Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
File: gErnaxl1-0qMurIgcYnu0gIy_18.mft (raw, json)
Hash identifier: eOj/+E+MLBQmJ+HEHtJIaF7LFwobOvoWhKNrJVU8tTA=
Subject key identifier: A4:4D:94:DF:59:99:87:AA:DB:E6:EB:5A:42:16:02:6F:95:92:9F:2C
Authority key identifier: 80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
Certificate issuer: /CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Certificate serial: 0196A8B08D425C97B531BB94EC6D5F232D1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
Manifest number: 036A
Signing time: Wed 07 May 2025 03:01:04 +0000
Manifest this update: Wed 07 May 2025 03:01:04 +0000
Manifest next update: Thu 08 May 2025 03:01:04 +0000
Files and hashes: 1: gErnaxl1-0qMurIgcYnu0gIy_18.crl (hash: D8yo7boaPU6x5Spjxf3TxjOt6ntPpTBo488fAYhHR5k=)
2: v3oDa-WSUoJp1kuV1a6fLuRGHQ0.roa (hash: Y4h5O4hQh1m1aEWNf7XMnqa6q5Txb+8pJ/1S7VkKt/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 03:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:b0:8d:42:5c:97:b5:31:bb:94:ec:6d:5f:23:2d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Validity
Not Before: May 7 03:01:04 2025 GMT
Not After : May 8 03:01:04 2025 GMT
Subject: CN=a44d94df599987aadbe6eb5a4216026f95929f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:80:fe:ac:e9:9b:a2:03:15:07:39:28:08:c5:
a3:db:52:86:42:f5:a9:6c:0d:5e:bc:d8:06:9a:71:
49:d1:7d:83:74:c0:96:64:eb:5d:4b:83:a5:24:4b:
78:1c:d7:9d:ae:ea:eb:36:b1:65:a8:d3:a8:16:ca:
95:75:af:5c:3e:18:6d:25:d8:bd:cb:4d:a6:c0:da:
12:c0:96:c9:73:41:dc:34:63:58:b9:db:e3:54:f4:
4e:3f:12:28:4b:d5:a6:b9:d2:a3:a0:db:9d:f8:c9:
0e:eb:f9:38:1b:e8:54:12:ad:49:bc:7a:dc:9d:d1:
22:8b:5d:4b:69:b3:f2:50:c8:e9:74:7e:ac:e1:8f:
57:1f:d9:2d:da:d2:89:11:c2:67:0e:c1:82:9f:9d:
66:0d:9c:70:84:c1:7e:23:06:56:8d:31:68:fb:8a:
89:9f:78:5d:90:dd:34:eb:8c:82:40:a5:c3:bd:40:
c9:57:98:71:d6:73:93:7f:75:c0:b3:53:d7:58:5f:
b5:f9:93:16:03:8a:cf:3d:af:be:42:58:28:3b:17:
ba:84:2c:c9:9d:cc:6a:38:e8:3d:5d:f0:4c:40:e7:
21:69:f7:71:40:bc:d3:f1:01:12:58:c9:07:f2:fc:
52:ce:5e:56:5b:2c:2e:e2:70:b0:66:99:7a:dd:29:
ad:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4D:94:DF:59:99:87:AA:DB:E6:EB:5A:42:16:02:6F:95:92:9F:2C
X509v3 Authority Key Identifier:
keyid:80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:b8:f8:df:46:27:42:61:49:1f:89:8d:e0:e5:0d:4e:a1:1e:
b3:7e:63:51:71:e3:4a:46:2d:bb:3a:34:72:7e:5e:1b:e2:af:
12:ae:e9:f3:c7:cb:a6:f1:04:6a:06:68:f2:a4:c8:c1:01:d3:
f7:21:fb:a1:39:b7:c6:ea:71:76:bd:9f:e3:7d:f5:fb:3f:4a:
37:41:20:aa:7e:e5:d5:21:a0:32:7c:96:da:ce:59:8d:04:7e:
c5:bb:9b:5e:59:74:29:49:06:a9:7a:4b:30:43:e8:de:cc:ef:
80:dd:d4:da:3b:b0:9e:1f:94:c5:c1:6f:44:44:33:f2:4c:80:
e8:6f:2c:ea:23:68:ad:c3:93:59:53:23:35:0e:99:a7:30:c1:
79:b4:95:ee:23:c8:13:63:09:02:70:17:09:4c:e3:05:7c:3f:
1f:6b:73:b0:e2:2a:33:0b:3d:dd:31:9b:f2:c6:ab:51:dc:39:
83:e5:14:2a:c3:e9:e3:15:4d:32:31:c5:3c:ac:6e:1d:e6:95:
d4:a3:b7:14:41:0a:03:cd:d9:ce:c9:ca:85:d3:5c:4d:40:57:
b6:a6:ff:26:d9:54:25:35:92:f5:a3:11:20:d9:62:90:4d:d5:
46:18:dc:b8:50:58:4e:8f:e8:71:d4:2b:79:24:31:e0:d5:6f:
27:bc:e8:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 7 10:13:19 2025 by rpki-client