Manifest

$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
File:                     3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft (raw, json)
Hash identifier:          FWyyPplNH7oMcfeuM+Vlp587H/ZWnTdEYXunu5FfbeA=
Subject key identifier:   DD:75:67:D1:B2:81:94:9E:59:DB:7C:89:33:60:05:01:AF:26:20:33
Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78
Certificate issuer:       /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
Certificate serial:       1D5DB2C8D07331B533BF3628EF0777DFB35CE63A
Authority info access:    rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
Subject info access:      rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
Manifest number:          02F8
Signing time:             Sat 14 Mar 2026 01:05:48 +0000
Manifest this update:     Sat 14 Mar 2026 01:00:46 +0000
Manifest next update:     Sun 15 Mar 2026 02:56:46 +0000
Files and hashes:         1: 326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa (hash: scCBjh8HfhV3GwKDOrHZF1YXj718at6+uNm0y/KBmOw=)
                          2: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (hash: Kgbp0+Zk4p3tpOkyAtCJ3HEWdnZBbzm3NgMcGrByxQs=)
                          3: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl (hash: y0FSJ4+DajYAqDDe9iWnEJ5BuDO4fn2usiUWovFWauY=)
                          4: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (hash: pRpvcvkpUIjn6KDjm+Ywf0niLgvvVoNWrBKMV64s3Gs=)
                          5: 326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa (hash: b4lO7qQITmIuTe+1DZpcfLD2H0yGfI8Xz4qwvBeBNzo=)
                          6: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (hash: onhCLB3gV3HdQhsHYazqCSyNdZ/2h865cbuFqj2YlvA=)
                          7: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (hash: fW3/1bM6uuAVh4/BqcyWFGfZeggD1zO77SW4GWfaw4U=)
Validation:               OK
Signature path:           rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl
                          rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl
                          rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Mar 2026 12:25:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1d:5d:b2:c8:d0:73:31:b5:33:bf:36:28:ef:07:77:df:b3:5c:e6:3a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578
        Validity
            Not Before: Mar 14 01:00:46 2026 GMT
            Not After : Mar 15 02:56:46 2026 GMT
        Subject: CN=DD7567D1B281949E59DB7C8933600501AF262033
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:9a:aa:50:e0:4a:69:08:9a:27:b8:7f:cf:5c:
                    ce:0a:90:da:a4:0f:9c:24:cf:f2:19:09:dc:87:ed:
                    00:5c:90:18:4a:0f:45:02:68:ab:4a:c3:f8:92:61:
                    c8:6d:db:9e:33:01:a5:20:20:9d:a4:71:9b:1a:42:
                    3b:6a:7e:b8:64:f4:1f:52:a1:94:f4:02:a4:a1:e6:
                    a0:1d:56:90:5f:78:bc:ec:39:9b:eb:c4:49:d3:46:
                    64:1e:35:ef:91:a9:ba:78:eb:01:24:d0:51:80:2d:
                    a4:ea:d3:fa:ac:94:29:03:34:f5:12:30:23:48:21:
                    03:73:b7:5b:50:be:63:59:78:d9:ab:4a:da:70:c3:
                    db:12:ca:84:e7:a0:c7:a8:60:47:be:40:97:ab:6d:
                    52:d2:81:39:9b:a2:6b:6c:f7:ca:b5:13:f2:80:52:
                    50:e4:73:91:43:62:df:ce:7b:69:78:9c:d8:c9:9f:
                    f3:94:44:c6:75:4f:2d:22:a2:38:13:6f:6a:bb:4b:
                    eb:7d:8e:3f:95:91:f5:60:a6:b1:67:d8:61:56:9c:
                    16:bf:52:b4:da:58:99:f0:2a:db:73:0c:7b:b1:ef:
                    db:df:9d:00:16:0e:11:20:f3:59:60:82:28:6c:72:
                    9e:81:09:cc:af:6d:55:8c:cf:06:c4:d2:a3:8e:70:
                    17:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DD:75:67:D1:B2:81:94:9E:59:DB:7C:89:33:60:05:01:AF:26:20:33
            X509v3 Authority Key Identifier:
                keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6f:ad:43:06:7a:32:c5:e1:26:8f:33:bc:a3:b1:f6:97:b6:b8:
         76:e3:25:eb:06:c0:ce:9a:3c:4c:ca:de:cd:09:d3:e5:3d:fc:
         97:a7:7f:d3:da:50:89:a6:f8:b9:ec:a6:24:e4:7b:25:19:7f:
         32:98:a7:d0:fd:06:de:d2:59:70:a8:ca:d8:2c:a1:52:8d:08:
         54:82:5b:27:fa:19:4a:1e:33:c7:45:52:fc:4b:cd:d0:b6:08:
         fb:4b:dc:a0:20:a7:f4:30:de:21:a8:79:91:fe:bd:9d:db:d1:
         76:81:60:b8:da:1c:1f:53:f7:71:10:27:d0:21:2b:d6:8a:2a:
         8f:ff:43:15:9d:07:fa:c9:90:13:8c:c4:b4:07:45:b9:3b:0e:
         ba:0b:18:a4:f3:65:10:11:f4:50:f2:73:a0:7b:a7:8f:1e:5f:
         0e:09:32:4b:30:07:8a:fb:7f:35:db:e0:59:f5:ca:26:1c:ff:
         d5:b8:c6:71:ef:4e:67:ca:38:69:ea:70:94:d3:f6:b6:a6:48:
         81:25:be:b8:80:d8:7a:c1:41:24:4c:1b:6a:ef:ed:4f:e4:23:
         8d:83:60:7a:95:9f:b3:e1:02:bb:45:e8:b3:b5:9f:ae:34:ec:
         b1:c4:90:26:25:16:71:dd:85:4d:09:5e:ef:b5:36:64:dc:55:
         6e:c5:a0:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----