Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
File:                     3Hgh4by_bgdOpIFKqlxj47qBPF8.mft (raw, json)
Hash identifier:          v/NINc5kr5qRulM+So5q5p6txytLHAafdTKP40tJNWA=
Subject key identifier:   F2:23:6F:D6:96:0A:02:7D:38:DD:43:F2:D6:02:CA:3A:2F:65:80:F6
Authority key identifier: DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F
Certificate issuer:       /CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
Certificate serial:       01976A06152E6EB92F7A5A6972CA3E0FDF37
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
Manifest number:          159B
Signing time:             Fri 13 Jun 2025 16:01:12 +0000
Manifest this update:     Fri 13 Jun 2025 16:01:12 +0000
Manifest next update:     Sat 14 Jun 2025 16:01:12 +0000
Files and hashes:         1: 3Hgh4by_bgdOpIFKqlxj47qBPF8.crl (hash: Vb7k+BOj6M7XczQY6A9fpR1IHaPJop7bjhCFEx2i7/w=)
                          2: 4MXMdJWAndzkkiHFnmOxrlOkHIs.roa (hash: OiJ7+6r4bWAFN5vOHYBjk8U2TGkBpOBvwNxXY+Qb+To=)
                          3: FnxhJQ5jd2jBoCiaTZ0_b7pYcn4.roa (hash: YbjDITXwnNkMY1d8iM5sg8TPIw1q/oeZDc75wOKQiOE=)
                          4: KYs_VMmQL9k2rQHns_O4m4f35bc.roa (hash: 1ns98Zta2gRWyrvr5wyrj8EwmfBa9CnA+/wYUmR2SA0=)
                          5: ThB5ArM42WkjWUEQcQYsflTBSWo.roa (hash: bddz7FyKEk1/5lgcU0RqcQHG7LiGlbilafV868t6FT4=)
                          6: e8yyBy_WYk0MmiOF_-c6ZOE78e0.roa (hash: XCwVuTCuJ/Y/WAoLWIkeepq2X2E/4/mFMfojm79U0cM=)
                          7: uRWNqrl7lEtL4BdXY6zm3up7W9g.roa (hash: 5dZDwl/VQCf/bzBpVyR3+W+VZSdwG299LMVlDR4jvrU=)
                          8: w6y6tA7YYKjCRBu0w7S_pejO5kU.roa (hash: m4339RdE053FyeU5wm1JX9FNzAT+cE85Onp7E9j3YoE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 14 Jun 2025 16:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6a:06:15:2e:6e:b9:2f:7a:5a:69:72:ca:3e:0f:df:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc7821e1bcbf6e074ea4814aaa5c63e3ba813c5f
        Validity
            Not Before: Jun 13 16:01:12 2025 GMT
            Not After : Jun 14 16:01:12 2025 GMT
        Subject: CN=f2236fd6960a027d38dd43f2d602ca3a2f6580f6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:fd:0f:2f:31:68:6a:13:0c:97:43:eb:fe:6d:
                    54:bf:6f:17:20:68:01:d5:8e:d3:65:14:7a:17:ee:
                    18:99:d6:2a:c5:04:57:ee:6a:93:93:0a:49:2e:e6:
                    1f:ca:8d:63:3c:5c:dd:2e:3f:8f:b6:55:b9:6f:39:
                    0b:ba:21:a6:e1:65:5e:dd:91:e8:ab:4c:62:72:e5:
                    a0:85:d6:a3:fc:e4:f1:a9:b1:4f:8f:fc:c8:23:47:
                    3a:45:eb:f5:77:33:ba:b7:f7:96:07:33:b7:e3:aa:
                    07:14:ab:99:72:f5:87:c9:30:b1:a1:d0:82:45:e4:
                    20:0b:d3:b5:22:78:04:40:e9:b8:3f:9a:f5:69:04:
                    c0:a8:5e:60:f6:7b:67:fd:fe:8d:5d:cc:08:70:cd:
                    72:36:59:4a:18:7d:49:1b:1e:30:43:df:2a:e4:bc:
                    ed:73:a2:58:e4:6b:b9:bf:1b:79:ba:45:10:d0:0a:
                    52:a4:ad:a6:f6:f6:11:23:ce:e4:45:e1:01:69:da:
                    f0:a1:e9:9a:79:0a:97:b8:99:4a:0e:82:1e:b8:f7:
                    e4:06:e0:35:1e:cf:c1:ac:ed:89:92:c5:a7:74:0c:
                    f3:c7:49:39:22:3b:65:33:55:ed:58:c3:8e:82:d3:
                    6a:03:6a:f8:15:dc:9a:df:df:de:d7:f9:13:98:51:
                    d6:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:23:6F:D6:96:0A:02:7D:38:DD:43:F2:D6:02:CA:3A:2F:65:80:F6
            X509v3 Authority Key Identifier:
                keyid:DC:78:21:E1:BC:BF:6E:07:4E:A4:81:4A:AA:5C:63:E3:BA:81:3C:5F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3Hgh4by_bgdOpIFKqlxj47qBPF8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/9daff4-f158-480f-b41f-d48b42ef159b/1/3Hgh4by_bgdOpIFKqlxj47qBPF8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:df:5d:e9:3c:f5:70:08:5f:3e:fe:1a:c3:7c:3a:7b:42:11:
         31:ea:08:57:29:a3:a5:4f:b9:2f:fb:10:6a:ec:26:ea:b8:4b:
         44:0f:c4:d7:30:37:a8:bd:a2:b6:2a:94:6f:2b:5e:f8:e9:96:
         e6:e1:d7:57:7e:f3:58:ce:62:c7:57:c7:b4:20:77:51:e9:8f:
         73:19:ab:33:08:49:17:22:b5:2f:13:ee:aa:a9:75:3b:36:a0:
         7c:ab:04:ea:24:99:c7:b6:ce:2c:fd:e6:94:31:6b:cf:6a:b6:
         f7:52:74:ee:0e:45:76:4c:57:36:62:5f:98:b3:7e:27:f1:5e:
         0a:c0:36:2c:86:f5:88:a2:48:4b:95:8a:0e:1c:12:bd:ad:e5:
         2d:8a:9e:1b:b8:37:1f:49:e0:21:6b:76:76:9e:84:51:3e:2f:
         21:9b:9d:f3:2b:31:17:b1:9c:5c:95:d6:79:b7:ca:7b:49:44:
         76:33:f0:6d:45:f2:4c:cc:95:53:d1:2f:1b:b4:c5:6c:64:94:
         f4:b5:7b:41:8b:83:5a:e8:2b:1b:6f:cd:c0:21:5a:56:38:45:
         99:6b:04:9f:25:a4:3a:82:83:a0:b3:9a:b1:d0:ee:28:78:27:
         85:ce:6d:b4:c8:1e:2a:61:4a:9f:c8:8a:20:e6:be:f7:94:de:
         13:28:bc:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 21:07:13 2025 by rpki-client