Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
File:                     Heds5TXPuOIW7A0k3rV50aTKDgY.mft (raw, json)
Hash identifier:          jhS0xgE20366NOVkG53YhoHQlWUyjh4Nk1ttU9VRjeI=
Subject key identifier:   CC:63:9C:2F:C6:05:D5:27:62:FE:CF:B6:FE:E5:24:21:44:C9:16:D9
Authority key identifier: 1D:E7:6C:E5:35:CF:B8:E2:16:EC:0D:24:DE:B5:79:D1:A4:CA:0E:06
Certificate issuer:       /CN=1de76ce535cfb8e216ec0d24deb579d1a4ca0e06
Certificate serial:       0198D583AF7A76E8CA362B00687D5FB0F46D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
Manifest number:          037B
Signing time:             Sat 23 Aug 2025 06:00:33 +0000
Manifest this update:     Sat 23 Aug 2025 06:00:33 +0000
Manifest next update:     Sun 24 Aug 2025 06:00:33 +0000
Files and hashes:         1: Heds5TXPuOIW7A0k3rV50aTKDgY.crl (hash: ysOBwi4rtSmzXEDm8pbFQIQfnKP55sWkGHGM+KC1OpA=)
                          2: Xrjd26KSD1TzQLdbZ0iBnuMSgeo.roa (hash: EiQGdbjr/bLCsj+VsiQM91wVnJzTPBjoFf00fG7D2D0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 05:01:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d5:83:af:7a:76:e8:ca:36:2b:00:68:7d:5f:b0:f4:6d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1de76ce535cfb8e216ec0d24deb579d1a4ca0e06
        Validity
            Not Before: Aug 23 06:00:33 2025 GMT
            Not After : Aug 24 06:00:33 2025 GMT
        Subject: CN=cc639c2fc605d52762fecfb6fee5242144c916d9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:87:2f:3c:e2:41:d7:ec:6a:cf:35:d2:9b:eb:
                    b4:1b:2a:52:29:cb:84:dd:ed:90:f6:bc:76:2a:ff:
                    78:3e:79:4e:d7:52:7c:15:95:b6:25:a1:ae:fb:7a:
                    76:57:d2:fc:f1:18:96:06:ab:ee:95:26:8e:d9:b0:
                    69:d9:45:9a:1a:cc:74:f1:81:bc:6c:42:2e:37:c5:
                    e8:34:9b:b0:b0:71:44:40:e8:84:28:0f:b1:53:52:
                    54:73:1c:56:04:46:04:e4:16:88:c2:a6:f2:41:c9:
                    02:0a:53:79:b8:29:5b:10:70:24:ac:27:da:0f:7f:
                    de:2a:25:b3:32:38:c6:09:8c:a4:cd:05:33:8f:c7:
                    e4:c4:b8:32:1e:54:94:71:30:0f:6d:6c:e5:c1:a2:
                    57:16:b7:94:47:54:ba:16:52:0a:cd:4b:f9:3a:17:
                    6b:e8:a4:2a:d4:bb:d7:c0:56:91:34:0f:dc:fc:e7:
                    2f:0e:63:bf:d3:69:fb:97:7e:44:b0:06:19:73:97:
                    aa:80:ed:4d:86:c0:61:37:e2:42:12:71:74:64:fa:
                    70:33:90:42:40:61:4b:d4:10:ba:d0:de:33:9b:3b:
                    aa:34:13:ef:08:20:c1:61:e6:41:7d:ba:d2:c4:c8:
                    1e:cb:ca:00:6e:b5:0e:dd:9f:23:d0:07:70:39:bc:
                    2f:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CC:63:9C:2F:C6:05:D5:27:62:FE:CF:B6:FE:E5:24:21:44:C9:16:D9
            X509v3 Authority Key Identifier:
                keyid:1D:E7:6C:E5:35:CF:B8:E2:16:EC:0D:24:DE:B5:79:D1:A4:CA:0E:06

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Heds5TXPuOIW7A0k3rV50aTKDgY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/24/076add-edfa-4f37-9996-66ce9e3a8c1e/1/Heds5TXPuOIW7A0k3rV50aTKDgY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:96:3a:18:af:54:fd:f2:64:34:6e:46:29:38:5e:96:b6:ad:
         9c:de:4b:a8:5e:30:47:59:f5:07:9f:4d:11:a8:55:aa:d2:4a:
         ef:c7:7b:e6:b1:d5:43:94:e8:38:31:98:a1:ce:17:21:15:8b:
         19:54:6f:81:68:93:43:4b:d3:3b:f3:56:f0:a4:35:b2:d3:fa:
         cc:e7:5d:93:da:e5:2f:3e:b6:43:1a:c6:61:4f:50:cb:d4:1d:
         c5:23:eb:98:d8:8e:1f:da:0c:e5:c3:f8:24:de:bb:52:31:cc:
         00:7a:ba:25:9c:92:d3:21:64:cd:c0:24:d0:6b:9a:1a:b2:9b:
         b1:f7:05:04:30:bd:96:1d:40:94:c2:91:91:95:11:62:b4:25:
         1d:61:a3:26:aa:e7:b6:ed:1e:d2:27:c8:e2:42:17:93:fa:08:
         64:5d:e3:54:8d:28:2e:dc:49:94:16:1e:59:89:91:3a:de:82:
         9f:3d:bf:a7:fa:7c:c6:ee:dc:d1:b1:2c:d4:9c:5a:93:3b:09:
         62:7a:c7:0e:81:db:3a:3e:a8:18:c0:d0:14:71:7b:bf:22:f1:
         d2:36:cc:4b:04:4d:fc:26:78:01:f2:19:6f:0d:2b:9d:bd:f1:
         eb:63:91:a2:43:cf:10:9b:c0:8f:68:0d:92:19:b8:f8:36:5b:
         a7:17:4b:ab
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjVg696dujKNisAaH1fsPRtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFkZTc2Y2U1MzVjZmI4ZTIxNmVjMGQyNGRlYjU3OWQxYTRj
YTBlMDYwHhcNMjUwODIzMDYwMDMzWhcNMjUwODI0MDYwMDMzWjAzMTEwLwYDVQQD
EyhjYzYzOWMyZmM2MDVkNTI3NjJmZWNmYjZmZWU1MjQyMTQ0YzkxNmQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0YcvPOJB1+xqzzXSm+u0GypSKcuE
3e2Q9rx2Kv94PnlO11J8FZW2JaGu+3p2V9L88RiWBqvulSaO2bBp2UWaGsx08YG8
bEIuN8XoNJuwsHFEQOiEKA+xU1JUcxxWBEYE5BaIwqbyQckCClN5uClbEHAkrCfa
D3/eKiWzMjjGCYykzQUzj8fkxLgyHlSUcTAPbWzlwaJXFreUR1S6FlIKzUv5Ohdr
6KQq1LvXwFaRNA/c/OcvDmO/02n7l35EsAYZc5eqgO1NhsBhN+JCEnF0ZPpwM5BC
QGFL1BC60N4zmzuqNBPvCCDBYeZBfbrSxMgey8oAbrUO3Z8j0AdwObwvfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMxjnC/GBdUnYv7Ptv7lJCFEyRbZMB8GA1UdIwQY
MBaAFB3nbOU1z7jiFuwNJN61edGkyg4GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSGVkczVUWFB1T0lXN0EwazNyVjUwYVRLRGdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC8wNzZhZGQtZWRmYS00ZjM3LTk5OTYt
NjZjZTllM2E4YzFlLzEvSGVkczVUWFB1T0lXN0EwazNyVjUwYVRLRGdZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC8wNzZhZGQtZWRmYS00ZjM3LTk5OTYtNjZjZTllM2E4YzFl
LzEvSGVkczVUWFB1T0lXN0EwazNyVjUwYVRLRGdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJZY6GK9U
/fJkNG5GKThelratnN5LqF4wR1n1B59NEahVqtJK78d75rHVQ5ToODGYoc4XIRWL
GVRvgWiTQ0vTO/NW8KQ1stP6zOddk9rlLz62QxrGYU9Qy9QdxSPrmNiOH9oM5cP4
JN67UjHMAHq6JZyS0yFkzcAk0GuaGrKbsfcFBDC9lh1AlMKRkZURYrQlHWGjJqrn
tu0e0ifI4kIXk/oIZF3jVI0oLtxJlBYeWYmROt6Cnz2/p/p8xu7c0bEs1JxakzsJ
YnrHDoHbOj6oGMDQFHF7vyLx0jbMSwRN/CZ4AfIZbw0rnb3x62ORokPPEJvAj2gN
khm4+DZbpxdLqw==
-----END CERTIFICATE-----
Generated at Sat Aug 23 14:00:56 2025 by rpki-client