Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
File: gErnaxl1-0qMurIgcYnu0gIy_18.mft (raw, json)
Hash identifier: vsJxtfYkTJMszyyX4JPDLbTIf+b8sJvdxh6FVdU8dQU=
Subject key identifier: FE:3C:F9:49:06:06:D6:A1:70:BC:9D:B7:BA:4F:B3:19:4B:40:A1:A5
Authority key identifier: 80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
Certificate issuer: /CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Certificate serial: 01989524C25E3026D57D3FC5C01EE85FF851
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
Manifest number: 0469
Signing time: Sun 10 Aug 2025 18:01:10 +0000
Manifest this update: Sun 10 Aug 2025 18:01:10 +0000
Manifest next update: Mon 11 Aug 2025 18:01:10 +0000
Files and hashes: 1: gErnaxl1-0qMurIgcYnu0gIy_18.crl (hash: OKnAD2aqR6VYTgLXvipxxUCBmr1RDd4LS8301etrk8E=)
2: v3oDa-WSUoJp1kuV1a6fLuRGHQ0.roa (hash: Y4h5O4hQh1m1aEWNf7XMnqa6q5Txb+8pJ/1S7VkKt/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 18:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:95:24:c2:5e:30:26:d5:7d:3f:c5:c0:1e:e8:5f:f8:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Validity
Not Before: Aug 10 18:01:10 2025 GMT
Not After : Aug 11 18:01:10 2025 GMT
Subject: CN=fe3cf9490606d6a170bc9db7ba4fb3194b40a1a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6f:83:50:5a:a1:0b:3b:d5:63:a3:7b:a4:ab:
ac:58:97:70:dd:94:54:af:2d:0f:0b:19:5c:92:e9:
40:70:e2:c2:28:0c:66:bd:02:6a:af:1e:95:83:a0:
cb:70:c7:23:a9:82:39:7e:67:7d:dd:04:15:d2:fd:
09:79:2b:34:20:19:9f:87:41:43:db:52:78:1f:fd:
e7:5b:8f:ac:41:ed:66:29:c9:64:12:dd:ae:62:50:
63:bb:3e:6f:79:b4:7c:74:71:f1:80:ee:7b:29:76:
83:b9:a7:18:c0:92:a9:33:66:08:f1:5a:3b:bb:91:
c5:cd:26:c6:96:15:dd:ec:96:2a:7c:a9:c9:3e:4a:
27:af:e7:87:a1:56:92:47:f4:6b:b3:60:2e:88:8a:
b1:cf:c2:0a:94:73:5b:2b:64:fc:b8:20:77:d8:d2:
2f:a9:2d:4e:71:4a:49:56:bd:10:74:3a:81:cc:d3:
0b:97:03:9f:22:92:c4:ce:27:42:60:3f:18:5b:66:
f9:09:44:62:0a:ec:a3:36:c8:f8:a3:84:63:0b:cb:
3e:5f:35:a3:a8:6b:05:73:eb:9a:bb:c5:ba:8f:91:
52:9c:fb:a0:27:4e:e2:5b:66:14:3d:9e:02:ac:73:
1f:ac:12:0e:73:86:11:77:a1:a7:d6:60:be:2a:7c:
45:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:3C:F9:49:06:06:D6:A1:70:BC:9D:B7:BA:4F:B3:19:4B:40:A1:A5
X509v3 Authority Key Identifier:
keyid:80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:48:fd:e9:5c:5a:e1:05:fc:8e:ba:eb:fe:d1:fe:02:04:9d:
20:0f:81:bd:16:c1:a7:3c:fd:b8:35:41:df:15:7e:74:2b:d5:
23:21:18:e8:bc:ca:6f:5b:f0:69:ad:99:c1:65:b2:37:fb:cb:
fa:3f:bb:db:80:a8:5a:5c:e8:4c:51:b0:bd:ea:5a:2f:25:a2:
3c:71:c4:8c:e5:eb:e0:7f:3d:4f:0c:38:df:39:df:52:1a:44:
95:86:1d:ef:e4:9d:aa:88:88:3b:6e:13:23:e7:96:47:28:aa:
a0:7f:72:d4:af:8d:88:d6:09:1d:8f:b4:7a:41:ae:0e:2a:33:
63:01:c4:d9:ff:c2:48:ff:81:f9:ad:96:28:99:74:e3:66:79:
03:b9:ef:ce:97:91:28:09:11:2b:2b:5c:8f:c4:1f:72:cf:6f:
71:c5:ea:09:a1:9f:7a:0f:22:c0:57:d4:b7:cd:26:7b:91:8b:
4c:f6:87:e0:5a:63:98:3b:98:fb:23:ac:1d:4c:77:fb:bf:a8:
0f:d4:a9:d6:06:86:17:05:11:d4:85:ee:ca:38:b5:07:83:1b:
df:5d:f6:3a:72:26:20:d1:23:75:7e:26:55:88:93:98:55:b3:
6d:84:fe:58:18:46:72:73:4a:ba:64:0e:40:ef:23:99:ee:ff:
50:ca:e4:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 04:24:19 2025 by rpki-client