Manifest

$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
File:                     3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft (raw, json)
Hash identifier:          Tt4BA0i2383C+Xb6p7VWxy5W0xs2StrCaljrzLOoauo=
Subject key identifier:   03:7F:96:82:C2:68:59:0B:95:72:19:7E:21:85:ED:57:9F:1C:14:10
Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
Certificate issuer:       /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Certificate serial:       5B87D389F801A469C84B47A0C75B16506142883D
Authority info access:    rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject info access:      rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
Manifest number:          0372
Signing time:             Sun 14 Jun 2026 11:56:01 +0000
Manifest this update:     Sun 14 Jun 2026 11:51:01 +0000
Manifest next update:     Mon 15 Jun 2026 15:03:01 +0000
Files and hashes:         1: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl (hash: wYa6yZ6gxEvKDC233jPTYWsQEp5BOXt7NqvUWFo9bQE=)
                          2: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (hash: vn32w0zGgfB0cVJZQUH0tGQAvf+HZ/StuvYLZuELll0=)
                          3: 326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa (hash: +Pw2Pz/niLR0OIvDdEcfjmpFskGwMua2flzbLEwL+Go=)
                          4: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (hash: udhj+Cj6LdKS6F7VmXpps98C6UmzFOStEjpktiC8S+w=)
                          5: 326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa (hash: 8j902cWXOhTuCO690tGBwZ7dH1WqGBRJ8B21eNCGG6w=)
                          6: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (hash: AvPgJpOsI1TploqZ0/2ASRnaOVLSsJ7W3kE96A2TVTo=)
                          7: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (hash: KSgTOOL8ZdXrf0lBxQkVAAr95/tmOBwkp7oTrpzhA3k=)
Validation:               OK
Signature path:           rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl
                          rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 15 Jun 2026 15:03:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5b:87:d3:89:f8:01:a4:69:c8:4b:47:a0:c7:5b:16:50:61:42:88:3d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
        Validity
            Not Before: Jun 14 11:51:01 2026 GMT
            Not After : Jun 15 15:03:01 2026 GMT
        Subject: CN=037F9682C268590B9572197E2185ED579F1C1410
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:ae:61:7d:8e:f2:93:7b:92:18:5c:60:e6:23:
                    33:f6:0b:c2:5b:85:23:b5:b0:da:e6:5a:24:c7:72:
                    1d:db:57:7d:7c:3b:6c:50:75:4a:e8:03:42:70:ba:
                    49:29:8f:9f:4a:4e:c3:f8:bc:d1:b3:eb:4c:9a:e2:
                    85:f3:fa:27:c5:d1:80:11:d0:52:3b:ec:9d:f2:1f:
                    fe:e3:fe:b0:52:35:aa:2d:9f:03:8e:94:54:b4:0f:
                    1e:76:24:49:1f:77:51:dd:e0:59:93:d7:de:08:65:
                    a0:7d:4f:3e:66:c7:3c:35:29:af:8a:cd:d9:a4:a8:
                    0b:8a:0a:78:8d:0a:8b:e6:46:8f:30:c4:9e:f3:32:
                    7f:3b:f7:bd:ef:0c:42:02:a9:b1:e0:c2:e0:34:c1:
                    56:87:59:4b:16:95:c0:ee:86:bd:bd:43:25:57:4c:
                    a8:28:54:09:a1:ca:55:94:7c:e1:68:f1:c9:7b:b7:
                    b8:47:f2:2c:eb:15:b3:79:cc:21:f6:64:b2:27:bf:
                    fe:31:47:db:65:94:2c:f5:cb:4b:17:42:90:b8:aa:
                    47:60:ec:d2:42:27:e1:0e:e9:ee:8d:a1:bb:38:5e:
                    26:1c:6c:28:c7:a0:01:06:2e:c3:2c:27:bf:7e:98:
                    9f:d6:a9:5b:28:6c:cd:10:1b:05:dd:d1:6c:40:ba:
                    3d:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:7F:96:82:C2:68:59:0B:95:72:19:7E:21:85:ED:57:9F:1C:14:10
            X509v3 Authority Key Identifier:
                keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         32:a7:41:f7:24:68:dc:21:9a:1f:5c:83:64:b2:f7:7d:78:6a:
         d2:13:ad:c1:a4:e5:42:42:9a:fd:e9:5d:81:f5:7c:08:80:fc:
         a3:43:ac:e1:05:63:84:5f:4c:61:68:00:43:e4:31:e2:49:62:
         25:69:f1:7d:7c:26:3d:da:fe:35:7c:1d:d3:e3:04:49:3d:97:
         0e:66:66:ef:1d:43:d4:4b:61:14:7c:ba:f3:f9:80:e1:40:30:
         f3:83:c6:47:62:2f:ff:a3:e8:cb:00:bf:76:6e:9e:df:27:57:
         d4:93:a1:ac:ff:d4:7a:2e:f8:e6:c7:52:7f:b1:fe:b3:f5:65:
         4a:8f:a2:57:4a:fd:37:16:f8:3d:05:e5:b1:12:4f:c8:3f:e7:
         4a:88:67:e3:3d:ef:42:54:8d:12:e3:f8:0a:36:24:21:f9:18:
         50:70:19:f6:0e:06:17:6c:50:52:25:52:10:5d:5e:1f:90:19:
         32:ba:21:71:43:34:0c:29:a0:ca:4a:ba:85:e0:9c:51:18:eb:
         62:f5:ad:ce:74:f5:6a:d6:b8:68:68:37:2d:5d:e6:8b:72:c6:
         2f:d0:bb:a6:36:7a:dd:51:b9:e5:cd:94:c3:5b:d5:63:f5:ee:
         c8:45:d2:a9:12:f5:ce:fd:9c:41:3e:65:b8:cb:94:76:d3:b8:
         ed:e7:a2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----