Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File:                     3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier:          4p/8R2CC7/ND+XKnJ9GLrALNzZbE+UdIyXL/WG9Z138=
Subject key identifier:   6A:84:69:69:18:BF:FB:47:55:5B:4F:0A:52:DE:74:C4:DE:51:0E:8A
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer:       /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial:       0197591220176491EF1F6F48CC3002F44ACD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number:          0818
Signing time:             Tue 10 Jun 2025 09:00:49 +0000
Manifest this update:     Tue 10 Jun 2025 09:00:49 +0000
Manifest next update:     Wed 11 Jun 2025 09:00:49 +0000
Files and hashes:         1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: v9Bn6lhi19lPqvL+/00riszNbb7iXrLthbQn/J0tzZ8=)
                          2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:12:20:17:64:91:ef:1f:6f:48:cc:30:02:f4:4a:cd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
        Validity
            Not Before: Jun 10 09:00:49 2025 GMT
            Not After : Jun 11 09:00:49 2025 GMT
        Subject: CN=6a84696918bffb47555b4f0a52de74c4de510e8a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:27:f1:f6:bc:c6:7d:75:2a:64:bf:8e:f7:14:
                    bc:81:88:b1:f8:0e:48:84:8d:ec:17:0d:0f:5b:a0:
                    b0:92:f4:4e:c2:28:d4:3a:8c:95:40:e9:7f:07:b0:
                    60:8d:d8:3a:b6:96:48:0f:a3:81:1f:50:ea:d6:c0:
                    f9:f8:5b:f6:c2:53:b0:5e:4c:c5:fd:44:c1:b2:7a:
                    d9:f6:ae:b6:0c:26:83:bd:5b:e2:df:ac:a6:c1:72:
                    d3:46:b0:db:2d:67:cb:72:32:e3:83:74:79:78:07:
                    72:29:15:c4:74:66:04:fc:71:79:64:e6:ee:8d:99:
                    5e:ef:55:c9:94:59:2e:3d:f3:75:c8:ec:7b:aa:75:
                    2b:40:a3:aa:8d:71:18:87:2e:3e:fc:8f:de:d3:de:
                    61:f4:d3:17:6d:fa:62:53:fd:e8:71:74:7d:ae:15:
                    09:6c:6f:a7:fe:8f:c5:75:80:5d:6a:6a:92:38:6b:
                    fb:a0:c0:8e:be:fa:38:43:61:d0:1b:c4:46:d6:8c:
                    0d:5f:22:3a:f1:af:1b:f2:2e:db:71:4b:15:0c:01:
                    a8:22:79:7d:21:fb:9e:fe:85:f7:fa:e6:c2:28:fe:
                    14:71:06:38:6c:17:9f:2e:04:6b:b7:8c:74:46:9d:
                    da:92:f1:29:06:b9:c4:08:da:fd:c8:fe:a8:1b:d0:
                    e1:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:84:69:69:18:BF:FB:47:55:5B:4F:0A:52:DE:74:C4:DE:51:0E:8A
            X509v3 Authority Key Identifier:
                keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:b2:42:45:c9:68:ae:fb:ab:8b:2c:56:8b:5c:d5:aa:a8:1b:
         49:15:24:a6:bb:e8:fe:e2:8d:23:d8:4e:1f:4f:bc:0c:9a:b6:
         49:d9:59:2e:31:46:87:2d:6a:42:82:06:0b:e3:02:fa:74:ce:
         6a:f6:2d:fa:39:20:23:e5:5c:c4:41:61:77:98:86:90:91:08:
         b5:ab:f0:72:d9:15:63:0d:d6:1c:89:92:e8:f1:f6:8d:4c:cf:
         77:7b:e2:91:8e:ee:17:12:cf:44:7e:b2:97:4b:52:ae:09:20:
         51:9c:15:24:1b:0a:74:0a:00:f5:71:d2:ea:65:88:52:79:69:
         63:c6:36:70:0a:13:85:df:bd:97:8c:a5:a1:1b:8f:e6:41:89:
         2b:4e:b1:37:76:15:29:45:40:91:ce:c5:76:ae:70:cd:e2:2c:
         4f:ed:86:a5:34:24:99:8c:e8:75:71:b2:92:83:14:4d:26:a6:
         b0:02:7e:45:f3:ff:1c:72:01:5c:5c:f1:74:48:d4:92:f2:f5:
         6a:b6:c7:d8:72:3b:78:75:03:92:5a:1c:db:ab:6e:54:75:65:
         8d:bd:ad:d0:24:76:4f:00:2f:99:12:59:93:cc:ce:f0:de:00:
         41:b2:7d:1d:2c:67:d9:88:dc:30:ff:43:95:35:44:e4:95:d3:
         90:3b:e3:c7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdZEiAXZJHvH29IzDAC9ErNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlYmU1MTdlNzQ3NWUxN2MwNjk2NDM5MTBmZDZmNzdiMzE3
Yjg1MzgwHhcNMjUwNjEwMDkwMDQ5WhcNMjUwNjExMDkwMDQ5WjAzMTEwLwYDVQQD
Eyg2YTg0Njk2OTE4YmZmYjQ3NTU1YjRmMGE1MmRlNzRjNGRlNTEwZThhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyfx9rzGfXUqZL+O9xS8gYix+A5I
hI3sFw0PW6CwkvROwijUOoyVQOl/B7Bgjdg6tpZID6OBH1Dq1sD5+Fv2wlOwXkzF
/UTBsnrZ9q62DCaDvVvi36ymwXLTRrDbLWfLcjLjg3R5eAdyKRXEdGYE/HF5ZObu
jZle71XJlFkuPfN1yOx7qnUrQKOqjXEYhy4+/I/e095h9NMXbfpiU/3ocXR9rhUJ
bG+n/o/FdYBdamqSOGv7oMCOvvo4Q2HQG8RG1owNXyI68a8b8i7bcUsVDAGoInl9
Ifue/oX3+ubCKP4UcQY4bBefLgRrt4x0Rp3akvEpBrnECNr9yP6oG9Dh3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGqEaWkYv/tHVVtPClLedMTeUQ6KMB8GA1UdIwQY
MBaAFN6+UX50deF8BpZDkQ/W93sxe4U4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAt
ODlmNWM0ZjMyOTcwLzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8zODUwYzktOWM2OC00NjEzLWE4NzAtODlmNWM0ZjMyOTcw
LzEvM3I1UmZuUjE0WHdHbGtPUkQ5YjNlekY3aFRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa7JCRclo
rvuriyxWi1zVqqgbSRUkprvo/uKNI9hOH0+8DJq2SdlZLjFGhy1qQoIGC+MC+nTO
avYt+jkgI+VcxEFhd5iGkJEItavwctkVYw3WHImS6PH2jUzPd3vikY7uFxLPRH6y
l0tSrgkgUZwVJBsKdAoA9XHS6mWIUnlpY8Y2cAoThd+9l4yloRuP5kGJK06xN3YV
KUVAkc7Fdq5wzeIsT+2GpTQkmYzodXGykoMUTSamsAJ+RfP/HHIBXFzxdEjUkvL1
arbH2HI7eHUDkloc26tuVHVljb2t0CR2TwAvmRJZk8zO8N4AQbJ9HSxn2YjcMP9D
lTVE5JXTkDvjxw==
-----END CERTIFICATE-----
Generated at Tue Jun 10 15:38:14 2025 by rpki-client