Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
File:                     o_60EOB9CI-2UbkTdJuBJX47mVI.mft (raw, json)
Hash identifier:          /FINQs03GA+fhSdkIiIBFnmMfmcf0X0wKcTdMhkGaWs=
Subject key identifier:   04:3B:FD:F2:9E:D6:51:D1:35:B3:A7:84:5E:E4:B8:25:08:08:F4:E2
Authority key identifier: A3:FE:B4:10:E0:7D:08:8F:B6:51:B9:13:74:9B:81:25:7E:3B:99:52
Certificate issuer:       /CN=a3feb410e07d088fb651b913749b81257e3b9952
Certificate serial:       019D98F4D8E26C1D45A4994840A7069724A3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
Manifest number:          130B
Signing time:             Fri 17 Apr 2026 01:01:16 +0000
Manifest this update:     Fri 17 Apr 2026 01:01:16 +0000
Manifest next update:     Sat 18 Apr 2026 01:01:16 +0000
Files and hashes:         1: o_60EOB9CI-2UbkTdJuBJX47mVI.crl (hash: YoUQSRAJTh377I5u9s8wUN06WaMHjadvv/vC0yLRKfg=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 18 Apr 2026 01:01:16 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9d:98:f4:d8:e2:6c:1d:45:a4:99:48:40:a7:06:97:24:a3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a3feb410e07d088fb651b913749b81257e3b9952
        Validity
            Not Before: Apr 17 01:01:16 2026 GMT
            Not After : Apr 18 01:01:16 2026 GMT
        Subject: CN=043bfdf29ed651d135b3a7845ee4b8250808f4e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:ed:31:89:0e:c8:36:99:dc:c8:0b:6d:b4:54:
                    38:b3:3b:d1:f1:86:6d:09:ba:48:f8:a8:c1:7d:e5:
                    b2:b9:e5:0c:ff:48:fd:31:8f:2d:be:cb:0d:3e:51:
                    67:ba:28:d5:6b:dc:59:84:ae:f5:56:ca:aa:23:55:
                    76:6f:6a:6f:a2:f7:e1:61:6c:76:2e:10:1e:b6:5f:
                    59:87:b5:f4:e1:d2:36:ee:c5:f1:fd:db:05:c9:8f:
                    ca:1a:73:a0:7f:ba:65:8c:cc:b7:10:f7:32:df:ff:
                    66:1a:92:44:f1:bc:54:71:1c:dd:1e:0c:32:12:54:
                    2a:98:61:e5:36:36:1e:d3:10:0e:4e:ea:8a:b7:02:
                    aa:11:20:18:84:1d:96:dd:31:61:41:15:c1:cc:8f:
                    7d:a8:50:b8:fb:a0:5d:77:e5:14:82:2c:f6:ea:bd:
                    ba:f5:e1:93:fb:a3:50:33:88:13:ee:c4:81:54:26:
                    0d:cc:3e:cc:42:ba:03:6c:9d:e5:3c:a7:a6:36:d1:
                    2f:f0:8d:ba:69:94:5f:99:0a:0c:4f:b9:7c:05:ed:
                    e7:74:6c:f5:1d:f4:64:a5:07:01:7b:26:37:19:34:
                    a4:a0:c7:58:10:f5:6e:57:49:88:64:40:30:08:ef:
                    65:79:57:e3:9a:2e:28:6d:85:e5:97:12:a4:23:7c:
                    7e:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:3B:FD:F2:9E:D6:51:D1:35:B3:A7:84:5E:E4:B8:25:08:08:F4:E2
            X509v3 Authority Key Identifier:
                keyid:A3:FE:B4:10:E0:7D:08:8F:B6:51:B9:13:74:9B:81:25:7E:3B:99:52

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o_60EOB9CI-2UbkTdJuBJX47mVI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9f068a-17f4-4311-8bbc-234b322a0cfe/1/o_60EOB9CI-2UbkTdJuBJX47mVI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         4c:bb:ea:25:15:49:2a:51:54:67:13:d5:47:e9:0c:4a:48:d5:
         e0:72:e9:87:5d:6c:35:e2:83:b3:7d:ac:e6:c0:08:ad:e5:8f:
         55:ee:d0:66:c7:8f:63:78:8e:92:df:7c:9f:d3:05:6a:43:01:
         eb:29:3f:8f:a9:38:bb:e2:f7:c3:ac:26:f7:f4:ae:11:e8:a4:
         48:ca:cf:a0:3b:44:70:00:ae:03:3e:2b:f4:5b:a4:1a:a8:d9:
         07:de:67:04:83:99:6b:d4:27:cd:45:f1:ba:8a:66:83:e0:9b:
         51:57:52:d2:4c:24:2d:2a:ce:e9:d2:4e:31:46:c6:d8:6b:b4:
         d5:b4:fb:be:87:f7:34:b6:82:5d:ac:90:4c:66:c3:b6:a1:05:
         48:b4:ed:fe:ea:59:0c:74:14:10:75:e8:de:98:e0:8d:57:4e:
         28:90:dc:08:c9:34:3f:f0:be:ac:1b:a6:da:b5:2e:16:08:b3:
         b5:7a:1b:a2:87:68:7b:de:c9:25:f1:96:0c:d9:38:36:39:eb:
         a3:6f:f8:51:09:6f:72:29:fb:13:bf:58:2a:1e:7e:12:d3:3e:
         d9:76:c9:e8:e7:d5:3d:c5:39:d4:d5:47:4b:31:62:51:03:99:
         00:be:ad:11:95:0f:94:1a:7f:5e:b4:d7:84:61:09:8b:4e:9c:
         d5:21:66:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----