Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
File: 4mthhRZS_I_twBGm8i966ba-sKM.mft (raw, json)
Hash identifier: mX+KSjky/fx+tS1LPpk2JC8+Hqi3OJusQlOYI4ntarI=
Subject key identifier: E5:42:3B:7E:B0:A1:28:57:15:CD:CB:B2:0D:3D:E1:7F:99:A8:97:A5
Authority key identifier: E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
Certificate issuer: /CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Certificate serial: 0196748B76C8D873A9358EC587BA24F798B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
Manifest number: 093A
Signing time: Sun 27 Apr 2025 00:00:18 +0000
Manifest this update: Sun 27 Apr 2025 00:00:18 +0000
Manifest next update: Mon 28 Apr 2025 00:00:18 +0000
Files and hashes: 1: 4mthhRZS_I_twBGm8i966ba-sKM.crl (hash: FEMjmY8Ajptk09ALgfFUOyegKkoxDEpGzrD6tcsNKzE=)
2: bp1oEKvy0k4AWur_R9trAhI-EY0.roa (hash: 1L++/xzP2iQbZgWJOfAhv8wOoNcuV9GiE8g7Q92+ZBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 00:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:8b:76:c8:d8:73:a9:35:8e:c5:87:ba:24:f7:98:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Validity
Not Before: Apr 27 00:00:18 2025 GMT
Not After : Apr 28 00:00:18 2025 GMT
Subject: CN=e5423b7eb0a1285715cdcbb20d3de17f99a897a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:90:32:31:63:e4:7b:22:0f:e8:94:f5:64:a8:
17:95:97:1b:62:2b:93:1e:66:13:85:75:f6:de:cf:
2d:99:6e:a3:ce:41:31:b8:fe:ae:a3:28:ce:c1:8a:
23:91:5e:d8:8f:51:d3:59:2d:2f:a7:9e:b7:d8:7e:
e4:93:55:84:c9:bb:7d:92:c6:a1:b7:0e:f7:66:dc:
b7:54:cc:3c:47:2d:13:2e:01:8f:51:e5:cc:0f:b9:
1c:46:a9:70:da:ab:d1:b7:27:bc:75:df:77:d5:65:
10:a1:0c:7c:95:f8:22:48:26:46:22:2f:06:16:e6:
fe:dc:98:3f:12:97:71:30:cc:4d:f7:df:2f:56:a2:
c5:e4:40:0c:36:f4:e5:50:dc:e1:9c:6b:f3:9d:27:
a2:b7:fa:22:33:26:6b:08:b5:70:ec:f2:d2:13:f4:
08:4b:15:f0:e2:a6:3b:be:70:23:d6:bf:45:89:93:
b5:d0:e3:f4:43:a3:d2:be:26:49:77:1f:b5:e2:70:
b4:81:7a:fd:48:15:84:ee:d9:05:cb:80:d9:b5:4b:
a7:a8:96:07:5b:bc:8e:7c:f1:6a:4f:e9:26:80:c7:
77:0d:07:52:f3:a9:b2:98:bd:fb:1b:93:12:9a:43:
c3:5b:85:22:f3:72:8e:17:de:9a:f4:4c:ee:d5:11:
12:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:42:3B:7E:B0:A1:28:57:15:CD:CB:B2:0D:3D:E1:7F:99:A8:97:A5
X509v3 Authority Key Identifier:
keyid:E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:84:03:2e:68:53:66:b0:3c:2a:48:bd:0d:ef:58:8d:fc:dd:
3d:0c:e1:3b:57:72:83:05:b7:97:7f:3e:87:bd:26:fd:27:48:
e4:51:29:c0:58:b9:32:7d:87:2c:e6:cb:e5:c5:16:7d:bc:fe:
12:ae:26:ea:4d:22:f2:fe:d9:40:b9:67:bc:7d:9f:f3:19:0f:
49:6a:e9:cf:27:89:05:78:1f:5b:ac:dd:0c:73:a7:17:74:27:
44:3c:3d:80:03:12:74:21:ec:ca:50:1c:a4:1a:21:df:c6:5d:
a3:8c:3a:ef:c3:ca:cb:fd:fd:47:58:70:b7:c7:be:1b:5e:e8:
cd:e1:d2:0c:28:22:43:f5:cf:43:98:49:6c:6d:26:6c:c0:1b:
0e:9a:e3:7b:db:1a:59:c3:23:bc:ef:8c:17:22:89:6a:78:33:
86:b6:fc:44:8f:7e:1b:da:86:c8:4a:52:3f:9a:0d:87:4e:90:
b7:1d:08:32:c8:3e:ba:2c:ea:03:9c:62:32:69:0c:24:31:69:
93:67:0f:6a:d1:07:cd:02:f6:a0:29:42:18:05:b5:34:e8:05:
ff:f4:9f:8f:63:10:81:be:64:76:d2:18:d5:3d:db:36:e2:27:
7c:3a:1c:ea:61:73:b8:cc:46:af:e4:d1:cd:1d:8a:c1:14:02:
d9:15:38:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 10:31:13 2025 by rpki-client