
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
File: D3Tlry-nIVykabJ8EHnx_9X8rvg.mft (raw, json)
Hash identifier: SZfJiEhdIbWsbT1sN7/QMlb2vYzK/fgAlmkmTErNQzo=
Subject key identifier: 56:66:01:61:0F:10:21:55:68:63:49:E8:40:93:F6:0F:9D:BF:C9:91
Authority key identifier: 0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
Certificate issuer: /CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Certificate serial: 019F3972BDA8FBA9AE56CAAD9629E676216F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
Manifest number: 082A
Signing time: Mon 06 Jul 2026 22:00:48 +0000
Manifest this update: Mon 06 Jul 2026 22:00:48 +0000
Manifest next update: Tue 07 Jul 2026 22:00:48 +0000
Files and hashes: 1: 6qWCpueTH15zed_1u4JRaf2a7QQ.roa (hash: wPaJ9em9JJwywgqatE6yZ7uDMay3QNlPb8TvcJD+KEU=)
2: D3Tlry-nIVykabJ8EHnx_9X8rvg.crl (hash: yjYGE9MzTLQqE+IbkRyiwFMirC/c8ORlaSh0XgIYubM=)
3: bym9GRTaQWoyTuXrKo4RqKoL5XU.roa (hash: /U5VFGEjkXG97DPwKGp9iZ6D0eP8N7dLqjJVI4Njw9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 Jul 2026 20:41:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:39:72:bd:a8:fb:a9:ae:56:ca:ad:96:29:e6:76:21:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f74e5af2fa7215ca469b27c1079f1ffd5fcaef8
Validity
Not Before: Jul 6 22:00:48 2026 GMT
Not After : Jul 7 22:00:48 2026 GMT
Subject: CN=566601610f102155686349e84093f60f9dbfc991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:fa:6d:c0:8a:24:7d:22:33:ff:f7:5f:9e:98:
1e:cf:d5:1e:e1:e0:04:81:68:e5:6d:2e:58:79:be:
05:e7:1f:5c:9a:9d:96:fd:a9:f0:56:e2:13:f7:cb:
3c:83:20:4d:f8:31:0b:ae:67:62:0b:22:47:7d:96:
59:45:e0:d1:64:3f:4d:33:29:e2:f7:9f:e8:0f:79:
15:ab:ea:36:8f:dd:1b:17:cf:28:6b:a7:51:16:5b:
0e:08:f4:06:3a:5d:6c:7e:99:0b:69:51:e4:2d:06:
e3:ba:22:67:43:81:6c:3b:ff:ba:62:4e:96:0d:d8:
3a:dd:dc:f1:48:69:cd:ab:2f:df:50:78:92:1f:5e:
6f:31:82:4a:97:b4:35:9c:5a:2b:05:ef:0f:04:a7:
85:0a:95:8b:96:54:73:c6:3c:0c:99:11:b6:99:41:
27:11:16:ae:ea:7e:2c:e1:64:b6:93:06:c6:41:7e:
4d:5e:00:07:6b:ea:3f:96:5e:6f:ac:e6:fa:c0:e2:
72:cb:29:6b:1e:de:19:97:56:38:ef:45:c6:b2:87:
36:19:5e:dc:d0:30:3c:e2:a9:8d:8c:3e:95:a3:77:
2e:aa:d9:d1:cf:e0:d0:e6:f6:48:9a:a2:4c:a2:cb:
fe:d9:b9:8e:e3:0c:1a:48:41:8b:99:f4:2d:36:8b:
43:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:66:01:61:0F:10:21:55:68:63:49:E8:40:93:F6:0F:9D:BF:C9:91
X509v3 Authority Key Identifier:
keyid:0F:74:E5:AF:2F:A7:21:5C:A4:69:B2:7C:10:79:F1:FF:D5:FC:AE:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D3Tlry-nIVykabJ8EHnx_9X8rvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/49ace8-291d-4d4f-922e-eabcbc083f9b/1/D3Tlry-nIVykabJ8EHnx_9X8rvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:0e:37:8b:be:3f:de:2c:7a:25:d8:80:f9:f8:30:17:30:0d:
0a:99:89:cf:bb:46:04:52:62:84:39:dd:8e:a1:8d:6b:cf:0b:
a9:ef:50:6d:11:bf:c2:e5:ee:95:22:a5:eb:b4:1e:29:72:6c:
13:44:62:68:3e:3c:31:cd:f9:04:36:a7:a8:b5:da:6d:64:11:
a9:92:cd:f7:1f:d7:ad:df:f6:e5:71:33:36:ec:9e:35:05:8c:
63:9b:7c:b0:ff:d7:57:e2:9b:30:ff:3a:c5:5e:27:4f:9b:56:
c4:36:90:66:56:99:93:91:e2:2b:4a:8c:b4:b6:ea:36:9e:54:
d0:6c:9b:0b:6b:c3:0e:5a:55:7a:20:96:d1:ce:39:41:12:6f:
03:e2:cf:75:42:86:d4:90:c0:a1:b5:2f:99:fd:a7:d5:c1:8c:
5a:76:b4:fe:4f:5b:2f:18:b0:10:a9:5e:6c:40:f6:b4:ed:cb:
f4:39:7f:ce:2d:8e:5e:25:62:97:30:82:22:23:65:73:6c:dc:
fb:37:3d:87:9e:33:71:63:38:51:b3:9e:e5:0b:9a:4a:4a:41:
ee:78:49:e1:11:91:8e:d9:8a:33:70:b7:ad:4f:ac:a0:51:ea:
d3:4a:ce:ea:38:ac:7a:75:71:af:71:0b:00:a8:fc:f9:17:1a:
14:b7:77:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 7 01:17:54 2026 by rpki-client