Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
File: elmlzGH-vbkW1GJLvowQiXNTsME.mft (raw, json)
Hash identifier: AJIrC3G+Pg58y/c0l/L/NTwZdIN6OM/htHoHytSenwQ=
Subject key identifier: F8:41:A6:65:BA:CB:F7:F1:3F:72:30:25:74:39:FA:62:F9:B8:6B:81
Authority key identifier: 7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
Certificate issuer: /CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Certificate serial: 0197B6A1C08991633294168349B8E4712E8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 13:02:23 +0000
Manifest this update: Sat 28 Jun 2025 13:02:23 +0000
Manifest next update: Sun 29 Jun 2025 13:02:23 +0000
Files and hashes: 1: DhgKv9EWttCPWimr0cMYdix-VFM.roa (hash: jt6Z6pHhL+jbqX5CBAxAInUF4d0Kgk2CfxAQbj8DhrM=)
2: elmlzGH-vbkW1GJLvowQiXNTsME.crl (hash: U000zgwVFhHLXbt+QfaRcCuAT67LaOYk1ycyutsRQ4w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:c0:89:91:63:32:94:16:83:49:b8:e4:71:2e:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Validity
Not Before: Jun 28 13:02:23 2025 GMT
Not After : Jun 29 13:02:23 2025 GMT
Subject: CN=f841a665bacbf7f13f7230257439fa62f9b86b81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:72:34:70:bb:5d:f0:e0:11:09:e4:09:29:3b:
a3:78:10:94:e3:d6:fe:16:80:0c:24:34:cc:c2:0b:
6e:dc:20:57:7d:02:16:50:5d:b5:fa:1f:ed:a1:27:
27:36:ce:a1:95:e6:d7:5c:4b:48:bd:8f:79:0e:db:
3f:da:99:5d:8b:4b:f8:af:5b:30:a4:6d:71:69:38:
ae:6f:99:fe:a8:32:46:06:31:8e:4f:ed:aa:2b:52:
6c:f7:28:0d:42:0c:77:dd:cb:1e:84:dc:06:90:7b:
8c:fd:dd:80:3f:63:93:ae:99:52:cf:e8:6e:f1:32:
b0:17:3e:44:dd:d1:46:d7:f7:5e:58:6b:3d:73:6d:
07:cd:65:37:a3:b4:1c:ae:c3:21:c1:9f:af:66:f1:
9b:db:82:87:66:1c:7b:d8:1e:36:ae:4e:ce:e5:29:
f4:00:96:5e:3d:c9:b0:d7:23:44:35:7e:f6:25:76:
a9:87:0d:95:c1:14:0a:76:c9:11:c3:4a:dd:04:df:
3f:bb:8c:0b:df:d2:e3:64:f6:de:5a:21:3b:37:1a:
3b:e1:71:22:3f:6a:f5:0b:bb:1e:26:7a:65:44:23:
72:35:10:99:e1:30:07:0f:6c:29:e2:e0:97:4a:ef:
fc:b7:55:70:aa:b7:6a:23:98:4f:d4:37:1a:d4:d4:
93:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:41:A6:65:BA:CB:F7:F1:3F:72:30:25:74:39:FA:62:F9:B8:6B:81
X509v3 Authority Key Identifier:
keyid:7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:a1:71:f5:90:a5:4b:0c:fd:04:cb:90:73:3e:33:c1:41:29:
55:0e:ab:0c:ab:f4:c8:1d:84:c4:48:2b:eb:77:65:f3:89:fb:
94:4a:51:d0:1a:59:c5:eb:08:8d:14:6a:12:42:1c:6e:a1:54:
64:c9:4e:b6:d8:55:61:82:6e:5a:3e:7a:db:bf:fc:0a:5f:1c:
a2:c2:d2:73:06:0b:58:1c:2a:43:de:76:d9:f3:63:7d:6e:7b:
07:f6:be:ea:02:4e:cc:82:10:f0:a7:b2:ef:be:df:69:3c:a3:
ef:4e:8e:9a:76:22:3c:e0:87:fa:e4:e6:50:5b:5e:14:dc:ed:
13:cd:e9:72:27:0c:39:df:d9:b6:4b:52:e2:22:11:3b:ae:94:
7d:01:94:bf:c5:58:ad:34:99:3b:4d:94:5b:28:09:60:bc:1d:
e6:40:f1:e5:0a:fe:24:0d:46:bf:0d:88:38:eb:40:5c:99:a1:
48:29:36:88:02:28:c1:e9:9c:08:79:02:96:34:5b:62:c6:19:
11:9a:1d:3d:02:c3:af:fb:e2:d0:02:3f:77:ac:1f:78:4b:83:
c1:26:8c:24:32:13:5d:48:8b:b6:bd:c8:1a:8e:e7:57:9a:fd:
9a:1d:ae:42:9d:3b:bb:91:38:a7:d7:35:f5:fb:66:30:d5:cd:
88:c8:a3:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:50:32 2025 by rpki-client