Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
File:                     IJPjg7LMUtXsow_rEml1k8nHiKA.mft (raw, json)
Hash identifier:          qdWRr0noqVQ2cd/YiSECrQGQsypxBiXO9THxsYpGdgY=
Subject key identifier:   42:5E:4A:7E:E2:D0:DC:E1:67:8D:45:86:C3:B4:33:12:52:DE:85:44
Authority key identifier: 20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0
Certificate issuer:       /CN=2093e383b2cc52d5eca30feb12697593c9c788a0
Certificate serial:       0198744FD412D6CD6F4E84719FB13904CB28
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
Manifest number:          1616
Signing time:             Mon 04 Aug 2025 09:00:45 +0000
Manifest this update:     Mon 04 Aug 2025 09:00:45 +0000
Manifest next update:     Tue 05 Aug 2025 09:00:45 +0000
Files and hashes:         1: IFpZrxJhl8wQt7Uq0qRwzYFnZJk.roa (hash: eoMtlnp1ZLGeorMDixEuqh0nobwLwy70mhjbtsKxD5o=)
                          2: IJPjg7LMUtXsow_rEml1k8nHiKA.crl (hash: HS0nZpWG6CcYAI+FuuXWAEGZN+xDK6mUM5anSc6I9gc=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 05 Aug 2025 03:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:74:4f:d4:12:d6:cd:6f:4e:84:71:9f:b1:39:04:cb:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2093e383b2cc52d5eca30feb12697593c9c788a0
        Validity
            Not Before: Aug  4 09:00:45 2025 GMT
            Not After : Aug  5 09:00:45 2025 GMT
        Subject: CN=425e4a7ee2d0dce1678d4586c3b4331252de8544
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:41:39:9e:ae:58:0b:4a:10:fd:d0:76:b4:ce:
                    ef:16:f0:eb:ad:e1:dc:1e:3a:5a:e7:24:0e:19:ca:
                    7e:fe:96:01:2a:34:7e:3d:c4:58:53:29:03:98:77:
                    ae:4f:22:84:5b:bd:41:fe:30:da:8f:43:82:14:d2:
                    99:f3:0a:b7:0b:b2:7e:ed:31:8c:37:b1:1d:5e:dd:
                    a8:08:aa:ab:97:b6:a1:93:aa:2b:4b:2e:fd:1a:9f:
                    b6:5f:ca:96:62:23:ef:4a:47:6d:ee:b2:17:f3:fd:
                    b0:0f:2e:15:c3:e9:a4:2a:6f:98:66:f1:0c:b1:c9:
                    26:ac:87:20:d5:e2:db:68:de:c3:ca:f9:e8:38:d8:
                    b6:75:3c:b0:e3:6f:92:21:df:22:32:71:1f:4a:5a:
                    de:aa:5c:04:00:bb:f4:e0:a5:ce:96:d5:b6:b2:c6:
                    3c:fc:fe:d3:ad:65:25:ee:4a:39:51:af:e9:85:19:
                    4e:00:c4:94:be:36:e0:e6:61:ec:f0:11:92:ec:29:
                    b7:50:bf:ba:6b:04:14:c3:e7:49:8a:d6:4f:51:30:
                    55:d3:a2:0f:b4:a2:86:ff:bb:18:d3:37:f0:cf:80:
                    4e:fd:69:25:33:53:51:da:95:c9:64:a7:73:eb:b0:
                    fe:0c:02:96:98:e2:11:dc:69:e4:7e:59:a5:c6:3f:
                    db:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                42:5E:4A:7E:E2:D0:DC:E1:67:8D:45:86:C3:B4:33:12:52:DE:85:44
            X509v3 Authority Key Identifier:
                keyid:20:93:E3:83:B2:CC:52:D5:EC:A3:0F:EB:12:69:75:93:C9:C7:88:A0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IJPjg7LMUtXsow_rEml1k8nHiKA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/973136-09ab-4c83-8f3c-04534ebce35e/1/IJPjg7LMUtXsow_rEml1k8nHiKA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:3c:1a:b2:a8:0c:0e:46:48:06:88:62:fc:fd:c6:55:66:0a:
         4b:e8:3e:38:30:87:47:7d:a8:d4:9c:00:c1:f3:84:f6:cd:b4:
         3d:90:28:af:d5:e3:18:1f:a2:e4:52:fe:de:b2:d3:ed:1b:b1:
         f8:ec:a0:1c:03:63:7a:24:32:22:36:3b:31:ee:b0:12:c8:77:
         94:8c:45:eb:b3:bd:fe:40:2c:85:43:66:be:0d:f2:0b:b4:40:
         c2:5f:19:89:77:8f:1e:0a:d2:53:6f:13:7a:72:96:c0:b3:b3:
         15:90:72:a7:3e:22:4a:42:09:32:b2:60:4d:5b:2c:c5:80:ce:
         e5:47:be:34:7d:c3:ba:7d:91:3e:d3:cf:b0:cf:cf:0b:29:5d:
         60:d4:66:72:c1:00:18:86:1d:38:ff:27:b9:e9:ec:bf:22:dc:
         09:ad:fe:39:50:00:5a:e3:e2:74:5a:24:bd:24:ea:42:1a:67:
         d4:11:30:f1:b6:79:ff:44:fa:30:31:66:1a:92:c3:0f:c7:3b:
         05:c2:0e:47:73:38:82:bf:b3:d3:e0:76:05:2f:3c:6c:2d:d6:
         64:dd:bd:fc:bf:da:db:23:cd:cd:fc:cf:56:e5:43:88:af:31:
         98:a2:d1:0b:cf:8a:c0:19:53:d5:64:11:59:77:5a:5d:65:b6:
         b8:8c:87:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:04:10 2025 by rpki-client