Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft
File:                     OFt-lPpg22hRcc8TabHO-24g8zQ.mft (raw, json)
Hash identifier:          lzxv+togu4Vn/I1RPzFPcBF8eJ5Th1dc0zGuOlVd2Ok=
Subject key identifier:   C9:BF:DE:24:20:9E:EA:45:37:6A:04:31:37:5E:56:67:39:50:3E:45
Authority key identifier: 38:5B:7E:94:FA:60:DB:68:51:71:CF:13:69:B1:CE:FB:6E:20:F3:34
Certificate issuer:       /CN=385b7e94fa60db685171cf1369b1cefb6e20f334
Certificate serial:       019CAB6B6263CE084F87D7852AF4A1EE3E8F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OFt-lPpg22hRcc8TabHO-24g8zQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft
Manifest number:          0799
Signing time:             Sun 01 Mar 2026 22:01:07 +0000
Manifest this update:     Sun 01 Mar 2026 22:01:07 +0000
Manifest next update:     Mon 02 Mar 2026 22:01:07 +0000
Files and hashes:         1: OFt-lPpg22hRcc8TabHO-24g8zQ.crl (hash: OfbwVpL+XRvaNKpwFrpDpRlDf9yEp9rGkZ48lmEugQQ=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OFt-lPpg22hRcc8TabHO-24g8zQ.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 02 Mar 2026 22:01:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ab:6b:62:63:ce:08:4f:87:d7:85:2a:f4:a1:ee:3e:8f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=385b7e94fa60db685171cf1369b1cefb6e20f334
        Validity
            Not Before: Mar  1 22:01:07 2026 GMT
            Not After : Mar  2 22:01:07 2026 GMT
        Subject: CN=c9bfde24209eea45376a0431375e566739503e45
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:b8:5c:31:b7:9c:69:50:70:8a:4d:30:ef:fb:
                    07:6d:95:27:1d:5a:dd:5d:d7:e9:2b:ff:8f:87:bc:
                    8f:36:9f:3f:03:ff:fb:c6:98:77:4d:3f:49:e4:8d:
                    bd:7a:de:b0:bc:c0:b0:46:c1:e3:bd:5d:a4:c6:c8:
                    56:65:0a:15:f7:5c:39:25:86:00:9e:61:16:36:ba:
                    b5:b8:a5:58:50:cf:1a:f1:c0:1b:36:62:b8:27:9e:
                    83:df:ca:4f:fa:f6:ee:dd:9a:b3:ae:ef:83:b4:7c:
                    15:cb:da:cd:21:e7:94:ab:12:53:bf:ee:50:a0:93:
                    b2:e6:cc:c4:8b:2f:03:09:d3:e4:73:1c:44:c8:d1:
                    bb:d8:1e:1c:f5:5a:b6:2b:35:ef:cc:5a:8e:52:d7:
                    25:9e:16:68:ca:46:5b:ee:27:81:a7:f9:6b:89:54:
                    4e:f2:3a:e0:b8:01:23:68:01:e5:77:aa:32:7a:79:
                    e5:fa:99:e6:11:b3:35:08:1d:f2:5a:e0:f5:70:93:
                    f7:af:62:05:0c:b6:8b:5c:2b:1d:dc:5d:55:be:99:
                    a7:2d:c9:ef:71:3e:d9:02:49:9e:eb:f8:3e:eb:20:
                    d9:03:58:a7:eb:b9:d4:e2:ae:d0:8d:5e:1e:5f:9e:
                    97:f4:2e:e8:f9:09:54:5c:45:66:70:cf:e0:dd:32:
                    a2:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:BF:DE:24:20:9E:EA:45:37:6A:04:31:37:5E:56:67:39:50:3E:45
            X509v3 Authority Key Identifier:
                keyid:38:5B:7E:94:FA:60:DB:68:51:71:CF:13:69:B1:CE:FB:6E:20:F3:34

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFt-lPpg22hRcc8TabHO-24g8zQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/19a307-ecba-4158-a2d1-c3b46ac9f26d/1/OFt-lPpg22hRcc8TabHO-24g8zQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:15:e8:26:7b:b0:3c:e0:18:12:27:13:09:6b:7f:b3:3f:53:
         fa:f8:98:28:48:0a:2d:5d:18:70:e5:26:11:41:e2:1a:17:32:
         40:8f:bd:06:d3:bc:d4:b2:12:6a:f0:50:67:89:dc:61:2d:cf:
         cd:68:16:a5:a1:2a:fc:da:6a:b2:03:ff:1f:75:d6:79:3a:c3:
         c0:a6:d1:af:40:e8:73:85:f4:71:42:96:a4:98:5a:6b:26:4d:
         23:1f:a7:47:aa:5b:4d:90:70:70:9f:2d:b2:ca:71:3e:e1:09:
         e5:d2:cf:d0:6a:74:71:ac:a1:03:fe:cb:80:08:b6:2b:eb:93:
         e6:61:6b:6a:e8:71:25:41:8a:f8:2c:08:02:7e:9b:59:7b:95:
         e2:c0:0a:b3:d3:c4:04:72:59:29:20:85:21:b7:0b:17:c5:92:
         79:0e:4c:1c:94:b6:8c:61:7a:f7:77:a0:b8:5c:54:b1:5c:0d:
         c8:de:d4:36:5b:a2:6d:28:a3:c1:ac:fb:af:0c:f0:19:2c:b2:
         a4:6b:fb:f1:00:3d:61:f7:26:81:b9:b1:82:01:3e:ea:a7:a5:
         53:af:10:ca:cc:d2:91:2f:61:49:59:03:8f:e3:49:96:ec:38:
         ce:45:4b:fa:21:2d:ec:88:3f:64:64:90:82:1c:4e:b8:92:5e:
         08:fd:78:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----