d9:93:e1:15:c3:ca:02:
                    ac:65:ba:4c:00:5f:cb:3b:f0:29:37:46:3c:f0:a0:
                    26:f6:28:bb:e5:0b:8e:9b:f4:71:14:34:46:41:d4:
                    58:7c:c8:f4:97:06:04:91:44:1b:bd:c2:52:00:fe:
                    92:aa:e7:c6:76:24:2e:8d:98:9d:8f:17:0c:14:fa:
                    4e:3e:05:56:3a:16:a0:ea:c6:6f:c0:43:38:58:7a:
                    07:f7:4d:aa:99:ef:45:0b:0e:71:89:5f:03:65:3a:
                    ec:73:74:86:7a:6d:2d:55:ab:81:fa:b6:a0:b9:fb:
                    76:48:9b:29:7c:dd:6d:74:d5:94:f3:b9:ed:03:f1:
                    0f:e2:41:00:fd:7a:b6:95:4d:09:36:0c:ce:3f:0c:
                    e4:ec:9f:19:9d:f6:59:09:0d:90:e9:11:b7:d2:26:
                    a3:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:00:48:D5:AF:88:01:77:5B:8F:51:53:BA:27:C5:AB:1E:18:C7:75
            X509v3 Authority Key Identifier:
                keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         03:f3:4d:7a:99:e2:cc:7d:57:b8:f0:cb:e9:47:c9:4d:ef:e7:
         c7:a0:c9:fd:6a:c1:51:e9:fb:9b:c0:3e:6b:7a:21:07:54:45:
         b6:18:ad:2d:6f:22:d2:d4:c8:e0:75:fc:8d:e7:8d:70:34:3c:
         a7:1c:0f:f1:7f:ee:0e:1b:02:ff:5f:01:93:f4:bb:b7:c3:4b:
         ae:7a:1a:1d:28:f8:e9:f9:f8:9d:4f:4f:51:9b:50:9b:22:5f:
         77:7d:d5:a3:2c:74:fa:b3:82:8f:ec:e6:5b:ae:a3:82:c5:61:
         77:40:ed:13:9f:46:00:c2:20:d5:c6:56:f3:12:15:9c:2b:38:
         b0:39:20:07:01:f2:d8:36:5c:8c:94:a1:62:3a:d5:5c:aa:d7:
         67:29:eb:c3:40:3d:2e:ec:dd:3b:4b:4f:01:9b:bb:9c:eb:51:
         6c:8c:71:89:73:92:66:0f:b1:27:64:1f:84:cb:7e:1c:35:f0:
         09:04:33:29:83:e7:d6:f9:f4:71:0a:47:5a:01:e0:0f:b7:d9:
         31:c0:03:4d:99:ad:25:23:7c:ea:74:a5:39:2d:ce:05:66:9c:
         24:0a:b1:b9:55:00:ab:19:bb:7b:ab:8d:49:d0:af:81:a7:05:
         b1:0c:27:87:45:04:f8:4a:a6:f0:a9:2c:91:99:d9:f7:8e:5d:
         ee:a1:db:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:36:01 2025 by rpki-client