Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: oHAjk6pd0GGBKXtsuozFBZ685Ovs6sZVGmqUDG3a9aA=
Subject key identifier: D8:17:A1:D4:FF:38:3C:D9:0F:FC:6B:8C:00:33:F8:56:AD:21:95:AD
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 01988C2168C8AE47ED8512AF398E7E5F26B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 1195
Signing time: Sat 09 Aug 2025 00:00:56 +0000
Manifest this update: Sat 09 Aug 2025 00:00:56 +0000
Manifest next update: Sun 10 Aug 2025 00:00:56 +0000
Files and hashes: 1: oS-zf8LykP6dfOwgBh2b6irIbAA.roa (hash: es5RiKPg30TZ9v6YIMiSfrSdGJ7vWC4nZhRx1zHM27Q=)
2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: 41BQ9hfgZaCMjs4LSxUu1QJXErerrw7CqNytmiqK0nU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8c:21:68:c8:ae:47:ed:85:12:af:39:8e:7e:5f:26:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Aug 9 00:00:56 2025 GMT
Not After : Aug 10 00:00:56 2025 GMT
Subject: CN=d817a1d4ff383cd90ffc6b8c0033f856ad2195ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:54:7b:75:2a:44:ed:cc:46:53:c1:fd:2b:ec:
f5:a0:f2:de:ef:94:99:14:58:0e:8f:bb:bb:e0:c5:
79:3e:5a:a2:e1:9d:ce:5d:e0:41:75:d0:23:d3:94:
bd:ca:b1:09:49:ec:b6:6f:47:b8:98:85:0a:db:a6:
39:9d:68:73:6d:26:7b:26:39:46:0f:54:4f:df:66:
a9:54:ae:38:71:fe:73:b1:84:b3:e0:ee:08:f7:e8:
88:e7:30:fb:db:18:6d:52:45:58:5c:02:3f:e2:1a:
72:59:27:b3:e3:c9:66:5a:d1:b2:dd:5c:4c:cc:25:
40:2f:98:9a:ea:44:92:63:e8:f6:fa:cc:89:2c:f8:
32:43:9b:b0:70:61:a2:10:ea:89:e2:af:c5:63:3d:
26:dd:ed:f9:ba:02:2f:95:79:8e:4a:b8:30:6a:91:
41:22:38:8b:60:f4:94:af:4e:d3:1b:82:b0:36:7b:
57:11:ed:11:b6:d3:9a:4e:53:da:28:68:e4:2a:92:
ad:4a:b0:bc:eb:53:10:e7:d3:81:27:6b:1d:ed:99:
d6:ba:34:a9:0f:58:c5:70:3d:0d:94:cc:9c:92:0e:
0f:9b:cc:6c:74:65:b7:9b:ab:ad:be:61:c3:6e:d6:
1a:42:27:ea:8b:6a:2b:e8:3a:a7:51:09:e5:a6:f5:
2f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:17:A1:D4:FF:38:3C:D9:0F:FC:6B:8C:00:33:F8:56:AD:21:95:AD
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:46:41:44:2f:93:03:f5:10:32:3e:9b:78:4f:0b:b2:59:99:
85:d9:09:60:3c:13:d6:2d:60:ee:ef:86:ce:09:e1:ed:4c:4c:
2f:96:8b:72:e0:a1:6b:be:3a:5b:0a:73:24:0d:3a:e0:1f:0c:
96:9d:42:0d:f1:62:0e:3e:96:56:b8:d6:92:96:27:9d:af:2b:
0a:6d:bd:85:db:bb:35:71:87:44:c5:cc:73:d3:ec:b5:91:e8:
72:77:45:44:6b:3f:33:9e:c5:13:5e:5f:fd:8a:f6:cf:21:94:
98:ce:cf:d8:98:57:00:05:0a:a7:0d:5e:91:26:24:ec:7f:17:
84:69:51:5e:c5:27:a3:57:a4:89:f2:0b:19:26:90:bd:5b:01:
9e:ec:f0:1e:16:6e:5c:02:5c:1f:4d:af:fc:dc:7a:d2:cf:b7:
8b:42:a8:17:12:59:4c:36:10:86:dc:31:01:71:9a:8c:e3:73:
3c:d6:38:3a:eb:2f:68:f9:4e:17:ec:29:36:48:88:4c:4e:43:
b6:47:24:00:7c:b5:4a:b9:50:f5:f7:ee:6e:0b:86:78:63:b4:
e3:e9:74:fa:3b:f4:f4:51:18:6c:d1:73:8c:62:23:82:92:59:
cd:11:88:63:87:70:04:71:e0:18:3c:4b:54:79:45:5e:8a:d5:
5e:44:fd:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 02:50:39 2025 by rpki-client