Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File:                     ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier:          a/o32FJA5aSzx8yARgeW647/feHS6xfiI/s8rkH/13E=
Subject key identifier:   EA:4D:44:03:F0:6E:78:9B:72:E5:DB:91:5F:F7:C1:25:25:C8:A9:15
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer:       /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial:       019759EEA60A029C310DA398BB98E01CDF4F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number:          10F4
Signing time:             Tue 10 Jun 2025 13:01:41 +0000
Manifest this update:     Tue 10 Jun 2025 13:01:41 +0000
Manifest next update:     Wed 11 Jun 2025 13:01:41 +0000
Files and hashes:         1: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: hU2gXeled4Hh7tU/OjYKw68bIYxzaS4WGg5gHcHSzpk=)
                          2: ya12EPtNrcF0udvEcU2cfD6dvXE.roa (hash: JqrMXae8q96ruf/DmoCDw76yVSkMluiHBgpoAg21vqs=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Wed 11 Jun 2025 13:01:41 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:97:59:ee:a6:0a:02:9c:31:0d:a3:98:bb:98:e0:1c:df:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
        Validity
            Not Before: Jun 10 13:01:41 2025 GMT
            Not After : Jun 11 13:01:41 2025 GMT
        Subject: CN=ea4d4403f06e789b72e5db915ff7c12525c8a915
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:dd:73:36:3e:90:60:b2:ba:bf:ea:a9:34:07:
                    85:aa:2f:8f:00:44:81:ad:cd:68:c0:68:ce:55:92:
                    81:00:65:f9:9d:81:d8:5a:07:92:2d:4c:b2:60:5c:
                    0c:51:f8:f8:9b:6d:21:5e:75:07:94:a6:cc:45:ef:
                    e7:c9:7c:c4:bf:f6:8c:79:9e:1d:1c:6a:8d:90:d2:
                    63:a0:a8:4c:4a:13:bf:c4:e0:fb:82:3a:f8:8c:c4:
                    bf:cb:c4:ba:4b:9c:ea:e7:5c:7e:57:10:b1:55:cf:
                    fb:c8:88:68:da:65:ec:b9:0d:f2:e5:10:b6:59:ee:
                    10:11:a4:88:50:b2:7b:bc:e0:ae:f5:f8:e6:9a:02:
                    f2:66:c8:0f:a5:86:fc:dd:d5:3a:61:60:9f:0f:bd:
                    73:79:47:05:b9:8a:d8:0e:1d:ad:ff:89:e4:2b:8a:
                    9f:41:e3:be:14:07:e6:c2:cb:b0:70:b4:d7:8b:43:
                    c7:11:57:5f:90:19:e3:c8:11:eb:8e:ba:6d:ab:8d:
                    ff:48:57:6c:d0:26:04:7a:75:bf:7a:46:aa:4c:c0:
                    21:7c:f7:f6:96:9b:fb:32:fa:04:99:6c:6b:8b:19:
                    f8:d4:57:1b:17:f9:be:12:aa:a0:7a:23:a9:d1:33:
                    8d:88:42:0e:f1:c3:05:3c:e8:81:3f:6f:d1:dc:df:
                    b1:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:4D:44:03:F0:6E:78:9B:72:E5:DB:91:5F:F7:C1:25:25:C8:A9:15
            X509v3 Authority Key Identifier:
                keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         b6:4c:fe:92:4f:02:15:6e:f1:ba:c6:aa:05:68:0a:f9:47:90:
         ae:80:89:c7:42:31:cd:ad:b6:81:36:bd:23:dc:f8:97:c3:45:
         14:18:66:43:a7:ab:5a:45:de:83:a0:65:51:f6:80:b8:f6:9a:
         5b:83:f5:d3:a7:68:b1:93:e9:74:5e:b9:4a:be:ad:fb:36:95:
         f1:24:74:31:a0:2e:2e:84:57:e6:47:fe:a6:f2:b9:68:ec:72:
         46:96:71:f5:84:ff:e6:7e:d7:36:09:71:db:40:f2:4e:03:10:
         67:36:92:07:c6:23:1f:ae:10:52:a2:7b:1a:a8:4f:6f:e1:ba:
         92:22:19:e1:a3:4f:33:d8:26:8c:f3:e0:2a:0f:5f:94:7a:5d:
         65:85:92:c2:8e:76:4f:4d:a3:3e:c3:0e:8c:66:01:e0:44:53:
         8b:fd:c5:8a:38:ab:f7:07:bf:e1:fa:87:63:3d:5a:69:74:90:
         c9:ac:bf:f2:96:82:4d:af:82:97:76:a3:b4:82:41:5b:09:04:
         1d:a4:d7:d7:4b:6d:e9:16:c2:f8:ed:f3:f7:37:d1:d3:aa:fa:
         3a:9e:3b:79:8d:55:9c:8e:8f:f5:2d:88:96:16:c9:3b:75:68:
         d2:32:88:c7:38:f7:e5:fb:6b:54:93:67:e5:3a:11:a2:a3:94:
         93:40:c2:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:34:24 2025 by rpki-client