Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File:                     3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier:          nhfhznIMpEn33l7deIw+t1QOyi0RR0kWXBlEVB7v0VY=
Subject key identifier:   0B:C8:11:D7:1B:0C:C7:79:6A:78:58:43:31:B7:DE:A8:90:70:2B:CE
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer:       /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial:       01976696D59E92415B41CB5EA7B91CFCD64C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number:          081F
Signing time:             Fri 13 Jun 2025 00:00:50 +0000
Manifest this update:     Fri 13 Jun 2025 00:00:50 +0000
Manifest next update:     Sat 14 Jun 2025 00:00:50 +0000
Files and hashes:         1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: hsASmLqVA4DmzG464dJezaYqC4HmegnUWw1HjuZHauI=)
                          2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 22:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:66:96:d5:9e:92:41:5b:41:cb:5e:a7:b9:1c:fc:d6:4c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
        Validity
            Not Before: Jun 13 00:00:50 2025 GMT
            Not After : Jun 14 00:00:50 2025 GMT
        Subject: CN=0bc811d71b0cc7796a78584331b7dea890702bce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:f6:10:32:19:35:07:bb:48:27:0e:23:01:36:
                    4a:ad:4f:f9:8c:b6:dc:da:a5:1e:73:65:7a:a2:c0:
                    e2:44:a5:8f:98:bb:c9:92:58:1d:a2:74:38:60:b8:
                    4c:5c:b1:2e:b5:fc:da:3e:d2:33:bd:dc:08:7f:ef:
                    36:17:af:c3:4f:07:0d:71:cd:ba:74:a2:9d:b8:76:
                    fb:53:94:8d:c4:23:c9:08:c6:2e:35:ba:26:0c:b5:
                    ad:da:5e:6e:28:50:7b:26:10:0d:04:60:53:29:bc:
                    52:d8:e3:4b:94:f0:b8:22:1c:e9:63:cd:fb:3f:ac:
                    e7:34:0c:dd:7a:2d:05:a2:f5:c9:51:55:ba:c7:59:
                    97:cb:ed:ef:07:18:fb:ee:55:79:20:42:28:37:ea:
                    b4:d1:c7:d0:8d:6d:e8:57:ea:63:00:1d:b6:dd:54:
                    ef:87:29:9a:a7:6c:60:05:6b:e4:7c:32:2b:f8:96:
                    d2:2c:8b:2e:e2:52:a4:50:67:7d:32:67:0a:f0:ef:
                    d2:f9:92:6f:3d:9f:d4:7d:7d:eb:1f:74:52:84:6a:
                    57:2f:1a:48:c3:26:51:09:93:da:c4:1e:08:ba:cc:
                    31:6f:4c:0b:e7:63:be:a5:b9:d6:70:a9:4d:50:63:
                    a7:f1:bc:45:c2:91:06:78:01:b2:33:f6:24:6e:34:
                    0b:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:C8:11:D7:1B:0C:C7:79:6A:78:58:43:31:B7:DE:A8:90:70:2B:CE
            X509v3 Authority Key Identifier:
                keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         2e:f5:de:5a:b2:83:cf:8a:11:90:54:2b:07:2d:4e:42:96:33:
         b1:24:c6:dc:09:85:6b:1d:3c:b8:cd:97:3b:6e:15:83:7b:fb:
         d9:3a:49:df:c9:fb:98:12:ca:5e:5c:ae:56:23:cb:86:99:b5:
         0f:0f:1d:a4:71:43:df:b7:4a:89:d2:b4:d5:da:05:ad:62:31:
         4a:f3:f1:c3:26:96:fc:1f:2e:08:dd:91:c6:d5:3c:3d:85:70:
         3b:7b:e7:d8:ef:70:41:21:86:67:c3:3e:73:12:40:24:eb:00:
         6c:80:c6:96:31:03:31:55:02:f5:e5:4d:a0:56:f2:1e:d7:2e:
         34:d4:95:d3:a1:83:b0:b0:db:46:4c:09:36:56:6e:94:a8:b8:
         60:3e:4a:de:c4:53:1b:5f:27:b1:a2:f1:4c:2e:eb:44:b8:7c:
         f6:06:d1:57:f2:a6:5e:0d:e0:12:3b:0a:c6:71:92:24:cd:e2:
         6c:30:e9:e5:f8:c3:4b:1f:8a:91:83:e1:c4:52:4d:fa:95:5c:
         fb:43:b5:eb:ea:1f:3b:da:35:51:49:ac:93:27:bb:99:36:7e:
         76:ea:68:62:94:65:6e:cc:88:51:aa:5b:58:d4:3e:16:df:19:
         30:14:6b:2b:bb:ae:39:21:de:ee:ff:71:0d:1e:10:1a:63:e5:
         12:0f:44:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 01:45:53 2025 by rpki-client