Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
File:                     TzvVbotU5tonu-ZiLaxny_Aqgeo.mft (raw, json)
Hash identifier:          pgIYM1rZRVrFBKdmQ8XXfCMGmq4wifufa//P1aNAlTI=
Subject key identifier:   BD:79:CB:5E:5A:69:DF:A1:26:81:9E:49:22:2B:7E:25:AE:B7:69:59
Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
Certificate issuer:       /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Certificate serial:       019F412D06E179F7F3179D7A7AAB1CC10C2C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
Manifest number:          199F
Signing time:             Wed 08 Jul 2026 10:01:37 +0000
Manifest this update:     Wed 08 Jul 2026 10:01:37 +0000
Manifest next update:     Thu 09 Jul 2026 10:01:37 +0000
Files and hashes:         1: 6h3DLRd0aoO08FWkuvK-DIL1TAI.roa (hash: QbNhinBRvnYOWmudxD6YkQ5YvTv3wj3nF5VH2568D0c=)
                          2: TzvVbotU5tonu-ZiLaxny_Aqgeo.crl (hash: 8F0Ec1t3zlCgUnC+918AGxw6Yi8/e8pDMWShTMuaL7w=)
                          3: kzYQmwQKzbuQvS3iB2mDUlnw91Y.roa (hash: bz4ecHp+kkkRf1WW8soaqZgJTcHf8FiOXW+H4gSzf48=)
                          4: lv8af-jyuveaHC9x_OKdx2NgSxI.roa (hash: qC6P7LJylLpMoNR/tNemeZF9+aw6XACba3yU1fASXaI=)
                          5: wMLINqfRL31emUgeWzPrQ7en_WU.roa (hash: 28WktakjRSH95PtqAXbEMoIgPvxQiYsWki+RGQe70G0=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 08:00:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:41:2d:06:e1:79:f7:f3:17:9d:7a:7a:ab:1c:c1:0c:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
        Validity
            Not Before: Jul  8 10:01:37 2026 GMT
            Not After : Jul  9 10:01:37 2026 GMT
        Subject: CN=bd79cb5e5a69dfa126819e49222b7e25aeb76959
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:5c:f7:80:97:a8:b5:f9:26:b0:2c:66:56:62:
                    16:fa:ff:48:48:54:36:5e:78:35:f6:26:fa:13:7f:
                    04:df:a2:3e:27:3d:b3:66:89:56:c4:ad:66:39:55:
                    41:8c:9a:a4:e1:9f:0d:c4:4e:eb:ef:7c:fc:6d:c0:
                    c7:9b:0f:0e:e8:10:e7:32:b4:bd:5c:3b:11:f0:91:
                    e4:10:f1:c9:4f:07:81:16:ff:a1:d7:5f:1c:2a:7c:
                    13:c9:14:73:5d:bf:aa:1a:c4:ac:cf:26:07:f9:f3:
                    0e:4d:43:90:1e:0a:71:20:85:70:d5:be:14:9a:08:
                    c9:2f:f8:4d:a1:70:9f:70:fe:8a:22:18:a1:29:1f:
                    89:7e:00:da:5b:5c:7c:d2:d1:8d:bb:de:0c:90:8a:
                    a5:1f:98:92:c7:e6:6b:2c:59:b1:d9:54:97:db:9c:
                    46:e5:79:1e:c4:1f:6d:79:7f:00:d4:a4:66:1e:e5:
                    61:28:8f:69:62:d4:95:64:a8:2a:73:c5:6d:18:1d:
                    9b:14:65:52:a2:f6:fd:3a:00:fb:22:b3:24:f3:43:
                    18:22:f6:9c:c9:06:60:21:e1:a7:24:e0:da:f6:6e:
                    7d:15:8d:06:d3:4f:3b:39:12:77:34:da:59:37:71:
                    79:ee:35:2a:5f:6c:57:0b:56:32:53:59:02:23:82:
                    c0:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:79:CB:5E:5A:69:DF:A1:26:81:9E:49:22:2B:7E:25:AE:B7:69:59
            X509v3 Authority Key Identifier:
                keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1f:cc:25:67:46:b4:17:f8:0b:cd:1c:d4:3e:20:8e:a6:ca:9c:
         28:7c:7b:32:e5:3b:a7:db:19:61:f7:ed:a6:3a:76:42:6e:be:
         5e:18:49:74:57:8a:c4:2e:42:f4:48:58:d4:4a:26:3b:04:00:
         50:a1:11:1a:72:13:63:a0:fe:70:3c:47:32:e8:83:01:b6:42:
         78:78:39:c9:e9:0b:3e:9f:de:80:e6:5f:43:de:f2:e1:83:ea:
         df:ca:96:47:92:08:97:57:88:0d:9b:30:1d:13:f7:b5:ed:2a:
         60:b6:6f:2a:03:c0:eb:85:a5:19:1b:f5:ef:e8:43:54:e6:15:
         5b:15:23:b3:cc:5d:19:9f:b5:74:b1:e1:01:45:b0:77:68:0b:
         39:d0:a6:89:b5:81:d9:d6:d4:41:0e:b6:12:5a:e5:d1:ee:99:
         bb:f7:88:de:18:69:ad:49:b0:96:e6:ad:aa:ae:ce:1f:0c:fb:
         f8:53:45:90:0f:85:07:ae:ff:40:37:40:45:12:7a:98:51:60:
         dd:97:31:7b:3e:87:63:e9:9a:2e:64:07:fd:3a:4f:8f:05:76:
         80:16:dc:86:10:e5:91:cf:59:a2:37:bb:5c:09:c3:e9:14:ea:
         7f:07:49:47:b6:e4:b0:01:37:e3:8d:2f:6d:b3:a5:2f:6b:4b:
         a2:8a:e3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 13:20:36 2026 by rpki-client