Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File:                     3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier:          TkEuBPzrfxKfdxwkkWeVXk6CAHMhJcjzqHmwydBdjV4=
Subject key identifier:   B4:2E:EC:95:96:75:1A:1E:F4:56:70:0F:53:4C:2B:A9:B5:63:3F:32
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer:       /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial:       019760CB6B1815E9942D4CA75D1ECFB82BF2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number:          081C
Signing time:             Wed 11 Jun 2025 21:00:33 +0000
Manifest this update:     Wed 11 Jun 2025 21:00:33 +0000
Manifest next update:     Thu 12 Jun 2025 21:00:33 +0000
Files and hashes:         1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: gdGoPn00qOIgaG5CnyLq7tQrjK4rmBklDnybd23wf6Q=)
                          2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 21:00:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:60:cb:6b:18:15:e9:94:2d:4c:a7:5d:1e:cf:b8:2b:f2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
        Validity
            Not Before: Jun 11 21:00:33 2025 GMT
            Not After : Jun 12 21:00:33 2025 GMT
        Subject: CN=b42eec9596751a1ef456700f534c2ba9b5633f32
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:bc:40:a4:78:ec:43:4f:cd:ed:e8:d1:66:61:
                    a2:89:e8:51:2c:11:f8:6f:d6:b6:ca:89:97:31:7d:
                    74:ff:4d:a6:cf:95:13:b7:04:e0:b6:ad:99:56:5c:
                    78:cb:6e:9f:93:91:33:ec:6f:dd:b1:09:89:2a:28:
                    1a:78:56:78:80:a6:a5:49:05:3f:c5:8a:5d:1a:08:
                    8b:b8:ae:73:5b:34:8b:e1:79:b3:91:8e:59:e5:67:
                    e8:7f:c0:f1:df:84:87:3c:1f:d3:2d:26:37:c3:95:
                    6f:6b:00:01:32:4f:4c:80:b4:5e:1c:41:15:de:fb:
                    3f:2d:30:aa:bf:53:a5:eb:c4:d1:10:f2:92:9d:4a:
                    4c:fb:b1:6b:6d:26:c2:c9:d1:7a:2f:12:09:a5:60:
                    83:5e:1e:ea:12:d9:a9:af:11:cf:05:d9:42:ea:ed:
                    b8:46:1c:bc:14:a3:26:34:96:a8:bd:ce:93:c3:84:
                    48:53:08:de:73:a5:31:5c:80:1b:ff:17:1b:3f:05:
                    fd:19:3b:66:64:5f:95:91:e4:48:8a:be:b9:13:03:
                    90:52:74:ca:a2:ff:71:a7:38:9b:9e:4d:5a:02:56:
                    ae:f5:ed:d3:cd:31:2d:d0:08:9f:cf:de:c0:b2:02:
                    f0:29:8a:be:10:0b:9b:1f:38:43:e9:0a:8f:ec:09:
                    e2:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:2E:EC:95:96:75:1A:1E:F4:56:70:0F:53:4C:2B:A9:B5:63:3F:32
            X509v3 Authority Key Identifier:
                keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         35:7d:35:e4:d7:be:28:7b:b3:ec:d3:00:c1:53:cd:91:39:48:
         d4:c9:42:ed:b8:c3:1b:8d:a1:a0:44:a6:13:23:d9:b1:82:88:
         c6:12:0a:6a:b4:0f:f4:14:ad:c6:88:7e:0b:44:f3:3b:02:2d:
         b4:65:19:19:53:02:84:fb:43:b4:1a:d9:74:b7:f1:89:0a:ae:
         c2:12:c8:7d:be:56:d5:71:b0:49:39:9d:72:42:6e:30:9e:7a:
         c9:e9:11:f5:6f:45:2a:f7:64:bc:03:f8:45:a2:22:35:1c:71:
         ce:b3:55:c0:e3:2f:fc:95:a4:35:1f:49:e7:f3:5a:c8:1a:c8:
         1f:54:30:75:e3:d0:76:97:e0:35:42:fc:99:5c:62:bd:e2:c7:
         eb:c6:6f:a5:c0:fb:e7:04:f9:71:44:34:13:b4:e3:bc:40:d3:
         84:ec:62:97:0f:ae:2a:c5:70:f2:4e:f6:2f:00:6b:83:b9:06:
         45:1a:0e:95:f2:bf:7b:80:5e:e3:6f:8b:fc:a6:49:0b:a2:e1:
         fd:5c:bf:5b:20:73:19:bf:77:79:02:a8:47:1f:31:40:35:2f:
         29:cb:c2:4c:e4:52:52:22:1f:64:21:a3:38:07:99:79:fc:e4:
         d6:64:8c:12:b3:fb:e4:9b:eb:da:ec:fc:81:e0:3c:e4:b9:83:
         f1:5a:66:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 04:07:18 2025 by rpki-client