Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft
File:                     Of-PwW6S-8wHnYDWvj197fHQZo8.mft (raw, json)
Hash identifier:          E1CePw79fjCUvMqmgSl+5yQW0KluTc5OufjJnnLtaCw=
Subject key identifier:   DB:A6:28:2A:2F:0E:89:F7:75:F4:26:38:A0:9C:4B:C8:F4:28:37:67
Authority key identifier: 39:FF:8F:C1:6E:92:FB:CC:07:9D:80:D6:BE:3D:7D:ED:F1:D0:66:8F
Certificate issuer:       /CN=39ff8fc16e92fbcc079d80d6be3d7dedf1d0668f
Certificate serial:       019CAD594B7FC0A6977242BB5A4E78086C65
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft
Manifest number:          0CBF
Signing time:             Mon 02 Mar 2026 07:00:36 +0000
Manifest this update:     Mon 02 Mar 2026 07:00:36 +0000
Manifest next update:     Tue 03 Mar 2026 07:00:36 +0000
Files and hashes:         1: Of-PwW6S-8wHnYDWvj197fHQZo8.crl (hash: CNh6g8Gw4dsw7MsHXOFhM5sc/qA6d34eAggEgdAQSos=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 03 Mar 2026 07:00:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:ad:59:4b:7f:c0:a6:97:72:42:bb:5a:4e:78:08:6c:65
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=39ff8fc16e92fbcc079d80d6be3d7dedf1d0668f
        Validity
            Not Before: Mar  2 07:00:36 2026 GMT
            Not After : Mar  3 07:00:36 2026 GMT
        Subject: CN=dba6282a2f0e89f775f42638a09c4bc8f4283767
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:4b:6d:9b:88:b4:94:52:32:9d:d2:de:c7:a7:
                    ee:38:a8:0d:1e:fd:af:f6:4a:20:71:73:06:37:85:
                    60:02:18:04:80:2b:b5:79:01:2b:b2:b8:b7:2f:2d:
                    3b:a1:d2:0f:a7:c0:35:7d:1b:e5:3d:13:7d:6e:d5:
                    8e:2d:39:44:dd:f9:dd:b8:70:a6:e8:a8:f0:15:bf:
                    93:7e:ba:fc:f3:20:1d:ec:ab:1a:b5:41:e9:f7:27:
                    d3:e5:d2:b8:35:63:01:e1:9a:62:f5:20:66:81:1d:
                    f9:2b:b4:ae:7b:11:86:e9:4d:e1:34:c9:ee:fa:8d:
                    73:4d:10:62:cd:59:55:de:49:78:f1:33:51:b6:bf:
                    4c:7c:e9:ad:81:c6:44:9b:d5:ba:1b:cf:26:0d:1d:
                    d6:97:24:20:2c:75:ac:75:9b:2d:7a:bb:8a:da:cb:
                    ee:1b:cd:a0:b3:77:8a:ac:4e:d9:e6:66:e1:d1:3c:
                    c3:f0:3f:4c:ef:bc:77:f3:d0:61:0a:13:91:6c:8e:
                    02:85:aa:53:9f:3a:59:e7:2e:8e:9c:6b:a5:4d:4f:
                    f2:19:f3:64:92:08:e9:a9:35:63:4e:e1:7d:83:c9:
                    e6:74:43:b7:db:70:dd:64:62:d2:84:1a:08:d5:a5:
                    cf:d5:c1:ba:dc:d5:5c:6a:59:01:7d:e2:7d:24:3f:
                    05:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:A6:28:2A:2F:0E:89:F7:75:F4:26:38:A0:9C:4B:C8:F4:28:37:67
            X509v3 Authority Key Identifier:
                keyid:39:FF:8F:C1:6E:92:FB:CC:07:9D:80:D6:BE:3D:7D:ED:F1:D0:66:8F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Of-PwW6S-8wHnYDWvj197fHQZo8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/779139-5751-47fc-96ad-f0170754854a/1/Of-PwW6S-8wHnYDWvj197fHQZo8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1e:06:3c:52:d3:14:bf:00:24:71:5a:a4:c8:57:0a:6a:9d:12:
         05:0e:cf:b3:a0:cf:0d:ef:bd:78:30:8e:e3:7d:a5:9b:04:3f:
         44:eb:aa:b8:83:de:74:f2:b7:32:2e:6e:04:ce:30:03:38:65:
         51:dd:e2:d4:6b:b7:08:78:c3:1c:39:be:cf:a8:05:f1:b7:04:
         9e:5f:f0:ae:c2:a1:ac:12:8b:84:47:69:d1:6a:41:dc:48:62:
         65:f7:29:7e:f5:98:30:f2:d1:ae:de:d9:f3:af:9a:24:ce:60:
         93:33:22:a1:92:3b:85:0c:ed:32:cd:4a:58:46:07:32:67:3c:
         6e:77:01:92:75:c8:c1:d0:8a:bf:d0:87:4a:17:e8:83:a6:9c:
         72:80:ff:3c:12:c3:0c:86:d8:30:83:12:1a:fd:6c:dc:64:dd:
         10:c4:c2:16:1d:91:8f:ba:ea:c4:ca:9c:df:1f:f6:ab:a0:2f:
         36:9a:ef:34:0c:1c:99:63:96:a9:7f:7a:99:2d:5a:b0:93:47:
         5c:8f:64:bc:5c:b7:d4:5b:e3:76:2c:f3:8d:83:d3:41:7b:4f:
         7e:74:5d:7c:2c:30:e9:b4:6a:c8:ad:58:5b:69:cd:4b:db:7b:
         65:ac:9d:b7:9e:8b:78:97:9e:3b:02:86:5b:4f:b8:5c:d0:75:
         9a:9e:47:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----