
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: 7ZxBliKz7Stf8L51iTcncIk2rxgFKThY9qSmcYaj0gY=
Subject key identifier: 23:BE:B3:AC:68:22:A1:93:6D:9E:8B:B0:11:3C:13:92:9E:42:DB:1B
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 01975FB9310DB55D4DE29479B3FD822A2AB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 10F7
Signing time: Wed 11 Jun 2025 16:01:01 +0000
Manifest this update: Wed 11 Jun 2025 16:01:01 +0000
Manifest next update: Thu 12 Jun 2025 16:01:01 +0000
Files and hashes: 1: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: 1uZstq1aY+zGsdbnLEE9gxlx3RwomHBkfCguwvT6W8Q=)
2: ya12EPtNrcF0udvEcU2cfD6dvXE.roa (hash: JqrMXae8q96ruf/DmoCDw76yVSkMluiHBgpoAg21vqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5f:b9:31:0d:b5:5d:4d:e2:94:79:b3:fd:82:2a:2a:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Jun 11 16:01:01 2025 GMT
Not After : Jun 12 16:01:01 2025 GMT
Subject: CN=23beb3ac6822a1936d9e8bb0113c13929e42db1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8c:c7:aa:a4:85:e1:b4:4a:8c:ba:7b:53:cc:
1c:6b:01:8b:6f:7e:ab:70:f5:a6:31:aa:e7:0a:4a:
ec:4a:98:2c:f6:65:18:cf:9d:f9:2f:d6:88:99:26:
ed:12:4f:3f:5f:dd:52:77:4e:98:03:a7:d4:df:06:
5e:30:14:79:c6:4b:47:ae:d5:85:00:9e:72:08:34:
b0:65:b9:72:b4:3d:e3:bd:1b:61:08:aa:49:9c:a4:
73:91:c1:24:8d:cd:ac:18:3f:b9:46:59:cc:19:ab:
a6:33:8a:c3:cc:d9:8d:b3:4a:73:eb:af:b7:a4:62:
60:24:c0:ce:e9:a2:75:26:2d:87:13:08:8e:ce:ea:
61:0a:49:d5:d4:74:27:7d:d0:1d:f2:42:ed:d7:de:
5d:e0:97:c1:3d:a8:a4:f4:c4:83:d8:17:54:31:a7:
22:c7:06:09:30:d0:3f:09:bf:d4:b7:aa:26:7a:93:
2b:10:98:33:69:d7:a5:b0:9e:bf:9b:60:77:67:d1:
3d:c5:d6:03:4b:37:f7:54:1e:8f:f7:3e:ae:e3:9e:
02:56:2e:e3:9c:c7:0b:3f:b4:7e:fb:5a:7b:ef:88:
49:e4:94:b2:d3:dd:d4:49:4c:77:20:07:59:8d:e2:
2b:ab:de:ff:ce:42:2a:67:3c:41:3a:2a:5b:9f:a9:
09:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:BE:B3:AC:68:22:A1:93:6D:9E:8B:B0:11:3C:13:92:9E:42:DB:1B
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:4c:ca:f2:4c:5a:c0:4d:4a:89:1d:40:6b:c4:ed:79:15:51:
b2:63:68:8a:07:da:ad:b2:b6:7d:66:e9:fb:e3:8c:dc:87:fb:
1a:d0:c5:64:d0:c8:dd:c5:62:5e:13:c6:5e:30:1f:7f:51:1f:
93:b5:83:a0:c3:04:cf:6e:b2:e4:1b:17:3b:24:69:42:08:35:
ed:f5:b4:cf:fd:d9:e4:9d:44:90:d0:3c:c7:fe:3c:a7:f4:33:
ca:93:91:98:36:49:be:db:e7:3d:4c:f9:f2:da:3d:de:bd:2c:
62:50:e1:e4:d4:08:72:35:93:b9:23:33:87:3a:b3:5c:db:61:
b9:0a:88:d5:8d:81:19:c2:99:8c:c8:29:79:b2:e8:5e:9f:0c:
aa:a1:4f:2f:7e:9c:d8:16:42:80:ac:88:52:08:35:b9:4d:5e:
0e:a0:5e:07:da:3d:78:12:4b:6b:00:85:71:a4:13:ca:22:f6:
b5:14:ff:fc:e7:63:86:cc:b7:17:2e:54:d6:fc:a8:3b:6d:b4:
c5:a9:19:15:80:8a:8f:a8:5c:60:5b:95:b7:c9:8f:00:ce:3b:
ae:d4:e2:e1:68:ea:d2:91:57:f8:b4:94:d5:9c:75:99:c3:c4:
8e:61:44:83:1c:8c:fd:25:dc:4f:9f:1e:8e:eb:5e:91:85:b4:
cc:2d:0b:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 20:41:12 2025 by rpki-client