Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File:                     IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier:          zuJw/FphIYKIf8NlorAKo+6kR1mSJkqi6ZLsaYLBst0=
Subject key identifier:   F1:B3:F0:33:57:18:A3:CC:39:36:92:33:54:46:FB:64:B7:04:A2:61
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer:       /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial:       01975CEE907648B49F29FEB3524D1CBD44BC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number:          1587
Signing time:             Wed 11 Jun 2025 03:00:27 +0000
Manifest this update:     Wed 11 Jun 2025 03:00:27 +0000
Manifest next update:     Thu 12 Jun 2025 03:00:27 +0000
Files and hashes:         1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
                          2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: epzlbWjh7uStacMpk1iyKewyPlNovhff9VroYuyF8j8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 20:45:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5c:ee:90:76:48:b4:9f:29:fe:b3:52:4d:1c:bd:44:bc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
        Validity
            Not Before: Jun 11 03:00:27 2025 GMT
            Not After : Jun 12 03:00:27 2025 GMT
        Subject: CN=f1b3f0335718a3cc393692335446fb64b704a261
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:de:e8:e2:aa:ca:e3:92:98:2d:43:bd:ae:bc:
                    a9:33:e5:64:e5:60:ef:7b:d5:d1:72:69:fe:34:06:
                    70:91:3f:a0:9e:c4:45:21:e4:ef:d4:5e:da:69:b7:
                    d8:ea:f0:80:be:2f:b5:29:60:7a:16:32:3b:79:98:
                    20:d0:04:78:c6:34:d5:27:67:0b:34:4a:62:09:fc:
                    4b:87:ea:8e:fe:0f:39:bd:58:96:e9:ea:c5:eb:7b:
                    c0:d5:db:f9:37:d7:ee:c7:7d:fe:66:38:8e:cd:d6:
                    d3:3a:5b:e2:b4:7b:9b:72:56:8a:a7:86:51:90:b0:
                    4e:e3:d4:a5:31:37:b5:cc:dc:a7:c6:8a:56:d2:64:
                    42:26:b8:ba:3a:48:4b:58:ec:79:75:24:b5:86:2b:
                    1d:c5:e4:24:1e:b1:2b:54:dd:18:f3:79:0b:9a:de:
                    ab:25:31:e8:ca:88:1b:79:87:10:af:51:53:71:78:
                    42:ef:11:e2:33:24:90:05:25:1e:cd:1a:29:a9:cd:
                    d0:4a:d6:2a:3f:35:fe:f0:ea:cf:4c:00:f8:39:ac:
                    2a:f8:70:b0:c2:53:f3:95:92:30:a0:7c:0f:0b:f3:
                    fc:9a:cb:2a:88:19:4a:94:ca:f5:4a:32:28:0a:0e:
                    73:ed:b1:ee:82:cf:6a:37:9b:77:37:17:ba:3d:f1:
                    dd:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F1:B3:F0:33:57:18:A3:CC:39:36:92:33:54:46:FB:64:B7:04:A2:61
            X509v3 Authority Key Identifier:
                keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         44:60:42:b8:f6:75:21:2f:1d:3d:87:d0:5f:50:a2:dd:3c:53:
         91:93:55:f0:ae:c6:6b:a8:e4:d3:b0:93:92:73:d1:08:9b:89:
         0c:d5:ba:ca:78:54:8b:46:e2:ba:17:c6:0f:0b:7a:07:37:6d:
         b3:65:13:05:20:ef:74:9e:f5:76:6d:85:df:2c:57:c6:b4:db:
         94:26:2a:f9:8c:f7:f2:61:d2:dd:59:34:bb:38:a7:56:2a:50:
         cc:86:82:bb:aa:41:64:b8:31:18:a9:ba:a5:9f:e4:67:e8:ba:
         9d:32:3d:f6:db:5b:ce:75:4a:a0:a0:2d:9f:5d:22:32:86:a0:
         01:63:be:8d:bf:06:b8:16:c4:46:73:d1:c9:d9:2f:76:ee:4a:
         fc:f3:27:53:46:28:76:c3:37:24:ec:ce:da:50:01:d1:62:3b:
         fe:7e:a6:ec:32:7e:c8:e0:3a:d7:ff:fe:0e:ce:af:01:99:8a:
         6f:52:9e:73:f7:f8:48:e5:33:36:bc:0c:c7:da:09:5a:ce:c8:
         ca:42:82:3a:4c:b4:33:e0:3c:85:3a:3e:16:d6:36:d5:b9:88:
         e4:d0:e5:2b:21:02:3e:71:1d:d7:cf:61:d7:47:6e:d1:75:22:
         80:ec:b1:fe:fb:ee:95:0e:80:c9:6b:28:73:34:0f:53:c6:2d:
         30:9e:da:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 04:33:23 2025 by rpki-client