Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: VqabgnKKHpEhFJSvSYcQmBQ0c0zasnXskqXNKLOWNiU=
Subject key identifier: 50:56:FD:AC:85:1E:20:80:C1:A6:9A:25:59:DE:D0:0E:08:8B:ED:CD
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 0196857FDED82B73A0757CF8D70C1C859290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 1086
Signing time: Wed 30 Apr 2025 07:01:11 +0000
Manifest this update: Wed 30 Apr 2025 07:01:11 +0000
Manifest next update: Thu 01 May 2025 07:01:11 +0000
Files and hashes: 1: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: 85rFTApUOhgw1b97ek0gnV0S4fyLcvBA5g+FhlKORz8=)
2: ya12EPtNrcF0udvEcU2cfD6dvXE.roa (hash: JqrMXae8q96ruf/DmoCDw76yVSkMluiHBgpoAg21vqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 07:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:85:7f:de:d8:2b:73:a0:75:7c:f8:d7:0c:1c:85:92:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Apr 30 07:01:11 2025 GMT
Not After : May 1 07:01:11 2025 GMT
Subject: CN=5056fdac851e2080c1a69a2559ded00e088bedcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:91:5b:a0:a2:4c:69:4a:b4:f7:a0:07:c8:39:
9a:d7:3e:a8:fd:4e:71:c7:34:a8:64:44:ea:f0:1f:
d1:4f:16:cf:c7:4e:6e:49:2e:ae:e3:d9:e4:c2:79:
9d:f4:14:d0:8d:41:34:d4:28:96:0b:47:71:f5:19:
e3:78:1a:15:eb:94:b1:db:d0:4b:ab:54:d1:a6:24:
35:c9:d6:51:79:3e:4e:16:2a:61:76:39:b4:42:fe:
ef:9e:ff:2c:af:3a:18:dd:30:23:80:f7:de:af:71:
24:6e:22:15:4c:ab:13:92:31:6a:45:31:83:89:83:
a1:15:c1:91:9e:f7:a0:d3:ad:66:5c:a3:32:c6:b9:
4a:87:c0:b3:0e:46:d1:e6:9c:ae:7a:f7:20:33:78:
fd:13:de:0c:48:4b:73:cf:52:9d:c1:a4:57:a6:08:
d5:93:be:1a:fa:f1:44:a8:98:11:79:93:8c:3d:ee:
7b:88:57:a3:5e:04:22:41:27:e2:07:d8:bd:9c:dd:
ef:63:88:4a:d8:57:95:6b:da:9d:0f:a1:35:1c:f9:
39:56:b4:7c:09:d5:ad:e8:e9:67:53:cb:e9:90:66:
15:66:48:a9:57:51:34:bd:60:8d:65:a0:b2:ed:0a:
98:1a:40:37:74:a8:e2:2b:e8:49:41:72:48:43:da:
37:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:56:FD:AC:85:1E:20:80:C1:A6:9A:25:59:DE:D0:0E:08:8B:ED:CD
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:b3:70:a7:b5:f3:09:e8:6c:92:56:aa:22:f6:33:dd:49:8e:
c1:9a:88:d2:3c:1d:30:78:c8:f0:21:3f:47:f9:0d:27:e8:19:
53:02:e7:e1:70:dc:c3:40:f6:8e:59:83:b1:99:98:4d:0a:8e:
f9:a0:a8:57:26:b6:f8:0b:71:cd:f4:e7:aa:6f:f2:45:c5:ce:
8e:fc:94:31:0b:5b:65:7b:38:a7:26:25:91:69:36:11:21:c6:
0f:0b:94:61:3f:1c:2e:1f:02:24:e4:23:c8:7b:a0:f2:c2:14:
9b:ca:77:a9:f0:13:f2:d2:ff:25:41:ed:90:1d:26:62:15:b0:
25:82:3c:b1:ca:2d:99:8f:9a:5e:b1:e3:0c:e5:be:6e:f5:7c:
9b:1c:13:7b:09:6e:2d:5f:e4:64:35:39:6b:ec:85:07:90:90:
1b:fe:f5:b2:ca:12:80:79:69:3b:06:ff:7b:71:5c:01:de:e6:
3a:44:d0:08:0e:20:79:92:84:8b:2e:2b:a3:af:3a:c6:6d:66:
5d:0d:90:c8:3e:87:c4:00:d6:d2:b3:cb:79:6d:0b:85:c2:ed:
b1:e9:4f:36:da:e9:0a:45:7f:9c:ac:69:21:48:3a:42:5a:42:
04:fa:ff:70:26:33:6d:4b:47:8c:a9:ac:4d:6a:cf:22:47:1f:
93:23:9a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 12:27:21 2025 by rpki-client