Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
File:                     OxRinHZc4axPaIlW47kPatjEtYI.mft (raw, json)
Hash identifier:          sENzw65NzdWFHiTGYloVu6zGPN7vUlM+sx55/9//y5U=
Subject key identifier:   C1:2A:21:1C:36:56:C5:A9:23:79:85:3B:8A:26:9D:16:D6:D3:15:9D
Authority key identifier: 3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82
Certificate issuer:       /CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
Certificate serial:       01987A526E3BCF9DB182961A212BCAF084B9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
Manifest number:          15AE
Signing time:             Tue 05 Aug 2025 13:01:19 +0000
Manifest this update:     Tue 05 Aug 2025 13:01:19 +0000
Manifest next update:     Wed 06 Aug 2025 13:01:19 +0000
Files and hashes:         1: C_zGKKe9EmjFWVKBb9utgZ7LvBo.roa (hash: DBtQlC6QblgPpVW+sAN+YH267kvW3kiRyXFujtkor/8=)
                          2: OxRinHZc4axPaIlW47kPatjEtYI.crl (hash: snOMe8zFLq8PAMniyfEwoxvwmv9deLGBrfKrf+0Qhg4=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 06 Aug 2025 13:01:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:7a:52:6e:3b:cf:9d:b1:82:96:1a:21:2b:ca:f0:84:b9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3b14629c765ce1ac4f688956e3b90f6ad8c4b582
        Validity
            Not Before: Aug  5 13:01:19 2025 GMT
            Not After : Aug  6 13:01:19 2025 GMT
        Subject: CN=c12a211c3656c5a92379853b8a269d16d6d3159d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:27:2a:75:a3:3a:f8:76:71:0b:c0:47:a2:81:
                    0f:f6:1f:0c:15:30:07:b8:d8:1b:10:a8:22:a3:8f:
                    2d:f0:24:e0:d0:ea:d2:17:ae:f4:55:d3:b5:22:e9:
                    a2:a6:08:7a:6b:36:7c:fd:b7:61:09:65:45:5b:fa:
                    b7:db:e7:4e:1c:38:4b:91:9e:a6:fb:21:68:a5:af:
                    63:6a:25:1f:36:0a:84:45:62:d7:2b:b4:64:1e:f7:
                    3a:9d:09:ea:b9:cf:db:73:1a:23:c8:d1:d7:ff:a6:
                    59:9a:6a:61:82:b6:b2:5d:25:cb:25:91:ec:fb:c2:
                    c9:11:af:90:9b:e0:27:fa:99:c5:88:db:a1:bb:b2:
                    f8:c7:65:4d:60:df:03:e5:db:98:f4:8d:c7:c7:1a:
                    d0:59:d3:cb:f5:32:45:6f:3a:0e:56:3d:18:52:bb:
                    30:95:0e:5e:8c:2a:81:6a:30:fd:07:a0:e7:ed:be:
                    7c:06:cd:9c:2a:4d:e7:8d:d8:be:a9:7c:33:25:37:
                    8a:72:b7:83:cd:45:5e:bc:6f:49:12:67:84:81:99:
                    bc:71:95:e3:c1:e6:ed:24:f2:72:57:30:74:02:be:
                    de:dd:1f:f9:f2:70:68:42:3a:29:14:07:48:5e:ed:
                    ce:e4:b3:83:48:76:41:e3:63:07:bb:eb:4c:b3:2a:
                    26:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:2A:21:1C:36:56:C5:A9:23:79:85:3B:8A:26:9D:16:D6:D3:15:9D
            X509v3 Authority Key Identifier:
                keyid:3B:14:62:9C:76:5C:E1:AC:4F:68:89:56:E3:B9:0F:6A:D8:C4:B5:82

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OxRinHZc4axPaIlW47kPatjEtYI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/a37f9c-1e6a-4665-a0e2-fe31100d081f/1/OxRinHZc4axPaIlW47kPatjEtYI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:0f:be:81:34:b3:2c:9e:10:76:5f:43:85:b4:57:c1:6a:d6:
         1b:8a:e1:3b:65:f2:35:d4:63:36:c2:97:f0:28:9d:36:c4:04:
         6d:7f:df:ea:59:53:67:f7:45:dc:26:41:41:0a:91:b9:94:71:
         86:f9:05:49:23:b6:61:78:70:c9:b1:ff:0b:a6:62:39:0e:e9:
         2f:dd:41:06:54:c9:a0:35:c8:86:23:67:e7:c9:e5:c3:fc:a0:
         f5:f6:77:25:79:d0:29:79:78:fa:7f:29:cc:7e:6f:30:ba:50:
         fc:63:e6:55:27:84:f2:59:cb:3c:93:7a:6d:6f:45:11:8b:19:
         f0:c3:57:12:f4:9e:f5:c8:b7:1a:51:41:66:eb:6a:ec:e4:3a:
         14:d1:d3:3f:73:ee:f3:71:04:15:c5:fc:dd:cc:db:f3:e2:cc:
         d0:bb:e8:87:2e:a5:48:f0:54:f7:32:c1:3d:3d:10:37:ab:8f:
         77:54:8b:dd:29:e7:e5:3e:3e:b5:97:e5:60:5a:a2:bf:b1:98:
         50:15:f5:98:69:65:40:9a:97:ae:a0:b9:eb:ee:16:f7:c3:d1:
         dc:4f:2d:ff:8d:c9:3d:06:79:a9:0a:c7:f8:16:b5:89:9b:4a:
         a7:27:d6:67:58:a2:08:87:8c:6b:6b:11:78:02:cc:ca:38:fb:
         61:c5:f9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 5 20:00:29 2025 by rpki-client