Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
File:                     OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft (raw, json)
Hash identifier:          JmMnqBaiF/NHkSmUAvvDqpwiaKD9CoM0mtzKck9srrw=
Subject key identifier:   44:FA:C3:63:D9:9F:91:E3:C0:41:B1:A9:B0:1B:89:37:F1:1C:FA:40
Authority key identifier: 3A:6B:08:44:26:D9:DE:0B:10:E0:14:1D:1D:E4:3C:76:29:C1:96:82
Certificate issuer:       /CN=3a6b084426d9de0b10e0141d1de43c7629c19682
Certificate serial:       019775D2E9B6E1D4E11B39D85FAF4D5D10DD
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
Manifest number:          0C47
Signing time:             Sun 15 Jun 2025 23:00:46 +0000
Manifest this update:     Sun 15 Jun 2025 23:00:46 +0000
Manifest next update:     Mon 16 Jun 2025 23:00:46 +0000
Files and hashes:         1: OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl (hash: /IQJPZlSSUpBvhf6f9PJ/h4uogvXgLWUt4pyD9ogUkE=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 16 Jun 2025 20:59:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:75:d2:e9:b6:e1:d4:e1:1b:39:d8:5f:af:4d:5d:10:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3a6b084426d9de0b10e0141d1de43c7629c19682
        Validity
            Not Before: Jun 15 23:00:46 2025 GMT
            Not After : Jun 16 23:00:46 2025 GMT
        Subject: CN=44fac363d99f91e3c041b1a9b01b8937f11cfa40
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:c5:e9:78:ef:04:c1:a2:e3:c2:28:c0:56:39:
                    3c:b1:7c:d2:ae:c1:c1:e9:d3:e0:80:aa:97:96:97:
                    00:3c:14:b2:15:47:62:0f:08:dc:a9:67:8f:06:a7:
                    b9:e6:70:8f:b1:74:79:43:c5:a3:4d:bd:07:aa:ff:
                    72:d5:d0:4d:fe:b1:44:6c:ca:fd:51:7e:e9:ef:ba:
                    6a:39:a4:b0:17:6f:86:82:ac:2b:8d:35:13:21:05:
                    a1:e9:45:00:4c:cb:80:61:1a:47:96:52:19:eb:5f:
                    4b:37:00:6d:14:b1:48:a0:5f:36:fb:7e:a5:c5:7b:
                    57:15:95:d6:ee:b0:22:84:45:89:44:eb:83:63:57:
                    24:ed:c2:5c:9e:e5:38:73:cf:71:66:dc:a0:11:e0:
                    4b:85:8e:c4:23:87:5f:20:05:e5:09:d3:ae:b7:13:
                    11:ff:34:a4:28:80:0c:1a:6d:d4:da:ec:55:c3:6f:
                    b8:8b:5f:49:97:6c:28:0d:82:29:e6:91:8c:31:63:
                    a6:e6:ff:d2:81:f4:c4:dc:ea:1c:4b:e0:7a:91:d1:
                    0f:74:71:4d:3b:f2:1b:eb:0b:ee:9d:20:51:e5:94:
                    7c:89:53:23:52:bd:17:d7:00:32:6d:30:69:21:97:
                    52:70:1b:8b:b3:ac:21:59:78:4f:be:b3:6e:de:5a:
                    03:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:FA:C3:63:D9:9F:91:E3:C0:41:B1:A9:B0:1B:89:37:F1:1C:FA:40
            X509v3 Authority Key Identifier:
                keyid:3A:6B:08:44:26:D9:DE:0B:10:E0:14:1D:1D:E4:3C:76:29:C1:96:82

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         48:3f:71:0c:fc:13:76:c3:94:70:ac:9a:31:10:36:84:5b:6a:
         dc:ab:f8:cf:0c:24:e2:5a:4d:72:0b:71:7f:f9:02:02:e5:f5:
         d0:8a:53:61:dd:07:2c:cb:59:61:1d:db:c5:ae:31:b9:d3:95:
         90:ed:e1:93:5b:09:60:07:d3:02:4b:e6:c3:4a:b2:d3:cc:ef:
         85:be:06:ad:93:c5:4a:39:f5:d7:e9:33:47:2c:66:9f:70:ee:
         5f:92:ad:8f:76:6d:2e:fc:7c:03:98:c1:44:f7:cb:cf:23:e5:
         46:52:38:8e:f7:f2:74:b3:7f:79:4c:1b:55:96:3a:98:2c:5b:
         7b:d7:aa:61:bd:e6:66:08:16:ff:85:7a:a4:9d:c7:1e:2a:70:
         c5:94:69:47:4d:26:f5:cb:3a:43:cc:3c:9f:1b:31:6a:0b:10:
         0e:bf:9d:58:8a:58:78:ef:3f:0e:17:27:cc:02:5e:11:3d:01:
         3a:ee:f0:17:5b:77:66:84:bb:bc:55:83:9e:4e:02:b6:1d:69:
         74:00:d1:9c:1f:35:19:7b:42:fc:58:28:9f:3c:ee:31:79:39:
         f3:23:d6:00:2b:24:78:c8:d8:dc:eb:c6:89:fc:7d:2c:c0:e1:
         b3:20:03:b7:6e:f6:a0:18:a6:8b:36:a0:d6:16:1d:0e:f2:de:
         7f:a1:9a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----