Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
File: elmlzGH-vbkW1GJLvowQiXNTsME.mft (raw, json)
Hash identifier: jyYQZxhcqGjxEkB/n7KBv+VQ4oEd8WsBn1LMa07VxEY=
Subject key identifier: DF:D0:CA:C5:CE:5A:CB:84:CC:D3:83:DC:28:55:6E:11:07:01:6E:97
Authority key identifier: 7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
Certificate issuer: /CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Certificate serial: 019D37525A503AC8DBC8C5A47363D695E459
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 02:00:37 +0000
Manifest this update: Sun 29 Mar 2026 02:00:37 +0000
Manifest next update: Mon 30 Mar 2026 02:00:37 +0000
Files and hashes: 1: Uc8J9mXAeOJT6T8Cc2pg7ur7EVE.roa (hash: GBBdZarUNSiLkjjpGT6+8iJpn2p2RM8BoqoVzDBwtCw=)
2: elmlzGH-vbkW1GJLvowQiXNTsME.crl (hash: irrOld58FM3AUPz0ES4bHKD1+anj8htAz23J//j+CHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:5a:50:3a:c8:db:c8:c5:a4:73:63:d6:95:e4:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a59a5cc61febdb916d4624bbe8c10897353b0c1
Validity
Not Before: Mar 29 02:00:37 2026 GMT
Not After : Mar 30 02:00:37 2026 GMT
Subject: CN=dfd0cac5ce5acb84ccd383dc28556e1107016e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ef:6a:8a:77:88:b0:05:d0:f9:9b:0f:fe:03:
88:23:93:fc:f6:a3:d1:29:50:35:01:c0:53:fc:ea:
ae:50:43:a0:4c:f9:65:1a:99:6d:5c:01:f1:86:ba:
de:ff:47:13:c7:19:8c:d3:66:05:be:2c:06:64:9b:
2d:0f:ab:01:a8:95:55:d6:e1:1e:cf:f5:48:67:c2:
cf:c5:4b:5e:23:ac:1d:89:e1:df:50:51:c9:91:ed:
ef:ee:a8:e0:f7:fa:7c:76:48:38:12:09:42:ec:77:
14:48:8e:5a:29:23:5d:a8:72:8e:83:2d:38:ec:14:
9a:f0:2e:c3:33:02:16:26:3e:a7:f2:c9:6e:d8:45:
c0:35:85:4a:a7:3c:d5:30:02:c7:bc:32:34:37:e7:
43:15:70:47:33:b5:14:94:4d:85:5a:5d:a1:ed:18:
b5:89:77:9f:4d:65:91:b8:71:13:63:c1:fe:c2:ee:
62:ca:07:3d:a5:18:f6:f4:12:28:e8:fb:53:8b:f4:
d7:83:90:ec:04:77:1e:c9:fa:6b:a9:c3:9f:cb:9e:
50:8d:10:9b:d8:14:a4:71:68:48:68:12:38:b2:8e:
c6:7f:60:bf:93:15:9d:a0:f8:4c:eb:57:c3:07:63:
53:5e:bc:45:1b:ec:1a:b3:96:a9:3a:ed:c5:6b:05:
47:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D0:CA:C5:CE:5A:CB:84:CC:D3:83:DC:28:55:6E:11:07:01:6E:97
X509v3 Authority Key Identifier:
keyid:7A:59:A5:CC:61:FE:BD:B9:16:D4:62:4B:BE:8C:10:89:73:53:B0:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/elmlzGH-vbkW1GJLvowQiXNTsME.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/b1ab1b-0e95-4c3c-8768-903d083496e5/1/elmlzGH-vbkW1GJLvowQiXNTsME.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:e7:fb:04:da:be:70:d7:1f:17:de:0c:1a:4e:2c:d4:b4:ce:
4d:1a:2f:03:c6:48:b4:c7:be:5f:72:42:0e:90:b9:01:4b:29:
a1:57:1f:8b:e7:d6:f4:81:10:54:00:05:99:45:6c:6d:84:50:
ac:5d:85:6f:9c:05:d2:89:b1:e2:79:3f:24:eb:ce:8b:4f:23:
0a:f7:43:db:67:77:24:2f:17:c4:d6:5e:48:89:25:64:cd:5f:
c5:e3:8b:4e:22:bd:c5:ec:c4:34:23:ee:64:39:96:ae:90:6b:
08:1e:ed:4a:d2:b4:41:39:c1:61:03:bc:a2:5f:95:39:74:10:
f2:a4:9f:bd:d4:b6:33:5f:3f:e7:29:13:bb:e1:42:08:00:05:
3e:9f:4e:8a:d0:4b:0f:bf:2c:30:ad:c4:af:88:0e:b1:24:18:
ba:c2:d1:32:a5:82:6f:13:65:47:b1:3a:c6:d9:57:c6:42:f3:
d5:3c:26:99:ab:3d:63:74:92:8c:15:36:61:34:73:d1:9d:a8:
a3:bf:a4:d1:54:b6:ea:0d:45:f6:2a:ad:76:4e:f3:b7:cb:30:
ff:32:f5:bf:8e:c1:66:44:23:aa:2d:16:e7:a9:c2:2e:b1:28:
6f:eb:a6:87:de:4d:a3:b6:3e:89:10:a4:8e:a5:17:d0:24:e2:
46:6f:61:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:32 2026 by rpki-client