Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
File: elmlzGH-vbkW1GJLvowQiXNTsME.mft (raw, json)
Hash identifier: 88Pw82JqL9LiWGkOOnxs0ti4reFX9Kjcfvt3H7XOP/Y=
Subject key identifier: 89:90:55:22:AD:1B:DF:E2:14:DB:E5:D8:D6:2A:4A:A3:3E:53:2E:EE
Authority key identifier: 7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
Certificate issuer: /CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Certificate serial: 019D25F21590E54D5380DEDFBB4D8B9D94AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
Manifest number: 1884
Signing time: Wed 25 Mar 2026 17:01:55 +0000
Manifest this update: Wed 25 Mar 2026 17:01:55 +0000
Manifest next update: Thu 26 Mar 2026 17:01:55 +0000
Files and hashes: 1: Uc8J9mXAeOJT6T8Cc2pg7ur7EVE.roa (hash: GBBdZarUNSiLkjjpGT6+8iJpn2p2RM8BoqoVzDBwtCw=)
2: elmlzGH-vbkW1GJLvowQiXNTsME.crl (hash: GEuDToAt1IGWRkYyCtiKJxpQ0fnsboPqflytWu1LQK4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f2:15:90:e5:4d:53:80:de:df:bb:4d:8b:9d:94:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Validity
Not Before: Mar 25 17:01:55 2026 GMT
Not After : Mar 26 17:01:55 2026 GMT
Subject: CN=89905522ad1bdfe214dbe5d8d62a4aa33e532eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ea:27:bc:27:4a:85:ab:1c:5c:e7:a1:29:f5:
a7:be:ed:4a:18:4b:df:c0:c7:b8:46:5e:bb:99:8a:
ad:f3:bb:85:04:9e:b0:ba:c9:09:d3:23:0c:2e:ff:
28:0a:3d:c9:32:4b:40:8e:45:bf:f7:21:22:f9:f1:
e3:f2:5e:b4:40:15:3f:6f:c9:5c:71:e1:df:b5:39:
19:10:bf:b2:3d:34:99:33:ae:1a:ba:b2:e8:c2:d1:
b7:db:dd:12:0c:93:6a:93:37:ac:ff:ea:c5:67:e4:
59:57:6f:07:40:3d:7a:b2:da:e0:7f:01:99:22:2c:
9f:5d:7d:19:e2:dc:a9:6b:a1:93:19:5b:a7:6d:db:
06:ed:3c:be:02:50:0c:24:df:4e:ef:e2:a6:08:ce:
51:5b:2e:b4:95:2f:88:0a:62:4f:64:82:7e:ce:62:
f8:0c:eb:ce:76:75:a0:17:e4:93:95:2a:a4:fd:67:
20:db:d0:16:05:dd:4c:17:78:39:75:8a:ed:1e:ba:
ea:3c:91:f2:32:a2:a1:17:fb:12:5d:33:76:6b:ef:
a0:1c:a0:02:ca:4d:f7:ac:73:b6:4c:36:96:4f:e9:
6b:85:69:66:49:f2:3a:8f:d2:d2:a1:d3:d7:d8:40:
d2:cd:42:a4:95:f4:de:38:57:04:3e:69:bf:56:c5:
50:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:90:55:22:AD:1B:DF:E2:14:DB:E5:D8:D6:2A:4A:A3:3E:53:2E:EE
X509v3 Authority Key Identifier:
keyid:7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:01:a6:93:24:7f:2f:3a:a7:6f:41:34:f7:bf:9c:fa:d6:4d:
3b:11:b4:0c:9f:d1:ff:1c:63:4d:ab:23:ec:f2:76:40:c6:b1:
42:49:4c:17:11:8d:26:8b:d4:51:73:a3:91:98:ba:e2:e9:fb:
f6:2e:0a:f4:1f:21:39:3f:bd:96:8e:49:ab:97:19:fc:94:bc:
f5:9a:8f:d6:64:2f:79:9d:c5:9d:72:0c:5f:cd:42:9e:12:97:
e1:d7:cd:53:05:1a:fd:af:8b:96:b0:8e:08:96:5a:2a:7e:81:
0f:ed:2f:cd:ec:3f:d4:24:6d:f9:7e:d4:f7:d4:24:f0:eb:b0:
1d:06:00:2b:bc:f3:b8:ce:ab:e3:25:55:4c:66:1f:8d:5e:fd:
19:13:65:bb:15:68:58:48:9a:01:0c:5b:ed:43:04:4c:fc:91:
a5:e3:24:be:43:0f:d1:00:0a:b8:dc:88:61:0c:b5:ed:a2:c4:
65:ef:84:de:84:f7:d2:b2:ed:76:e6:29:3a:eb:1e:9c:ba:4e:
c2:2a:99:b5:36:de:b4:d0:1b:0f:aa:16:a8:2f:5f:6e:dd:79:
ac:ef:c4:c5:f1:36:f3:d2:4b:94:ef:c5:bc:7a:0d:1e:87:b5:
ea:5d:3c:81:a2:6a:70:f7:54:ea:c1:12:ee:26:47:6c:88:c6:
73:7a:3f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:36:23 2026 by rpki-client