Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
File:                     Or-t4neb0SyuiYiSakZi11cIawE.mft (raw, json)
Hash identifier:          2l7Oj5DgxYY2gi6689ifyKEk60Gz7ndmf8t7jWFQSgs=
Subject key identifier:   51:C2:A7:7B:24:05:B5:B4:AE:25:FD:67:8A:E8:30:EB:9A:CC:34:D5
Authority key identifier: 3A:BF:AD:E2:77:9B:D1:2C:AE:89:88:92:6A:46:62:D7:57:08:6B:01
Certificate issuer:       /CN=3abfade2779bd12cae8988926a4662d757086b01
Certificate serial:       01988DA215382850104603FE66498B610275
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
Manifest number:          0B48
Signing time:             Sat 09 Aug 2025 07:01:06 +0000
Manifest this update:     Sat 09 Aug 2025 07:01:06 +0000
Manifest next update:     Sun 10 Aug 2025 07:01:06 +0000
Files and hashes:         1: Or-t4neb0SyuiYiSakZi11cIawE.crl (hash: f98Uy5gQregz4b1mXqyDamnT9h0d6lJaISPm2S8Qbx4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 10 Aug 2025 05:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8d:a2:15:38:28:50:10:46:03:fe:66:49:8b:61:02:75
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3abfade2779bd12cae8988926a4662d757086b01
        Validity
            Not Before: Aug  9 07:01:06 2025 GMT
            Not After : Aug 10 07:01:06 2025 GMT
        Subject: CN=51c2a77b2405b5b4ae25fd678ae830eb9acc34d5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:15:91:86:2b:4b:73:05:1d:3f:fe:6a:69:f5:
                    4d:bc:66:ee:24:e6:a7:e3:f0:21:6e:3f:f3:63:5e:
                    2b:f7:b5:aa:12:91:9a:7c:fd:35:74:2f:73:47:d0:
                    a3:6a:4d:d7:9c:90:c2:0c:73:14:c5:05:99:d0:2c:
                    27:fb:58:30:44:e4:2e:db:78:e5:73:7a:3f:de:76:
                    9e:4b:f0:b5:9f:e0:60:e2:04:6f:fa:12:45:02:ff:
                    a0:89:48:c5:4c:9a:aa:cc:73:3f:18:d8:11:32:36:
                    03:f4:11:8e:bf:78:4b:33:31:f0:8f:de:ea:d6:ce:
                    bd:7a:1c:51:ec:cf:04:27:3f:79:18:0d:1f:dc:1c:
                    44:16:a3:a5:27:63:02:81:e9:dc:56:61:c0:18:7d:
                    e2:20:20:0c:eb:a9:14:c6:2e:86:92:0a:ed:35:e6:
                    48:0d:05:10:5c:13:ed:32:95:88:7d:f3:02:5e:b8:
                    ca:86:11:e5:b3:28:be:7e:83:84:03:ad:a3:84:01:
                    e3:a5:38:e8:4b:11:65:2c:4b:c3:b2:d4:16:71:7c:
                    84:33:81:53:af:a5:c7:51:f6:84:db:02:85:dc:c0:
                    72:d0:1e:5d:00:72:69:0a:33:a6:73:de:62:1f:47:
                    41:94:f2:b3:b6:fb:2a:59:2f:96:6a:af:57:50:e8:
                    5d:8f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:C2:A7:7B:24:05:B5:B4:AE:25:FD:67:8A:E8:30:EB:9A:CC:34:D5
            X509v3 Authority Key Identifier:
                keyid:3A:BF:AD:E2:77:9B:D1:2C:AE:89:88:92:6A:46:62:D7:57:08:6B:01

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Or-t4neb0SyuiYiSakZi11cIawE.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/9270b0-8608-4149-a052-099fde63bbf2/1/Or-t4neb0SyuiYiSakZi11cIawE.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         ac:ff:6d:e2:56:c7:62:4d:de:8a:2b:54:33:93:57:9b:97:d2:
         1f:4a:4a:8d:4b:ee:d5:73:b7:2f:ac:05:b2:e0:87:b2:cb:db:
         35:4a:2a:d8:7f:7c:52:3c:bb:ae:b4:04:d0:12:ca:da:19:34:
         c2:61:9f:30:aa:c7:df:4f:86:10:6c:48:74:bc:81:2e:6b:7a:
         f2:96:be:59:af:e6:08:54:5d:51:9f:52:64:4c:74:96:ad:8a:
         ce:da:bc:fd:32:42:40:84:c7:83:3e:85:0c:d8:8e:03:ae:3b:
         91:7d:8f:ef:2d:00:c3:71:d3:c8:bd:aa:24:8f:92:c9:c9:4a:
         63:56:c5:bf:f8:90:4b:f1:d9:16:10:03:ec:da:c1:0d:ec:4d:
         78:5d:57:e6:13:a3:85:98:d4:53:d2:b8:54:af:d1:a3:1e:a1:
         77:7e:de:c4:29:79:ee:90:37:03:89:40:e9:2b:56:01:51:3b:
         43:f8:ee:46:0e:36:8d:1e:fa:88:86:c5:c1:d8:b7:59:24:3a:
         c9:4f:7d:fb:92:96:d6:23:f6:12:94:28:50:27:f0:c3:d7:4a:
         3c:26:45:fb:49:88:7b:d3:27:49:14:9b:7f:df:2e:5f:64:c6:
         3e:d1:8f:90:30:e2:09:ea:ab:1b:db:0c:45:bf:c6:94:22:9e:
         83:34:30:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----