Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File:                     ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier:          eYL0rGkHQcFXqUHi2VKYKYEYiDmS0FywTGskDMFB+GA=
Subject key identifier:   35:7B:AD:8A:8E:27:05:C5:8F:62:94:02:35:CE:C0:E5:14:B7:6B:47
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer:       /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial:       019754233D050D7A4B9AC0C9202E147A0801
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number:          10F1
Signing time:             Mon 09 Jun 2025 10:01:24 +0000
Manifest this update:     Mon 09 Jun 2025 10:01:24 +0000
Manifest next update:     Tue 10 Jun 2025 10:01:24 +0000
Files and hashes:         1: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: gcxZyzYS72t1t0IgRkDej6Xt9ORoEwcE38mrZ9nkACw=)
                          2: ya12EPtNrcF0udvEcU2cfD6dvXE.roa (hash: JqrMXae8q96ruf/DmoCDw76yVSkMluiHBgpoAg21vqs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Jun 2025 10:01:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:54:23:3d:05:0d:7a:4b:9a:c0:c9:20:2e:14:7a:08:01
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
        Validity
            Not Before: Jun  9 10:01:24 2025 GMT
            Not After : Jun 10 10:01:24 2025 GMT
        Subject: CN=357bad8a8e2705c58f62940235cec0e514b76b47
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:fd:c7:ea:f4:bb:a5:dc:6c:c6:6e:e6:78:54:
                    57:a1:ad:45:fb:b3:b6:4c:d4:52:c7:1c:74:87:2b:
                    dc:89:25:34:8a:8c:4e:de:19:7f:0f:ea:b8:f0:fd:
                    50:23:da:08:63:05:03:47:78:e6:0b:a9:3a:5c:e8:
                    77:19:f3:b0:95:c8:c0:05:e2:a6:df:19:14:cf:2e:
                    2b:e5:c1:50:34:2c:30:c6:bb:34:96:b7:6a:4b:77:
                    ff:60:e6:c3:19:39:50:27:40:b3:05:9f:dd:34:0e:
                    7c:f6:3e:35:83:ea:3c:e6:20:5c:ac:17:70:bb:78:
                    e3:fa:bc:0e:38:f4:46:17:2a:15:13:29:16:61:b1:
                    62:ea:17:b8:02:fa:83:0b:77:49:24:ee:f6:26:08:
                    6e:6d:03:8d:51:1a:ce:fd:8c:8d:44:65:a4:ac:43:
                    b0:6d:e9:f3:35:34:e2:ab:6b:31:2d:75:60:5a:a9:
                    9e:50:97:b1:c6:67:84:0e:d8:4f:98:fa:c1:b8:a2:
                    d7:45:53:10:e6:6a:6b:0b:23:d5:86:b6:ea:9e:aa:
                    2a:18:46:98:90:97:81:32:66:c1:5e:f6:0a:12:7b:
                    bd:a2:27:cb:bc:c7:70:f3:ae:f7:f4:4a:91:93:d2:
                    cd:03:09:28:ce:4e:76:7a:b3:6d:6b:ca:8f:9f:29:
                    32:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:7B:AD:8A:8E:27:05:C5:8F:62:94:02:35:CE:C0:E5:14:B7:6B:47
            X509v3 Authority Key Identifier:
                keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         c9:87:92:03:62:fd:68:d0:5b:67:34:0a:27:fb:f9:30:8b:46:
         8a:4d:6d:af:76:7c:5c:bc:e1:56:e2:30:45:f3:bd:e2:7f:cd:
         a0:b0:1e:74:8c:f1:45:d0:bd:19:e5:5a:89:b9:18:48:42:22:
         69:43:4d:d0:38:1d:4a:cc:8f:28:7a:36:ce:68:61:49:ff:36:
         43:46:21:d5:d0:f3:aa:04:c9:c5:5b:89:6b:73:ba:a9:8f:12:
         06:16:28:bb:06:ce:bc:c6:0f:8c:c8:de:ab:ca:bc:98:34:5e:
         d5:45:53:52:db:d8:54:b1:42:9e:bc:2d:5b:38:fc:2d:15:f5:
         8e:40:7a:1a:0f:68:72:d5:38:b6:92:bb:2a:32:b0:d2:40:00:
         7f:91:44:9a:c4:e9:06:11:f6:6e:eb:59:48:c3:ec:b8:44:a1:
         9d:79:b2:10:f3:c6:f9:ea:e3:d0:59:43:01:9a:97:fd:c7:f0:
         45:c4:21:10:33:d3:8d:9d:b0:b4:6e:67:de:cb:75:ef:66:61:
         d3:e5:10:e1:2a:21:02:24:d1:15:31:1e:99:c3:5e:f5:9e:71:
         e6:c7:c0:28:52:15:1d:42:9f:68:a8:1f:80:fa:ba:d0:75:15:
         c6:b8:78:d9:f9:53:f0:a6:66:d8:81:91:e5:e8:c3:d7:d9:7a:
         0b:31:5c:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 16:33:52 2025 by rpki-client