Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
File: gErnaxl1-0qMurIgcYnu0gIy_18.mft (raw, json)
Hash identifier: D5ZH/1hUE63qtPaGJ5ySGJub+gdyjXseFEFChhCjN0Q=
Subject key identifier: A9:2A:FA:13:51:1A:28:88:74:80:5D:97:32:98:FB:C2:95:48:3E:04
Authority key identifier: 80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
Certificate issuer: /CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Certificate serial: 0194C3F5F1EFB8BDE0E89289200F472042FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
Manifest number: 026F
Signing time: Sun 02 Feb 2025 00:01:02 +0000
Manifest this update: Sun 02 Feb 2025 00:01:02 +0000
Manifest next update: Mon 03 Feb 2025 00:01:02 +0000
Files and hashes: 1: gErnaxl1-0qMurIgcYnu0gIy_18.crl (hash: w1E7CBEQHKfX9S4arb1wDmDoi45e7LcdNI5i7q2FXxE=)
2: v3oDa-WSUoJp1kuV1a6fLuRGHQ0.roa (hash: Y4h5O4hQh1m1aEWNf7XMnqa6q5Txb+8pJ/1S7VkKt/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Feb 2025 00:00:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:f5:f1:ef:b8:bd:e0:e8:92:89:20:0f:47:20:42:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Validity
Not Before: Feb 2 00:01:02 2025 GMT
Not After : Feb 3 00:01:02 2025 GMT
Subject: CN=a92afa13511a288874805d973298fbc295483e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:ed:59:4a:d0:73:62:13:4f:ae:f8:7d:14:b3:
d4:40:6c:bc:d7:48:1a:0a:84:87:b1:99:9a:24:a9:
a2:38:a9:9a:7d:4d:70:b3:51:f8:aa:a6:61:23:98:
aa:e1:ad:66:68:7c:81:f6:7f:4d:a2:22:2e:a9:40:
eb:ea:74:87:fc:d8:c4:8c:c7:84:f3:ea:d7:37:d5:
cb:49:89:06:89:f9:8f:3e:98:6d:7f:82:8b:cd:dc:
14:b0:9c:ca:08:01:4d:2f:23:03:c9:8f:91:d8:dc:
c5:b8:0d:e0:dc:c1:e7:20:10:81:f1:6d:c8:41:47:
44:37:6f:2a:0a:46:10:e2:59:cd:60:79:36:f6:6a:
f0:d0:28:cf:cd:dd:d0:ab:b9:fb:03:a8:ce:40:86:
c9:bb:ae:b4:76:6a:0c:8c:17:71:53:26:17:46:3b:
ef:fa:e0:c4:c5:a0:03:14:8e:f2:75:e3:ad:92:8d:
ba:20:57:9b:0a:94:bd:64:8f:f6:7c:26:ad:b7:bb:
4a:02:af:c7:d1:ef:e5:bd:57:d8:e0:80:91:28:ab:
c3:76:3e:52:78:8a:16:a5:07:e9:f7:85:51:01:2a:
c2:28:34:6f:1a:3b:e6:f2:71:50:1d:c1:4f:a9:55:
ed:2e:42:00:e7:ca:28:bb:86:18:47:e3:57:f9:3e:
ca:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:2A:FA:13:51:1A:28:88:74:80:5D:97:32:98:FB:C2:95:48:3E:04
X509v3 Authority Key Identifier:
keyid:80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:35:1a:ca:f2:58:8f:22:10:e4:ef:44:0d:8d:57:b9:07:d9:
8d:b7:15:c7:92:eb:25:4d:32:03:1f:65:1a:57:08:ff:ed:fc:
11:c3:6c:c8:d7:23:b7:a5:b1:b3:dd:28:8c:22:e5:20:db:bd:
b6:67:d6:42:87:d9:3f:c1:ba:52:35:8f:5c:2e:0b:53:68:8c:
42:f2:6a:c2:72:79:e2:60:03:60:d4:d3:59:bb:0f:60:a2:2e:
f7:88:d3:87:77:4d:9a:b7:15:98:82:87:99:d6:90:36:dc:6b:
ad:98:da:a1:80:bb:c4:4c:c8:42:3e:70:93:e6:c1:eb:17:9c:
ea:ed:da:2d:34:56:d9:3d:0a:c2:04:7f:8c:81:b5:e7:1a:cf:
ff:ac:ce:c7:d1:39:2e:30:8e:da:aa:12:86:97:8a:cd:d4:c9:
d3:c3:2d:f7:71:b2:6e:e1:e3:76:b4:46:20:d2:00:64:25:34:
72:1e:29:52:d8:de:4e:4b:39:bf:07:7d:3b:d3:d2:8c:ee:92:
91:8c:3a:c7:98:1a:c9:c4:9e:1f:71:ac:f7:86:dc:8d:87:d6:
18:a9:ce:48:c0:e3:5f:cc:41:48:8c:97:35:8f:f3:73:6c:dc:
de:c7:ac:30:18:99:6f:3d:ef:8a:cf:e3:4e:63:75:6e:07:8f:
7d:df:6b:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:55:45 2025 by rpki-client