Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
File:                     3EThniu05wI8wboQ1Jt07eS_hlw.mft (raw, json)
Hash identifier:          4SXqBJRDQWV2Dyi0rbsUK9IhXUTLaVkGARxQ30+QP0k=
Subject key identifier:   DA:DF:EA:1A:19:BB:6C:54:13:96:62:90:C4:3F:F5:AD:9B:84:D9:0F
Authority key identifier: DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C
Certificate issuer:       /CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
Certificate serial:       019893A40F9AFA7BA22C66BD4C4260389BFF
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
Manifest number:          0F85
Signing time:             Sun 10 Aug 2025 11:00:59 +0000
Manifest this update:     Sun 10 Aug 2025 11:00:59 +0000
Manifest next update:     Mon 11 Aug 2025 11:00:59 +0000
Files and hashes:         1: 3EThniu05wI8wboQ1Jt07eS_hlw.crl (hash: Sq0l0ON2jNNVwMRbqRRDk1xrCB7VZ6Ew6hnlwQakkGs=)
                          2: NO2hwXxk6AiYVNho9DdnmakKibo.roa (hash: KjRA6xm9G+dFvFvEr1pRfwpBhmr4/09q+ZWaH5ApdDY=)
                          3: On6R4nNTZ0YYv_0GBGytm6COqe8.roa (hash: bNbiiOOyNE6FHV7YY8Nd3d02QHZTqUZthKpv3jqVHn4=)
                          4: _UiUxv0oU2Vs8vl9aQlqGT-rguM.roa (hash: EibngS/6U5WbywdZke7WcdMlnrfByt82mvGn2UMi818=)
                          5: qnHwx7ZjqkHGMQ3UL_6iH_ZiPZ0.roa (hash: v6x8FXcAuZgdOrpOuZAffsHlmhE2j1MwJFDVe05keHE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 11 Aug 2025 08:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:93:a4:0f:9a:fa:7b:a2:2c:66:bd:4c:42:60:38:9b:ff
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc44e19e2bb4e7023cc1ba10d49b74ede4bf865c
        Validity
            Not Before: Aug 10 11:00:59 2025 GMT
            Not After : Aug 11 11:00:59 2025 GMT
        Subject: CN=dadfea1a19bb6c5413966290c43ff5ad9b84d90f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:20:bf:fb:2d:0e:e5:9e:06:6d:b0:59:8f:2e:
                    cf:78:14:84:94:67:f0:8c:a4:e1:da:db:1d:c0:a4:
                    30:3e:7a:65:0c:7d:fd:bf:57:0f:fa:93:ac:63:61:
                    7f:35:e5:52:2f:b8:1f:20:4d:42:63:2f:e6:06:b6:
                    72:7c:c6:98:f9:44:00:59:a3:3b:4e:d5:32:9d:8d:
                    fa:c4:85:46:49:80:55:36:99:6b:fd:f5:5d:fb:c8:
                    e9:ae:94:f8:e9:35:7e:c0:fc:d9:30:c7:19:0f:0b:
                    67:50:db:ab:51:57:25:3a:8d:43:6d:59:70:1d:fc:
                    ba:bf:26:40:6d:a5:3e:23:42:26:6e:a2:8d:72:2b:
                    0f:dd:89:1d:fc:87:81:68:dc:fa:4b:63:28:39:a6:
                    2d:68:aa:41:1a:37:9f:8d:9a:c7:77:fe:8a:7a:5a:
                    7e:f2:7d:fb:87:43:3c:25:76:bb:d3:be:4c:d0:a3:
                    80:e8:f1:0a:1b:d4:30:23:f4:5e:5f:0b:49:55:81:
                    d5:e8:aa:96:e9:36:e8:76:6b:0d:16:01:d0:58:83:
                    5b:41:99:5f:72:a0:b5:78:ea:ea:96:e2:f2:f9:59:
                    be:f7:c1:d8:d7:a1:71:dd:4a:a7:5c:e7:41:ab:84:
                    e0:81:f8:a3:32:46:57:96:37:cf:ff:33:4a:c1:b1:
                    b7:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:DF:EA:1A:19:BB:6C:54:13:96:62:90:C4:3F:F5:AD:9B:84:D9:0F
            X509v3 Authority Key Identifier:
                keyid:DC:44:E1:9E:2B:B4:E7:02:3C:C1:BA:10:D4:9B:74:ED:E4:BF:86:5C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EThniu05wI8wboQ1Jt07eS_hlw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/05/46f5b9-6000-4072-89f2-4c82ace72c85/1/3EThniu05wI8wboQ1Jt07eS_hlw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4e:e0:df:27:e1:78:ce:27:83:2e:10:5e:db:76:02:a2:01:11:
         a7:c6:e6:5c:65:ba:c6:b3:19:24:52:4a:50:a7:92:3f:1c:94:
         32:1e:dc:35:b1:10:06:cf:e6:ea:d8:53:74:30:b4:f6:0f:17:
         b3:c3:ee:1c:4d:5a:cf:a8:49:8b:2f:1e:0a:b7:cf:34:7f:ba:
         22:73:f4:ad:29:c5:ee:97:31:49:ff:4e:85:a0:2d:41:b5:a2:
         ad:cd:17:8e:b1:6d:89:07:7e:e9:04:e3:76:1d:40:27:29:8e:
         4a:1f:a6:81:a9:85:b1:5b:43:ef:99:a4:ce:91:82:9c:c1:ea:
         13:c0:4b:0f:09:f0:af:f8:c6:b6:54:56:f7:91:bd:80:bb:bf:
         0e:4c:4e:a0:fc:7f:7a:e8:7c:c9:56:ad:6d:77:d6:25:e3:f3:
         c2:fe:2d:5e:75:51:aa:e7:76:69:cd:6d:c9:9d:04:b2:63:09:
         80:ae:ed:ba:07:a0:c2:3d:3e:32:f6:fa:73:13:8a:09:94:f1:
         b6:d4:bf:a5:06:97:e3:a0:c1:47:5d:74:21:95:1b:a5:d1:8c:
         7a:05:91:ed:a5:47:f4:2b:4a:d5:2b:71:e8:8f:0d:42:19:d3:
         26:7d:47:d9:99:50:45:3f:d2:61:83:43:7d:85:76:d2:57:77:
         55:53:22:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:56:03 2025 by rpki-client