Manifest

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft
File:                     5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json)
Hash identifier:          RhYKbAB2yb9kjww03JspV85CzQt7VfzGSIvDRar+64U=
Subject key identifier:   EE:93:80:3D:28:21:5D:A5:C7:12:A2:3B:3B:9B:62:E3:07:54:6F:A2
Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3
Certificate issuer:       /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3
Certificate serial:       62FB314FADF28C561EEEF8E8C5AA092F66B74AFC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft
Manifest number:          038C
Signing time:             Thu 24 Jul 2025 00:42:05 +0000
Manifest this update:     Thu 24 Jul 2025 00:37:05 +0000
Manifest next update:     Fri 25 Jul 2025 03:30:05 +0000
Files and hashes:         1: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: QazYwAle1W56CjowsvOgHcBH+lX7v0HuL4+RXIsMQhQ=)
                          2: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=)
                          3: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: RhIjHNXayp0tS4DN32atD6aHafLrHUAz0HkdV618CRY=)
                          4: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: VqRU0PsdkYcQlfLEqZmAkEPw8yvo7sqFgCP45AzG5Gs=)
Validation:               OK
Signature path:           rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 24 Jul 2025 23:00:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            62:fb:31:4f:ad:f2:8c:56:1e:ee:f8:e8:c5:aa:09:2f:66:b7:4a:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3
        Validity
            Not Before: Jul 24 00:37:05 2025 GMT
            Not After : Jul 25 03:30:05 2025 GMT
        Subject: CN=EE93803D28215DA5C712A23B3B9B62E307546FA2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:c5:6b:5a:26:3b:69:b2:ee:80:6c:6f:8b:14:
                    7a:e7:77:4e:22:0c:21:20:07:c3:b6:6f:26:13:54:
                    6e:78:8b:a1:01:f4:72:ae:c7:ef:d4:b1:5e:a2:76:
                    c7:7d:34:e5:d6:6f:1d:c2:2a:44:e6:45:22:28:66:
                    52:fa:81:16:f7:d6:23:a3:4d:c0:e0:1e:ee:6e:b3:
                    83:9c:41:9e:ce:de:6e:7d:20:3b:86:19:ef:01:55:
                    0e:20:8e:a6:dc:65:41:66:55:b1:aa:de:01:9f:60:
                    ec:ef:11:4c:6c:bf:6a:38:45:9b:15:54:d5:4b:28:
                    77:3d:9f:70:43:93:73:d4:ac:a7:07:64:16:5f:15:
                    03:03:34:41:ea:8b:99:8b:c7:ce:7e:72:0b:b6:40:
                    51:e9:1e:ee:f9:66:b2:fa:ed:ce:75:93:04:f7:6e:
                    9d:46:c0:4f:56:f1:fe:fc:cd:f3:59:31:3c:54:00:
                    0f:ad:44:23:fb:12:c0:22:4d:b5:e4:4a:5b:50:44:
                    79:8f:a6:ef:ec:46:1d:c9:f9:66:df:14:b4:8d:22:
                    ec:08:59:ee:56:d7:e2:02:a0:d3:4d:08:45:be:e3:
                    f1:84:c0:d4:d3:f9:8c:24:e9:93:6e:94:b2:99:ee:
                    a7:48:62:d2:55:c5:f6:05:9f:82:e1:ee:62:fe:90:
                    77:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:93:80:3D:28:21:5D:A5:C7:12:A2:3B:3B:9B:62:E3:07:54:6F:A2
            X509v3 Authority Key Identifier:
                keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:19:6c:ea:83:3c:17:26:f3:30:56:fe:4d:1b:79:c1:4c:02:
         01:6d:ee:f3:39:69:17:17:1d:29:92:82:eb:26:dc:cd:20:c3:
         99:3e:1d:26:33:3d:31:7b:1f:24:25:ec:65:21:65:9b:a6:ff:
         b5:37:99:5f:9d:95:a5:52:0e:b7:ba:ee:98:a6:92:d3:cb:e7:
         42:23:2a:2d:62:43:34:44:d6:19:35:2e:46:6a:b4:97:8e:cd:
         28:7c:4f:23:0b:df:8f:98:a0:3d:af:30:1d:14:d9:a4:a8:31:
         f3:8c:29:d5:30:32:f0:54:8f:f0:20:ab:48:43:bc:49:1b:85:
         39:eb:b8:b8:94:d0:7b:48:ff:be:7c:5f:48:4e:a3:24:2e:53:
         54:61:fb:31:82:52:9c:9a:21:a9:8b:41:f9:4a:38:f4:8e:0b:
         ec:67:67:aa:4f:90:3e:db:a6:3c:cf:6f:e9:1d:44:97:5a:88:
         ef:61:cf:bc:4a:fb:01:2e:fc:81:4a:fb:6d:ca:7e:53:5d:fa:
         e6:f9:b3:0e:c9:ef:95:c5:55:3a:07:00:52:c1:12:ee:ec:10:
         ad:d6:7f:b1:a5:aa:25:f6:04:41:5b:aa:8d:43:38:2a:96:c1:
         96:e7:46:57:04:50:f5:d3:91:d6:b6:0a:c5:74:b4:38:5e:be:
         12:fa:b8:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 24 04:51:09 2025 by rpki-client