Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
File: elmlzGH-vbkW1GJLvowQiXNTsME.mft (raw, json)
Hash identifier: 6IRnAy3BSWJPld0yaNgxIQ7zWLdpnZLjSy3DK9HZT+0=
Subject key identifier: CC:19:20:B3:77:B3:EE:33:8C:F5:8E:ED:F8:EF:29:8A:48:14:13:55
Authority key identifier: 7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
Certificate issuer: /CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Certificate serial: 01964F35775899D47D5379807174AC45C046
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
Manifest number: 14F9
Signing time: Sat 19 Apr 2025 18:00:26 +0000
Manifest this update: Sat 19 Apr 2025 18:00:26 +0000
Manifest next update: Sun 20 Apr 2025 18:00:26 +0000
Files and hashes: 1: DhgKv9EWttCPWimr0cMYdix-VFM.roa (hash: jt6Z6pHhL+jbqX5CBAxAInUF4d0Kgk2CfxAQbj8DhrM=)
2: elmlzGH-vbkW1GJLvowQiXNTsME.crl (hash: 6hyc6a22p0IxA5ln/pKCbMy9Dm9zSSjNJna8PdzJAio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:35:77:58:99:d4:7d:53:79:80:71:74:ac:45:c0:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Validity
Not Before: Apr 19 18:00:26 2025 GMT
Not After : Apr 20 18:00:26 2025 GMT
Subject: CN=cc1920b377b3ee338cf58eedf8ef298a48141355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ff:0e:3c:41:0c:6b:61:0b:87:30:45:3e:98:
65:43:a8:8e:2b:02:16:e6:94:ef:82:50:f2:88:9f:
4d:35:f5:49:b9:a4:5f:ff:83:72:e5:eb:68:45:43:
61:d4:56:c7:3a:c4:c7:0e:b8:56:07:12:6a:a8:f2:
e0:b0:90:09:b7:68:7a:b3:16:4b:89:ac:3f:2d:75:
da:3c:99:15:99:9b:01:ed:4f:a9:b5:d6:49:45:79:
35:54:0a:93:7b:11:30:2b:1c:16:7c:aa:43:13:e1:
1b:49:eb:8d:58:9d:9c:bd:96:d6:18:2b:c0:cf:05:
02:5b:aa:8c:8b:c9:1e:0e:fc:51:31:ab:b2:b0:8f:
63:8e:c0:92:38:2a:82:e1:db:d2:6b:4e:7c:14:45:
89:e2:56:49:65:ad:51:47:92:9a:89:6d:e9:2f:87:
70:54:15:f9:64:bb:5c:a7:65:5a:d2:30:16:6e:3c:
e1:27:fa:e7:40:12:43:bf:0a:33:5e:86:24:9a:d2:
75:b4:de:4e:52:6f:85:2f:f6:85:30:ee:d8:7b:81:
ee:6e:7a:33:b5:00:3d:b2:f3:fc:45:ce:91:69:95:
f8:f9:0e:68:50:7b:6f:6b:b3:d1:e7:1f:f8:a2:13:
57:bc:b5:a1:db:e5:8f:e6:59:bd:0b:f1:58:bd:42:
b6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:19:20:B3:77:B3:EE:33:8C:F5:8E:ED:F8:EF:29:8A:48:14:13:55
X509v3 Authority Key Identifier:
keyid:7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:98:09:e1:ca:18:d2:31:c1:5f:b4:f8:f8:5c:26:6f:be:9f:
49:34:d4:a0:72:eb:37:d8:20:dc:0d:1d:17:98:11:a0:b2:35:
02:d4:2a:5f:a3:22:a1:15:fd:ea:0c:c9:57:a1:b7:a6:e8:1c:
e6:26:ea:a8:43:6b:77:98:4e:df:c7:f0:7f:f5:74:af:3f:27:
95:1c:df:2b:44:77:4f:45:44:ed:ae:fa:ec:49:83:4a:d1:f2:
3d:fb:7f:84:16:29:4e:01:a3:54:57:15:ce:01:71:14:0c:3a:
49:24:bd:a8:3b:26:8a:4a:f3:d3:ac:cc:3d:f0:8e:19:20:e8:
f6:12:f9:97:dc:d2:5d:7a:56:65:26:0f:84:62:5f:e2:af:82:
ad:03:2c:eb:4c:dd:38:83:fd:4b:fc:fe:9c:79:c8:ac:c9:a5:
98:b5:9f:5a:56:3e:e2:8f:28:87:cb:6e:b7:5d:b1:2c:34:32:
c5:75:89:e9:df:29:84:c6:65:36:00:44:60:65:c9:69:ab:53:
5c:bd:35:48:81:99:b9:c0:dc:96:05:6f:26:5c:43:08:c0:3c:
b2:ed:4c:a8:93:52:81:24:e2:47:90:d6:59:db:1b:a5:c0:22:
36:29:35:91:46:ca:74:da:fe:91:8e:91:87:2f:f5:87:5a:d4:
4d:59:ab:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:21:14 2025 by rpki-client