Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File:                     IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier:          /+H2rzfG3au/pHC9kokaOGp9GYPrZyPxxOOWz8Lcnfo=
Subject key identifier:   D0:DC:7A:CD:FA:02:95:68:EA:1B:F6:5B:12:B8:31:60:64:F7:53:FF
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer:       /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial:       01975346BF716945D6E106675A103D054F71
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number:          1582
Signing time:             Mon 09 Jun 2025 06:00:34 +0000
Manifest this update:     Mon 09 Jun 2025 06:00:34 +0000
Manifest next update:     Tue 10 Jun 2025 06:00:34 +0000
Files and hashes:         1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
                          2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: 724Bp2fpZ4LmNPt53hQH2zSCJLcQNnb7S3bZteJBzyQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 02:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:53:46:bf:71:69:45:d6:e1:06:67:5a:10:3d:05:4f:71
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
        Validity
            Not Before: Jun  9 06:00:34 2025 GMT
            Not After : Jun 10 06:00:34 2025 GMT
        Subject: CN=d0dc7acdfa029568ea1bf65b12b8316064f753ff
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:06:27:2d:48:10:e1:f6:04:24:3c:ed:8b:18:
                    6f:aa:59:70:85:95:5b:37:d9:70:b1:bf:58:95:f1:
                    01:ab:a9:41:44:eb:f2:ef:06:4d:77:75:06:8f:9c:
                    a7:11:5d:6a:6a:84:cc:49:73:08:42:81:a7:7d:d9:
                    a1:db:46:6b:a5:21:f9:f5:f4:94:83:9a:af:12:be:
                    20:19:1c:63:c6:c4:fc:43:33:7f:18:6e:bd:5a:6b:
                    8a:29:a4:25:b0:01:4b:b7:b2:51:3d:6c:43:f5:ab:
                    53:f6:e9:e9:ff:a9:4e:eb:f2:72:e1:e6:79:15:f8:
                    a1:b7:b7:0b:6f:8d:6b:fe:f4:b5:71:95:f4:ed:31:
                    4f:0e:eb:d1:85:41:e4:29:62:94:87:ad:b9:00:61:
                    1b:89:6c:59:d4:e6:99:87:cf:1e:3a:fa:65:12:27:
                    35:34:0f:c7:e8:69:56:04:1f:bf:74:cc:12:85:20:
                    da:d5:20:ab:dd:fa:fb:4d:8c:7b:29:07:19:75:d7:
                    73:75:c9:c6:6f:83:00:b5:cf:63:f9:4b:1a:47:23:
                    d6:e6:7b:8b:96:f4:ff:86:a9:ab:24:c9:98:2e:59:
                    4e:2a:0b:cf:de:18:f0:16:81:e8:cd:f1:eb:e7:6b:
                    a7:ad:fa:af:3f:86:7e:7f:dc:9c:9a:f3:cc:70:74:
                    be:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:DC:7A:CD:FA:02:95:68:EA:1B:F6:5B:12:B8:31:60:64:F7:53:FF
            X509v3 Authority Key Identifier:
                keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         88:cb:5a:44:25:fc:5b:dd:ac:cc:ae:c9:b4:85:e2:e4:a3:29:
         0f:86:b5:ff:5a:d7:50:ce:95:90:08:27:b9:14:61:1f:4f:67:
         2b:0d:ee:f6:a7:81:32:73:24:e3:dd:69:af:f6:b1:8c:a3:d0:
         cd:18:30:15:01:8d:69:0e:d5:9a:36:da:8a:c1:a0:6d:c7:10:
         d3:74:94:b8:43:c5:fe:07:c8:36:ca:ab:ae:be:7a:aa:b7:40:
         f1:a7:93:02:bd:04:72:4c:ed:d7:ab:fd:66:4c:b4:53:20:86:
         d4:af:fd:8e:2a:ee:5b:ff:d7:eb:b7:2c:55:2d:62:b0:75:27:
         bd:2e:b6:d2:d1:3b:a9:fc:97:97:c3:32:90:bf:c5:1f:be:e4:
         e5:05:fc:a3:ed:5e:7f:01:bd:65:bd:b2:e8:28:79:fd:2c:3f:
         cd:37:f1:67:9c:07:04:fd:97:a1:3f:e0:96:71:7c:1c:45:75:
         9b:06:45:36:58:ac:cc:9c:70:75:4b:42:f8:d4:67:dc:12:77:
         cd:ac:1d:c4:ae:86:e0:7a:7e:1f:f2:56:27:a6:05:1c:ac:ef:
         6e:9f:19:d1:87:18:c3:b7:b8:f5:d0:5b:6b:8f:f1:7b:47:bd:
         8f:24:7a:38:7c:4b:e2:28:dd:6b:92:18:2c:09:7c:e0:c5:b0:
         ae:2d:92:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:34:24 2025 by rpki-client