Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
File:                     Brft72GFhyPErevj7lqJ9wBY1f4.mft (raw, json)
Hash identifier:          OfKikBu5e6N+y5g+gYFU/ah9fXfHSB95MGwBjpmLCd4=
Subject key identifier:   49:B0:88:17:86:39:4D:D9:4F:8D:3D:92:5B:93:51:56:E6:99:C5:63
Authority key identifier: 06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE
Certificate issuer:       /CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
Certificate serial:       019752A23C256297F2C003754FF63CF0C529
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
Manifest number:          1582
Signing time:             Mon 09 Jun 2025 03:00:53 +0000
Manifest this update:     Mon 09 Jun 2025 03:00:53 +0000
Manifest next update:     Tue 10 Jun 2025 03:00:53 +0000
Files and hashes:         1: Brft72GFhyPErevj7lqJ9wBY1f4.crl (hash: 9Zeu0dCQ+qmMW18h1TufVzFuXaYjIXPF1F2b5GBOrBU=)
                          2: UkP4jKKKyGHBawn8RPGOoI0g86k.roa (hash: t1NCQU9kIDrxSOL+gI05c500j4/UZOaC1oFaRb7Gluw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 02:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:52:a2:3c:25:62:97:f2:c0:03:75:4f:f6:3c:f0:c5:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=06b7edef61858723c4adebe3ee5a89f70058d5fe
        Validity
            Not Before: Jun  9 03:00:53 2025 GMT
            Not After : Jun 10 03:00:53 2025 GMT
        Subject: CN=49b0881786394dd94f8d3d925b935156e699c563
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:83:67:71:4a:d8:b2:8d:3a:4a:36:1a:20:fa:
                    59:e8:97:64:06:4b:64:ae:af:78:62:dc:c6:6d:81:
                    33:8c:aa:7b:e9:2a:26:41:42:79:4e:da:5a:ed:34:
                    84:27:f5:b6:47:a0:c7:8b:db:b4:2a:9e:3a:47:21:
                    67:06:02:50:03:3a:d8:69:71:f4:33:6f:26:c8:6c:
                    b1:77:59:e3:e5:7c:6b:6e:bb:bc:16:77:3b:1c:23:
                    69:f7:d4:88:2c:ca:a7:86:b4:1d:83:bb:bc:51:04:
                    f5:b3:e5:38:8c:8d:21:df:73:22:a9:9f:b7:29:15:
                    8c:82:ca:e0:b5:c0:1e:1e:2f:27:93:6b:e3:66:4d:
                    c8:ed:47:09:37:09:9f:0a:b9:4d:0f:ce:93:57:a2:
                    34:b0:4a:9e:a0:f5:02:02:fe:14:b1:d6:30:ef:09:
                    2d:e5:0c:7d:6f:8a:ad:82:8a:bd:8f:33:87:15:49:
                    38:79:9d:b4:14:8b:08:2f:4c:f2:c7:58:5a:49:0a:
                    27:9a:7d:f0:54:3b:4f:2e:4b:cf:dd:10:68:54:42:
                    5a:57:bd:7a:1a:5e:34:2d:cf:20:1e:ec:f7:60:83:
                    6a:cd:93:4a:ae:c9:d7:bc:81:52:fc:e7:5b:5a:6d:
                    72:d0:ea:3b:32:44:e6:5d:7e:9f:58:cd:01:bd:7a:
                    69:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:B0:88:17:86:39:4D:D9:4F:8D:3D:92:5B:93:51:56:E6:99:C5:63
            X509v3 Authority Key Identifier:
                keyid:06:B7:ED:EF:61:85:87:23:C4:AD:EB:E3:EE:5A:89:F7:00:58:D5:FE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Brft72GFhyPErevj7lqJ9wBY1f4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/010ca1-5b30-4baf-831e-89551e8cce12/1/Brft72GFhyPErevj7lqJ9wBY1f4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d6:22:f1:a6:8f:72:c3:68:2d:3e:2b:3d:47:b4:eb:5e:0d:a8:
         30:ec:9a:3e:62:cf:7e:da:04:48:9e:19:40:bf:c5:4e:fc:94:
         ac:c6:2a:31:6d:32:38:80:9a:98:69:18:76:ce:cf:53:7a:3b:
         26:de:86:fc:81:b1:3d:ca:8c:0a:8b:c6:db:41:4f:38:1e:64:
         f4:e6:d6:c6:56:c0:95:ab:29:90:66:cb:7e:eb:ac:a8:83:9a:
         4b:a8:87:6c:9e:d1:8e:6d:70:1e:03:f2:11:31:a2:9e:b4:3b:
         47:69:91:aa:63:17:02:fa:47:f6:d0:2b:b2:91:c7:8a:b4:69:
         66:76:19:34:52:6f:0d:fa:f1:de:3a:d8:09:1b:72:0b:9a:df:
         ae:fe:be:f7:d6:d1:32:18:1e:7f:92:e8:c5:81:96:9f:ef:e3:
         09:fa:d5:54:2e:8d:c6:fb:89:f4:89:fd:d1:b2:7c:23:17:79:
         19:b1:00:53:b3:13:01:e2:b2:42:b5:ae:e1:fb:52:01:76:0e:
         79:10:3b:fa:5c:fd:be:8c:a5:1b:ec:58:96:ae:0e:87:c3:5c:
         15:cd:25:e8:74:78:ee:59:ac:c1:b7:03:95:fd:3c:ee:5c:6c:
         d9:2a:08:b3:a5:65:c7:6e:0c:59:47:bd:c7:62:a4:6f:47:0a:
         6a:46:09:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 12:47:47 2025 by rpki-client