Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
File:                     O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft (raw, json)
Hash identifier:          PvOiBYDmjL/NF4pEqtR3DwDbKh6yPq2YSEmdnZdtTho=
Subject key identifier:   5F:C6:42:29:9A:10:41:ED:07:E8:DF:9A:43:66:0B:3C:E1:6C:14:04
Authority key identifier: 3B:EE:60:66:BB:65:2C:64:8C:7A:87:09:9D:0D:93:54:54:60:60:D3
Certificate issuer:       /CN=3bee6066bb652c648c7a87099d0d9354546060d3
Certificate serial:       019CAB33DEE01B480372F1DEC930D321E6F0
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
Manifest number:          1846
Signing time:             Sun 01 Mar 2026 21:00:29 +0000
Manifest this update:     Sun 01 Mar 2026 21:00:29 +0000
Manifest next update:     Mon 02 Mar 2026 21:00:29 +0000
Files and hashes:         1: O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl (hash: 9e9HAi5AsvYoyLdxj4AACzUsfojUz5+ul0VmLUX6hRs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 18:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:33:de:e0:1b:48:03:72:f1:de:c9:30:d3:21:e6:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3bee6066bb652c648c7a87099d0d9354546060d3
        Validity
            Not Before: Mar  1 21:00:29 2026 GMT
            Not After : Mar  2 21:00:29 2026 GMT
        Subject: CN=5fc642299a1041ed07e8df9a43660b3ce16c1404
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:d2:b6:b2:56:8e:14:a3:c3:99:eb:18:68:7b:
                    60:31:db:14:b1:6e:83:2b:9a:e2:fa:c8:dc:f1:54:
                    6e:08:56:92:c4:05:54:91:0a:4c:aa:1d:2c:67:b5:
                    c4:fd:93:1e:67:b7:38:6e:69:3a:4b:95:cf:b6:7b:
                    6c:3c:58:85:10:05:b7:64:9a:12:dc:6c:b5:41:4c:
                    62:8e:81:d1:89:38:84:72:3c:b5:82:0e:a8:c0:c1:
                    54:06:bd:6d:b3:bb:53:ae:53:a5:8c:2b:e4:32:e9:
                    12:9f:88:92:34:85:92:84:6d:f2:e4:a1:32:0e:f9:
                    03:77:3e:25:a0:af:ae:56:dc:2a:48:22:0e:79:4c:
                    1b:74:13:9c:e5:de:ef:93:b5:d6:b8:ee:37:3f:a2:
                    ae:a3:10:c4:f1:5a:d2:a3:86:c7:5d:d1:96:28:0d:
                    a9:95:9b:d0:5a:da:f9:2a:13:a5:e6:52:28:94:70:
                    e3:94:c8:35:cf:cf:41:93:d9:00:a7:f8:de:c1:e0:
                    9e:43:bb:cf:d0:0f:a2:33:d2:ab:97:0c:5f:7a:c5:
                    41:f1:92:cf:84:c5:9c:25:40:aa:cd:d8:48:f3:e4:
                    6c:7e:98:59:15:98:1e:f7:69:90:65:33:5c:a5:4e:
                    4c:58:09:0b:5b:fb:c1:e9:8c:eb:2d:5b:15:2a:f3:
                    e7:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:C6:42:29:9A:10:41:ED:07:E8:DF:9A:43:66:0B:3C:E1:6C:14:04
            X509v3 Authority Key Identifier:
                keyid:3B:EE:60:66:BB:65:2C:64:8C:7A:87:09:9D:0D:93:54:54:60:60:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O-5gZrtlLGSMeocJnQ2TVFRgYNM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/d29cf0-4064-498a-8de3-11646be16723/1/O-5gZrtlLGSMeocJnQ2TVFRgYNM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         66:05:f9:52:4d:3a:74:05:03:04:32:65:36:56:43:59:2c:b3:
         c8:34:1f:b2:a7:f7:fe:b3:21:41:cd:88:88:8a:e2:8b:a1:c0:
         0b:3e:e4:43:7a:0f:85:ce:68:38:21:31:af:0e:3b:d9:2a:a3:
         1c:7b:da:f1:a8:ca:16:32:1a:a9:e5:d8:0f:ca:df:f8:44:78:
         2a:24:57:76:e4:ac:39:30:ce:ca:84:33:e3:bf:99:80:be:81:
         59:28:5b:3d:c0:e5:7d:bd:30:51:dc:93:1d:4c:f9:1a:d8:f4:
         9a:6e:13:e4:6b:5f:15:ca:ce:fa:65:49:3c:50:38:cb:50:c4:
         66:a6:c5:cb:5d:92:b8:8e:19:e4:5f:03:a5:83:d3:f2:d2:7d:
         56:a3:eb:8a:e6:e9:7e:3a:89:ee:20:be:66:d3:9a:e5:48:e2:
         97:77:af:43:a5:7b:5f:bf:cd:56:89:80:58:da:bf:9f:66:57:
         7f:02:df:a2:6b:37:64:f4:e2:d0:ae:67:bd:b9:62:dd:6c:c2:
         47:15:41:01:ce:78:51:0d:83:45:d3:81:2b:42:8b:4f:08:af:
         55:19:53:af:47:8a:fb:2c:9d:5e:02:28:88:d9:e7:ae:ac:2b:
         8f:0b:f1:c5:d4:fa:3b:6c:12:1c:05:f0:af:e6:35:39:87:40:
         f0:f4:30:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----