Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File:                     3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier:          rtPa+turvpwwGHylqHyEhodJmW51rjpUyedP+giZUn0=
Subject key identifier:   D8:E5:36:C6:D8:09:E7:3E:55:9A:43:30:DE:23:69:87:ED:7B:7F:F1
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer:       /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial:       019764DF23049B8980C51C1204B163A1F72D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number:          1594
Signing time:             Thu 12 Jun 2025 16:00:34 +0000
Manifest this update:     Thu 12 Jun 2025 16:00:34 +0000
Manifest next update:     Fri 13 Jun 2025 16:00:34 +0000
Files and hashes:         1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: uyriDFlUlFeTQEjc8hQnjrE7RYjMW1nB2nZjOqZJCP4=)
                          2: 4iSMhBF2xZj26lycKx2j1fhAtX8.roa (hash: 5NzSosDSsdztn+kQLtfES98hJSpuF/nYSnJEW3vMqlE=)
                          3: MCaozM05EgQpOj9KWtfk_EMYWf0.roa (hash: I6Y0DISsiTz+oGPxMCPt4OQoH1zQxzx22/aiFTgMNtU=)
                          4: qMfArzwkX8G0WDNHJN4uX2h7ong.roa (hash: J4HIUTvl0CZ/07KSIMq+Jwo8Hxn+rCK5OIiJhW9OzqI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 13:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:df:23:04:9b:89:80:c5:1c:12:04:b1:63:a1:f7:2d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
        Validity
            Not Before: Jun 12 16:00:34 2025 GMT
            Not After : Jun 13 16:00:34 2025 GMT
        Subject: CN=d8e536c6d809e73e559a4330de236987ed7b7ff1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:cf:88:50:89:c4:ab:ac:7c:3a:e8:2b:97:7f:
                    5f:fd:6b:22:75:8f:b3:37:f7:56:aa:9c:e5:ce:34:
                    85:34:f4:32:06:c5:fd:f1:ed:39:72:43:14:74:3e:
                    fa:c3:1b:01:f4:1f:45:9d:b2:ab:e1:10:23:82:fd:
                    e2:dd:3f:c5:c6:66:b7:51:dd:0a:22:84:0a:34:21:
                    a7:c8:6d:e2:49:63:07:a8:1e:61:ac:d0:23:77:c5:
                    d2:25:a4:19:3c:e4:6d:74:df:15:69:6c:27:66:b0:
                    30:d8:cc:5d:b2:db:82:4b:ca:3a:4f:07:8c:42:0f:
                    4c:97:d8:13:b1:2d:b7:7d:b6:2c:e5:56:aa:54:ab:
                    3d:20:40:c9:df:7e:5c:f6:f4:00:08:8c:04:50:9e:
                    07:02:cf:59:10:90:90:f9:36:ff:d2:73:d7:f0:bb:
                    7b:6e:03:9d:ca:fa:1e:1d:07:1f:a9:91:28:10:da:
                    36:12:de:8b:93:e2:da:0a:6a:70:81:67:6c:9c:d2:
                    45:b7:ed:c7:28:fd:5f:7a:74:ba:39:e9:6e:ef:c4:
                    90:3a:c2:57:59:af:23:54:4a:1f:ff:14:60:50:bf:
                    c8:13:0f:69:61:6c:86:bc:82:47:92:70:ce:93:b4:
                    f1:1a:42:51:47:5f:34:c7:3c:66:34:e0:ca:76:78:
                    c5:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D8:E5:36:C6:D8:09:E7:3E:55:9A:43:30:DE:23:69:87:ED:7B:7F:F1
            X509v3 Authority Key Identifier:
                keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         3b:70:31:be:36:17:fc:98:e7:93:ad:96:d3:37:6b:79:72:7a:
         0b:1b:c1:ed:51:47:de:7e:45:83:16:7e:94:3c:2b:0c:34:37:
         0d:50:07:48:77:52:ad:2f:ce:70:e4:e6:91:a8:1a:7f:5f:ca:
         5b:10:7b:d3:3a:b2:b5:58:12:30:f9:4f:e0:b6:b4:12:d4:e6:
         e5:33:7a:06:f6:ad:62:5a:39:c7:29:b2:4c:0b:0d:10:bb:5b:
         70:52:b4:4a:16:1e:57:79:91:f7:10:e7:f5:bc:c4:9a:54:ba:
         32:e1:f1:b1:40:8c:ff:8e:48:7b:38:19:80:bc:b3:66:12:82:
         14:73:dc:07:a0:72:af:92:19:ff:3e:4d:00:ee:fb:88:ec:40:
         cc:16:10:cb:50:f0:66:d0:71:96:41:12:77:73:07:d1:dc:f9:
         d5:f4:f3:f2:a4:db:52:9c:e1:49:43:0c:38:cc:25:d7:11:ff:
         5e:57:4d:77:59:54:f3:11:f8:91:f9:f3:a8:63:3e:f5:d6:22:
         ff:49:10:80:5d:74:67:7c:bc:99:db:35:ba:9a:ca:ad:7e:a1:
         4c:24:73:6a:84:97:ec:02:3b:f2:9c:9e:f0:00:1d:dc:7d:bf:
         9c:11:7d:13:12:47:bb:00:1e:84:0c:a2:c5:35:8a:d2:59:59:
         4a:df:05:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 20:19:26 2025 by rpki-client