Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File:                     3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier:          roQDF1uSlhaOfHEnSLAXxzwQYzXYt5EyuNxMezqtRmM=
Subject key identifier:   ED:DC:17:1D:9A:A8:A4:64:48:C7:A1:4C:55:2E:9F:E7:D5:EA:58:D0
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer:       /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial:       01975A92A2C5EB8442E49C1C914346AFD506
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number:          1593
Signing time:             Tue 10 Jun 2025 16:00:48 +0000
Manifest this update:     Tue 10 Jun 2025 16:00:48 +0000
Manifest next update:     Wed 11 Jun 2025 16:00:48 +0000
Files and hashes:         1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: j2zapK1awV+0zNw3L1nE3LyjGvnUawlVUPNgDhWP7yg=)
                          2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
                          3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
                          4: KYs_VMmQL9k2rQHns_O4m4f35bc.roa (hash: 1ns98Zta2gRWyrvr5wyrj8EwmfBa9CnA+/wYUmR2SA0=)
                          5: ThB5ArM42WkjWUEQcQYsflTBSWo.roa (hash: bddz7FyKEk1/5lgcU0RqcQHG7LiGlbilafV868t6FT4=)
                          6: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
                          7: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
                          8: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 14:55:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5a:92:a2:c5:eb:84:42:e4:9c:1c:91:43:46:af:d5:06
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
        Validity
            Not Before: Jun 10 16:00:48 2025 GMT
            Not After : Jun 11 16:00:48 2025 GMT
        Subject: CN=eddc171d9aa8a46448c7a14c552e9fe7d5ea58d0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:4c:ef:7d:ba:c3:eb:a5:b5:9d:e4:b1:7d:90:
                    d1:1b:b3:b1:55:a3:f0:2b:97:9d:b1:45:a6:19:01:
                    c1:18:8b:54:c2:18:2e:ab:41:24:b8:25:db:c7:6a:
                    74:fc:ea:e4:7b:e3:5b:c9:27:f9:71:f6:d8:80:cf:
                    92:d3:a0:21:18:92:11:de:0f:e5:a1:38:4f:87:ac:
                    77:b7:64:8b:dd:f2:61:3c:78:e5:c3:22:cd:24:e0:
                    52:bd:f3:92:f5:34:89:44:81:74:04:04:89:5d:fc:
                    85:ee:02:c1:7d:ab:78:6b:1f:79:84:d4:32:68:be:
                    56:25:d6:62:35:be:51:ef:6b:c2:cb:59:22:ac:40:
                    93:53:f6:2c:99:4e:13:2f:f9:ce:4d:a8:fc:35:7b:
                    e9:b8:3d:01:2f:7e:d7:36:c7:99:da:21:db:3d:91:
                    6e:24:5c:57:89:f4:3e:27:73:02:6f:11:53:4f:1a:
                    75:26:08:78:74:63:c7:a0:33:60:63:79:ab:75:74:
                    ba:68:f2:a1:5b:4c:00:9f:54:bc:b7:16:e8:ac:92:
                    55:d0:e2:8a:a8:4e:5a:dc:f7:58:39:56:cc:af:59:
                    75:94:cf:03:04:73:ac:54:1d:3b:5e:7d:32:74:bd:
                    7c:cb:b1:ea:f7:2d:19:04:de:af:54:d5:00:29:88:
                    ef:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                ED:DC:17:1D:9A:A8:A4:64:48:C7:A1:4C:55:2E:9F:E7:D5:EA:58:D0
            X509v3 Authority Key Identifier:
                keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         7c:95:3e:6b:bd:18:10:24:2e:39:cf:0a:a0:9b:14:86:8f:57:
         27:f7:50:e9:70:6d:4a:d6:c5:e6:da:b9:86:7b:75:e1:75:b3:
         49:83:f7:1d:3c:05:61:40:6a:a4:e9:c2:8e:c2:79:2b:1d:46:
         30:d1:58:72:ed:16:00:e8:b8:03:75:54:b2:47:ec:ee:d7:bd:
         cc:6f:69:5f:2b:13:cc:ea:70:07:5b:bf:e8:1b:ef:e1:6e:0c:
         d2:7f:91:e0:c3:db:cf:c8:d5:f5:0d:58:df:eb:13:06:f7:a4:
         38:e7:af:49:58:af:c6:e7:4e:99:11:f8:97:66:d3:48:f8:e2:
         04:af:25:fb:c8:3c:4c:6c:77:22:29:cf:5d:e9:10:cc:d3:f1:
         0e:fd:8b:a0:a3:54:92:0d:45:62:a4:53:da:2f:ad:1c:bd:e1:
         cf:a5:ba:ca:1c:a6:bf:d1:6d:82:63:f9:18:ab:b5:34:e7:d5:
         b8:dd:ee:96:58:9c:76:99:21:72:c5:99:6f:43:8f:d4:5b:16:
         9e:88:0b:27:9d:4a:53:57:a5:56:50:d5:eb:34:1d:f0:78:13:
         ca:a4:7e:60:0d:7c:81:0d:5e:5b:f1:49:e1:b6:52:b7:bb:71:
         c8:5c:3b:54:f8:e8:29:68:4e:1f:7c:c6:0f:83:2f:3a:47:b4:
         10:b2:ea:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdakqLF64RC5JwckUNGr9UGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRjNzgyMWUxYmNiZjZlMDc0ZWE0ODE0YWFhNWM2M2UzYmE4
MTNjNWYwHhcNMjUwNjEwMTYwMDQ4WhcNMjUwNjExMTYwMDQ4WjAzMTEwLwYDVQQD
EyhlZGRjMTcxZDlhYThhNDY0NDhjN2ExNGM1NTJlOWZlN2Q1ZWE1OGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkzvfbrD66W1neSxfZDRG7OxVaPw
K5edsUWmGQHBGItUwhguq0EkuCXbx2p0/Orke+NbySf5cfbYgM+S06AhGJIR3g/l
oThPh6x3t2SL3fJhPHjlwyLNJOBSvfOS9TSJRIF0BASJXfyF7gLBfat4ax95hNQy
aL5WJdZiNb5R72vCy1kirECTU/YsmU4TL/nOTaj8NXvpuD0BL37XNseZ2iHbPZFu
JFxXifQ+J3MCbxFTTxp1Jgh4dGPHoDNgY3mrdXS6aPKhW0wAn1S8txborJJV0OKK
qE5a3PdYOVbMr1l1lM8DBHOsVB07Xn0ydL18y7Hq9y0ZBN6vVNUAKYjvBQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO3cFx2aqKRkSMehTFUun+fV6ljQMB8GA1UdIwQY
MBaAFNx4IeG8v24HTqSBSqpcY+O6gTxfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYt
ZDQ4YjQyZWYxNTliLzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC85ZGFmZjQtZjE1OC00ODBmLWI0MWYtZDQ4YjQyZWYxNTli
LzEvM0hnaDRieV9iZ2RPcElGS3FseGo0N3FCUEY4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfJU+a70Y
ECQuOc8KoJsUho9XJ/dQ6XBtStbF5tq5hnt14XWzSYP3HTwFYUBqpOnCjsJ5Kx1G
MNFYcu0WAOi4A3VUskfs7te9zG9pXysTzOpwB1u/6Bvv4W4M0n+R4MPbz8jV9Q1Y
3+sTBvekOOevSVivxudOmRH4l2bTSPjiBK8l+8g8TGx3IinPXekQzNPxDv2LoKNU
kg1FYqRT2i+tHL3hz6W6yhymv9FtgmP5GKu1NOfVuN3ullicdpkhcsWZb0OP1FsW
nogLJ51KU1elVlDV6zQd8HgTyqR+YA18gQ1eW/FJ4bZSt7txyFw7VPjoKWhOH3zG
D4MvOke0ELLqSg==
-----END CERTIFICATE-----
Generated at Tue Jun 10 22:53:08 2025 by rpki-client