Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
File:                     OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft (raw, json)
Hash identifier:          qvXQPVRrpK9XyGjIRxxpDaFH3Zjj7yz7q8QpdQ7celw=
Subject key identifier:   46:8B:96:34:11:B9:AB:EB:ED:ED:79:E4:B4:CA:1C:F7:E1:79:BB:5B
Authority key identifier: 3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F
Certificate issuer:       /CN=3b2aa720568171620e9bc9b97dadcc74b513394f
Certificate serial:       01976C9877E9D8CDCC195B03B937F274F139
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
Manifest number:          05C1
Signing time:             Sat 14 Jun 2025 04:00:20 +0000
Manifest this update:     Sat 14 Jun 2025 04:00:20 +0000
Manifest next update:     Sun 15 Jun 2025 04:00:20 +0000
Files and hashes:         1: OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl (hash: /7+QL+vjbyTfyN/lOxi1LMYlDLG2QPPLPOGKaYL9pgo=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 15 Jun 2025 01:00:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:6c:98:77:e9:d8:cd:cc:19:5b:03:b9:37:f2:74:f1:39
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3b2aa720568171620e9bc9b97dadcc74b513394f
        Validity
            Not Before: Jun 14 04:00:20 2025 GMT
            Not After : Jun 15 04:00:20 2025 GMT
        Subject: CN=468b963411b9abebeded79e4b4ca1cf7e179bb5b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:c3:4e:67:95:cf:74:45:c1:a7:b1:b9:e8:4b:
                    f2:27:b7:8f:64:2f:c1:a1:61:a4:35:7a:69:4f:d4:
                    45:b1:7f:d3:33:b6:c6:1a:4f:0e:35:4a:88:c6:35:
                    15:1d:41:76:1d:d1:55:47:74:81:c8:c7:4b:cf:97:
                    f5:dd:e5:de:da:46:c1:98:9d:55:00:f5:82:5a:f4:
                    b8:3f:1c:64:bd:0d:e7:21:76:60:86:4f:0a:e6:98:
                    74:ec:39:18:44:4d:63:e8:f6:cc:6c:45:d3:f6:5f:
                    96:db:51:10:db:4c:fa:f9:fd:f0:ec:21:96:f7:bd:
                    e2:bc:f3:ff:05:64:0e:0d:93:83:32:40:e8:f9:41:
                    04:3d:0c:bb:fa:12:98:ab:bc:70:ce:87:0f:8e:78:
                    f9:1c:39:99:2b:16:cf:ec:17:6b:8f:50:27:7e:6d:
                    6a:5d:16:73:be:45:9f:4e:84:50:cc:64:2b:b9:e6:
                    b9:86:3e:62:fa:bf:b4:19:e6:67:6f:df:7e:2c:e0:
                    a5:2e:09:ca:2a:3c:c6:cc:c8:a6:5a:02:af:df:6b:
                    21:1c:b3:9b:73:10:4e:05:92:1a:35:d5:d8:92:14:
                    ca:17:a1:ef:28:e9:8f:c1:1d:48:82:2a:47:4a:1f:
                    20:a9:97:5c:0d:20:c2:e4:d6:97:d3:d6:18:af:8c:
                    51:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                46:8B:96:34:11:B9:AB:EB:ED:ED:79:E4:B4:CA:1C:F7:E1:79:BB:5B
            X509v3 Authority Key Identifier:
                keyid:3B:2A:A7:20:56:81:71:62:0E:9B:C9:B9:7D:AD:CC:74:B5:13:39:4F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyqnIFaBcWIOm8m5fa3MdLUTOU8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/92/277589-8d9a-4b22-9a15-605de0eaaeb6/1/OyqnIFaBcWIOm8m5fa3MdLUTOU8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         39:c8:de:36:d0:3b:dc:98:fd:ad:ae:b4:93:c2:3d:1c:19:39:
         7f:2b:65:73:ae:f6:f2:57:2c:d6:db:93:ba:18:8f:03:57:90:
         13:44:2c:66:27:c0:b7:6b:b9:69:4f:f5:ff:18:02:dd:83:25:
         9f:7a:6e:33:b3:69:f2:be:41:2b:51:4d:67:d9:e1:1c:31:1f:
         59:f6:a4:3a:80:a8:d9:df:b4:84:ab:7d:ba:09:70:c9:74:8e:
         d6:ed:96:d2:3e:12:0a:73:6c:e4:fa:5d:f2:62:0e:b8:bd:e7:
         fa:1a:63:13:7f:a7:74:fe:2e:8a:00:1b:a9:a5:ad:d8:c5:9c:
         51:ee:f1:ec:70:13:0f:4c:8b:9a:30:ec:f5:e3:e9:71:c8:2f:
         71:e3:b4:83:0b:e2:66:10:18:fe:a6:d2:36:15:18:73:42:28:
         c9:6e:62:79:bf:e3:2e:34:79:13:5e:ae:f7:27:1a:3b:8f:24:
         d9:57:72:6d:cb:d2:58:f3:6a:fe:a0:c9:2e:fc:b3:ed:65:4d:
         89:8f:e3:ef:13:b1:32:53:1b:d3:25:37:df:ec:75:dc:9f:20:
         a7:db:82:f0:9b:61:3e:6c:e8:5b:ec:b1:9a:14:13:64:44:d2:
         1e:ef:aa:b5:76:3e:97:ae:7a:fb:bf:b7:cf:53:44:42:dc:f5:
         2e:e4:fd:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----