Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
File:                     IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft (raw, json)
Hash identifier:          8JyNmu/rEWHufNvBal8Jg/ZF3kg7kfsfFmR6pchYLXY=
Subject key identifier:   AA:6E:4E:F6:A2:2A:56:52:2E:B3:E1:94:72:61:BC:2E:AF:73:8B:C7
Authority key identifier: 22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34
Certificate issuer:       /CN=229a038176c796ea4f2769f6be3cace1a3597634
Certificate serial:       019760CBB9274D845C8A6F197FFB6A6E2EA6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
Manifest number:          1589
Signing time:             Wed 11 Jun 2025 21:00:53 +0000
Manifest this update:     Wed 11 Jun 2025 21:00:53 +0000
Manifest next update:     Thu 12 Jun 2025 21:00:53 +0000
Files and hashes:         1: Hix749q65sYikumyIiO2w3pF6Ac.roa (hash: N0R4AArriY/KzHOEs+CuI34MlSMnkBHaO9k0W7jdIBQ=)
                          2: IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl (hash: 03js8ZK3zkja1dvNB4Vyjo+8zpxfLttMGWWBrLyzGJA=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 21:00:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:60:cb:b9:27:4d:84:5c:8a:6f:19:7f:fb:6a:6e:2e:a6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=229a038176c796ea4f2769f6be3cace1a3597634
        Validity
            Not Before: Jun 11 21:00:53 2025 GMT
            Not After : Jun 12 21:00:53 2025 GMT
        Subject: CN=aa6e4ef6a22a56522eb3e1947261bc2eaf738bc7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:13:1e:b5:09:85:57:62:fc:4a:76:28:38:45:
                    fc:a6:f1:7b:d8:98:f3:bd:69:01:da:e2:e3:f5:43:
                    57:5c:c1:a7:6c:6a:66:a0:48:a0:47:64:58:2b:b9:
                    09:2d:14:f3:e7:8d:b6:57:ea:34:3e:b8:e5:e9:e5:
                    5e:ea:3c:85:1a:be:d2:4d:fe:cf:ff:46:17:c8:91:
                    f8:c4:25:69:96:f1:b7:ac:94:2a:ae:a0:8b:91:71:
                    c6:09:76:2b:f9:5a:82:2c:7f:08:0d:67:9e:2f:47:
                    c2:ce:3c:0c:b7:4d:e0:bc:e5:05:eb:27:8d:7c:d9:
                    10:03:32:da:27:b8:98:70:07:fb:cc:a6:8d:0a:4d:
                    1c:58:57:8c:0b:3a:bb:51:55:da:bd:37:32:76:b6:
                    0c:53:9f:a5:d7:06:d0:cb:83:19:c4:59:8a:bd:07:
                    30:a3:a6:78:67:84:82:3b:9e:5b:72:3b:bd:ea:8f:
                    cd:8e:94:7c:b0:d2:cb:70:23:1d:e6:fb:d4:79:c5:
                    64:30:d5:ae:06:ac:4d:f8:73:3d:aa:16:28:ed:b1:
                    ef:c1:08:39:6f:82:47:43:7c:e6:e9:ec:4e:20:82:
                    30:40:6a:e0:a7:af:fb:c9:f7:e6:6b:7c:cc:ea:a9:
                    45:dc:86:07:4a:fb:75:d7:a8:1b:05:80:36:51:ac:
                    b0:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:6E:4E:F6:A2:2A:56:52:2E:B3:E1:94:72:61:BC:2E:AF:73:8B:C7
            X509v3 Authority Key Identifier:
                keyid:22:9A:03:81:76:C7:96:EA:4F:27:69:F6:BE:3C:AC:E1:A3:59:76:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IpoDgXbHlupPJ2n2vjys4aNZdjQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/de/3b5f4e-93ff-4dfb-b02d-dc2301fbbb7c/1/IpoDgXbHlupPJ2n2vjys4aNZdjQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         54:d5:3c:d7:04:69:cd:6b:9f:3b:9b:72:90:f9:4c:5a:7b:42:
         6d:1d:89:94:70:f9:8f:4e:f5:5e:57:9a:55:f6:9f:43:06:3d:
         5e:ba:14:93:55:33:de:f6:90:96:55:ff:c9:d4:f9:6a:ae:dd:
         dd:75:d0:07:65:9b:bd:5a:c8:1b:4c:f5:b1:e9:5e:8f:2b:f8:
         f0:34:84:a4:ee:5f:cb:0b:27:66:af:50:f2:66:c4:6d:ea:ad:
         4a:5f:79:7c:44:2b:1e:9f:84:c9:25:ce:c1:f2:ce:7e:bb:0d:
         62:cf:cd:d1:33:a0:e2:0d:06:ab:9d:04:c3:ca:91:28:1e:df:
         3d:0d:e2:1e:fd:3a:4c:a2:c5:56:9d:c0:c4:6e:aa:37:10:e4:
         b6:4f:64:8e:49:98:98:24:bf:2e:c0:9c:04:74:9c:a5:76:19:
         61:ac:0d:9c:68:de:b3:86:84:ec:ac:49:5a:7d:b8:52:f6:85:
         2a:a4:c4:e2:84:b1:01:fe:57:a5:a7:d9:47:ba:f4:92:5b:01:
         b8:24:75:4f:8c:12:ac:fb:92:a8:e7:af:03:60:18:ef:a8:a6:
         12:88:4a:46:28:39:58:30:c1:f6:fb:02:42:1f:b1:29:f3:b0:
         13:a0:f3:cc:56:cf:34:dd:04:96:08:da:d4:c4:aa:39:26:0f:
         20:99:23:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdgy7knTYRcim8Zf/tqbi6mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyOWEwMzgxNzZjNzk2ZWE0ZjI3NjlmNmJlM2NhY2UxYTM1
OTc2MzQwHhcNMjUwNjExMjEwMDUzWhcNMjUwNjEyMjEwMDUzWjAzMTEwLwYDVQQD
EyhhYTZlNGVmNmEyMmE1NjUyMmViM2UxOTQ3MjYxYmMyZWFmNzM4YmM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhMetQmFV2L8SnYoOEX8pvF72Jjz
vWkB2uLj9UNXXMGnbGpmoEigR2RYK7kJLRTz5422V+o0Prjl6eVe6jyFGr7STf7P
/0YXyJH4xCVplvG3rJQqrqCLkXHGCXYr+VqCLH8IDWeeL0fCzjwMt03gvOUF6yeN
fNkQAzLaJ7iYcAf7zKaNCk0cWFeMCzq7UVXavTcydrYMU5+l1wbQy4MZxFmKvQcw
o6Z4Z4SCO55bcju96o/NjpR8sNLLcCMd5vvUecVkMNWuBqxN+HM9qhYo7bHvwQg5
b4JHQ3zm6exOIIIwQGrgp6/7yffma3zM6qlF3IYHSvt116gbBYA2UaywWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKpuTvaiKlZSLrPhlHJhvC6vc4vHMB8GA1UdIwQY
MBaAFCKaA4F2x5bqTydp9r48rOGjWXY0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQt
ZGMyMzAxZmJiYjdjLzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS8zYjVmNGUtOTNmZi00ZGZiLWIwMmQtZGMyMzAxZmJiYjdj
LzEvSXBvRGdYYkhsdXBQSjJuMnZqeXM0YU5aZGpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVNU81wRp
zWufO5tykPlMWntCbR2JlHD5j071XleaVfafQwY9XroUk1Uz3vaQllX/ydT5aq7d
3XXQB2WbvVrIG0z1selejyv48DSEpO5fywsnZq9Q8mbEbeqtSl95fEQrHp+EySXO
wfLOfrsNYs/N0TOg4g0Gq50Ew8qRKB7fPQ3iHv06TKLFVp3AxG6qNxDktk9kjkmY
mCS/LsCcBHScpXYZYawNnGjes4aE7KxJWn24UvaFKqTE4oSxAf5XpafZR7r0klsB
uCR1T4wSrPuSqOevA2AY76imEohKRig5WDDB9vsCQh+xKfOwE6DzzFbPNN0Elgja
1MSqOSYPIJkjVQ==
-----END CERTIFICATE-----
Generated at Thu Jun 12 03:43:33 2025 by rpki-client