Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
File:                     OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft (raw, json)
Hash identifier:          ViGBWl/OUFRKOXaK0srppCGq065mUM4f1mZF+gKXRZU=
Subject key identifier:   F8:41:F2:F2:50:E8:97:A4:7D:BB:6A:4D:41:4B:68:24:E5:F5:6D:2E
Authority key identifier: 3A:6B:08:44:26:D9:DE:0B:10:E0:14:1D:1D:E4:3C:76:29:C1:96:82
Certificate issuer:       /CN=3a6b084426d9de0b10e0141d1de43c7629c19682
Certificate serial:       019CAC46A820CAA33C0FFB704CACC929019B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
Manifest number:          0EFA
Signing time:             Mon 02 Mar 2026 02:00:37 +0000
Manifest this update:     Mon 02 Mar 2026 02:00:37 +0000
Manifest next update:     Tue 03 Mar 2026 02:00:37 +0000
Files and hashes:         1: OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl (hash: v/KqBKmTRkWl78Bs2GQJLU062xyXcUm9rtbY+pdC8I0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 00:00:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ac:46:a8:20:ca:a3:3c:0f:fb:70:4c:ac:c9:29:01:9b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3a6b084426d9de0b10e0141d1de43c7629c19682
        Validity
            Not Before: Mar  2 02:00:37 2026 GMT
            Not After : Mar  3 02:00:37 2026 GMT
        Subject: CN=f841f2f250e897a47dbb6a4d414b6824e5f56d2e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:17:64:38:5e:8b:6d:a5:c5:ec:fe:89:63:18:
                    6b:b1:c8:99:f9:7e:b2:6e:65:65:67:d7:a6:0d:24:
                    f8:25:3e:1d:13:a0:27:4f:f2:ed:40:00:a5:a5:45:
                    93:ea:8c:53:e0:5f:1e:76:5f:0c:4e:2e:08:b2:40:
                    12:45:03:f6:0b:11:bb:5d:f4:af:67:e7:a3:76:d2:
                    a8:d9:2b:48:ce:16:b7:6d:c0:05:4d:11:c8:13:a9:
                    db:6b:65:a5:02:d4:8b:99:3e:ed:1f:02:91:39:a8:
                    71:cd:56:73:97:a6:20:3b:37:e5:ac:f1:7e:8d:b0:
                    6e:e8:f1:c6:50:58:f0:28:9b:2f:1f:58:31:1e:2c:
                    00:2f:33:e4:31:01:2a:73:0f:a8:47:1d:ba:33:8a:
                    0c:d0:61:da:fb:4f:a8:f4:3b:5c:3f:64:98:fe:97:
                    77:f0:72:62:19:77:43:14:4e:31:5a:da:72:4d:d8:
                    91:2c:8b:0d:2c:02:3e:ab:f3:9b:3c:5a:41:a7:41:
                    36:51:52:b8:53:f6:d1:01:2a:5a:46:34:4c:75:94:
                    44:6e:6a:bc:79:92:fd:54:13:fe:ae:c1:09:6c:e3:
                    75:6a:f4:00:14:c3:d9:9f:96:26:19:06:f2:ed:f4:
                    fd:9a:f5:4e:6f:4c:5b:15:a9:19:5e:b0:7b:c5:37:
                    8c:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F8:41:F2:F2:50:E8:97:A4:7D:BB:6A:4D:41:4B:68:24:E5:F5:6D:2E
            X509v3 Authority Key Identifier:
                keyid:3A:6B:08:44:26:D9:DE:0B:10:E0:14:1D:1D:E4:3C:76:29:C1:96:82

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/14/9bb275-86b0-42b2-a6ce-305b7ceeb796/1/OmsIRCbZ3gsQ4BQdHeQ8dinBloI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         25:49:47:29:55:28:37:67:05:b0:87:02:e7:2a:31:3d:9b:8f:
         ce:a9:f6:f5:b0:d6:b7:b0:ab:95:d1:2a:c6:33:a2:21:fa:1a:
         e5:50:f8:b1:cc:46:fd:db:b5:a0:47:13:69:bd:a4:cc:ec:9d:
         6f:f6:4c:ee:c7:97:d1:b5:25:db:dc:8b:36:17:62:72:ed:8f:
         40:1f:07:b8:be:a6:cb:6b:c1:5f:60:68:f1:81:c6:84:38:e0:
         3d:49:95:0e:69:60:3b:33:24:20:e9:3f:fc:8b:37:68:de:98:
         c8:dd:0f:17:86:1d:9b:1f:30:7e:34:de:72:61:a5:a0:d8:9f:
         d4:fc:2e:04:8a:7e:f5:5c:73:6d:2d:1f:d8:37:d6:3d:60:24:
         ad:6e:db:6e:46:e8:aa:b8:b5:f4:ce:63:f7:d7:cc:87:4a:05:
         6b:1c:3c:d7:50:6f:e3:69:d0:32:98:dd:7d:b1:50:6d:4e:38:
         15:7d:ee:e7:a3:13:14:69:8e:e8:e6:b6:82:1e:b7:31:ee:66:
         29:e5:b2:2a:0a:2f:cc:3f:6d:54:2c:58:6f:95:63:4a:ef:b9:
         b7:45:f3:00:b1:32:38:9a:02:70:a0:2d:e5:12:e7:05:bf:23:
         56:6a:ef:ba:06:c6:a7:69:36:89:c7:b4:25:76:ab:4c:d7:16:
         76:e3:0c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----