Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File:                     3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier:          JooLy4pV3D6ZMM/yKDTRfJ8J7tmNeVpgMXf2r1KZIYE=
Subject key identifier:   1E:78:CF:F8:DB:A8:C6:0F:31:7B:76:E3:E8:62:0C:24:C4:B1:15:8F
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer:       /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial:       01975D25A0DC8570E4B0ECC8350CA13C8AEF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number:          1590
Signing time:             Wed 11 Jun 2025 04:00:36 +0000
Manifest this update:     Wed 11 Jun 2025 04:00:36 +0000
Manifest next update:     Thu 12 Jun 2025 04:00:36 +0000
Files and hashes:         1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: 9EDTPaCo0XOJjqPWRC8u8OwNk1VEHJt76LfgeJTxfy8=)
                          2: 4iSMhBF2xZj26lycKx2j1fhAtX8.roa (hash: 5NzSosDSsdztn+kQLtfES98hJSpuF/nYSnJEW3vMqlE=)
                          3: MCaozM05EgQpOj9KWtfk_EMYWf0.roa (hash: I6Y0DISsiTz+oGPxMCPt4OQoH1zQxzx22/aiFTgMNtU=)
                          4: qMfArzwkX8G0WDNHJN4uX2h7ong.roa (hash: J4HIUTvl0CZ/07KSIMq+Jwo8Hxn+rCK5OIiJhW9OzqI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 04:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5d:25:a0:dc:85:70:e4:b0:ec:c8:35:0c:a1:3c:8a:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
        Validity
            Not Before: Jun 11 04:00:36 2025 GMT
            Not After : Jun 12 04:00:36 2025 GMT
        Subject: CN=1e78cff8dba8c60f317b76e3e8620c24c4b1158f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:3b:58:23:ed:d4:87:d5:9b:76:09:ff:02:0a:
                    66:99:ee:b0:ab:90:f8:ad:8f:14:c6:ab:31:8b:19:
                    37:bf:aa:21:b8:c2:16:a9:0e:36:99:aa:a0:a0:45:
                    ae:f8:4e:0c:68:4b:e2:b4:a8:0f:2c:90:99:1b:0f:
                    8e:1f:ae:be:1a:a5:43:36:7c:63:bf:5a:4a:6d:6f:
                    2c:38:a0:ac:14:78:f0:16:7b:5c:3d:d3:60:0c:92:
                    60:85:3b:6c:99:b1:78:53:b5:92:af:36:ac:8d:c7:
                    9d:b1:61:0a:af:64:74:32:a2:74:19:4f:6a:20:fa:
                    b5:8b:92:73:84:ea:72:76:da:d3:6f:6f:32:b6:5a:
                    02:8b:f6:56:f8:53:ca:21:6e:b2:f0:a0:5f:01:86:
                    22:c3:20:62:1e:83:58:72:a3:20:f0:5c:8c:07:e2:
                    88:ca:4d:30:3c:dc:fa:e1:79:b5:eb:da:e3:cb:3a:
                    48:3a:c5:b1:06:43:c1:a4:9b:6a:96:0d:f7:27:17:
                    df:1d:c9:34:b9:77:f9:d9:b4:a1:c8:16:21:2d:25:
                    73:f5:f5:d7:a6:f7:f1:fe:df:b3:6a:ec:25:1f:ce:
                    0d:d5:34:55:1b:17:80:4c:09:2c:fc:8b:2a:7c:e5:
                    be:9e:87:1d:30:7b:4d:69:b8:c8:c4:65:16:9d:7b:
                    9c:c1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:78:CF:F8:DB:A8:C6:0F:31:7B:76:E3:E8:62:0C:24:C4:B1:15:8F
            X509v3 Authority Key Identifier:
                keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         0f:5e:ce:f3:d0:d3:06:c8:3c:59:44:e8:e0:77:d5:a0:47:18:
         6e:9d:7c:1b:56:ae:be:42:59:21:14:b1:2a:81:fe:b7:5c:2a:
         6c:0f:c0:7d:26:a2:9f:64:8a:b1:c9:50:ee:dd:20:a7:8e:d5:
         35:cc:6f:b3:cb:8a:52:cf:c1:17:c0:19:1a:8e:77:67:ad:26:
         45:c8:a5:bc:4b:5d:27:36:37:d9:bb:09:e5:af:43:35:1c:a7:
         76:f5:12:13:30:2f:62:97:38:d9:92:fa:0c:9b:ac:06:5b:c4:
         e0:51:8f:7d:37:90:9b:7c:f1:fc:a0:59:67:fd:9c:0d:81:cb:
         82:31:83:5b:e5:7b:77:5c:db:1d:f8:a6:ef:db:99:9e:38:ba:
         1c:87:34:43:73:d9:99:8f:90:ec:1f:a4:66:da:0f:0e:af:83:
         d8:41:63:30:31:a3:b8:4f:6b:93:19:01:8b:5b:23:8d:7c:bb:
         a4:3f:49:56:81:8a:10:48:54:36:ba:77:b8:5c:58:90:56:d9:
         64:d7:55:cb:4a:76:5b:09:7f:16:b7:a5:8c:a7:94:09:b6:57:
         7e:81:85:a0:4f:02:41:e1:cd:ba:3a:04:3b:43:8a:b0:e4:57:
         da:2f:8e:1e:04:4c:81:d2:6e:8b:a5:2c:3e:14:fb:f7:06:2c:
         46:f0:8b:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 11:17:24 2025 by rpki-client