Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
File:                     3RWKDaAyZt8UTImntuNadhxJmPc.mft (raw, json)
Hash identifier:          7llxsagFSsbkccqjU5uX2T+Rw43aCY4IpocphX8iu68=
Subject key identifier:   8F:D6:B3:33:9F:93:D2:BD:54:87:C3:12:55:06:49:CC:C0:05:33:57
Authority key identifier: DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7
Certificate issuer:       /CN=dd158a0da03266df144c89a7b6e35a761c4998f7
Certificate serial:       0199FF599B4A73F43A8B52BB28BD359A81EE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
Manifest number:          03DD
Signing time:             Mon 20 Oct 2025 02:01:26 +0000
Manifest this update:     Mon 20 Oct 2025 02:01:26 +0000
Manifest next update:     Tue 21 Oct 2025 02:01:26 +0000
Files and hashes:         1: 3RWKDaAyZt8UTImntuNadhxJmPc.crl (hash: t8vXlgl7C3sZlxRUVf7WZp6WV3B6xm3QBdciK5XdMBc=)
                          2: hjp9r4jkfdcWh8tb4IbJ8JLqvhg.roa (hash: rpnDBu2YggoyGIw/C4Ub9AMkAXEhq0st1VH7UXhjugk=)
                          3: oyehTC9fC3RxVNTxQ-3Nace4xCo.roa (hash: 6amsBM8Jkzid3Hbf3NCrvWV5lgaxarQNmZ7omOl4H1Y=)
                          4: tWWoO6Q9xW9qzxs1LTkk9o7qkwc.roa (hash: dIS2lAatvIYTUHXvxYqBBEq9rurmrnQiuE0cglSeBdY=)
                          5: zdvIB-MX7mBXxPXY9Gvkyg4DaIA.roa (hash: JzeLYwYOJtUYF4eEhrs8y3e0iaiCpHB7RqKZXjFT6qg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 21 Oct 2025 02:01:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:99:ff:59:9b:4a:73:f4:3a:8b:52:bb:28:bd:35:9a:81:ee
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dd158a0da03266df144c89a7b6e35a761c4998f7
        Validity
            Not Before: Oct 20 02:01:26 2025 GMT
            Not After : Oct 21 02:01:26 2025 GMT
        Subject: CN=8fd6b3339f93d2bd5487c312550649ccc0053357
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:8c:55:d1:12:a0:73:3f:cd:38:44:ab:c2:67:
                    00:e5:43:12:c9:07:92:ea:71:62:61:45:45:e7:47:
                    23:48:00:ef:53:a4:82:93:45:a1:4f:49:3d:52:3c:
                    9d:d5:0a:be:1f:71:9b:79:28:c4:0d:54:d4:60:cb:
                    09:c8:7b:1e:bf:21:5d:e5:20:88:4c:4c:dc:ff:77:
                    de:f0:7a:1e:da:6b:ea:03:c1:2b:d9:1f:b0:82:15:
                    0c:1f:8b:8e:c9:e7:c8:4a:d9:d3:bd:55:13:c7:89:
                    a1:e8:e0:5a:f0:19:77:12:f6:a3:b4:e0:3b:7f:8a:
                    ac:6b:69:32:e6:9a:1e:74:64:cc:bd:24:1c:df:e7:
                    d4:55:f2:ac:f6:4e:9a:4f:d7:d1:84:12:35:3b:08:
                    97:71:8b:43:a7:2a:8f:86:70:78:94:72:1a:96:b2:
                    10:cf:e2:aa:c8:02:eb:42:d1:d1:9e:9b:d2:d9:64:
                    c0:b1:74:7e:99:8d:bb:5d:5a:a8:dc:1c:31:af:79:
                    d0:1c:c8:d3:fa:b7:ca:23:51:19:84:7d:7f:e7:4e:
                    92:6d:5c:ba:aa:95:e2:9d:09:df:5c:f2:ea:07:d9:
                    56:4c:74:25:29:bc:29:3a:98:64:23:e2:22:0c:9e:
                    a9:53:84:54:72:27:f6:16:47:2c:1c:e5:c4:06:a3:
                    7c:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:D6:B3:33:9F:93:D2:BD:54:87:C3:12:55:06:49:CC:C0:05:33:57
            X509v3 Authority Key Identifier:
                keyid:DD:15:8A:0D:A0:32:66:DF:14:4C:89:A7:B6:E3:5A:76:1C:49:98:F7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3RWKDaAyZt8UTImntuNadhxJmPc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/0b55ab-acc8-41da-9c80-e8f20aadde99/1/3RWKDaAyZt8UTImntuNadhxJmPc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         d5:97:b8:a6:37:73:99:61:ee:13:58:1a:da:82:34:68:6e:20:
         e2:ee:a9:73:a9:e9:63:90:95:32:21:c6:cf:39:b3:3c:43:db:
         21:90:df:8a:24:a3:cb:20:6c:93:ab:05:73:35:47:6e:bd:9f:
         2a:fa:9f:23:45:c2:9b:40:c1:ca:3b:fb:98:1a:42:9a:8f:b9:
         a6:92:85:9d:96:18:14:48:73:d4:3e:51:8d:69:05:bc:de:ee:
         29:61:21:48:f5:14:65:6c:3a:a4:7d:b1:34:97:f7:45:ac:d4:
         74:d7:2c:a6:99:a8:53:24:08:7f:87:84:84:c6:94:05:bd:49:
         dd:14:61:ee:e2:f0:a7:73:73:e0:f3:6c:be:e4:02:11:54:1b:
         e2:92:fa:97:e2:48:2b:94:c8:b3:0a:8b:80:05:6f:c7:69:0d:
         69:62:bf:4f:a4:ea:06:f1:10:77:36:5c:9f:48:96:29:e5:05:
         e6:df:04:35:e6:4a:1c:39:09:b2:40:4d:8d:cb:df:52:e3:9d:
         c5:eb:69:5c:5a:9c:65:2a:72:06:f0:74:72:d5:1e:c2:9d:2d:
         67:74:ec:63:fd:7f:20:3a:98:cc:53:a4:57:82:8c:65:7e:22:
         2e:5a:44:57:a2:f4:c7:a2:b2:56:4b:49:eb:ad:33:6c:dc:c6:
         24:82:cb:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 12:00:44 2025 by rpki-client