Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: a/o32FJA5aSzx8yARgeW647/feHS6xfiI/s8rkH/13E=
Subject key identifier: EA:4D:44:03:F0:6E:78:9B:72:E5:DB:91:5F:F7:C1:25:25:C8:A9:15
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 019759EEA60A029C310DA398BB98E01CDF4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 10F4
Signing time: Tue 10 Jun 2025 13:01:41 +0000
Manifest this update: Tue 10 Jun 2025 13:01:41 +0000
Manifest next update: Wed 11 Jun 2025 13:01:41 +0000
Files and hashes: 1: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: hU2gXeled4Hh7tU/OjYKw68bIYxzaS4WGg5gHcHSzpk=)
2: ya12EPtNrcF0udvEcU2cfD6dvXE.roa (hash: JqrMXae8q96ruf/DmoCDw76yVSkMluiHBgpoAg21vqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 13:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:ee:a6:0a:02:9c:31:0d:a3:98:bb:98:e0:1c:df:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Jun 10 13:01:41 2025 GMT
Not After : Jun 11 13:01:41 2025 GMT
Subject: CN=ea4d4403f06e789b72e5db915ff7c12525c8a915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:dd:73:36:3e:90:60:b2:ba:bf:ea:a9:34:07:
85:aa:2f:8f:00:44:81:ad:cd:68:c0:68:ce:55:92:
81:00:65:f9:9d:81:d8:5a:07:92:2d:4c:b2:60:5c:
0c:51:f8:f8:9b:6d:21:5e:75:07:94:a6:cc:45:ef:
e7:c9:7c:c4:bf:f6:8c:79:9e:1d:1c:6a:8d:90:d2:
63:a0:a8:4c:4a:13:bf:c4:e0:fb:82:3a:f8:8c:c4:
bf:cb:c4:ba:4b:9c:ea:e7:5c:7e:57:10:b1:55:cf:
fb:c8:88:68:da:65:ec:b9:0d:f2:e5:10:b6:59:ee:
10:11:a4:88:50:b2:7b:bc:e0:ae:f5:f8:e6:9a:02:
f2:66:c8:0f:a5:86:fc:dd:d5:3a:61:60:9f:0f:bd:
73:79:47:05:b9:8a:d8:0e:1d:ad:ff:89:e4:2b:8a:
9f:41:e3:be:14:07:e6:c2:cb:b0:70:b4:d7:8b:43:
c7:11:57:5f:90:19:e3:c8:11:eb:8e:ba:6d:ab:8d:
ff:48:57:6c:d0:26:04:7a:75:bf:7a:46:aa:4c:c0:
21:7c:f7:f6:96:9b:fb:32:fa:04:99:6c:6b:8b:19:
f8:d4:57:1b:17:f9:be:12:aa:a0:7a:23:a9:d1:33:
8d:88:42:0e:f1:c3:05:3c:e8:81:3f:6f:d1:dc:df:
b1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:4D:44:03:F0:6E:78:9B:72:E5:DB:91:5F:F7:C1:25:25:C8:A9:15
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:4c:fe:92:4f:02:15:6e:f1:ba:c6:aa:05:68:0a:f9:47:90:
ae:80:89:c7:42:31:cd:ad:b6:81:36:bd:23:dc:f8:97:c3:45:
14:18:66:43:a7:ab:5a:45:de:83:a0:65:51:f6:80:b8:f6:9a:
5b:83:f5:d3:a7:68:b1:93:e9:74:5e:b9:4a:be:ad:fb:36:95:
f1:24:74:31:a0:2e:2e:84:57:e6:47:fe:a6:f2:b9:68:ec:72:
46:96:71:f5:84:ff:e6:7e:d7:36:09:71:db:40:f2:4e:03:10:
67:36:92:07:c6:23:1f:ae:10:52:a2:7b:1a:a8:4f:6f:e1:ba:
92:22:19:e1:a3:4f:33:d8:26:8c:f3:e0:2a:0f:5f:94:7a:5d:
65:85:92:c2:8e:76:4f:4d:a3:3e:c3:0e:8c:66:01:e0:44:53:
8b:fd:c5:8a:38:ab:f7:07:bf:e1:fa:87:63:3d:5a:69:74:90:
c9:ac:bf:f2:96:82:4d:af:82:97:76:a3:b4:82:41:5b:09:04:
1d:a4:d7:d7:4b:6d:e9:16:c2:f8:ed:f3:f7:37:d1:d3:aa:fa:
3a:9e:3b:79:8d:55:9c:8e:8f:f5:2d:88:96:16:c9:3b:75:68:
d2:32:88:c7:38:f7:e5:fb:6b:54:93:67:e5:3a:11:a2:a3:94:
93:40:c2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 18:36:32 2025 by rpki-client