Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
File: elmlzGH-vbkW1GJLvowQiXNTsME.mft (raw, json)
Hash identifier: NGwbesfRGb4yZx4WWJyTH48EPe3QRtJF7mPzw/JnxG8=
Subject key identifier: 7D:EC:DB:6D:26:69:8E:81:5D:ED:CD:83:50:39:78:38:33:6D:22:72
Authority key identifier: 7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
Certificate issuer: /CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Certificate serial: 0198D660DCF52E6FA6DD934525E304DD2BE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
Manifest number: 1648
Signing time: Sat 23 Aug 2025 10:02:08 +0000
Manifest this update: Sat 23 Aug 2025 10:02:08 +0000
Manifest next update: Sun 24 Aug 2025 10:02:08 +0000
Files and hashes: 1: DhgKv9EWttCPWimr0cMYdix-VFM.roa (hash: jt6Z6pHhL+jbqX5CBAxAInUF4d0Kgk2CfxAQbj8DhrM=)
2: elmlzGH-vbkW1GJLvowQiXNTsME.crl (hash: NxeQiMWwnkQzS0w0kbQYcZcyw3q3bso4l8joKixyny4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:dc:f5:2e:6f:a6:dd:93:45:25:e3:04:dd:2b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Validity
Not Before: Aug 23 10:02:08 2025 GMT
Not After : Aug 24 10:02:08 2025 GMT
Subject: CN=7decdb6d26698e815dedcd8350397838336d2272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:2a:45:5d:3b:15:d6:a0:45:ef:0e:8e:bc:93:
b7:87:29:26:2e:e3:4e:bb:b2:fb:e3:73:6e:12:38:
d4:d0:0a:95:43:9d:31:5c:a5:ca:89:8d:a1:68:90:
06:da:86:e2:1c:29:40:cd:0e:23:3d:14:fe:25:0e:
ff:b8:07:b6:2e:96:40:a4:96:b8:92:74:de:60:8f:
3c:66:49:25:f3:d4:32:7a:12:0a:07:da:a6:80:fa:
8e:27:a5:42:ae:0f:d2:f5:8d:07:33:c7:9e:2a:7c:
62:53:92:da:20:8a:c2:c3:a3:4b:95:2a:5d:8f:9f:
85:46:59:56:91:a4:be:f2:f1:45:5d:aa:82:81:44:
2d:e4:ab:e7:1a:44:b5:7c:56:a3:3d:1a:b9:46:46:
56:df:2f:c6:9e:ff:99:5b:02:c2:3f:61:e5:07:8b:
9b:60:7e:5e:dc:a2:73:1c:e5:d2:bd:d9:d5:e5:78:
06:65:dc:22:1a:85:f0:03:08:69:37:40:f4:5d:0c:
70:3b:b6:96:66:75:8b:20:f9:7b:26:fb:66:60:84:
0b:a1:1b:96:42:36:23:62:61:e5:8f:36:0a:5c:03:
dc:e6:c3:d8:1c:f8:78:55:44:16:83:81:32:87:00:
13:b1:7f:3d:6d:7d:82:87:55:cd:c2:fd:89:d4:0c:
75:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:EC:DB:6D:26:69:8E:81:5D:ED:CD:83:50:39:78:38:33:6D:22:72
X509v3 Authority Key Identifier:
keyid:7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:7c:64:74:8e:5d:3a:e5:cf:70:60:a7:7c:62:f5:76:4f:18:
3f:55:a1:09:4f:0a:52:d8:8e:06:42:82:a6:41:44:9a:75:6c:
8c:a4:fd:2d:20:4a:1c:8f:fe:20:0f:52:41:b0:be:09:d5:25:
49:53:55:70:e7:15:51:a4:a8:84:74:cb:fd:f8:c9:bd:93:16:
b4:a1:48:38:e5:cf:b9:20:ce:cf:f8:79:f2:47:28:b6:66:26:
d3:b9:cd:9d:f2:74:9e:ed:a4:62:96:b7:1d:18:94:c7:0d:e9:
30:f5:09:61:0a:83:cc:0f:f1:3b:26:1b:6f:9f:02:5f:9b:e5:
30:43:04:41:ae:89:a8:87:de:c4:f8:cc:1a:26:74:65:b1:91:
54:b8:c7:bd:db:2e:5c:88:c2:5b:93:e0:71:8d:5f:98:8e:47:
01:60:53:f8:70:a7:5b:77:6d:30:73:d7:4e:27:bb:f1:99:4f:
05:94:30:72:09:4a:99:56:70:eb:b1:3e:66:8a:52:a1:14:d0:
05:8e:cf:45:62:0b:b1:74:c7:04:9d:f1:23:2e:15:26:c3:6d:
34:44:23:21:2a:b9:a3:12:5e:95:43:37:54:dd:f3:df:bf:f2:
de:8b:25:70:a9:6c:ea:f9:95:77:c6:ee:44:ca:78:2b:1c:1d:
6b:aa:cc:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 15:29:55 2025 by rpki-client