Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File:                     3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier:          76SWJtKPD31HFKJ0aFVfq686Jqq1O57p/bp2Qud+H2s=
Subject key identifier:   A0:5B:5A:52:0E:39:F2:50:13:82:4A:F5:2C:A0:04:D0:60:33:DC:6A
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer:       /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial:       0197605DFEFA64842887B520293C4CB27B28
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number:          1596
Signing time:             Wed 11 Jun 2025 19:01:01 +0000
Manifest this update:     Wed 11 Jun 2025 19:01:01 +0000
Manifest next update:     Thu 12 Jun 2025 19:01:01 +0000
Files and hashes:         1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: 1Qt+OHbC3RpZ1UMzyfKjnVFCcctAINNEoV3lBSo/Y3A=)
                          2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
                          3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
                          4: KYs_VMmQL9k2rQHns_O4m4f35bc.roa (hash: 1ns98Zta2gRWyrvr5wyrj8EwmfBa9CnA+/wYUmR2SA0=)
                          5: ThB5ArM42WkjWUEQcQYsflTBSWo.roa (hash: bddz7FyKEk1/5lgcU0RqcQHG7LiGlbilafV868t6FT4=)
                          6: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
                          7: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
                          8: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 12 Jun 2025 19:01:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:60:5d:fe:fa:64:84:28:87:b5:20:29:3c:4c:b2:7b:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
        Validity
            Not Before: Jun 11 19:01:01 2025 GMT
            Not After : Jun 12 19:01:01 2025 GMT
        Subject: CN=a05b5a520e39f25013824af52ca004d06033dc6a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:62:c2:a6:7a:e7:cc:17:7c:4c:1a:51:8e:e8:
                    60:a7:47:ed:d5:45:e6:3a:93:da:b7:e1:0a:db:81:
                    71:7e:94:03:2b:ea:9c:f5:b0:b4:55:6b:7d:b0:49:
                    ae:97:86:c5:fc:8e:f1:47:11:cb:c5:f0:8d:8e:25:
                    a6:23:25:2c:69:9e:d6:f3:3b:a9:13:af:1d:45:19:
                    af:4b:ad:fd:98:45:f8:8e:99:1c:a9:de:ab:49:3e:
                    f9:ab:20:74:ea:f0:49:e7:13:f7:25:91:18:54:6b:
                    4c:53:09:17:4a:8b:e8:be:a9:25:55:89:61:70:1e:
                    c2:07:ec:44:d5:67:1d:51:c4:bb:ed:0e:c3:50:42:
                    f8:36:f8:c8:95:fd:78:1f:65:6d:ec:d2:f5:9d:ff:
                    b8:1f:cf:97:91:ce:fd:50:d8:0a:82:09:10:48:68:
                    27:d7:66:82:fd:ab:d5:6f:a5:b8:2b:4a:ce:43:44:
                    35:27:9e:a3:31:23:2f:ed:72:f6:af:9e:b5:76:ab:
                    bd:4d:94:3a:54:0e:21:78:48:48:0c:11:2d:4f:2e:
                    b7:a4:9e:11:f1:21:f7:bc:06:07:51:7a:dd:06:92:
                    ce:b4:6f:24:8f:3e:f8:d1:74:91:fd:82:a9:59:ff:
                    69:f5:14:fc:20:a2:84:46:11:12:98:3b:4b:7e:6b:
                    04:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:5B:5A:52:0E:39:F2:50:13:82:4A:F5:2C:A0:04:D0:60:33:DC:6A
            X509v3 Authority Key Identifier:
                keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         11:c5:72:6b:e0:0d:02:11:60:12:31:a1:7c:7e:0a:73:ea:c7:
         d8:b0:0f:c9:97:45:a3:cd:69:43:77:da:18:9a:56:5e:97:e4:
         8c:5f:64:ec:18:e0:57:b4:d1:89:a9:35:4c:4a:02:5e:5d:b7:
         19:b7:16:64:cc:d8:0b:8b:1f:46:f9:b6:91:fc:e7:50:f3:82:
         28:0f:93:61:15:19:a1:a4:22:e3:37:99:b5:4e:d9:ee:53:b9:
         01:56:f5:8a:5b:03:97:a7:1b:b2:2b:ea:78:bc:5e:7a:07:d6:
         71:69:9e:3e:c4:c3:45:b2:d4:aa:93:8f:80:bf:bf:c9:5f:e4:
         38:1f:73:9e:85:d2:0a:3a:a8:8a:45:20:50:93:d3:fb:7c:ee:
         b5:e0:84:1e:f8:ff:a6:56:65:be:b5:ed:b0:e6:9a:48:e8:1e:
         08:99:01:0d:2c:26:3c:5b:b0:a7:04:a7:1e:36:f4:4f:a0:2e:
         8b:88:07:2c:fc:6c:1e:68:fa:1f:c3:78:60:83:a7:ac:99:0a:
         2d:2b:90:07:5a:c6:0d:1c:de:4c:bb:d5:5a:88:8b:90:90:7a:
         f4:1a:b0:86:77:49:ae:8c:6e:a0:8a:41:f9:6b:a5:15:9d:73:
         3b:aa:36:f3:c4:0d:c5:72:d3:41:75:51:fe:a6:13:3f:8d:a9:
         0e:5d:8b:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 04:12:17 2025 by rpki-client