Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File:                     dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier:          4RgYODiS2ncuCyavCbJfgmBGXJSmBR0gGwvM4SSyMmo=
Subject key identifier:   57:61:B4:69:EE:1B:68:5B:82:EB:2E:AE:FC:29:4B:56:FF:61:D6:9A
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer:       /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial:       019763962A31912FCDA4408C9D1A1701B1E7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number:          0759
Signing time:             Thu 12 Jun 2025 10:01:14 +0000
Manifest this update:     Thu 12 Jun 2025 10:01:14 +0000
Manifest next update:     Fri 13 Jun 2025 10:01:14 +0000
Files and hashes:         1: VWVp9Cs0S9PvQSERU4KTGGzQ8JI.roa (hash: SxWsENl0azYTplSpEg/TKtQu0dvHaU6Cl+WjOSHnKaA=)
                          2: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: xlBcIqhn1u1+UUhmxx00+DAjVNpggcwre0qwY2BHmG4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:63:96:2a:31:91:2f:cd:a4:40:8c:9d:1a:17:01:b1:e7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
        Validity
            Not Before: Jun 12 10:01:14 2025 GMT
            Not After : Jun 13 10:01:14 2025 GMT
        Subject: CN=5761b469ee1b685b82eb2eaefc294b56ff61d69a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:4e:eb:9d:d9:0b:41:59:2f:f0:24:bd:b6:25:
                    49:37:c2:d8:49:45:8a:f7:aa:e7:c7:31:90:83:fb:
                    72:d9:36:72:b5:ca:44:fb:e4:8a:6c:1f:ed:69:0b:
                    36:b0:74:ef:dc:7b:89:61:b4:a6:7d:1f:de:38:cf:
                    1b:81:bf:47:67:bc:51:82:95:61:eb:b3:c4:10:dc:
                    c1:2c:05:e2:45:83:97:41:1d:d5:6b:9a:b4:ac:aa:
                    e1:99:67:ea:7c:2f:b0:4f:ee:0c:9f:be:01:da:2d:
                    43:cb:cd:3e:91:5f:df:6b:f0:76:7a:f4:e3:1f:e2:
                    73:0f:81:94:6a:e1:f4:fe:3f:87:d3:da:22:f3:2b:
                    f1:9d:49:4d:5b:a3:5b:ea:97:99:e4:3a:e3:3c:a0:
                    a9:8a:c7:0c:df:03:12:34:73:e3:a0:62:4a:ba:2d:
                    e1:33:0f:4d:77:e2:f8:7c:bb:08:7e:3e:21:4b:b5:
                    a3:10:98:ba:53:c3:38:81:86:0b:91:70:77:93:7f:
                    5f:9d:e5:48:1c:eb:f4:ee:81:c4:99:66:b5:a6:6e:
                    35:ee:4e:f2:d4:6a:6e:27:82:3a:90:1f:74:9f:26:
                    ee:97:b0:4a:1f:25:82:fd:21:4b:70:26:c6:d8:a7:
                    ab:99:17:a7:02:b5:c4:7c:f4:2d:c3:8c:68:f3:c5:
                    1c:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:61:B4:69:EE:1B:68:5B:82:EB:2E:AE:FC:29:4B:56:FF:61:D6:9A
            X509v3 Authority Key Identifier:
                keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         31:df:48:1e:a1:a8:36:10:62:41:1e:ea:a8:38:f1:28:b4:99:
         6c:6c:89:4f:93:18:fb:ca:f7:e3:d1:e4:13:18:be:a0:8c:8d:
         e4:9d:55:ac:1e:de:8d:d8:b2:22:2a:4b:a2:f9:1e:a6:df:e8:
         af:11:74:0e:d0:6f:92:e8:ea:6c:62:ac:43:a0:67:44:cd:f4:
         99:9b:b5:c7:35:da:35:7d:11:2b:24:ac:33:21:24:3c:7c:73:
         d6:a8:68:9e:d9:8f:23:2b:60:ef:33:b4:16:91:3f:1a:6e:13:
         7b:6d:91:ca:f5:e7:c2:9c:a7:e9:05:e7:e2:11:ba:82:f2:c5:
         7d:dd:bb:c9:3d:40:f5:89:79:12:54:bc:70:8b:63:1a:2c:6e:
         b5:1c:fc:16:7e:6c:af:54:e5:6b:9a:69:ea:ab:d7:ae:68:3e:
         a6:5f:36:99:5e:1f:64:50:74:9e:e5:9a:d9:38:50:0e:3e:1b:
         06:4d:29:d0:d8:51:9d:2e:a9:4d:5f:b2:f8:a1:e7:21:1b:09:
         da:85:b2:ee:a5:97:c4:0a:5f:01:d7:0e:1c:b4:92:33:8f:67:
         0b:50:2f:1f:79:c3:3e:62:bd:a3:b6:33:80:5f:e5:94:40:7b:
         02:a7:4a:7d:e2:82:c6:f5:0e:aa:6e:12:1e:0b:87:0d:45:30:
         cc:1c:2e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 15:42:07 2025 by rpki-client