Manifest

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft
File:                     5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json)
Hash identifier:          Pkp3FU0q+tNXAWb3KO3dQuUxY+MtJmUwXn5Saxyy9N8=
Subject key identifier:   78:C6:A5:9C:85:70:45:6B:40:8F:07:00:6E:8D:32:C9:86:3F:9B:5D
Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3
Certificate issuer:       /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3
Certificate serial:       5818FBB18EC5FC68C0173B27E69331316612BBED
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft
Manifest number:          038A
Signing time:             Tue 22 Jul 2025 09:31:55 +0000
Manifest this update:     Tue 22 Jul 2025 09:26:55 +0000
Manifest next update:     Wed 23 Jul 2025 13:03:55 +0000
Files and hashes:         1: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: yk7pLeo/QbI1K3CKaVSqC6dSiFolCyLR7X0T4Dp2mNc=)
                          2: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: VqRU0PsdkYcQlfLEqZmAkEPw8yvo7sqFgCP45AzG5Gs=)
                          3: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: RhIjHNXayp0tS4DN32atD6aHafLrHUAz0HkdV618CRY=)
                          4: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=)
Validation:               OK
Signature path:           rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 23 Jul 2025 08:00:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            58:18:fb:b1:8e:c5:fc:68:c0:17:3b:27:e6:93:31:31:66:12:bb:ed
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3
        Validity
            Not Before: Jul 22 09:26:55 2025 GMT
            Not After : Jul 23 13:03:55 2025 GMT
        Subject: CN=78C6A59C8570456B408F07006E8D32C9863F9B5D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:e6:fa:8c:1a:2c:af:56:b1:b6:1b:32:35:98:
                    ea:18:fb:88:52:f0:52:cf:75:c2:2e:c3:33:bf:a4:
                    ff:fe:b3:75:58:bc:07:a2:7d:09:55:e5:19:0d:d1:
                    37:7b:a1:70:db:50:9f:8f:43:bb:5f:06:75:17:92:
                    56:29:29:e4:81:e8:7f:f6:62:d5:4e:ac:19:cb:9e:
                    9c:c9:b9:fa:15:ca:59:ca:8a:81:39:65:24:2f:26:
                    8a:1a:20:51:d1:2a:14:e3:93:74:1c:a3:41:ce:43:
                    29:e1:b5:08:9d:0f:07:c5:4c:61:6a:c8:f2:12:96:
                    f3:c3:13:6f:89:19:73:0a:3c:47:f9:ad:14:f6:9a:
                    c9:ac:d5:db:2f:68:49:a0:53:87:31:d4:28:c5:39:
                    69:7b:66:f6:05:a2:ec:e8:7d:0c:34:76:0c:bd:b5:
                    d7:0b:2d:8f:ce:b7:3f:40:d1:11:97:df:40:c1:e4:
                    a7:76:5f:b6:fe:b1:eb:ef:d7:80:12:07:2b:c6:3a:
                    a1:37:ac:58:dc:b4:46:34:2b:b9:85:a3:9a:f2:4d:
                    1f:df:1a:fb:7b:da:23:bf:c6:60:5c:6d:ac:2c:f6:
                    2a:1d:6b:57:b2:68:06:f5:07:b6:f8:1e:ae:85:73:
                    fb:63:c4:1f:25:5b:f6:01:41:44:86:49:fc:d3:38:
                    2d:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:C6:A5:9C:85:70:45:6B:40:8F:07:00:6E:8D:32:C9:86:3F:9B:5D
            X509v3 Authority Key Identifier:
                keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3e:a4:7c:1a:f6:b7:e2:91:66:87:d0:f6:5b:1d:3e:97:9c:af:
         61:7e:b9:01:6a:9c:81:2e:07:38:3e:2c:28:2b:50:51:b4:b2:
         68:63:4f:6b:a5:ae:c6:bc:ff:75:35:3d:de:c0:c2:bc:8c:a7:
         13:5b:ac:c1:d2:0c:92:fe:7e:89:0c:76:6d:49:dc:b5:9e:d1:
         e2:09:cb:02:09:09:f0:6e:6d:ce:c5:55:a6:1b:16:d3:67:b7:
         da:03:01:ef:c9:fc:8c:0c:47:18:75:fb:9b:c0:e2:15:22:2a:
         83:fb:64:8d:0b:33:fa:ff:4e:d9:e2:16:91:12:93:02:ae:96:
         e0:26:be:98:40:ed:37:90:0e:66:8d:33:fe:8f:22:0b:ee:a1:
         36:ca:a1:98:0b:83:aa:ed:85:c3:3f:af:03:58:c6:2c:b3:c3:
         30:1d:dd:3d:bf:c2:30:6a:8b:a9:25:45:dd:1c:e8:fc:4d:5d:
         c3:2b:82:de:a4:41:fb:c8:20:a9:34:e1:1e:4c:a3:9f:64:18:
         7b:fc:e5:9c:98:e0:c6:97:07:60:d0:ff:22:94:8b:ca:dc:ee:
         f3:4c:e6:fc:d7:90:19:f3:f3:98:6d:1c:09:9a:16:c3:b0:ad:
         e7:8d:89:c1:df:8f:2e:15:57:3a:98:31:e0:7f:59:0e:63:25:
         df:93:43:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 22 11:45:04 2025 by rpki-client