Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
File:                     orO6gtodtcGUN6wzeDhG8vK_9GI.mft (raw, json)
Hash identifier:          Fwh20M1SnK3cztjgu1d0f3Ns2E2nlczq6GnG1GDOJY0=
Subject key identifier:   50:F2:4F:98:82:30:F6:13:DC:BE:D4:80:AB:4D:37:B4:E6:75:A1:6E
Authority key identifier: A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62
Certificate issuer:       /CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
Certificate serial:       0198D4733ABD3C4C871647C33A32D8F6046A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
Manifest number:          03E9
Signing time:             Sat 23 Aug 2025 01:02:58 +0000
Manifest this update:     Sat 23 Aug 2025 01:02:58 +0000
Manifest next update:     Sun 24 Aug 2025 01:02:58 +0000
Files and hashes:         1: orO6gtodtcGUN6wzeDhG8vK_9GI.crl (hash: Q8qdgKlKCxmzdv994aOYc9Mz9gJHcUI2vfbXozzTGag=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sun 24 Aug 2025 01:02:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:d4:73:3a:bd:3c:4c:87:16:47:c3:3a:32:d8:f6:04:6a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a2b3ba82da1db5c19437ac33783846f2f2bff462
        Validity
            Not Before: Aug 23 01:02:58 2025 GMT
            Not After : Aug 24 01:02:58 2025 GMT
        Subject: CN=50f24f988230f613dcbed480ab4d37b4e675a16e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:17:dd:ee:97:c5:a3:3c:1f:ff:68:22:48:1e:
                    86:61:2c:f9:8c:50:94:2e:ce:0b:9e:28:30:27:9b:
                    40:0f:95:b3:37:d0:02:e2:bb:25:b9:29:c0:2f:88:
                    3b:a4:2e:d9:2b:3e:b7:40:4d:29:34:a9:3e:21:b5:
                    ff:be:0c:a0:46:45:7e:02:ce:53:64:ab:08:7b:9e:
                    67:38:b9:4c:87:6c:4d:3a:06:48:fd:cf:bb:17:4f:
                    3c:99:ca:9f:a6:49:0b:20:1c:f2:7b:af:54:03:14:
                    09:61:0c:0e:96:88:56:d8:27:70:e6:f6:a8:f2:be:
                    a9:eb:fd:d2:69:d9:37:29:2f:2f:16:26:25:d1:42:
                    d4:92:2a:49:a0:82:7e:c2:8b:7a:5b:07:bd:aa:a7:
                    f1:8f:b2:c0:8b:53:1c:ec:c1:41:98:f7:00:20:ae:
                    6c:14:8b:71:58:e6:7a:6b:96:1b:4d:61:90:34:3b:
                    1a:7e:55:30:d5:31:f9:74:f5:5d:0c:48:1e:e5:6a:
                    f4:c6:4d:cb:cf:a6:13:e5:b7:9a:bc:04:dd:e9:5b:
                    aa:7c:a2:a4:b6:49:e5:87:3c:17:9f:08:5e:d6:7c:
                    a0:1c:c6:f3:cf:45:b6:d1:1d:be:36:6d:44:c1:ff:
                    31:44:de:cf:98:04:2c:42:cb:db:6c:42:5d:e9:f7:
                    3f:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:F2:4F:98:82:30:F6:13:DC:BE:D4:80:AB:4D:37:B4:E6:75:A1:6E
            X509v3 Authority Key Identifier:
                keyid:A2:B3:BA:82:DA:1D:B5:C1:94:37:AC:33:78:38:46:F2:F2:BF:F4:62

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orO6gtodtcGUN6wzeDhG8vK_9GI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/45/44981c-96f8-4866-b7fe-f898d204eb4e/1/orO6gtodtcGUN6wzeDhG8vK_9GI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         29:ed:04:00:01:7a:ef:97:30:f9:4e:cc:65:88:8a:62:90:53:
         48:b9:86:50:a4:70:49:63:66:4f:37:7b:8f:ba:20:89:97:61:
         b7:bf:ea:34:6f:d4:ce:a3:d5:75:c1:8b:6c:cd:2e:1e:ff:91:
         04:1b:e5:60:61:2e:3a:90:e4:48:e5:ca:ff:71:90:39:60:f0:
         5a:2f:35:ed:67:c2:3a:00:cd:71:94:51:ce:10:f4:07:83:e1:
         e2:2f:c6:7a:b2:c1:5f:4b:ed:d5:d5:c1:e6:72:c6:74:eb:48:
         78:9b:cf:e2:b2:b8:21:27:0d:55:d5:c9:8d:8d:2f:d9:b3:78:
         4e:b4:5f:30:a2:9f:fc:b2:56:d8:18:fb:de:8a:30:80:e8:3f:
         f8:c4:8d:e7:aa:97:a0:b8:d6:45:f5:d5:92:f7:0a:f5:77:ca:
         8c:83:a1:9e:5d:17:e9:6d:99:3b:9f:b2:c9:c2:20:9b:c1:0a:
         56:5a:50:6c:cb:c1:cb:f8:e5:38:e8:d9:c1:e3:d2:e9:cc:d7:
         11:1a:70:e4:25:7b:23:2f:9e:1c:e2:8b:8b:82:e7:de:89:83:
         2d:e6:dd:d5:c2:43:15:c4:b4:2a:46:5e:d7:41:22:0f:9f:3c:
         77:42:27:3a:68:16:bd:07:5c:21:11:fe:37:54:70:42:19:c4:
         85:32:3b:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----