Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
File:                     3MstX7JThS8YI8ZUNOjydtBOTgw.mft (raw, json)
Hash identifier:          SRRnajLt+3kmsCN5ep3D847c+buZa9kbrfSY1WV9E3c=
Subject key identifier:   E3:1E:8C:B2:5D:74:68:3A:36:84:1F:C7:9F:E3:41:FE:D4:F0:FE:61
Authority key identifier: DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C
Certificate issuer:       /CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
Certificate serial:       01975948D228179DD389F3903F1B89380859
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
Manifest number:          158E
Signing time:             Tue 10 Jun 2025 10:00:33 +0000
Manifest this update:     Tue 10 Jun 2025 10:00:33 +0000
Manifest next update:     Wed 11 Jun 2025 10:00:33 +0000
Files and hashes:         1: 3MstX7JThS8YI8ZUNOjydtBOTgw.crl (hash: 9r6W46VthsB60fCnZ6Ue3+xNbaXSu0GwPXg3RFDBSqU=)
                          2: 4iSMhBF2xZj26lycKx2j1fhAtX8.roa (hash: 5NzSosDSsdztn+kQLtfES98hJSpuF/nYSnJEW3vMqlE=)
                          3: MCaozM05EgQpOj9KWtfk_EMYWf0.roa (hash: I6Y0DISsiTz+oGPxMCPt4OQoH1zQxzx22/aiFTgMNtU=)
                          4: qMfArzwkX8G0WDNHJN4uX2h7ong.roa (hash: J4HIUTvl0CZ/07KSIMq+Jwo8Hxn+rCK5OIiJhW9OzqI=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 09:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:48:d2:28:17:9d:d3:89:f3:90:3f:1b:89:38:08:59
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dccb2d5fb253852f1823c65434e8f276d04e4e0c
        Validity
            Not Before: Jun 10 10:00:33 2025 GMT
            Not After : Jun 11 10:00:33 2025 GMT
        Subject: CN=e31e8cb25d74683a36841fc79fe341fed4f0fe61
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:77:9b:42:89:b1:f5:36:de:cf:81:0d:3f:84:
                    22:42:01:2a:27:0d:28:a2:27:c9:01:b0:f5:f6:37:
                    53:5d:ff:8b:28:78:62:93:5b:d9:ba:97:c6:b6:3c:
                    d8:b8:ad:16:28:fe:56:e5:81:0c:09:74:35:dd:70:
                    9d:56:0b:56:fa:c4:b9:2c:05:29:7f:e3:7d:ad:88:
                    5c:0a:88:68:07:ba:67:41:51:3f:d8:ed:2b:93:e8:
                    32:b1:77:38:b1:11:76:cb:59:85:e9:13:84:2a:0a:
                    4c:12:fe:15:9e:87:5a:67:c3:c0:62:19:30:8d:7b:
                    d1:9e:62:ff:f1:81:46:15:a8:86:90:6b:13:75:2d:
                    ee:67:b5:66:f9:91:e1:e9:5d:99:3b:3f:e1:d7:16:
                    08:f8:cf:9d:a0:49:31:97:b0:c3:34:19:42:63:c1:
                    c1:7a:8d:25:32:b7:02:1b:cc:58:0a:ff:a7:45:29:
                    d4:d2:a8:8b:7f:13:d2:2a:b3:85:20:b5:29:96:dd:
                    69:d7:ec:7a:12:90:d1:34:29:b7:b1:cd:e9:d8:89:
                    e3:f9:2b:74:56:78:c0:37:88:11:82:64:29:e1:88:
                    fe:af:82:9f:5b:9b:ba:95:c5:8d:d0:b5:5e:53:f3:
                    bd:6c:ae:24:11:c8:24:e8:6b:18:1e:0d:09:ca:b6:
                    cc:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:1E:8C:B2:5D:74:68:3A:36:84:1F:C7:9F:E3:41:FE:D4:F0:FE:61
            X509v3 Authority Key Identifier:
                keyid:DC:CB:2D:5F:B2:53:85:2F:18:23:C6:54:34:E8:F2:76:D0:4E:4E:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MstX7JThS8YI8ZUNOjydtBOTgw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7c1c29-ca02-490b-aa84-e1a8a6f1d59a/1/3MstX7JThS8YI8ZUNOjydtBOTgw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c9:bb:79:93:ad:f2:21:90:e9:0e:85:12:d2:1d:e4:8f:10:13:
         3f:43:40:a5:03:8b:99:71:bd:19:5f:b6:e9:01:66:e9:f0:e7:
         ef:c0:ba:c3:46:01:7f:2e:60:81:eb:47:bb:46:e9:6a:b3:50:
         66:6e:4e:36:72:c1:9a:5c:e8:f5:c3:91:4a:6f:93:83:e3:7a:
         8f:39:b2:ad:71:82:f8:78:39:46:89:5c:9e:be:1e:91:64:e0:
         98:20:28:88:9b:8d:d8:74:6f:4e:d6:90:8c:00:cf:09:c2:b8:
         d5:d9:1d:74:80:27:e7:13:de:0b:92:00:3f:a1:4e:5d:7d:83:
         90:64:8e:de:cd:88:16:6b:1b:b3:b4:67:d2:68:d7:6b:37:10:
         82:e2:a9:9f:bf:24:cd:02:bd:4f:7b:8e:24:30:34:7c:fb:2a:
         d8:11:7e:29:f0:9d:0e:00:2f:6e:23:75:88:46:d6:2d:57:15:
         a5:d2:d5:22:82:1f:bf:10:4c:37:cc:2d:78:70:aa:86:c8:ac:
         ab:5e:4a:7f:db:3b:f0:4a:3f:90:63:ab:a7:6e:7f:7f:46:f8:
         3a:4e:cd:2b:38:8b:10:06:d2:fc:ae:3e:a5:66:fa:ba:44:1d:
         4b:57:91:da:fa:9b:8c:64:7d:fb:bc:13:17:da:bf:fb:fa:ae:
         78:11:57:cc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdZSNIoF53TifOQPxuJOAhZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjY2IyZDVmYjI1Mzg1MmYxODIzYzY1NDM0ZThmMjc2ZDA0
ZTRlMGMwHhcNMjUwNjEwMTAwMDMzWhcNMjUwNjExMTAwMDMzWjAzMTEwLwYDVQQD
EyhlMzFlOGNiMjVkNzQ2ODNhMzY4NDFmYzc5ZmUzNDFmZWQ0ZjBmZTYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2nebQomx9Tbez4ENP4QiQgEqJw0o
oifJAbD19jdTXf+LKHhik1vZupfGtjzYuK0WKP5W5YEMCXQ13XCdVgtW+sS5LAUp
f+N9rYhcCohoB7pnQVE/2O0rk+gysXc4sRF2y1mF6ROEKgpMEv4VnodaZ8PAYhkw
jXvRnmL/8YFGFaiGkGsTdS3uZ7Vm+ZHh6V2ZOz/h1xYI+M+doEkxl7DDNBlCY8HB
eo0lMrcCG8xYCv+nRSnU0qiLfxPSKrOFILUplt1p1+x6EpDRNCm3sc3p2Inj+St0
VnjAN4gRgmQp4Yj+r4KfW5u6lcWN0LVeU/O9bK4kEcgk6GsYHg0JyrbMJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOMejLJddGg6NoQfx5/jQf7U8P5hMB8GA1UdIwQY
MBaAFNzLLV+yU4UvGCPGVDTo8nbQTk4MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM01zdFg3SlRoUzhZSThaVU5PanlkdEJPVGd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS83YzFjMjktY2EwMi00OTBiLWFhODQt
ZTFhOGE2ZjFkNTlhLzEvM01zdFg3SlRoUzhZSThaVU5PanlkdEJPVGd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS83YzFjMjktY2EwMi00OTBiLWFhODQtZTFhOGE2ZjFkNTlh
LzEvM01zdFg3SlRoUzhZSThaVU5PanlkdEJPVGd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAybt5k63y
IZDpDoUS0h3kjxATP0NApQOLmXG9GV+26QFm6fDn78C6w0YBfy5ggetHu0bparNQ
Zm5ONnLBmlzo9cORSm+Tg+N6jzmyrXGC+Hg5Rolcnr4ekWTgmCAoiJuN2HRvTtaQ
jADPCcK41dkddIAn5xPeC5IAP6FOXX2DkGSO3s2IFmsbs7Rn0mjXazcQguKpn78k
zQK9T3uOJDA0fPsq2BF+KfCdDgAvbiN1iEbWLVcVpdLVIoIfvxBMN8wteHCqhsis
q15Kf9s78Eo/kGOrp25/f0b4Ok7NKziLEAbS/K4+pWb6ukQdS1eR2vqbjGR9+7wT
F9q/+/queBFXzA==
-----END CERTIFICATE-----
Generated at Tue Jun 10 14:22:03 2025 by rpki-client