Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File:                     IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier:          XU3Z0WK7z9Uon1f1jQP0v1Sa+Ey3SxW3MLyNXWoT0Qs=
Subject key identifier:   F4:31:79:71:EA:CE:F0:C4:B5:E7:6A:14:33:8C:5F:48:22:E1:CB:8F
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer:       /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial:       019759126A2326B24D05CF9AD0F90BD3D4B4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number:          1585
Signing time:             Tue 10 Jun 2025 09:01:08 +0000
Manifest this update:     Tue 10 Jun 2025 09:01:08 +0000
Manifest next update:     Wed 11 Jun 2025 09:01:08 +0000
Files and hashes:         1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
                          2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: 446+Ti9+w8MGmqeg4FRmuYxjSG1ddnvIRS37KLSOvaI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:12:6a:23:26:b2:4d:05:cf:9a:d0:f9:0b:d3:d4:b4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
        Validity
            Not Before: Jun 10 09:01:08 2025 GMT
            Not After : Jun 11 09:01:08 2025 GMT
        Subject: CN=f4317971eacef0c4b5e76a14338c5f4822e1cb8f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:d1:3f:b8:b5:00:46:99:a8:7f:7b:4d:40:c4:
                    2e:17:a7:2e:15:4a:24:cc:28:82:c2:1c:f7:fb:87:
                    f4:3a:99:26:20:f1:f7:73:1a:31:69:7d:c5:ee:6a:
                    02:aa:96:07:57:09:37:e9:2a:19:3b:d1:83:65:1c:
                    ff:70:60:e1:88:f5:46:37:ef:ec:67:6a:ab:23:4d:
                    8c:ab:27:26:d2:b8:93:b7:a9:34:f6:5e:be:ae:b3:
                    bd:dd:6f:87:f5:fc:c4:1a:04:7b:fa:8c:41:2d:4f:
                    cc:bb:ac:dc:db:03:43:72:89:75:76:32:64:c3:72:
                    59:9a:c1:86:9d:05:54:00:97:30:f2:cc:39:1e:5a:
                    eb:83:ef:a9:3f:8a:a7:90:d4:fe:44:c4:21:70:6e:
                    5f:d6:76:a8:53:1c:28:9b:ee:8e:a8:71:b2:fd:e4:
                    28:8f:5b:80:9b:2d:84:50:bf:46:db:9a:24:51:e3:
                    97:18:9b:72:65:73:28:d7:64:e7:28:ac:21:fa:a0:
                    72:63:8e:67:07:a1:6c:21:7c:aa:f2:7a:f6:e9:45:
                    3b:0f:06:82:71:f3:e5:75:2f:ea:77:f9:5f:b0:aa:
                    95:72:d6:a3:91:28:a4:9f:69:b6:4f:ad:4d:70:19:
                    32:8f:51:d1:b0:e1:db:78:8e:1e:a5:59:89:b9:04:
                    4c:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:31:79:71:EA:CE:F0:C4:B5:E7:6A:14:33:8C:5F:48:22:E1:CB:8F
            X509v3 Authority Key Identifier:
                keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         22:b5:5c:64:de:91:ea:e1:e8:e6:50:48:66:f1:7f:b4:2d:60:
         03:3a:9d:56:10:35:41:fc:16:54:a4:56:12:e9:96:66:bf:45:
         fc:b1:e7:0a:f9:a6:c0:13:77:4e:66:fe:22:e4:50:89:74:57:
         79:a1:f1:37:34:21:33:f1:ef:74:2e:8a:07:80:4a:c3:3f:95:
         07:b5:43:7d:b4:a7:dd:83:84:bb:cf:a9:c5:ad:c2:5f:48:8e:
         36:19:e1:ce:f5:eb:13:02:12:58:e6:a4:a3:1d:5e:ef:1f:c6:
         a1:9a:ce:3a:2c:76:79:6e:94:dc:c1:b9:15:80:35:f7:59:ff:
         ab:a9:76:13:0d:67:d7:aa:c7:c6:76:28:6e:ef:f7:50:55:ca:
         32:fb:7f:79:67:ab:50:b1:ba:fd:ec:fa:0d:63:b7:0d:c6:00:
         b0:09:1a:c6:4e:2d:7d:39:fc:8f:56:08:1b:02:aa:ec:9c:cb:
         1f:aa:4c:f7:d8:e5:1d:45:ec:09:f2:6b:a8:04:5f:bf:e3:72:
         4a:9d:12:88:3f:1e:6a:7a:97:67:df:bc:82:e4:3d:11:a9:cd:
         91:4c:0e:a5:de:97:d0:31:61:c6:60:7d:ff:e3:1d:84:fe:c4:
         26:13:98:ad:db:81:11:1b:bc:33:9f:44:4a:eb:f0:30:17:3a:
         bc:69:d0:96
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdZEmojJrJNBc+a0PkL09S0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyOWEwMzgxNzZjNzk2ZWE0ZjI3NjlmNmJlM2NhY2UxYTM1
OTc2MzQwHhcNMjUwNjEwMDkwMTA4WhcNMjUwNjExMDkwMTA4WjAzMTEwLwYDVQQD
EyhmNDMxNzk3MWVhY2VmMGM0YjVlNzZhMTQzMzhjNWY0ODIyZTFjYjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAstE/uLUARpmof3tNQMQuF6cuFUok
zCiCwhz3+4f0OpkmIPH3cxoxaX3F7moCqpYHVwk36SoZO9GDZRz/cGDhiPVGN+/s
Z2qrI02Mqycm0riTt6k09l6+rrO93W+H9fzEGgR7+oxBLU/Mu6zc2wNDcol1djJk
w3JZmsGGnQVUAJcw8sw5Hlrrg++pP4qnkNT+RMQhcG5f1naoUxwom+6OqHGy/eQo
j1uAmy2EUL9G25okUeOXGJtyZXMo12TnKKwh+qByY45nB6FsIXyq8nr26UU7DwaC
cfPldS/qd/lfsKqVctajkSikn2m2T61NcBkyj1HRsOHbeI4epVmJuQRM0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPQxeXHqzvDEtedqFDOMX0gi4cuPMB8GA1UdIwQY
MBaAFCKaA4F2x5bqTydp9r48rOGjWXY0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQt
ZGMyMzAxZmJiYjdjLzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQtZGMyMzAxZmJiYjdj
LzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIrVcZN6R
6uHo5lBIZvF/tC1gAzqdVhA1QfwWVKRWEumWZr9F/LHnCvmmwBN3Tmb+IuRQiXRX
eaHxNzQhM/HvdC6KB4BKwz+VB7VDfbSn3YOEu8+pxa3CX0iONhnhzvXrEwISWOak
ox1e7x/GoZrOOix2eW6U3MG5FYA191n/q6l2Ew1n16rHxnYobu/3UFXKMvt/eWer
ULG6/ez6DWO3DcYAsAkaxk4tfTn8j1YIGwKq7JzLH6pM99jlHUXsCfJrqARfv+Ny
Sp0SiD8eanqXZ9+8guQ9EanNkUwOpd6X0DFhxmB9/+MdhP7EJhOYrduBERu8M59E
SuvwMBc6vGnQlg==
-----END CERTIFICATE-----
Generated at Tue Jun 10 11:40:27 2025 by rpki-client