Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
File:                     3r5RfnR14XwGlkORD9b3ezF7hTg.mft (raw, json)
Hash identifier:          X16meJv3fzGQSZlDaE0KUlWUMf9FUxafg3WywBnaNas=
Subject key identifier:   E7:CB:27:FB:CB:38:56:3B:48:3E:4D:28:11:04:F1:2B:FC:3F:78:DB
Authority key identifier: DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38
Certificate issuer:       /CN=debe517e7475e17c069643910fd6f77b317b8538
Certificate serial:       019764A871F3B76406ADC2822F7F81B3B921
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
Manifest number:          081E
Signing time:             Thu 12 Jun 2025 15:00:50 +0000
Manifest this update:     Thu 12 Jun 2025 15:00:50 +0000
Manifest next update:     Fri 13 Jun 2025 15:00:50 +0000
Files and hashes:         1: 3r5RfnR14XwGlkORD9b3ezF7hTg.crl (hash: tyyd+irV5HPEqooXYxuD0uG/QvI09pU9VnSmY/8+fOM=)
                          2: ij43C7xr8xTz-pjXAc9irjAaFXA.roa (hash: TchsYLXYDpTrG6rR/zLX/7ji8qJkl2gfrI50UG67KC4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:a8:71:f3:b7:64:06:ad:c2:82:2f:7f:81:b3:b9:21
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=debe517e7475e17c069643910fd6f77b317b8538
        Validity
            Not Before: Jun 12 15:00:50 2025 GMT
            Not After : Jun 13 15:00:50 2025 GMT
        Subject: CN=e7cb27fbcb38563b483e4d281104f12bfc3f78db
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:34:4e:dc:59:11:34:38:08:d0:0a:d2:3f:dc:
                    55:b7:b7:d1:a7:59:6c:9d:0d:ec:d0:bb:ee:bc:fd:
                    e3:0e:ad:38:25:ef:db:ce:1b:d9:28:71:f5:49:b8:
                    b0:4f:be:40:12:8e:e5:bf:0f:3c:b0:aa:44:f3:49:
                    19:a9:30:dd:3e:76:ae:41:f9:d3:14:d7:6d:e3:40:
                    39:f5:89:6a:17:0f:dd:26:5f:f8:18:f2:df:49:06:
                    6d:45:4f:ad:a0:b7:2d:06:1a:a4:3f:d1:f6:22:6f:
                    45:02:57:2f:bb:6c:16:08:9b:e1:c4:a4:5a:ad:12:
                    0d:0d:a9:99:75:57:c3:62:b4:39:c4:f0:6f:fb:5c:
                    2a:26:be:00:41:f8:c4:a1:32:35:de:6d:ce:0a:37:
                    6a:89:61:52:23:4c:b0:79:ba:6b:4b:d3:f9:48:2e:
                    19:7c:5a:0c:99:9d:8d:00:ac:04:ba:c1:ca:aa:5b:
                    f2:59:46:20:b9:e8:c2:42:0d:3a:2d:d5:76:66:bf:
                    c9:e9:80:7e:4c:fd:13:81:fc:26:a9:0a:e5:8e:b8:
                    0e:08:9c:6a:92:8a:e1:2b:0b:c1:9b:b9:5e:e6:4e:
                    34:74:7d:70:e0:53:2b:9a:db:17:3f:d0:3e:57:25:
                    0d:57:c9:c3:ed:d4:bc:ed:e7:d5:57:86:e2:5a:f0:
                    84:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:CB:27:FB:CB:38:56:3B:48:3E:4D:28:11:04:F1:2B:FC:3F:78:DB
            X509v3 Authority Key Identifier:
                keyid:DE:BE:51:7E:74:75:E1:7C:06:96:43:91:0F:D6:F7:7B:31:7B:85:38

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3r5RfnR14XwGlkORD9b3ezF7hTg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/3850c9-9c68-4613-a870-89f5c4f32970/1/3r5RfnR14XwGlkORD9b3ezF7hTg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:df:ba:36:d5:44:3e:3f:16:ea:39:59:bd:dc:ad:71:d2:c1:
         8e:9d:ee:ce:bf:20:f6:0d:de:0c:db:55:16:aa:cc:9d:6d:95:
         1a:f4:b9:42:a4:e4:11:62:43:69:e4:9e:b1:45:03:5a:67:31:
         20:77:10:54:e5:69:ab:d9:ac:1c:9a:b9:16:a9:21:4b:f0:00:
         c9:87:8a:f2:57:8f:19:09:71:92:01:12:f5:eb:a5:3a:fc:e8:
         3f:cc:3d:d4:dd:1e:14:e0:89:20:50:f1:f1:49:12:28:4a:68:
         6d:7a:f2:50:ea:04:64:f3:0e:52:95:a9:fe:bd:da:b8:2d:6a:
         ec:2d:65:92:96:e0:cf:ef:41:9c:78:9f:b7:df:74:17:4e:33:
         4c:db:22:0e:38:ed:9c:ab:bb:37:c6:c5:c6:04:1c:f3:1b:67:
         49:15:a8:bb:43:9c:4b:2e:45:79:65:fc:c1:7d:98:16:f7:7c:
         07:30:64:7b:d1:9a:8c:27:36:fc:53:f6:4f:3d:dd:cc:6f:aa:
         f0:86:e8:57:25:af:72:1e:79:bd:35:10:fa:a4:4e:9e:e2:b4:
         8e:f5:36:15:41:0c:b0:8a:89:a3:aa:01:f9:32:fe:c2:f3:d5:
         45:e8:b9:a7:27:54:a3:20:dd:d8:4c:d1:9c:44:e5:67:60:cc:
         52:0c:c0:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 19:19:32 2025 by rpki-client