Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
File: ryto8Mg63Zo6O4arJPuRCpYCYsY.mft (raw, json)
Hash identifier: svDdUN7INg7V4HV2YgVXFkHLP+o/XUJhX5tY2dtBUhI=
Subject key identifier: 63:7F:FF:F2:B4:2B:89:2A:74:B3:45:42:E9:11:2B:00:40:78:B4:D6
Authority key identifier: AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
Certificate issuer: /CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Certificate serial: 019A4E18B0D9BB6282CE0A01BD719940A735
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
Manifest number: 127E
Signing time: Tue 04 Nov 2025 09:00:32 +0000
Manifest this update: Tue 04 Nov 2025 09:00:32 +0000
Manifest next update: Wed 05 Nov 2025 09:00:32 +0000
Files and hashes: 1: oS-zf8LykP6dfOwgBh2b6irIbAA.roa (hash: es5RiKPg30TZ9v6YIMiSfrSdGJ7vWC4nZhRx1zHM27Q=)
2: ryto8Mg63Zo6O4arJPuRCpYCYsY.crl (hash: z/9iqH9pvbkF0VGxTsDw6ECfEKjPgdQz49gKo8KvUgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:18:b0:d9:bb:62:82:ce:0a:01:bd:71:99:40:a7:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af2b68f0c83add9a3a3b86ab24fb910a960262c6
Validity
Not Before: Nov 4 09:00:32 2025 GMT
Not After : Nov 5 09:00:32 2025 GMT
Subject: CN=637ffff2b42b892a74b34542e9112b004078b4d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ab:88:99:54:57:60:43:bd:29:a4:48:b5:e5:
59:c3:c3:e8:67:a4:cf:37:10:49:54:3a:40:c0:b4:
99:cb:61:65:1a:f7:d1:3b:91:74:11:2b:c4:e9:03:
55:0b:88:48:96:01:2a:b8:d8:a2:ac:a1:a0:ee:0a:
e9:1c:a5:f5:42:38:74:f0:60:d3:c0:92:20:45:e1:
c4:fe:01:11:f2:d5:ce:a1:cb:37:ad:75:7e:a0:a9:
dd:39:dc:4a:68:ec:d0:02:94:b3:6a:da:f7:3f:4d:
9a:02:13:54:a8:b0:db:3a:9f:25:5b:17:ab:a2:9d:
72:1d:55:d8:07:b2:a7:46:a9:53:c0:1d:f8:ac:35:
d1:e0:5d:77:e2:39:ab:0e:dd:ea:f2:bc:33:16:33:
2c:f5:f2:13:00:29:f2:0d:84:1c:79:e1:c3:a3:ce:
ef:3d:eb:5a:ef:83:35:3a:30:f8:22:56:75:d9:d2:
6a:e6:ca:00:45:a3:0f:d5:c6:b2:b3:8c:6c:60:1b:
51:16:1b:a6:be:de:3d:33:26:03:3e:d5:8f:70:70:
ae:0c:6f:9d:3e:e2:41:e9:a3:1b:ea:72:f2:ef:20:
8b:93:15:33:ff:2c:6c:9d:7b:fc:d3:78:d0:e0:02:
5d:3d:39:46:f8:21:6d:82:10:8a:ba:ee:3f:ee:44:
ea:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:7F:FF:F2:B4:2B:89:2A:74:B3:45:42:E9:11:2B:00:40:78:B4:D6
X509v3 Authority Key Identifier:
keyid:AF:2B:68:F0:C8:3A:DD:9A:3A:3B:86:AB:24:FB:91:0A:96:02:62:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ryto8Mg63Zo6O4arJPuRCpYCYsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/793e00-0c53-49c4-a51b-eda316a2afb8/1/ryto8Mg63Zo6O4arJPuRCpYCYsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:3e:bf:33:60:d6:fb:a8:90:c3:4b:4d:9a:08:96:2c:4b:b7:
34:22:80:6d:2d:8b:6f:2c:5c:df:06:07:6c:31:0e:ca:9f:9f:
c2:bf:81:a8:33:83:0f:03:65:a1:90:a1:13:1e:a8:a1:21:3d:
cc:15:99:f9:99:c9:39:f5:4f:04:de:f6:04:d5:9f:1b:8d:20:
7a:e8:31:ad:96:f2:21:82:cf:a8:d1:29:ab:78:43:89:f6:51:
50:43:b1:ea:01:6b:21:26:0d:56:61:5c:f4:57:23:42:49:71:
c7:e3:1f:3f:e9:5f:fe:b3:1a:47:06:7c:1c:ca:8e:fb:5e:61:
fa:2e:1b:bd:4e:db:eb:9b:a5:fb:c6:bc:66:e1:6d:17:d9:05:
f7:4a:4f:8f:0c:da:40:8f:e1:1d:8b:22:59:bd:81:dc:06:3d:
64:52:2d:b1:3a:14:1b:74:23:09:67:84:d5:19:2b:2e:5b:69:
b7:97:80:82:7e:d2:34:3b:71:f1:1f:89:6f:a0:93:f5:09:c9:
a8:f0:ea:88:d7:d4:75:0c:87:02:f4:4e:c1:2a:ad:ab:40:4c:
54:99:4b:66:d8:69:87:ce:2a:d6:a3:a2:e3:1b:73:4d:f3:76:
c3:83:8a:ca:8a:12:af:08:df:e2:c4:3c:88:83:e4:75:b2:89:
7f:06:e4:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpOGLDZu2KCzgoBvXGZQKc1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFmMmI2OGYwYzgzYWRkOWEzYTNiODZhYjI0ZmI5MTBhOTYw
MjYyYzYwHhcNMjUxMTA0MDkwMDMyWhcNMjUxMTA1MDkwMDMyWjAzMTEwLwYDVQQD
Eyg2MzdmZmZmMmI0MmI4OTJhNzRiMzQ1NDJlOTExMmIwMDQwNzhiNGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKuImVRXYEO9KaRIteVZw8PoZ6TP
NxBJVDpAwLSZy2FlGvfRO5F0ESvE6QNVC4hIlgEquNiirKGg7grpHKX1Qjh08GDT
wJIgReHE/gER8tXOocs3rXV+oKndOdxKaOzQApSzatr3P02aAhNUqLDbOp8lWxer
op1yHVXYB7KnRqlTwB34rDXR4F134jmrDt3q8rwzFjMs9fITACnyDYQceeHDo87v
Peta74M1OjD4IlZ12dJq5soARaMP1cays4xsYBtRFhumvt49MyYDPtWPcHCuDG+d
PuJB6aMb6nLy7yCLkxUz/yxsnXv803jQ4AJdPTlG+CFtghCKuu4/7kTqBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGN///K0K4kqdLNFQukRKwBAeLTWMB8GA1UdIwQY
MBaAFK8raPDIOt2aOjuGqyT7kQqWAmLGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy83OTNlMDAtMGM1My00OWM0LWE1MWIt
ZWRhMzE2YTJhZmI4LzEvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy83OTNlMDAtMGM1My00OWM0LWE1MWItZWRhMzE2YTJhZmI4
LzEvcnl0bzhNZzYzWm82TzRhckpQdVJDcFlDWXNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjj6/M2DW
+6iQw0tNmgiWLEu3NCKAbS2Lbyxc3wYHbDEOyp+fwr+BqDODDwNloZChEx6ooSE9
zBWZ+ZnJOfVPBN72BNWfG40geugxrZbyIYLPqNEpq3hDifZRUEOx6gFrISYNVmFc
9FcjQklxx+MfP+lf/rMaRwZ8HMqO+15h+i4bvU7b65ul+8a8ZuFtF9kF90pPjwza
QI/hHYsiWb2B3AY9ZFItsToUG3QjCWeE1RkrLltpt5eAgn7SNDtx8R+Jb6CT9QnJ
qPDqiNfUdQyHAvROwSqtq0BMVJlLZthph84q1qOi4xtzTfN2w4OKyooSrwjf4sQ8
iIPkdbKJfwbkXw==
-----END CERTIFICATE-----
Generated at Tue Nov 4 15:31:31 2025 by rpki-client