Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
File: gErnaxl1-0qMurIgcYnu0gIy_18.mft (raw, json)
Hash identifier: wU7DurhyD0RUISH9RBW37mMcy13yXfbeDJNr90NaC0o=
Subject key identifier: 2E:03:6F:7E:F4:E5:BA:12:B5:D1:D0:EE:43:71:B2:C2:FC:7F:3D:22
Authority key identifier: 80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
Certificate issuer: /CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Certificate serial: 0198D6CD8F57FA44D6B79E232DBCB6022F31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
Manifest number: 048B
Signing time: Sat 23 Aug 2025 12:00:52 +0000
Manifest this update: Sat 23 Aug 2025 12:00:52 +0000
Manifest next update: Sun 24 Aug 2025 12:00:52 +0000
Files and hashes: 1: gErnaxl1-0qMurIgcYnu0gIy_18.crl (hash: urDOK5IC3pn2SjIq21XoyRZrs6hWwM4aZehbGZjW+f4=)
2: v3oDa-WSUoJp1kuV1a6fLuRGHQ0.roa (hash: Y4h5O4hQh1m1aEWNf7XMnqa6q5Txb+8pJ/1S7VkKt/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:8f:57:fa:44:d6:b7:9e:23:2d:bc:b6:02:2f:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Validity
Not Before: Aug 23 12:00:52 2025 GMT
Not After : Aug 24 12:00:52 2025 GMT
Subject: CN=2e036f7ef4e5ba12b5d1d0ee4371b2c2fc7f3d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a0:42:71:bb:70:b3:cc:b3:a5:7d:b6:a9:49:
f1:ea:39:73:d1:79:30:01:75:28:0e:7a:e5:cd:95:
7f:e5:1f:81:b6:93:5f:00:bf:d1:a8:d0:ff:d2:74:
c5:44:e4:30:ca:8a:09:46:18:61:4e:c2:31:7e:95:
51:cd:07:5d:38:cf:cc:0b:1a:47:e9:d0:7b:e7:ad:
ea:a3:ea:f3:bb:49:bb:41:62:af:60:2a:2f:4f:9f:
57:4f:7f:cb:84:69:e7:c3:2a:23:e8:09:ca:59:93:
ff:12:0c:0e:b6:48:d8:56:1c:1a:e4:46:f9:6c:25:
6c:d3:7e:68:b8:e3:e3:6a:f4:15:84:f1:06:c6:4d:
92:9e:cf:89:81:b4:cb:b2:e2:55:ba:7c:e3:6a:3e:
31:fa:e7:ee:fb:b2:0a:96:0c:f8:14:4e:9f:0a:c7:
0a:db:a9:ad:78:cd:a3:e2:10:cd:aa:09:31:88:54:
ee:c9:79:e4:47:d8:9e:4c:c6:24:a7:2d:64:c4:71:
03:24:40:2d:d4:a5:dc:25:8c:f7:79:eb:83:89:92:
ce:b7:f5:f6:75:e1:30:e9:fb:66:6d:bf:c3:5a:b4:
9e:d3:8b:77:cd:6c:8c:44:58:92:89:c3:bc:41:74:
e5:c1:52:79:46:ac:b6:40:74:d8:16:ae:87:f5:d5:
65:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:03:6F:7E:F4:E5:BA:12:B5:D1:D0:EE:43:71:B2:C2:FC:7F:3D:22
X509v3 Authority Key Identifier:
keyid:80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:aa:54:c5:7c:99:15:ef:10:7b:f3:a9:c3:6f:40:ff:09:ad:
f2:52:4d:2b:64:7f:68:d5:3a:40:4b:f9:81:9f:e5:10:3f:a2:
8c:ec:b5:45:8a:ed:79:9b:3e:87:b5:8e:74:1e:8a:ed:4c:f6:
94:1f:bf:44:90:0f:1f:72:15:b8:cc:f5:7a:fe:9a:8e:f8:bb:
1b:c1:8f:3d:82:5b:6f:86:ab:25:9b:a9:27:89:cd:c2:ef:53:
84:66:85:44:8c:d5:bc:ae:16:2c:98:bd:7c:d7:a1:61:55:ea:
cd:6f:a6:29:08:cb:21:8b:27:01:8d:bb:f7:95:a2:56:ae:9f:
a2:44:c8:9d:55:41:3a:84:00:3c:53:58:fd:25:f9:5d:c6:01:
f6:07:c4:97:21:79:bb:7d:bf:84:ef:da:9a:ea:eb:82:9a:26:
23:6a:0e:0e:ab:1c:8d:bb:c0:c6:de:02:ad:3c:52:8a:1e:a3:
fe:08:ed:34:0c:7b:e6:a8:6a:89:6d:28:01:5d:a0:db:94:7b:
c2:c3:d7:e1:0f:f5:ae:93:8f:e2:cb:c2:f2:88:f3:2e:4c:28:
2d:43:ee:53:1f:91:9f:d0:21:2c:94:14:37:85:52:8d:6f:2e:
ac:ee:67:d2:46:eb:48:2f:4a:7d:41:c8:dd:b8:c9:63:4d:c6:
e6:9d:ca:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 20:30:16 2025 by rpki-client