Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
File:                     D3Tlry-nIVykabJ8EHnx_9X8rvg.mft (raw, json)
Hash identifier:          SZfJiEhdIbWsbT1sN7/QMlb2vYzK/fgAlmkmTErNQzo=
Subject key identifier:   56:66:01:61:0F:10:21:55:68:63:49:E8:40:93:F6:0F:9D:BF:C9:91
Authority key identifier: 0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
Certificate issuer:       /CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Certificate serial:       019F3972BDA8FBA9AE56CAAD9629E676216F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
Manifest number:          082A
Signing time:             Mon 06 Jul 2026 22:00:48 +0000
Manifest this update:     Mon 06 Jul 2026 22:00:48 +0000
Manifest next update:     Tue 07 Jul 2026 22:00:48 +0000
Files and hashes:         1: 6qWCpueTH15zed_1u4JRaf2a7QQ.roa (hash: wPaJ9em9JJwywgqatE6yZ7uDMay3QNlPb8TvcJD+KEU=)
                          2: D3Tlry-nIVykabJ8EHnx_9X8rvg.crl (hash: yjYGE9MzTLQqE+IbkRyiwFMirC/c8ORlaSh0XgIYubM=)
                          3: bym9GRTaQWoyTuXrKo4RqKoL5XU.roa (hash: /U5VFGEjkXG97DPwKGp9iZ6D0eP8N7dLqjJVI4Njw9s=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 07 Jul 2026 20:41:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:39:72:bd:a8:fb:a9:ae:56:ca:ad:96:29:e6:76:21:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
        Validity
            Not Before: Jul  6 22:00:48 2026 GMT
            Not After : Jul  7 22:00:48 2026 GMT
        Subject: CN=566601610f102155686349e84093f60f9dbfc991
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:fa:6d:c0:8a:24:7d:22:33:ff:f7:5f:9e:98:
                    1e:cf:d5:1e:e1:e0:04:81:68:e5:6d:2e:58:79:be:
                    05:e7:1f:5c:9a:9d:96:fd:a9:f0:56:e2:13:f7:cb:
                    3c:83:20:4d:f8:31:0b:ae:67:62:0b:22:47:7d:96:
                    59:45:e0:d1:64:3f:4d:33:29:e2:f7:9f:e8:0f:79:
                    15:ab:ea:36:8f:dd:1b:17:cf:28:6b:a7:51:16:5b:
                    0e:08:f4:06:3a:5d:6c:7e:99:0b:69:51:e4:2d:06:
                    e3:ba:22:67:43:81:6c:3b:ff:ba:62:4e:96:0d:d8:
                    3a:dd:dc:f1:48:69:cd:ab:2f:df:50:78:92:1f:5e:
                    6f:31:82:4a:97:b4:35:9c:5a:2b:05:ef:0f:04:a7:
                    85:0a:95:8b:96:54:73:c6:3c:0c:99:11:b6:99:41:
                    27:11:16:ae:ea:7e:2c:e1:64:b6:93:06:c6:41:7e:
                    4d:5e:00:07:6b:ea:3f:96:5e:6f:ac:e6:fa:c0:e2:
                    72:cb:29:6b:1e:de:19:97:56:38:ef:45:c6:b2:87:
                    36:19:5e:dc:d0:30:3c:e2:a9:8d:8c:3e:95:a3:77:
                    2e:aa:d9:d1:cf:e0:d0:e6:f6:48:9a:a2:4c:a2:cb:
                    fe:d9:b9:8e:e3:0c:1a:48:41:8b:99:f4:2d:36:8b:
                    43:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                56:66:01:61:0F:10:21:55:68:63:49:E8:40:93:F6:0F:9D:BF:C9:91
            X509v3 Authority Key Identifier:
                keyid:0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:0e:37:8b:be:3f:de:2c:7a:25:d8:80:f9:f8:30:17:30:0d:
         0a:99:89:cf:bb:46:04:52:62:84:39:dd:8e:a1:8d:6b:cf:0b:
         a9:ef:50:6d:11:bf:c2:e5:ee:95:22:a5:eb:b4:1e:29:72:6c:
         13:44:62:68:3e:3c:31:cd:f9:04:36:a7:a8:b5:da:6d:64:11:
         a9:92:cd:f7:1f:d7:ad:df:f6:e5:71:33:36:ec:9e:35:05:8c:
         63:9b:7c:b0:ff:d7:57:e2:9b:30:ff:3a:c5:5e:27:4f:9b:56:
         c4:36:90:66:56:99:93:91:e2:2b:4a:8c:b4:b6:ea:36:9e:54:
         d0:6c:9b:0b:6b:c3:0e:5a:55:7a:20:96:d1:ce:39:41:12:6f:
         03:e2:cf:75:42:86:d4:90:c0:a1:b5:2f:99:fd:a7:d5:c1:8c:
         5a:76:b4:fe:4f:5b:2f:18:b0:10:a9:5e:6c:40:f6:b4:ed:cb:
         f4:39:7f:ce:2d:8e:5e:25:62:97:30:82:22:23:65:73:6c:dc:
         fb:37:3d:87:9e:33:71:63:38:51:b3:9e:e5:0b:9a:4a:4a:41:
         ee:78:49:e1:11:91:8e:d9:8a:33:70:b7:ad:4f:ac:a0:51:ea:
         d3:4a:ce:ea:38:ac:7a:75:71:af:71:0b:00:a8:fc:f9:17:1a:
         14:b7:77:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 01:17:54 2026 by rpki-client