Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
File:                     3QtmPEXXvCck0WhIUIdYHhREj7Y.mft (raw, json)
Hash identifier:          YV+s62NVNh3ju7Bsc0FNB5fA1rBIDRV6VjYgrvCghlo=
Subject key identifier:   EC:F2:05:9F:1F:35:67:17:9F:FC:89:2C:72:D0:F1:34:B4:D3:85:18
Authority key identifier: DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6
Certificate issuer:       /CN=dd0b663c45d7bc2724d168485087581e14448fb6
Certificate serial:       0197684DC9B43B0D13D66409718006D235D9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
Manifest number:          158C
Signing time:             Fri 13 Jun 2025 08:00:17 +0000
Manifest this update:     Fri 13 Jun 2025 08:00:17 +0000
Manifest next update:     Sat 14 Jun 2025 08:00:17 +0000
Files and hashes:         1: 3QtmPEXXvCck0WhIUIdYHhREj7Y.crl (hash: BL4fZcmCD+e9SLKPDIE+8t1BU/l0jYDvI6sP+dH3QV8=)
                          2: I9GqI9GxRbg5gyNw2oYeQXtgJJg.roa (hash: IdZbo1C2DnUJiJSpOjjTPKnvp3frNBJygc4FMjTeWHU=)
                          3: OJHrSjDn0A0xOyeisC7fOP_zy4g.roa (hash: 4mrlovUy+cBI29r4SEJkRQxz3HoEwjM6nDvfGvlxWBU=)
                          4: ie70DJhDrGYxNNPSAG6BpAZrtxY.roa (hash: HiOIeBO8KrrORXl70BQK8AAzSZ8zCob2hQpjThQB7t8=)
                          5: tr4Wz-5rQhPo47mTFs_LgvHDl8s.roa (hash: PZGVkTuh77FvBlVCnDa38AVdteMzJ1COvOQXzBoIS0k=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 07:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:68:4d:c9:b4:3b:0d:13:d6:64:09:71:80:06:d2:35:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dd0b663c45d7bc2724d168485087581e14448fb6
        Validity
            Not Before: Jun 13 08:00:17 2025 GMT
            Not After : Jun 14 08:00:17 2025 GMT
        Subject: CN=ecf2059f1f3567179ffc892c72d0f134b4d38518
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:01:58:01:c2:bb:e5:05:62:e6:bb:3f:a4:50:
                    44:82:c1:46:d4:f6:27:0d:41:e9:1d:14:e4:d6:dd:
                    99:8e:2e:85:8c:f3:1f:66:b1:1c:bf:01:d6:29:e8:
                    19:ba:39:bf:69:6e:cf:c8:60:39:78:20:0c:82:60:
                    ca:f1:65:17:52:5d:57:ea:cb:21:5b:41:ee:f6:13:
                    88:b6:d3:74:ea:bf:22:f5:7d:20:9e:ec:27:5e:ea:
                    2b:f4:92:67:8f:1b:c5:97:9b:de:5c:f3:aa:8f:6c:
                    b0:b3:0e:57:48:b7:69:a8:58:d6:6e:4a:f0:3b:e4:
                    fe:e3:6e:82:ae:36:35:0c:c9:9a:22:1d:1b:a2:77:
                    42:d3:74:2b:b0:d1:8d:a7:f7:99:db:eb:f9:a2:b6:
                    fe:ac:f0:1d:84:35:15:af:60:dc:c7:8a:20:fb:26:
                    a0:71:21:18:84:e5:b8:7a:21:18:8a:41:32:9b:3c:
                    df:a6:77:13:16:a9:90:18:1d:e3:8a:39:f7:d4:b5:
                    a1:c2:38:26:ca:f6:21:8f:fa:23:df:f5:50:5a:af:
                    9c:93:86:9b:8a:90:f8:09:96:44:97:5d:b1:28:8a:
                    74:ab:94:b5:c4:ac:a5:ad:e7:5c:71:54:f0:d0:dc:
                    c6:38:43:6d:6c:a4:6f:bd:da:61:66:f8:18:25:9f:
                    06:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EC:F2:05:9F:1F:35:67:17:9F:FC:89:2C:72:D0:F1:34:B4:D3:85:18
            X509v3 Authority Key Identifier:
                keyid:DD:0B:66:3C:45:D7:BC:27:24:D1:68:48:50:87:58:1E:14:44:8F:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3QtmPEXXvCck0WhIUIdYHhREj7Y.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/edc238-4c0a-46ed-bc24-3b9e3c8a2fca/1/3QtmPEXXvCck0WhIUIdYHhREj7Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4f:f3:95:52:15:e2:b1:de:74:6a:c1:d2:0c:6e:a3:2b:2e:42:
         27:a4:85:e6:b6:1f:58:6f:40:23:f8:7f:f8:a8:1b:45:c9:37:
         ee:55:08:a5:cd:aa:2a:f8:66:72:fb:fc:65:c1:9c:1a:e6:ee:
         f2:c4:9a:9b:48:50:a7:3a:86:72:c9:ee:f2:6e:df:64:4f:fa:
         61:ef:85:7d:4f:b0:be:bd:74:48:1d:d3:c3:35:9a:ec:41:22:
         b8:da:59:de:67:f5:ee:ac:20:78:10:14:b3:26:51:d9:7c:a9:
         30:bd:f6:dd:79:ec:d1:13:06:04:14:5b:a6:2a:d2:66:70:c1:
         d8:2c:06:75:20:93:07:4d:e1:a6:ba:46:ee:51:8b:52:ee:e1:
         33:e2:96:73:df:be:3f:b8:43:2e:61:a4:78:cc:58:cf:f0:6d:
         9a:1f:80:f0:93:95:9a:fb:8a:d3:2b:07:22:ec:ee:3c:a1:ac:
         b0:d2:66:61:25:8a:fa:d0:e4:10:22:60:0d:26:b2:33:a8:8d:
         f9:54:a0:00:1c:13:8a:74:a0:34:50:f0:4c:be:40:da:1e:0c:
         ee:44:aa:4c:7f:29:cb:86:c0:b0:93:4d:58:8b:09:a7:f3:e5:
         00:18:00:92:00:a6:32:55:5b:1d:79:53:37:bb:06:ca:28:45:
         4f:65:f1:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdoTcm0Ow0T1mQJcYAG0jXZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkMGI2NjNjNDVkN2JjMjcyNGQxNjg0ODUwODc1ODFlMTQ0
NDhmYjYwHhcNMjUwNjEzMDgwMDE3WhcNMjUwNjE0MDgwMDE3WjAzMTEwLwYDVQQD
EyhlY2YyMDU5ZjFmMzU2NzE3OWZmYzg5MmM3MmQwZjEzNGI0ZDM4NTE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQFYAcK75QVi5rs/pFBEgsFG1PYn
DUHpHRTk1t2Zji6FjPMfZrEcvwHWKegZujm/aW7PyGA5eCAMgmDK8WUXUl1X6ssh
W0Hu9hOIttN06r8i9X0gnuwnXuor9JJnjxvFl5veXPOqj2ywsw5XSLdpqFjWbkrw
O+T+426CrjY1DMmaIh0bondC03QrsNGNp/eZ2+v5orb+rPAdhDUVr2Dcx4og+yag
cSEYhOW4eiEYikEymzzfpncTFqmQGB3jijn31LWhwjgmyvYhj/oj3/VQWq+ck4ab
ipD4CZZEl12xKIp0q5S1xKylredccVTw0NzGOENtbKRvvdphZvgYJZ8GLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOzyBZ8fNWcXn/yJLHLQ8TS004UYMB8GA1UdIwQY
MBaAFN0LZjxF17wnJNFoSFCHWB4URI+2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC9lZGMyMzgtNGMwYS00NmVkLWJjMjQt
M2I5ZTNjOGEyZmNhLzEvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC9lZGMyMzgtNGMwYS00NmVkLWJjMjQtM2I5ZTNjOGEyZmNh
LzEvM1F0bVBFWFh2Q2NrMFdoSVVJZFlIaFJFajdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT/OVUhXi
sd50asHSDG6jKy5CJ6SF5rYfWG9AI/h/+KgbRck37lUIpc2qKvhmcvv8ZcGcGubu
8sSam0hQpzqGcsnu8m7fZE/6Ye+FfU+wvr10SB3TwzWa7EEiuNpZ3mf17qwgeBAU
syZR2XypML323Xns0RMGBBRbpirSZnDB2CwGdSCTB03hprpG7lGLUu7hM+KWc9++
P7hDLmGkeMxYz/Btmh+A8JOVmvuK0ysHIuzuPKGssNJmYSWK+tDkECJgDSayM6iN
+VSgABwTinSgNFDwTL5A2h4M7kSqTH8py4bAsJNNWIsJp/PlABgAkgCmMlVbHXlT
N7sGyihFT2Xxjw==
-----END CERTIFICATE-----
Generated at Fri Jun 13 12:30:19 2025 by rpki-client