Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
File: elmlzGH-vbkW1GJLvowQiXNTsME.mft (raw, json)
Hash identifier: bKlbLR7r/BZJ4XywWtQWqGxJPbcd5+iBXuXdCKsMQRM=
Subject key identifier: 0E:B5:48:41:17:18:0E:48:C9:EB:5E:22:6D:FC:2C:34:AE:1A:99:D1
Authority key identifier: 7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
Certificate issuer: /CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Certificate serial: 0199FBEB61B8ACB63C6E5CDA0118442BA39C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
Manifest number: 16E0
Signing time: Sun 19 Oct 2025 10:02:11 +0000
Manifest this update: Sun 19 Oct 2025 10:02:11 +0000
Manifest next update: Mon 20 Oct 2025 10:02:11 +0000
Files and hashes: 1: DhgKv9EWttCPWimr0cMYdix-VFM.roa (hash: jt6Z6pHhL+jbqX5CBAxAInUF4d0Kgk2CfxAQbj8DhrM=)
2: elmlzGH-vbkW1GJLvowQiXNTsME.crl (hash: eFreoVwMBT5ElvsxglktCiOFQ30VotKlzimZ23X9log=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 10:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:eb:61:b8:ac:b6:3c:6e:5c:da:01:18:44:2b:a3:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Validity
Not Before: Oct 19 10:02:11 2025 GMT
Not After : Oct 20 10:02:11 2025 GMT
Subject: CN=0eb5484117180e48c9eb5e226dfc2c34ae1a99d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ce:af:ae:6e:3d:8e:7b:e3:23:df:dd:3f:ad:
8c:b0:1c:31:5a:7d:45:29:75:ee:6f:0b:69:86:f7:
3d:a4:e3:35:96:cd:32:68:fa:cf:19:92:0b:ae:94:
5a:4d:57:84:fc:4e:4f:e7:77:63:a3:e7:5d:1e:fc:
f4:e8:92:9e:d5:ba:23:24:4d:f2:0b:57:46:89:96:
4d:f3:a0:5a:32:8c:a6:61:ce:e2:0a:95:60:31:e1:
2a:61:7e:e5:54:10:bd:ca:5c:8b:4e:dc:84:ec:24:
ca:e4:83:fc:4f:95:6b:1b:3b:10:95:fb:26:0a:d5:
dd:3c:03:f0:28:d0:55:d4:d7:3f:d5:0a:ea:64:01:
00:a1:3a:00:f9:72:23:7f:b4:d9:a7:b5:29:70:c3:
5e:29:7f:7e:c8:64:2b:b5:fb:ca:c9:93:a3:c8:eb:
36:32:96:35:c3:0a:3e:81:0d:c7:f1:2d:a0:5c:30:
b7:df:af:84:6b:95:39:6a:43:4d:1f:db:d5:0d:30:
0f:e4:52:81:b5:5f:9a:01:c6:51:7d:b3:a7:88:d7:
fd:e2:40:0b:de:e1:97:a3:f7:f0:c7:90:80:c7:8d:
74:06:d9:b2:f2:b3:53:88:f5:78:ca:3c:97:b7:04:
29:9c:bf:a1:75:d7:42:c4:89:4d:fa:17:fb:e0:fa:
f4:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:B5:48:41:17:18:0E:48:C9:EB:5E:22:6D:FC:2C:34:AE:1A:99:D1
X509v3 Authority Key Identifier:
keyid:7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:6d:56:05:f8:ce:fd:c3:1e:49:08:53:8f:73:fa:b2:6d:80:
14:00:4d:22:57:ec:b0:10:2b:c3:0a:20:78:d7:7e:a7:fb:db:
8c:7c:6e:91:a3:55:bb:17:50:ae:8b:5e:22:20:ce:ac:85:08:
a8:02:82:84:97:16:d7:0c:36:63:bb:c5:ac:12:e1:d1:4f:e3:
1a:db:d8:6e:0e:ad:97:47:42:bf:6f:3b:18:83:20:e7:65:9b:
d6:3d:b6:67:97:45:59:9c:1d:ce:bd:f7:81:76:82:e4:a3:6c:
4b:35:15:f8:cd:cf:a7:60:eb:81:b9:fd:94:89:73:a0:a1:a2:
9e:82:ee:4b:7e:2d:cb:2b:9c:1f:20:81:a2:bc:6a:38:9f:cf:
a8:c1:94:c7:dc:56:0e:97:f2:1f:c5:0a:af:2b:bb:33:74:dc:
e0:0e:31:ee:2e:d4:bb:5b:d5:b7:e9:e1:96:05:58:d5:46:a3:
70:1c:ee:3e:54:9a:ab:f5:c1:19:3a:74:a4:8f:8a:3e:0c:c2:
7f:56:bd:d2:56:de:d1:6a:d0:5f:c3:23:31:8f:27:c6:69:4a:
33:a9:c1:f2:dc:bb:fe:41:e9:46:93:39:9d:1a:15:6b:48:52:
9b:a0:ff:69:61:c1:32:98:5f:53:af:2c:3b:3b:3b:8b:f2:60:
9e:f5:90:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:27:22 2025 by rpki-client