Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
File:                     iJiSZOUPOa6IiuMnYQm7qALkWAE.mft (raw, json)
Hash identifier:          4XezzDZ009vrnTHNDtRnt6u4/trAkyuXdooPsNo9XGw=
Subject key identifier:   39:7B:AF:C6:46:16:A9:A9:92:06:B9:65:0C:D4:DC:1B:1B:A4:55:52
Authority key identifier: 88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01
Certificate issuer:       /CN=88989264e50f39ae888ae3276109bba802e45801
Certificate serial:       019766CD65B06FD3254D28EDDD897C6B491B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
Manifest number:          0223
Signing time:             Fri 13 Jun 2025 01:00:26 +0000
Manifest this update:     Fri 13 Jun 2025 01:00:26 +0000
Manifest next update:     Sat 14 Jun 2025 01:00:26 +0000
Files and hashes:         1: e7H9B5-pB3ikZ5-oh15fm0ggCqI.roa (hash: We6P0vvIkU060wWseVebnunaD4trxKPA+u+6dudIhmU=)
                          2: iJiSZOUPOa6IiuMnYQm7qALkWAE.crl (hash: XSS+w9qpTHc/CfBA7MvncnPWvBQUzB7vWH+AUjWm4J8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:66:cd:65:b0:6f:d3:25:4d:28:ed:dd:89:7c:6b:49:1b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=88989264e50f39ae888ae3276109bba802e45801
        Validity
            Not Before: Jun 13 01:00:26 2025 GMT
            Not After : Jun 14 01:00:26 2025 GMT
        Subject: CN=397bafc64616a9a99206b9650cd4dc1b1ba45552
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:0a:ca:06:df:c2:0a:c0:2c:bf:84:89:db:15:
                    ed:21:93:f1:24:51:c4:8c:64:a1:90:74:5b:0a:41:
                    d9:1f:7f:15:02:46:3f:e4:ca:49:ab:b5:52:72:df:
                    fb:1c:61:37:0e:89:dc:d4:c5:66:96:2c:78:26:cd:
                    e1:0c:58:8d:8e:21:19:95:c9:df:a8:43:4f:0b:0a:
                    03:db:7a:73:05:a0:ea:72:6f:f3:eb:bc:ff:5c:3e:
                    8b:01:a5:a2:e2:b2:6b:55:6b:28:e0:23:8e:8a:c0:
                    5b:52:78:04:14:06:ca:46:93:01:36:28:33:b5:e5:
                    5d:b2:9e:f9:56:71:fe:bf:f9:50:1f:05:76:ce:7d:
                    d4:ac:51:1c:56:db:a9:74:0b:c0:16:a5:5e:31:bb:
                    08:d8:e7:1c:ab:7f:bb:43:9e:77:40:8a:7f:81:c1:
                    ac:ed:80:ea:99:0c:8e:b4:b4:0a:96:35:46:23:10:
                    9f:11:09:02:86:61:f0:e9:02:e6:36:67:38:5e:c4:
                    10:5e:6e:2a:bc:f2:98:97:e6:31:07:8f:5f:5a:47:
                    9d:8f:1b:a9:de:d5:98:fa:18:a0:56:a4:44:fc:00:
                    1c:96:1f:1d:02:23:57:06:75:e8:61:53:39:78:3c:
                    30:03:df:6e:5f:a2:58:cd:09:36:35:a7:5d:76:3b:
                    34:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:7B:AF:C6:46:16:A9:A9:92:06:B9:65:0C:D4:DC:1B:1B:A4:55:52
            X509v3 Authority Key Identifier:
                keyid:88:98:92:64:E5:0F:39:AE:88:8A:E3:27:61:09:BB:A8:02:E4:58:01

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iJiSZOUPOa6IiuMnYQm7qALkWAE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/da/571244-9c9a-43ac-930c-370c80769831/1/iJiSZOUPOa6IiuMnYQm7qALkWAE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:06:c2:a9:47:bf:74:ed:92:f0:ab:0a:c9:b1:fb:91:3e:0c:
         e0:a9:44:91:1b:25:ec:23:77:01:63:f6:fa:a7:ea:46:49:ca:
         e9:a1:96:b9:f5:57:ef:03:e9:e3:9f:25:ec:f5:fe:e8:6d:72:
         f3:93:be:7a:c4:62:c1:c5:53:93:5f:af:4a:c6:4d:6d:6f:74:
         ca:20:19:09:b6:56:d0:2b:47:d8:ef:1a:34:9a:e2:93:7d:aa:
         d4:40:b8:fd:7a:ca:0e:47:ef:e6:32:c9:d2:6d:8e:d1:70:5e:
         0b:af:31:73:7e:55:f4:63:1e:c1:51:e1:e2:f1:83:a8:70:40:
         36:e9:8c:d9:28:07:e6:44:02:5c:5f:8a:e5:94:cd:80:3f:87:
         61:6e:75:80:63:87:98:69:5f:1e:a6:6f:8b:d3:23:11:77:b0:
         6e:f3:11:32:5a:c5:af:18:86:c4:0d:95:96:68:05:14:1f:f0:
         d7:af:d9:16:a0:ac:e9:09:62:8a:57:f2:3e:82:72:d3:08:88:
         d1:24:95:d1:59:a7:33:48:25:b4:61:23:6f:49:be:e5:1a:f9:
         1e:07:86:bd:f2:91:f2:ea:24:78:b9:07:4d:a0:bc:61:46:18:
         74:9d:be:55:c3:df:16:31:8c:13:76:d6:99:e6:60:6d:b0:98:
         38:fd:be:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 04:29:06 2025 by rpki-client