Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
File:                     TyKDTEeXR7CovQphKfn-ZfgwJtA.mft (raw, json)
Hash identifier:          PayTGHCCAvoGeIK+Gt/3tFaL1+Y1iM+bamJzUtS2cYM=
Subject key identifier:   68:E0:4D:27:86:DE:93:99:41:35:9C:8F:3C:E9:1E:82:DF:10:3C:44
Authority key identifier: 4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0
Certificate issuer:       /CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
Certificate serial:       019F645D05B4112916BE24EE9170E01B6001
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
Manifest number:          079A
Signing time:             Wed 15 Jul 2026 06:00:45 +0000
Manifest this update:     Wed 15 Jul 2026 06:00:45 +0000
Manifest next update:     Thu 16 Jul 2026 06:00:45 +0000
Files and hashes:         1: 1-cEaaO_Ysid8Br5DRVo96OE6Rw0.roa (hash: fjeWtz//51nB13NzQwtc912b3agAHVfHErKRO/L6d0o=)
                          2: TyKDTEeXR7CovQphKfn-ZfgwJtA.crl (hash: jNu77akVmVuUfIBQ+HsGMmp7w6Vqvik9RszI/J9F744=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 16 Jul 2026 06:00:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:64:5d:05:b4:11:29:16:be:24:ee:91:70:e0:1b:60:01
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4f22834c479747b0a8bd0a6129f9fe65f83026d0
        Validity
            Not Before: Jul 15 06:00:45 2026 GMT
            Not After : Jul 16 06:00:45 2026 GMT
        Subject: CN=68e04d2786de939941359c8f3ce91e82df103c44
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:58:2f:f0:b5:68:07:bd:1d:a5:40:3c:4d:8d:
                    ed:6a:e5:6b:fc:79:41:7a:d2:6d:d6:f6:38:c3:83:
                    c6:60:40:b1:76:d0:26:82:96:9d:4e:9d:07:f6:16:
                    6f:41:55:1c:96:aa:ca:62:98:89:f2:9b:ae:47:20:
                    71:2f:74:a9:b4:a6:7b:38:fe:a6:9d:07:c1:66:d5:
                    ad:94:ae:4f:15:1f:e1:5b:18:47:c4:54:6f:8a:82:
                    ae:c5:cc:89:fa:a2:03:1e:6b:03:5a:a8:98:8e:f1:
                    4c:c8:2d:64:81:bd:32:81:c5:b7:dd:7a:6e:cf:d1:
                    b8:cd:56:74:84:6b:3b:39:0a:8c:2c:f9:7f:dc:25:
                    2a:bc:10:91:99:48:8a:95:18:4c:0f:2b:bd:7e:6d:
                    b6:90:20:67:97:5b:12:f6:8d:4f:e8:01:50:a5:c7:
                    a3:20:95:2d:da:84:c9:06:88:da:7e:53:d7:02:ca:
                    26:b6:c2:09:38:0a:a1:18:19:84:fc:31:49:d3:03:
                    48:94:a8:01:88:60:24:47:6b:c4:c8:0d:46:96:2c:
                    ae:72:20:87:7b:3e:7b:c2:36:2f:5c:8d:e7:c3:bb:
                    a1:9a:59:9e:c9:ab:1a:8d:46:7f:ea:c4:a2:89:e0:
                    42:72:9a:dd:8d:af:9f:04:18:af:45:98:5f:13:d5:
                    83:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:E0:4D:27:86:DE:93:99:41:35:9C:8F:3C:E9:1E:82:DF:10:3C:44
            X509v3 Authority Key Identifier:
                keyid:4F:22:83:4C:47:97:47:B0:A8:BD:0A:61:29:F9:FE:65:F8:30:26:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TyKDTEeXR7CovQphKfn-ZfgwJtA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/95/b9a050-7726-4eb5-b403-7bf724056153/1/TyKDTEeXR7CovQphKfn-ZfgwJtA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         62:dc:2c:be:8c:12:45:34:51:eb:61:f3:b4:de:cc:8b:71:e6:
         a4:6f:c2:d6:f8:37:aa:e7:12:99:a7:f6:04:43:a0:44:67:a1:
         f5:67:c0:0c:6f:ef:2b:2e:a7:d7:3e:df:ab:56:d4:b0:39:64:
         f0:d2:88:42:65:f8:8f:fb:af:11:9d:b4:d8:33:fb:1e:8c:93:
         74:93:c4:3b:52:ac:e2:0e:32:f7:63:7e:e7:7f:1e:ee:a3:38:
         fe:33:18:49:8f:4a:66:7a:5d:ac:cc:0e:2e:b5:0b:e9:2d:ef:
         96:ac:0b:54:c3:3d:7f:01:ca:bc:c0:df:9d:5e:75:0f:c9:0c:
         6a:56:8b:d2:5f:af:ad:43:ba:cc:aa:a7:9c:2e:dc:3a:80:36:
         d5:84:34:6a:8e:74:a7:27:34:59:35:41:08:a7:dd:26:d6:b4:
         f5:73:6b:3a:4e:f1:0e:1c:6e:3c:dd:e7:ba:e3:d9:20:f2:86:
         5c:1b:42:c7:aa:ce:6b:c7:11:b3:26:38:e0:a2:ca:d2:f5:99:
         67:3c:64:ab:6b:04:0a:a0:7f:b7:19:da:88:89:88:41:74:87:
         64:e9:29:52:1a:b6:75:32:26:bb:a7:8b:91:4b:33:e6:66:52:
         ec:0e:75:a5:2f:66:8d:a4:5f:7e:54:cf:46:78:94:0d:2a:b3:
         77:54:a2:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 15 14:47:45 2026 by rpki-client