Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File:                     dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier:          R4cXFSPQobzj4jFQxOI52ei56QsTJ3ikSRgXGealnlA=
Subject key identifier:   52:09:A2:F5:2D:0F:B8:1C:C3:52:35:51:DF:B1:F5:8C:E7:8A:67:A1
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer:       /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial:       01975912761B6E375F47B1BE22EFFCD6F0B1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number:          0752
Signing time:             Tue 10 Jun 2025 09:01:11 +0000
Manifest this update:     Tue 10 Jun 2025 09:01:11 +0000
Manifest next update:     Wed 11 Jun 2025 09:01:11 +0000
Files and hashes:         1: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: 2hIfkoZODhoW30pSHs91V47S0yKw4dKxJtnF2bLTsZk=)
                          2: prlrwENsP0XShm7WiJaiosrpyn4.roa (hash: N21LSr0oJqwv0f3injM4CthwAR4LuE5viTe41DT0nbI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:12:76:1b:6e:37:5f:47:b1:be:22:ef:fc:d6:f0:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
        Validity
            Not Before: Jun 10 09:01:11 2025 GMT
            Not After : Jun 11 09:01:11 2025 GMT
        Subject: CN=5209a2f52d0fb81cc3523551dfb1f58ce78a67a1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:78:9d:35:1d:e8:5b:4b:2a:92:e3:92:10:b2:
                    22:33:5f:83:c4:c1:33:02:88:96:c5:bb:cd:83:61:
                    c7:29:92:c3:99:7d:5a:21:4d:3b:50:ca:d0:18:c8:
                    57:67:dd:3b:09:aa:fc:9e:dc:01:99:a3:20:63:b8:
                    3c:ea:5e:81:16:7a:20:36:af:c2:0d:4c:6d:a5:b5:
                    3b:5f:91:d5:d0:d0:29:e3:4c:61:a0:c0:65:ae:9a:
                    30:1c:86:67:df:4a:a5:e0:d6:10:70:24:5a:35:c5:
                    18:c3:2b:a2:14:34:3a:31:ab:08:8d:90:96:34:e5:
                    f6:47:05:7d:8a:14:e4:7c:32:98:53:c2:77:6c:f8:
                    1a:79:43:08:7a:64:bd:4a:8b:0d:13:0d:92:a3:ab:
                    3b:be:68:6d:55:ef:fc:9a:68:45:c6:fa:03:54:e4:
                    a6:5f:d9:93:3e:74:97:cc:c3:e5:b9:8a:82:52:36:
                    87:49:3c:f0:40:98:59:06:f9:1b:05:c4:2b:c3:3b:
                    d4:89:fb:17:15:2d:a0:00:cc:df:4f:e1:25:08:39:
                    e3:f3:84:2c:42:5c:de:6f:57:49:a9:aa:53:00:8e:
                    6a:24:5c:04:b0:d8:ca:a7:02:0e:5a:87:e7:1a:84:
                    5c:2f:93:21:4e:e1:47:b2:51:4b:58:f4:4b:e8:d4:
                    03:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:09:A2:F5:2D:0F:B8:1C:C3:52:35:51:DF:B1:F5:8C:E7:8A:67:A1
            X509v3 Authority Key Identifier:
                keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:5e:28:82:69:c1:7b:77:f5:c4:65:33:26:9b:85:06:3c:b7:
         d9:46:d2:0c:d0:09:75:9e:85:0e:18:38:87:c9:d6:ca:44:6b:
         df:32:71:cd:b0:bd:7f:0d:f3:0d:9c:5f:6f:68:92:28:94:af:
         9e:71:2e:e1:4b:30:88:ae:c5:d2:ce:99:b3:59:e7:9a:04:bd:
         2b:ec:51:6f:8b:ba:93:7b:b2:4f:7b:0a:49:fe:6b:5e:2d:a9:
         f2:98:d9:a1:03:6a:82:66:cc:a8:75:7c:2f:08:40:c4:8f:3b:
         de:d8:17:de:2b:28:9d:d2:cd:8f:4c:46:07:74:e7:fc:d0:dc:
         02:51:d6:0d:74:e2:9b:f8:7f:69:24:a6:72:e3:58:8b:21:26:
         f4:87:d9:5e:f4:e6:45:0c:7d:28:5b:12:16:e4:d4:7d:e2:10:
         8b:92:c5:bd:a5:9e:f5:2f:80:da:8d:a8:11:48:11:b1:95:41:
         52:89:fa:88:e2:3c:fe:13:f9:4d:01:0f:21:e1:68:a6:5d:80:
         67:5e:cf:cf:c1:1e:04:88:65:1a:db:3b:ce:77:f2:51:09:21:
         7d:12:e7:a5:ae:c0:cf:79:5c:c4:ab:d2:da:4a:b7:2f:a4:84:
         d3:4e:7d:3e:95:68:b4:81:9b:d6:9c:82:57:ea:eb:58:db:76:
         44:43:7f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 11:44:20 2025 by rpki-client