Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
File: gErnaxl1-0qMurIgcYnu0gIy_18.mft (raw, json)
Hash identifier: HVRFpHj9x6PwKwhPE3uhd66RNxaMR/82p8qWxoPpuAo=
Subject key identifier: D5:79:69:24:50:A0:98:7D:EE:E7:D0:CD:1D:BC:B0:45:16:8A:A7:0C
Authority key identifier: 80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
Certificate issuer: /CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Certificate serial: 0199FC58C68528F142E0D120A70A15C0182B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
Manifest number: 0523
Signing time: Sun 19 Oct 2025 12:01:40 +0000
Manifest this update: Sun 19 Oct 2025 12:01:40 +0000
Manifest next update: Mon 20 Oct 2025 12:01:40 +0000
Files and hashes: 1: gErnaxl1-0qMurIgcYnu0gIy_18.crl (hash: VwcjSk9Gc+aNdO2sKbhlWgA8Mx0aiu7QaRd3ZdMpTrQ=)
2: v3oDa-WSUoJp1kuV1a6fLuRGHQ0.roa (hash: Y4h5O4hQh1m1aEWNf7XMnqa6q5Txb+8pJ/1S7VkKt/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:c6:85:28:f1:42:e0:d1:20:a7:0a:15:c0:18:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Validity
Not Before: Oct 19 12:01:40 2025 GMT
Not After : Oct 20 12:01:40 2025 GMT
Subject: CN=d579692450a0987deee7d0cd1dbcb045168aa70c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:93:3f:01:ed:b6:e9:3d:44:8f:b2:e3:18:b7:
92:75:09:a9:cb:43:b1:49:f9:b1:1f:86:7d:2f:1f:
98:3b:13:2e:d8:71:d7:4c:c6:61:0c:01:7f:81:b9:
d0:42:91:dc:d8:6c:fa:e7:24:99:0c:92:71:ef:30:
dc:5e:0e:87:b2:cb:65:6f:78:32:83:cd:d4:63:57:
92:14:e4:d5:25:a9:06:7a:ca:c2:0b:f0:7c:28:ed:
80:a4:b2:35:64:ee:02:3d:fa:b1:94:d1:7d:c4:d5:
09:a2:99:0f:a1:42:0b:1c:73:0f:fc:96:0d:8c:8e:
ba:31:9e:d2:89:84:dc:36:bb:a1:a0:6a:87:2c:0c:
4e:0f:a1:fc:7a:40:84:55:99:45:33:e1:1b:f9:6b:
73:ad:55:1b:59:52:fd:2f:a7:4f:84:48:aa:69:d1:
0d:18:41:80:b2:3e:b5:4a:68:5c:3c:73:05:28:a6:
57:f2:75:5b:51:fd:a0:03:fa:70:70:00:fe:81:10:
d2:49:dd:95:bf:0c:a2:fb:d4:44:86:37:ba:d5:35:
a3:1b:30:84:42:f0:ea:91:6a:cf:53:ed:f0:99:9f:
10:22:42:c8:42:41:a9:4e:27:a7:48:a4:bf:30:aa:
fb:ac:dd:ad:b6:65:99:77:8d:cf:fc:16:97:3b:a4:
0a:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:79:69:24:50:A0:98:7D:EE:E7:D0:CD:1D:BC:B0:45:16:8A:A7:0C
X509v3 Authority Key Identifier:
keyid:80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:21:a0:be:2c:f8:0f:87:1a:50:a0:b5:d5:7c:6f:8e:4f:9d:
33:63:5f:0d:7a:2f:22:7d:58:fb:39:a7:d7:c3:c3:9a:14:59:
3d:75:d1:2d:07:41:e6:bc:d2:51:21:d1:4e:d6:8d:66:f6:c7:
54:31:1c:96:f5:54:ca:9e:c4:a3:1a:07:2c:19:ea:d8:91:4a:
ad:e3:22:d7:d5:e6:8d:61:54:d1:31:e3:ee:03:e6:37:01:43:
2c:30:27:3a:15:d2:e4:3c:f1:a6:9c:b2:b9:65:90:21:65:0e:
76:2b:8c:61:24:5f:e3:9b:d1:42:72:c8:1d:09:8d:a1:4e:2a:
1e:3f:6e:ba:41:ad:cc:1a:aa:47:c0:43:43:d9:fb:5f:49:6d:
df:2c:7a:0f:39:3f:74:af:5c:c5:79:bc:1b:4f:be:b4:f9:60:
f8:66:3f:29:af:1b:28:7e:74:3e:54:92:6f:8b:cb:f8:18:1f:
8b:e2:c0:d9:a6:d6:a7:f0:b0:29:b4:1f:5a:63:3b:d5:2b:10:
61:59:5e:33:78:73:16:6c:0c:e2:f3:fc:ba:7d:5b:a8:c4:c4:
85:5c:0d:b2:f8:61:94:e4:35:ed:99:9d:5e:08:c5:2c:b4:43:
7c:72:5b:4f:4b:e0:18:20:64:9a:c6:3a:86:65:1d:e8:79:1d:
00:e5:f4:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:05:41 2025 by rpki-client