Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File:                     ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier:          q1fRwZ4xsfBSbP4K+ZWEGJPuhU+5KBefjMPlDVwA1HQ=
Subject key identifier:   EB:35:E0:0D:E4:38:D1:DB:26:5C:F9:DD:3D:B4:A0:39:9A:4A:47:07
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer:       /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial:       019F42E420F07875983F6F1AF56111080FC4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number:          1510
Signing time:             Wed 08 Jul 2026 18:01:14 +0000
Manifest this update:     Wed 08 Jul 2026 18:01:14 +0000
Manifest next update:     Thu 09 Jul 2026 18:01:14 +0000
Files and hashes:         1: h-PWIeDfQLuLQns6H59eVXIlTEw.roa (hash: a2RfFAyHbTGC+LHQhF0hKAuxj7Am0hNvyjuE9TNtMKs=)
                          2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: BD4SiFmqHRi41iiTMn9S1befbMm3rP1gghYa1K2tPu8=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Thu 09 Jul 2026 13:45:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9f:42:e4:20:f0:78:75:98:3f:6f:1a:f5:61:11:08:0f:c4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
        Validity
            Not Before: Jul  8 18:01:14 2026 GMT
            Not After : Jul  9 18:01:14 2026 GMT
        Subject: CN=eb35e00de438d1db265cf9dd3db4a0399a4a4707
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:df:20:a2:d3:7c:d2:56:d1:50:3c:df:e6:c7:
                    49:39:df:c1:21:ca:0a:66:6e:e9:45:a9:f4:3b:72:
                    72:93:58:93:26:64:ca:62:cc:12:0f:43:7e:b8:ad:
                    ce:29:7a:1a:d3:b0:43:1f:35:d2:21:24:e7:e9:52:
                    38:8a:06:21:f2:b2:0a:e0:7b:af:48:e4:dd:6b:ce:
                    f3:69:4d:7c:82:42:bf:16:06:53:e5:00:ff:37:88:
                    cd:05:1c:2d:74:72:98:6a:d9:c0:c3:29:3f:ab:e3:
                    a0:1f:56:26:76:1e:ee:cc:f6:68:33:02:f1:cb:e5:
                    13:46:95:1a:e0:d5:65:d8:51:df:53:e3:66:d2:c1:
                    d7:ce:e8:b3:be:4b:d6:41:11:79:13:30:a7:b0:b8:
                    42:3c:bc:61:3e:28:e4:49:60:60:da:ad:4e:e4:b2:
                    8a:3c:66:84:af:ef:f5:e7:3c:a6:fb:d3:74:93:3c:
                    bb:c7:a0:75:8f:fe:48:0d:8f:71:7b:54:9b:a8:82:
                    17:79:01:d3:9f:95:35:0a:f3:16:65:35:b3:4d:56:
                    a1:ee:8c:75:20:db:30:17:49:94:0c:bb:62:f2:a9:
                    42:9c:70:96:83:26:ae:a3:78:84:93:d5:9f:a8:d1:
                    36:53:b7:ef:76:43:75:21:70:dc:c1:ba:1b:ba:66:
                    13:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:35:E0:0D:E4:38:D1:DB:26:5C:F9:DD:3D:B4:A0:39:9A:4A:47:07
            X509v3 Authority Key Identifier:
                keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b7:a2:04:3b:34:f3:1a:14:18:20:8e:61:b9:d0:74:e8:8d:ef:
         78:65:74:86:0a:e4:af:12:fe:50:46:27:f7:8a:d7:ad:24:13:
         c1:e6:59:60:8e:db:a9:ed:92:dd:db:b2:47:3c:7d:59:6e:98:
         ef:47:95:98:f2:be:b0:62:e8:70:a0:cd:04:4a:7c:a1:e2:d0:
         5a:1f:f6:e3:b8:f3:1d:94:19:58:94:5f:e0:a8:28:57:83:dc:
         3b:bf:43:84:7a:9c:7c:bd:3e:07:20:f3:28:f7:03:87:58:89:
         02:f5:a4:62:f6:09:7c:8f:a4:f0:81:f9:d5:61:bb:2e:5a:c3:
         df:1e:96:48:9d:cc:51:bd:d2:3c:a1:a6:86:08:6d:91:ef:57:
         f0:20:81:f2:f3:2f:f8:1a:87:f6:4d:e2:35:66:7b:8d:e1:18:
         a1:b7:d9:98:b7:52:e0:bd:b2:9d:2b:bd:83:3c:49:5a:97:18:
         00:a4:13:af:51:21:f8:92:ad:74:2c:14:e8:4b:78:73:33:60:
         22:b6:f6:7d:ea:7a:5b:4b:b2:a1:b9:7f:ca:e8:15:a6:16:41:
         67:b6:1e:98:a3:b7:6d:42:22:9f:c2:94:02:a7:a0:b1:bb:7e:
         93:ee:c9:e5:07:1e:38:28:7d:ca:70:34:8c:46:4a:cc:13:0a:
         17:20:23:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 19:08:29 2026 by rpki-client