Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
File:                     3QtmPEXXvCck0WhIUIdYHhREj7Y.mft (raw, json)
Hash identifier:          6ak1/LokFPPm3Rs589Z5DSvjwv5Nml6wlDRj0zOaDbk=
Subject key identifier:   E1:61:7F:37:4E:52:FF:E8:FB:45:03:6D:CE:FB:01:4D:5F:DF:AA:90
Authority key identifier: DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
Certificate issuer:       /CN=dd0b663c45d7bc2724d168485087581e14448fb6
Certificate serial:       01976C2B0B15DF6C46530E166EE02645EA8C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
Manifest number:          158E
Signing time:             Sat 14 Jun 2025 02:00:49 +0000
Manifest this update:     Sat 14 Jun 2025 02:00:49 +0000
Manifest next update:     Sun 15 Jun 2025 02:00:49 +0000
Files and hashes:         1: 3QtmPEXXvCck0WhIUIdYHhREj7Y.crl (hash: TMgsY6acHWq2aAJeCp4bSW9ec1+FMK9nxYNynb3+gTU=)
                          2: I9GqI9GxRbg5gyNw2oYeQXtgJJg.roa (hash: IdZbo1C2DnUJiJSpOjjTPKnvp3frNBJygc4FMjTeWHU=)
                          3: OJHrSjDn0A0xOyeisC7fOP_zy4g.roa (hash: 4mrlovUy+cBI29r4SEJkRQxz3HoEwjM6nDvfGvlxWBU=)
                          4: ie70DJhDrGYxNNPSAG6BpAZrtxY.roa (hash: HiOIeBO8KrrORXl70BQK8AAzSZ8zCob2hQpjThQB7t8=)
                          5: tr4Wz-5rQhPo47mTFs_LgvHDl8s.roa (hash: PZGVkTuh77FvBlVCnDa38AVdteMzJ1COvOQXzBoIS0k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:2b:0b:15:df:6c:46:53:0e:16:6e:e0:26:45:ea:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dd0b663c45d7bc2724d168485087581e14448fb6
        Validity
            Not Before: Jun 14 02:00:49 2025 GMT
            Not After : Jun 15 02:00:49 2025 GMT
        Subject: CN=e1617f374e52ffe8fb45036dcefb014d5fdfaa90
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:df:96:75:de:1a:f1:89:05:80:2d:67:4e:cb:
                    17:6b:24:ce:96:1b:d0:3b:39:26:61:f2:8d:d0:1d:
                    db:56:8c:4e:10:86:7a:49:7e:5b:9e:87:a9:ad:b0:
                    54:c3:c7:48:11:a7:4b:b7:35:38:46:12:27:f9:8b:
                    3d:4e:8a:0e:0b:31:b4:20:45:67:a5:b5:d7:7d:2d:
                    0f:fb:15:39:f7:86:08:bb:27:b5:4b:82:0f:04:8e:
                    c4:61:ab:66:a2:c5:91:b3:f4:00:28:3b:15:a4:35:
                    ae:a9:7e:bd:2d:b0:dc:da:b4:8c:d0:94:24:f5:96:
                    63:32:6a:c1:80:05:6c:3b:84:dd:7f:61:e6:e5:d8:
                    cc:c5:69:1c:67:98:ac:f5:3c:b3:23:e8:1f:90:8a:
                    b6:89:ff:83:31:79:33:cf:ea:6a:fc:e7:b3:8f:ba:
                    af:7f:88:0b:c0:bd:72:1a:7f:1d:29:cf:98:fe:04:
                    a5:08:50:30:80:3d:e5:3b:e3:7a:79:e7:64:35:6f:
                    dc:78:ff:64:04:1e:e4:e2:77:51:34:04:1d:94:26:
                    8c:4c:00:b9:08:d2:ee:33:55:4e:2a:64:b3:3f:7e:
                    40:7c:d3:47:cf:21:32:01:32:74:97:1d:26:1e:36:
                    34:5a:38:6e:da:57:72:63:09:ba:42:1e:ca:57:a3:
                    21:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:61:7F:37:4E:52:FF:E8:FB:45:03:6D:CE:FB:01:4D:5F:DF:AA:90
            X509v3 Authority Key Identifier:
                keyid:DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         5a:b6:e5:38:50:7b:9f:51:00:31:e6:ec:1a:bc:41:d1:b2:74:
         32:ed:20:ea:be:90:93:82:64:21:98:35:4b:96:72:3f:5b:47:
         96:a9:e0:6a:0f:2a:30:fc:7a:6c:58:57:45:bc:95:63:ee:6f:
         c5:aa:a9:75:14:2f:8c:78:50:c0:f0:28:14:17:2e:4b:e1:ec:
         53:c1:08:8a:4e:9f:64:22:f2:65:72:58:b1:69:42:e3:58:6f:
         2f:b2:b8:34:59:e2:42:79:3c:23:53:48:2f:fd:b6:9f:30:f8:
         40:f6:ea:77:22:cc:49:a4:15:7e:a9:55:88:3f:75:dc:71:4d:
         89:f5:18:b1:e6:2b:27:b1:1e:94:67:bd:9b:01:37:55:2f:80:
         53:f7:7a:12:9b:b4:b9:11:cb:2a:7d:da:c8:b1:c1:3e:4b:e4:
         7d:9b:79:82:6d:57:ee:f8:4b:d4:e8:74:ef:26:9f:a0:88:d5:
         c4:c3:d9:e2:6d:b8:86:f3:a4:0c:9e:c9:8e:9a:24:1a:ba:cb:
         3b:93:10:ea:2c:f6:0b:91:a5:f3:dd:76:db:ba:1a:4e:ef:94:
         d9:1d:55:4e:1e:ea:e1:d1:92:cc:52:d2:45:40:ac:cd:f7:db:
         a9:12:e4:f2:32:d8:5d:3d:21:fa:bf:46:71:18:92:eb:ec:5a:
         89:26:72:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdsKwsV32xGUw4WbuAmReqMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkMGI2NjNjNDVkN2JjMjcyNGQxNjg0ODUwODc1ODFlMTQ0
NDhmYjYwHhcNMjUwNjE0MDIwMDQ5WhcNMjUwNjE1MDIwMDQ5WjAzMTEwLwYDVQQD
EyhlMTYxN2YzNzRlNTJmZmU4ZmI0NTAzNmRjZWZiMDE0ZDVmZGZhYTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9+Wdd4a8YkFgC1nTssXayTOlhvQ
OzkmYfKN0B3bVoxOEIZ6SX5bnoeprbBUw8dIEadLtzU4RhIn+Ys9TooOCzG0IEVn
pbXXfS0P+xU594YIuye1S4IPBI7EYatmosWRs/QAKDsVpDWuqX69LbDc2rSM0JQk
9ZZjMmrBgAVsO4Tdf2Hm5djMxWkcZ5is9TyzI+gfkIq2if+DMXkzz+pq/Oezj7qv
f4gLwL1yGn8dKc+Y/gSlCFAwgD3lO+N6eedkNW/ceP9kBB7k4ndRNAQdlCaMTAC5
CNLuM1VOKmSzP35AfNNHzyEyATJ0lx0mHjY0Wjhu2ldyYwm6Qh7KV6MhKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOFhfzdOUv/o+0UDbc77AU1f36qQMB8GA1UdIwQY
MBaAFN0LZjxF17wnJNFoSFCHWB4URI+2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9lZGMyMzgtNGMwYS00NmVkLWJjMjQt
M2I5ZTNjOGEyZmNhLzEvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC9lZGMyMzgtNGMwYS00NmVkLWJjMjQtM2I5ZTNjOGEyZmNh
LzEvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWrblOFB7
n1EAMebsGrxB0bJ0Mu0g6r6Qk4JkIZg1S5ZyP1tHlqngag8qMPx6bFhXRbyVY+5v
xaqpdRQvjHhQwPAoFBcuS+HsU8EIik6fZCLyZXJYsWlC41hvL7K4NFniQnk8I1NI
L/22nzD4QPbqdyLMSaQVfqlViD913HFNifUYseYrJ7EelGe9mwE3VS+AU/d6Epu0
uRHLKn3ayLHBPkvkfZt5gm1X7vhL1Oh07yafoIjVxMPZ4m24hvOkDJ7JjpokGrrL
O5MQ6iz2C5Gl891227oaTu+U2R1VTh7q4dGSzFLSRUCszffbqRLk8jLYXT0h+r9G
cRiS6+xaiSZytA==
-----END CERTIFICATE-----
Generated at Sat Jun 14 06:29:52 2025 by rpki-client