Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File:                     ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier:          /j6m3Kw7Jtguw2f0XCgyIl2L/l39XW/ZHCjMOo3pwas=
Subject key identifier:   6A:FB:9C:F8:04:8C:A0:EF:1A:E4:22:8F:F0:42:AE:74:19:08:69:06
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer:       /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial:       01975DCAF9CDFBD3DFE924CD829736998C4F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number:          10F6
Signing time:             Wed 11 Jun 2025 07:01:12 +0000
Manifest this update:     Wed 11 Jun 2025 07:01:12 +0000
Manifest next update:     Thu 12 Jun 2025 07:01:12 +0000
Files and hashes:         1: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: eUDiFkk2vY9s7JIq8Ypdpp11t9wL5yJlwDiqyJYiFaE=)
                          2: ya12EPtNrcF0udvEcU2cfD6dvXE.roa (hash: JqrMXae8q96ruf/DmoCDw76yVSkMluiHBgpoAg21vqs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 23:00:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:5d:ca:f9:cd:fb:d3:df:e9:24:cd:82:97:36:99:8c:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
        Validity
            Not Before: Jun 11 07:01:12 2025 GMT
            Not After : Jun 12 07:01:12 2025 GMT
        Subject: CN=6afb9cf8048ca0ef1ae4228ff042ae7419086906
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:a5:e8:70:1f:fd:07:9c:11:c2:03:06:f3:f4:
                    7d:fd:f5:02:2f:3c:f8:df:4a:39:77:02:58:97:88:
                    bb:3b:04:f1:01:f9:d5:9f:59:0a:c5:ca:1a:93:02:
                    15:32:72:8a:45:ca:1d:c9:b7:d9:5f:03:82:50:b4:
                    79:52:f7:6b:70:84:86:34:e2:72:04:23:44:0d:36:
                    ee:7e:3e:a9:a4:76:58:68:71:3c:dd:ad:30:4a:03:
                    15:94:83:0a:43:1d:26:90:b9:25:c0:e7:e7:ec:68:
                    1e:ce:07:37:21:4d:bc:d9:f4:a6:ff:76:06:e9:e5:
                    0a:77:8d:8f:d5:c3:c2:ba:db:30:70:53:c5:55:b8:
                    62:f9:2b:d7:31:2d:3d:24:85:45:4b:fa:75:bf:86:
                    45:8a:f7:34:57:d6:60:8b:ca:f7:e4:6b:67:11:64:
                    7b:a3:8b:a0:2f:2d:a6:b5:fb:3d:24:db:57:90:35:
                    db:1d:4b:62:ba:95:52:ec:28:dc:09:32:a0:6e:7d:
                    6a:08:c6:4d:37:dc:9c:fc:c5:36:b4:5e:83:d9:51:
                    16:70:a9:ec:39:51:b7:37:89:75:d4:f3:56:83:e3:
                    15:aa:a6:2d:19:f4:a3:0e:24:84:03:a9:22:11:f2:
                    36:01:5d:3e:82:b5:6b:ac:b1:8e:d7:05:37:a3:59:
                    45:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:FB:9C:F8:04:8C:A0:EF:1A:E4:22:8F:F0:42:AE:74:19:08:69:06
            X509v3 Authority Key Identifier:
                keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b8:d5:55:94:48:05:2e:5b:a9:c7:a9:ef:fb:e9:12:63:67:88:
         0b:05:2a:8a:3d:ac:cc:08:64:6a:bd:98:11:9e:fe:12:a1:e6:
         4f:b1:db:f5:a0:5f:89:9e:85:07:bd:d7:6c:34:cb:82:9e:28:
         d3:73:ff:5d:f0:95:1d:a8:5d:20:86:cb:2a:df:ff:6b:52:e5:
         f3:4b:34:ab:4e:37:55:03:cd:7a:f7:2f:db:2a:de:ad:99:10:
         67:c9:8d:3f:72:8a:5a:18:fe:74:87:ce:cc:23:db:07:33:81:
         da:5b:2c:d6:b0:ff:9a:cc:57:31:1d:6b:5c:91:ee:6f:4a:6c:
         4b:70:5c:de:74:b8:cd:3c:09:c0:4c:87:65:86:89:d7:15:36:
         30:ac:b2:51:d7:24:07:73:eb:a9:f6:d4:27:15:d9:0c:5a:80:
         40:2f:29:e1:ec:28:5b:d4:ff:28:9f:94:7d:93:95:92:1e:7c:
         a4:58:c1:f9:50:e3:9e:b5:18:9f:83:58:8c:79:29:9e:c7:85:
         c3:aa:45:7a:c1:11:ad:04:04:d0:4d:f3:52:64:02:89:d9:8b:
         c1:c6:3f:67:4e:2b:14:27:6a:e1:80:a8:f8:4a:28:ca:60:8e:
         7e:5c:4b:70:3d:1c:d1:1d:8b:a0:84:bc:e5:40:dd:7e:68:7f:
         19:ee:36:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 11 09:50:07 2025 by rpki-client