Manifest

$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
File:                     3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft (raw, json)
Hash identifier:          eW07ZC+ITSbcsTbslZIWzCqi0+qlk1zie37R1P6mJHE=
Subject key identifier:   6C:F9:BA:CC:1B:BB:D4:1E:07:06:C2:94:11:7C:75:F8:9A:3B:C4:92
Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
Certificate issuer:       /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Certificate serial:       4B42ABBD9D7EEB9D1911AB071263F6C56744B82F
Authority info access:    rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject info access:      rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
Manifest number:          022E
Signing time:             Tue 16 Sep 2025 14:08:17 +0000
Manifest this update:     Tue 16 Sep 2025 14:03:17 +0000
Manifest next update:     Wed 17 Sep 2025 17:20:17 +0000
Files and hashes:         1: 326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa (hash: scCBjh8HfhV3GwKDOrHZF1YXj718at6+uNm0y/KBmOw=)
                          2: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (hash: pRpvcvkpUIjn6KDjm+Ywf0niLgvvVoNWrBKMV64s3Gs=)
                          3: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (hash: fW3/1bM6uuAVh4/BqcyWFGfZeggD1zO77SW4GWfaw4U=)
                          4: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (hash: onhCLB3gV3HdQhsHYazqCSyNdZ/2h865cbuFqj2YlvA=)
                          5: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (hash: Kgbp0+Zk4p3tpOkyAtCJ3HEWdnZBbzm3NgMcGrByxQs=)
                          6: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl (hash: Ylbf28TnnZWLu8KQKYG/VORfjAC0SnRlf3hSDEPlLJA=)
                          7: 326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa (hash: b4lO7qQITmIuTe+1DZpcfLD2H0yGfI8Xz4qwvBeBNzo=)
Validation:               OK
Signature path:           rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl
                          rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 17 Sep 2025 08:45:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4b:42:ab:bd:9d:7e:eb:9d:19:11:ab:07:12:63:f6:c5:67:44:b8:2f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
        Validity
            Not Before: Sep 16 14:03:17 2025 GMT
            Not After : Sep 17 17:20:17 2025 GMT
        Subject: CN=6CF9BACC1BBBD41E0706C294117C75F89A3BC492
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:04:60:3d:0e:eb:f3:5c:98:e3:72:d1:66:70:
                    59:b3:0a:97:64:81:0b:99:61:7d:27:e8:96:84:91:
                    ee:4c:76:4e:74:df:64:e4:32:c9:9f:9a:4b:a9:c7:
                    9f:42:f0:6c:56:fa:9a:1e:34:8a:76:0c:6c:d4:ee:
                    d5:96:b9:3a:19:51:37:3d:27:8d:07:fc:58:a2:44:
                    f1:69:5f:d1:b5:02:62:d4:cf:ba:ef:7b:d1:66:4d:
                    f7:73:c0:5c:e3:9d:d8:ad:c2:26:0c:15:b5:fa:0d:
                    4e:d9:71:e0:5d:61:12:f9:21:c3:4b:6e:ac:67:93:
                    a9:dc:bc:20:67:a0:54:23:17:b4:3b:71:c0:f3:4e:
                    5d:6c:1f:1c:30:ae:83:5b:e2:fd:96:1b:d4:cb:74:
                    5a:51:47:2f:b5:50:66:70:71:45:c0:51:bb:7c:63:
                    cc:d3:be:f1:f9:b1:d8:20:5b:1a:f2:b0:cb:39:18:
                    f7:f1:41:36:49:7d:f4:f8:7d:ad:45:16:51:14:07:
                    1b:d5:89:e8:d0:5c:dd:d5:5e:fe:1a:e1:21:27:58:
                    ca:42:b3:04:46:d1:29:5c:87:5c:7d:39:79:17:7d:
                    b8:b6:68:48:7e:89:7d:ef:a0:fb:97:cc:ef:7d:2f:
                    e6:ef:6a:5a:de:95:e2:0f:a5:c7:f7:f8:fd:76:1a:
                    ec:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:F9:BA:CC:1B:BB:D4:1E:07:06:C2:94:11:7C:75:F8:9A:3B:C4:92
            X509v3 Authority Key Identifier:
                keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7e:a8:b2:ac:63:ad:d8:75:3e:37:68:fa:e7:5c:cc:fe:d5:c7:
         d7:db:1e:48:f2:fc:56:aa:fa:b3:fa:fd:b6:e1:9e:15:0f:12:
         d8:d8:f5:ca:13:1d:f6:79:be:16:e6:7d:7e:c8:28:94:6f:00:
         50:d6:14:b7:27:3a:9f:0e:0c:ae:6d:f7:45:d2:c2:a5:db:83:
         eb:7f:81:65:a9:fe:1a:78:9a:4c:0c:fc:96:5c:3c:c0:83:56:
         b1:2d:84:82:96:aa:8f:a1:89:89:a6:95:23:12:9d:bc:11:fc:
         36:54:fc:74:ab:a9:a9:f9:6a:52:0e:0d:69:bd:ee:14:ab:63:
         14:36:ed:3b:fd:e4:e1:3b:af:a5:7c:55:6b:3e:4e:14:2d:6b:
         79:89:d6:06:84:ef:46:67:45:30:2e:a6:72:2c:9e:86:25:8c:
         65:0c:8a:9f:62:21:93:3f:8b:56:86:8d:b5:45:b7:75:b2:de:
         77:97:2a:cb:f9:12:23:ca:cb:f5:7e:3e:a9:4a:a7:72:2b:5d:
         7c:12:6e:a4:e7:1c:36:2b:09:82:9f:62:9a:23:8f:0e:02:9a:
         ea:b6:55:f0:96:1d:07:2e:44:bb:6c:b7:36:9d:6f:4a:75:32:
         cf:de:44:17:48:ee:82:8e:35:65:da:ba:59:af:01:c1:e7:0e:
         5d:04:ea:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----