Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
File: 4mthhRZS_I_twBGm8i966ba-sKM.mft (raw, json)
Hash identifier: bSLepCNBQVdaPodKogeAwJah8byd4zYskcDUq1Ql8t4=
Subject key identifier: 53:1E:F0:3A:0E:C5:EE:37:77:B7:FD:53:14:11:43:A6:07:C3:B8:19
Authority key identifier: E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
Certificate issuer: /CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Certificate serial: 019A4D73A55AF2262BD4FC495B3A600E8F41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
Manifest number: 0B38
Signing time: Tue 04 Nov 2025 06:00:15 +0000
Manifest this update: Tue 04 Nov 2025 06:00:15 +0000
Manifest next update: Wed 05 Nov 2025 06:00:15 +0000
Files and hashes: 1: 4mthhRZS_I_twBGm8i966ba-sKM.crl (hash: cl2w+L4IyvUG0OFkqmJ62T9SBs/V4DOJPo+nTrklnTg=)
2: bp1oEKvy0k4AWur_R9trAhI-EY0.roa (hash: 1L++/xzP2iQbZgWJOfAhv8wOoNcuV9GiE8g7Q92+ZBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 06:00:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:73:a5:5a:f2:26:2b:d4:fc:49:5b:3a:60:0e:8f:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e26b61851652fc8fedc011a6f22f7ae9b6beb0a3
Validity
Not Before: Nov 4 06:00:15 2025 GMT
Not After : Nov 5 06:00:15 2025 GMT
Subject: CN=531ef03a0ec5ee3777b7fd53141143a607c3b819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cc:62:12:1d:98:7d:07:c4:a2:46:7d:3f:b5:
7e:a2:ed:d4:c0:d0:b4:64:1f:ce:3f:7c:5e:e6:e1:
c3:95:e6:f9:59:8b:6e:db:fd:62:54:96:16:ed:2c:
f2:9f:db:7b:fb:66:9a:bf:42:30:33:d1:bf:a9:be:
bf:42:54:45:34:ee:5b:3c:dc:c0:1f:a1:20:4d:a8:
9d:ba:10:3f:48:35:41:a0:ee:a1:0d:8b:09:a9:c6:
0c:c4:ee:35:63:fb:0e:04:24:f1:11:6d:a4:be:24:
04:a3:a1:38:61:a4:62:4b:3d:8c:6a:43:c7:4b:b0:
b0:5c:34:dd:2d:77:55:1a:d4:48:c6:ba:3b:f5:33:
50:0f:f7:f8:33:99:da:bf:70:d6:85:d2:fb:5a:60:
e0:3f:ed:80:dc:ef:48:39:60:d1:6a:28:fa:31:1d:
8b:b0:b7:9e:d8:50:bd:02:8c:fc:7d:63:cf:63:a3:
78:fa:e3:a8:de:9d:67:a0:88:9d:ed:ca:5f:71:4a:
fc:00:ae:93:0d:1c:ac:65:31:25:c0:c8:39:69:48:
b1:1e:86:1a:36:48:85:7a:45:eb:82:af:03:9e:20:
32:4b:88:0c:19:53:5a:2c:26:16:e3:02:e7:30:f8:
ee:34:b3:fe:5d:74:b0:2c:da:34:00:e8:d6:7a:b3:
12:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:1E:F0:3A:0E:C5:EE:37:77:B7:FD:53:14:11:43:A6:07:C3:B8:19
X509v3 Authority Key Identifier:
keyid:E2:6B:61:85:16:52:FC:8F:ED:C0:11:A6:F2:2F:7A:E9:B6:BE:B0:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4mthhRZS_I_twBGm8i966ba-sKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d70833-68eb-4100-9123-94e1ab575094/1/4mthhRZS_I_twBGm8i966ba-sKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:54:eb:be:5b:6a:94:42:14:dc:eb:18:98:da:90:fb:03:77:
90:a4:2c:f1:6f:fa:41:a2:2b:21:35:97:12:06:c2:df:e4:3e:
59:64:e8:42:83:5f:f5:52:05:d6:cd:2a:7b:fa:ec:a6:61:3f:
1b:89:13:60:63:90:55:26:dd:15:5a:75:e1:98:ea:cb:f6:68:
a2:72:63:b1:d6:3d:33:ec:f1:3d:36:56:0a:eb:7c:fa:d1:9e:
b5:8b:5b:58:4e:e8:d8:49:95:04:b5:aa:c7:a1:c2:2d:97:79:
c4:5a:d4:99:ff:dd:c5:96:46:49:e1:e6:6c:c7:e4:3e:64:15:
f6:ea:de:e6:c9:96:32:d5:77:59:82:73:02:f3:46:07:ec:b8:
64:c6:1c:b3:d2:e8:96:22:cf:f5:43:83:20:75:26:0f:b0:30:
71:1e:e9:cc:72:31:d6:d5:1c:6b:31:01:ef:00:29:0a:ef:7b:
d6:d9:99:40:b0:26:f5:f8:1c:d8:3c:c5:71:81:27:67:44:12:
29:94:5a:f0:70:7b:b8:60:88:04:a0:9e:a9:f2:f5:6d:bf:97:
8b:db:5a:91:94:ab:a1:aa:d1:65:c2:ff:db:83:61:19:b9:bb:
d0:01:72:bc:a7:ab:fa:e2:9b:41:26:ba:45:88:83:70:68:20:
55:d0:7c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:47:42 2025 by rpki-client