Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
File:                     3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft (raw, json)
Hash identifier:          PZhAUvEudbwZUW6x0veUqF3EYami7pfya2J/+qVV9C8=
Subject key identifier:   48:0D:8A:7C:F7:B9:2A:1E:9C:86:B6:BD:BB:A5:4C:E5:14:F1:91:83
Authority key identifier: DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0
Certificate issuer:       /CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
Certificate serial:       0197640361028C395745DDA66C2E8147E77A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
Manifest number:          151E
Signing time:             Thu 12 Jun 2025 12:00:32 +0000
Manifest this update:     Thu 12 Jun 2025 12:00:32 +0000
Manifest next update:     Fri 13 Jun 2025 12:00:32 +0000
Files and hashes:         1: 3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl (hash: OAsMdydOrLr1z5wWBJ7IF55HQJ3HCr14OZcrvBrrqY8=)
                          2: RZ4xmYAJVpVRLfuQVLFQGXgbrQE.roa (hash: aFDGOW4Qu6MNo6mtPQc9Lw/jPxt+lcHM9Vl2lskSnz8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Fri 13 Jun 2025 12:00:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:64:03:61:02:8c:39:57:45:dd:a6:6c:2e:81:47:e7:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=de169952f97f494cfe0f6b5427ca56e810c05ce0
        Validity
            Not Before: Jun 12 12:00:32 2025 GMT
            Not After : Jun 13 12:00:32 2025 GMT
        Subject: CN=480d8a7cf7b92a1e9c86b6bdbba54ce514f19183
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:a5:bc:1b:6c:1b:15:ac:e8:88:b2:15:f2:5e:
                    39:a9:f5:58:78:1f:11:ad:c3:5a:f1:be:40:ef:e2:
                    d6:62:54:f6:20:b5:73:fb:9a:cd:c0:f9:3d:56:5e:
                    cb:87:1e:8c:a1:8a:cd:d0:88:15:ca:fe:24:80:e0:
                    6e:64:0d:ef:e4:48:de:17:37:11:e9:e5:f2:0c:f5:
                    bb:b9:26:49:82:44:90:c2:10:01:c3:8c:9b:bb:95:
                    c4:1a:c1:bf:40:70:b6:85:fb:8e:1c:a7:fa:4f:9a:
                    25:b1:4f:5d:24:18:62:a6:41:5f:24:4f:0f:14:26:
                    d9:1a:d2:ba:ca:4b:98:7a:65:f8:b5:31:08:55:d1:
                    81:c4:e3:51:15:da:a0:66:ac:78:35:40:3d:6a:e8:
                    b7:05:74:79:83:52:c1:1d:18:a0:dc:7e:f7:21:74:
                    f6:62:42:f1:6d:3c:a0:1b:06:24:0a:ee:b6:0a:a4:
                    70:5f:d1:1b:4f:17:b5:2d:40:4c:c6:35:d2:dd:84:
                    ad:0d:70:66:2c:bc:49:37:ea:f4:d8:48:26:08:4a:
                    66:f0:9c:b6:21:e5:4d:5f:56:00:ef:ec:37:f8:5b:
                    ef:c5:1e:77:99:e5:14:47:9f:39:8c:24:8c:67:d7:
                    dd:a5:95:8e:01:61:b8:3c:08:bf:13:ad:60:90:11:
                    23:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:0D:8A:7C:F7:B9:2A:1E:9C:86:B6:BD:BB:A5:4C:E5:14:F1:91:83
            X509v3 Authority Key Identifier:
                keyid:DE:16:99:52:F9:7F:49:4C:FE:0F:6B:54:27:CA:56:E8:10:C0:5C:E0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3haZUvl_SUz-D2tUJ8pW6BDAXOA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e78954-31fd-4fd0-9fc1-0f4b28b886f7/1/3haZUvl_SUz-D2tUJ8pW6BDAXOA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         bf:8c:7f:f8:ba:6a:fc:70:08:7b:ed:ff:89:9e:ca:d1:06:ad:
         37:3c:eb:f9:b7:e1:16:11:48:bd:47:06:4b:64:79:88:13:a9:
         0d:cf:b2:c9:b4:38:ff:27:cf:0b:48:23:72:7f:0f:84:73:b9:
         7d:e0:f4:a3:4e:0b:d9:31:8f:32:ae:68:33:33:8b:cb:34:22:
         e2:03:a9:86:ab:3a:e9:a6:0c:99:d1:13:4e:d0:0a:be:60:a7:
         05:b0:90:cd:2a:b6:17:bd:c1:0c:e1:6b:29:fc:28:f9:1e:20:
         69:d6:2d:65:e5:f6:ee:77:3e:b2:aa:69:19:14:0d:54:53:88:
         91:40:87:df:29:f1:d4:98:0f:af:23:0e:97:9f:1f:df:8b:a8:
         1f:cb:e9:3a:d2:8e:17:81:bc:11:e9:70:30:54:59:03:15:9b:
         74:a4:6d:b5:b2:ce:17:fa:61:1c:36:44:d1:40:14:0b:0a:cb:
         ff:18:52:08:1f:16:89:da:68:49:d0:a3:f4:7a:ed:b2:7d:04:
         a0:60:92:fb:2f:9d:26:48:ef:2a:b8:11:c8:6b:59:4b:5d:cc:
         11:65:2c:80:82:65:48:91:eb:e6:aa:f3:2f:91:a8:4b:ee:f2:
         b4:42:06:82:5d:25:af:a8:fb:ae:e6:fb:94:c0:a5:76:d2:21:
         e2:ad:b7:a2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdkA2ECjDlXRd2mbC6BR+d6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRlMTY5OTUyZjk3ZjQ5NGNmZTBmNmI1NDI3Y2E1NmU4MTBj
MDVjZTAwHhcNMjUwNjEyMTIwMDMyWhcNMjUwNjEzMTIwMDMyWjAzMTEwLwYDVQQD
Eyg0ODBkOGE3Y2Y3YjkyYTFlOWM4NmI2YmRiYmE1NGNlNTE0ZjE5MTgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtKW8G2wbFazoiLIV8l45qfVYeB8R
rcNa8b5A7+LWYlT2ILVz+5rNwPk9Vl7Lhx6MoYrN0IgVyv4kgOBuZA3v5EjeFzcR
6eXyDPW7uSZJgkSQwhABw4ybu5XEGsG/QHC2hfuOHKf6T5olsU9dJBhipkFfJE8P
FCbZGtK6ykuYemX4tTEIVdGBxONRFdqgZqx4NUA9aui3BXR5g1LBHRig3H73IXT2
YkLxbTygGwYkCu62CqRwX9EbTxe1LUBMxjXS3YStDXBmLLxJN+r02EgmCEpm8Jy2
IeVNX1YA7+w3+FvvxR53meUUR585jCSMZ9fdpZWOAWG4PAi/E61gkBEjfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEgNinz3uSoenIa2vbulTOUU8ZGDMB8GA1UdIwQY
MBaAFN4WmVL5f0lM/g9rVCfKVugQwFzgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS9lNzg5NTQtMzFmZC00ZmQwLTlmYzEt
MGY0YjI4Yjg4NmY3LzEvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS9lNzg5NTQtMzFmZC00ZmQwLTlmYzEtMGY0YjI4Yjg4NmY3
LzEvM2hhWlV2bF9TVXotRDJ0VUo4cFc2QkRBWE9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAv4x/+Lpq
/HAIe+3/iZ7K0QatNzzr+bfhFhFIvUcGS2R5iBOpDc+yybQ4/yfPC0gjcn8PhHO5
feD0o04L2TGPMq5oMzOLyzQi4gOphqs66aYMmdETTtAKvmCnBbCQzSq2F73BDOFr
Kfwo+R4gadYtZeX27nc+sqppGRQNVFOIkUCH3ynx1JgPryMOl58f34uoH8vpOtKO
F4G8EelwMFRZAxWbdKRttbLOF/phHDZE0UAUCwrL/xhSCB8WidpoSdCj9Hrtsn0E
oGCS+y+dJkjvKrgRyGtZS13MEWUsgIJlSJHr5qrzL5GoS+7ytEIGgl0lr6j7rub7
lMCldtIh4q23og==
-----END CERTIFICATE-----
Generated at Thu Jun 12 18:08:20 2025 by rpki-client