Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
File:                     orO6gtodtcGUN6wzeDhG8vK_9GI.mft (raw, json)
Hash identifier:          OwEygPbZtmAIAlbtpyS3LOgpHznQ6I87oxB7e9/NDrM=
Subject key identifier:   9D:7C:C0:37:78:ED:6B:56:7C:22:02:8C:17:1B:EB:C4:63:1F:56:23
Authority key identifier: A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62
Certificate issuer:       /CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
Certificate serial:       019D3865EDF2ABE3359C97B5ECDD41389CB5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
Manifest number:          062F
Signing time:             Sun 29 Mar 2026 07:01:37 +0000
Manifest this update:     Sun 29 Mar 2026 07:01:37 +0000
Manifest next update:     Mon 30 Mar 2026 07:01:37 +0000
Files and hashes:         1: orO6gtodtcGUN6wzeDhG8vK_9GI.crl (hash: boNStlSMgMZ9ORwn5oOMN81y9mCuEPs//CDeJm5hIJw=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 30 Mar 2026 07:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:38:65:ed:f2:ab:e3:35:9c:97:b5:ec:dd:41:38:9c:b5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
        Validity
            Not Before: Mar 29 07:01:37 2026 GMT
            Not After : Mar 30 07:01:37 2026 GMT
        Subject: CN=9d7cc03778ed6b567c22028c171bebc4631f5623
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:ff:46:23:34:80:34:99:08:8c:05:11:f6:ae:
                    47:21:bd:ec:de:a8:dc:37:aa:c5:35:f7:02:ff:aa:
                    7b:83:2c:36:3a:45:8a:bc:a0:a9:32:c0:23:88:45:
                    9b:01:2d:70:b6:e7:29:3b:bb:69:86:1e:fc:f4:89:
                    eb:00:42:1a:4d:60:94:bc:0d:1c:48:4e:55:6e:c3:
                    88:13:f4:c8:94:01:f4:df:c2:b8:d2:19:14:b7:2d:
                    52:99:a7:22:28:5d:9f:a3:6c:93:ac:49:de:c9:71:
                    b2:6c:7f:56:07:13:96:bd:3f:8b:f1:f0:2f:55:c3:
                    af:8b:95:e2:83:78:15:f9:87:f0:68:d1:48:9c:44:
                    c6:5a:e4:4c:3e:e3:34:e0:88:f9:02:ce:4b:f2:fd:
                    85:d0:31:4f:40:d7:5d:80:33:6b:15:85:74:ed:60:
                    88:b3:48:f9:e6:c4:9e:74:3f:36:36:96:c9:59:e8:
                    7a:1d:eb:90:38:f9:33:3f:e9:71:09:d2:3b:fc:6c:
                    f2:a3:17:c6:87:69:45:25:78:7e:ae:ef:b5:ab:a0:
                    40:4d:b8:a6:0d:d0:d5:01:0b:8a:40:05:7d:4d:97:
                    db:b2:6a:ef:3b:c5:54:b9:34:f3:6d:b2:ab:31:61:
                    66:c4:a9:45:ca:03:21:dc:f3:2c:ab:20:f0:94:60:
                    3a:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:7C:C0:37:78:ED:6B:56:7C:22:02:8C:17:1B:EB:C4:63:1F:56:23
            X509v3 Authority Key Identifier:
                keyid:A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b0:e0:f2:0b:23:9c:68:7c:39:a3:c9:2a:67:d2:af:ea:99:55:
         19:8a:89:1b:4e:71:f0:b7:81:97:61:66:04:e0:54:d7:cc:9a:
         84:f5:f3:f1:09:86:2c:ad:89:4b:b4:aa:c5:42:a6:16:4f:cc:
         0c:57:6e:d5:df:bf:4f:f8:e2:77:e4:c2:0d:f2:66:7a:8c:dd:
         72:9e:1a:e9:9f:11:1c:f4:a4:93:63:1c:1a:b8:93:80:17:99:
         05:e1:ae:42:1a:7e:87:cb:df:62:ff:b2:65:06:03:df:db:a9:
         9d:54:81:6c:5c:97:89:91:93:d3:b2:70:92:09:18:54:2b:14:
         09:0b:7e:e1:16:9e:50:7a:15:60:61:83:01:31:18:c9:03:58:
         02:a0:94:29:0d:04:96:f3:4d:ef:e4:50:02:42:03:c6:e2:d6:
         09:5d:53:57:8e:54:c7:b2:c4:f7:74:2f:9a:9f:23:e5:11:4e:
         89:d4:09:f1:6f:ba:99:43:50:93:12:eb:88:e3:3a:4e:2a:b6:
         68:42:43:cc:c2:2e:ec:20:c7:97:f4:8a:e1:ae:c0:e2:80:2c:
         76:d6:e7:54:e3:c0:17:4b:86:19:98:d4:1f:f7:56:25:b9:57:
         f6:fa:75:8c:5f:bd:4e:ff:39:f0:a7:b9:02:c8:86:b9:17:fa:
         76:fd:17:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----