Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
File: elmlzGH-vbkW1GJLvowQiXNTsME.mft (raw, json)
Hash identifier: hkgkz1Js7SbZ5CjpDO1ZEdLwW4m7k65wKxIgznN+imk=
Subject key identifier: 19:E0:AE:2F:37:C5:48:5E:8D:69:08:6E:BC:3A:1A:B6:F3:C7:14:71
Authority key identifier: 7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
Certificate issuer: /CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Certificate serial: 0196BB5AE577BBB2D29AF5373DAC735AD20B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
Manifest number: 1531
Signing time: Sat 10 May 2025 18:00:18 +0000
Manifest this update: Sat 10 May 2025 18:00:18 +0000
Manifest next update: Sun 11 May 2025 18:00:18 +0000
Files and hashes: 1: DhgKv9EWttCPWimr0cMYdix-VFM.roa (hash: jt6Z6pHhL+jbqX5CBAxAInUF4d0Kgk2CfxAQbj8DhrM=)
2: elmlzGH-vbkW1GJLvowQiXNTsME.crl (hash: aqgSjOIHu3ICT/Pwaq6HBCT+XGKfBrs93/7Mz1x9LMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 18:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bb:5a:e5:77:bb:b2:d2:9a:f5:37:3d:ac:73:5a:d2:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Validity
Not Before: May 10 18:00:18 2025 GMT
Not After : May 11 18:00:18 2025 GMT
Subject: CN=19e0ae2f37c5485e8d69086ebc3a1ab6f3c71471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:54:04:ba:85:f4:17:90:0f:cd:eb:b0:ee:85:
32:4b:e7:8b:c1:36:a7:97:c4:9c:21:ff:d7:a2:b0:
1c:f1:04:7e:ee:14:8e:f8:e1:f5:24:16:0f:66:ba:
cc:ce:b6:f1:4d:10:8d:62:90:c7:0d:42:b9:71:ca:
54:8d:1b:1c:98:23:0b:27:9d:cb:06:1c:f4:36:9b:
e6:91:eb:a8:4c:4a:78:b9:61:be:56:6d:5f:e8:32:
d5:e1:32:92:bd:df:77:04:16:3c:99:e8:7f:15:91:
24:b5:ee:d9:3c:a3:4c:33:dd:17:24:f3:f3:2f:a4:
02:70:39:99:3f:2f:9e:2a:38:32:8d:07:9a:5e:33:
8c:de:35:57:ef:3a:5e:e2:5d:3d:d1:50:7a:13:0c:
4a:07:50:61:6b:48:22:e4:7b:60:43:e2:ab:08:0d:
5a:21:d9:1f:66:3b:7e:c4:a6:5b:fa:08:a7:fc:4d:
bf:78:41:7a:b2:9f:1b:1b:1f:14:13:04:db:2f:50:
16:58:59:bd:9c:8c:f9:7d:5c:0d:92:c5:7d:70:3d:
ce:72:3c:b5:0f:e9:24:04:53:f3:26:e2:d8:9c:d0:
67:83:3a:5e:ba:c3:90:4d:d5:f2:3c:3c:0d:0b:75:
21:68:f4:93:40:53:23:66:4d:ee:e5:fa:a1:c9:72:
c0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E0:AE:2F:37:C5:48:5E:8D:69:08:6E:BC:3A:1A:B6:F3:C7:14:71
X509v3 Authority Key Identifier:
keyid:7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:59:29:f0:51:c5:6f:7f:e0:29:59:e8:5d:09:35:ac:af:fc:
96:e0:57:9f:22:cd:d4:2e:1e:3f:d2:9c:37:50:d8:53:fa:5b:
0e:65:bb:c2:af:f9:87:c3:3d:08:dd:aa:89:e2:17:49:75:ec:
15:98:6e:00:29:24:30:12:8b:b1:db:c1:1e:cc:3d:ec:a8:a7:
71:7b:d6:a3:61:06:32:24:19:09:3c:82:18:d6:cf:ed:e6:f2:
51:87:40:dd:3c:b5:2a:fb:5e:dd:7c:43:ee:2e:78:92:b5:5c:
92:24:21:34:dc:6d:cc:57:d3:74:5b:80:ba:b9:0c:25:0a:f5:
8e:6e:9b:f8:99:ae:9b:87:a5:1c:e6:5c:0d:f7:64:68:f0:1f:
7c:e2:64:cc:39:2e:bb:00:c1:c7:57:87:db:13:f5:cb:c3:f9:
c0:db:90:3b:01:be:6d:c7:87:d9:65:16:47:d2:8a:a8:cc:15:
62:a4:b4:f8:6a:81:2f:b7:dd:57:c2:63:38:c7:16:48:19:f7:
3b:e0:1b:d3:12:93:66:ee:5c:5d:4e:f9:63:3c:71:dd:99:c5:
86:11:63:b9:18:11:65:99:c3:30:99:34:b4:fa:e6:8f:36:46:
7b:83:b8:cb:fc:ca:e5:b7:2d:44:51:d6:fc:04:ae:15:fd:d2:
c7:c4:b5:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 02:24:03 2025 by rpki-client