Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
File: gErnaxl1-0qMurIgcYnu0gIy_18.mft (raw, json)
Hash identifier: xbuexqFTdp8Aqrnx1r4k8WD/Gys8oRtLqS8cNZUIcAE=
Subject key identifier: 7C:AF:67:8C:D5:3D:A0:39:07:5F:3E:A7:E5:51:C4:50:D3:23:65:8D
Authority key identifier: 80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
Certificate issuer: /CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Certificate serial: 01965B70E41EC6B2A2AC39F8F558880DE3F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
Manifest number: 0342
Signing time: Tue 22 Apr 2025 03:00:47 +0000
Manifest this update: Tue 22 Apr 2025 03:00:47 +0000
Manifest next update: Wed 23 Apr 2025 03:00:47 +0000
Files and hashes: 1: gErnaxl1-0qMurIgcYnu0gIy_18.crl (hash: kiQWpkYsKkvpaGruR7TmShbX5HzoGf6l+Q0iRThMZcs=)
2: v3oDa-WSUoJp1kuV1a6fLuRGHQ0.roa (hash: Y4h5O4hQh1m1aEWNf7XMnqa6q5Txb+8pJ/1S7VkKt/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 03:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5b:70:e4:1e:c6:b2:a2:ac:39:f8:f5:58:88:0d:e3:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Validity
Not Before: Apr 22 03:00:47 2025 GMT
Not After : Apr 23 03:00:47 2025 GMT
Subject: CN=7caf678cd53da039075f3ea7e551c450d323658d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d5:62:87:94:d8:45:2e:06:03:c9:1b:02:c8:
5c:bb:fb:36:f9:d1:85:c6:1f:b0:2a:d0:18:6f:e4:
13:c8:f2:3e:62:56:19:cd:b0:c5:40:de:be:c8:1e:
d7:f4:c8:73:14:ee:12:31:c8:3c:95:33:2f:06:a3:
54:1c:5a:bd:ce:90:d5:84:c5:21:94:7c:a7:bd:61:
fa:5a:d4:62:d9:aa:dd:15:79:09:dc:67:c8:6e:02:
96:58:4c:4e:6a:ad:ef:1e:9d:34:7b:fd:38:e5:19:
ff:ba:49:bf:6f:b3:63:10:7f:b2:cf:11:0e:be:22:
46:4d:95:6e:ed:88:85:54:15:a9:73:33:b0:f0:ff:
c1:d7:86:fa:1b:70:f5:d6:04:2a:61:ed:a4:dc:1e:
fb:45:29:d8:ca:3d:af:f9:a2:a5:f9:df:b8:13:4b:
4c:31:d0:81:5c:ac:f7:59:3e:8f:e7:70:d4:f7:43:
fc:39:53:94:f5:7d:3d:1c:6c:d2:fd:35:dd:13:e0:
aa:0f:b4:0c:9d:7f:9f:8a:d2:76:01:5e:f3:13:56:
dd:91:31:2d:14:50:86:6b:59:b7:f3:8a:a4:b2:b8:
67:82:31:f9:f1:82:14:8e:ee:79:d6:02:f5:df:8f:
a2:c6:1e:a1:68:23:61:c0:e7:f4:cf:d1:c5:c4:97:
74:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:AF:67:8C:D5:3D:A0:39:07:5F:3E:A7:E5:51:C4:50:D3:23:65:8D
X509v3 Authority Key Identifier:
keyid:80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:ca:c1:53:28:31:ba:15:74:fa:69:8a:d4:ad:69:c4:49:f1:
46:a5:c1:d6:01:4f:ac:36:45:65:3b:55:c7:bf:0e:91:05:26:
10:d4:8b:ca:83:a6:f2:8d:ea:d5:1b:42:91:57:18:b1:dd:e5:
1b:82:f7:8e:6d:93:79:d1:0a:a4:f4:6c:8a:74:36:f5:c0:f8:
91:ec:0c:69:66:d6:42:ce:a9:19:ed:33:f1:00:1a:80:f6:86:
3e:50:0f:59:4a:56:35:ca:1d:32:f4:ab:82:ea:e5:41:b7:4c:
e4:8e:2e:a5:db:01:2a:d6:07:dc:fd:7a:9a:d5:ae:c5:40:c3:
bf:8b:28:6e:f3:61:68:7f:6f:32:51:a6:97:52:1c:3c:17:4f:
bb:69:5e:2c:de:99:d1:ce:ee:10:89:b5:d1:a3:13:ec:13:88:
eb:63:d9:bf:17:e5:0b:f6:22:2c:08:94:04:9b:d1:98:38:3b:
c6:65:0a:05:d4:aa:6d:8c:62:b2:94:97:33:37:52:38:16:f6:
31:9b:28:76:7d:d4:74:f7:f5:85:34:da:94:04:75:fe:18:c8:
2f:68:98:44:76:1a:02:75:35:59:1c:65:97:65:f4:d8:3c:ba:
74:2d:39:20:17:a7:87:81:1a:4c:a8:8b:08:25:d6:47:a3:77:
e6:57:17:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZbcOQexrKirDn49ViIDeP2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwNGFlNzZiMTk3NWZiNGE4Y2JhYjIyMDcxODllZWQyMDIz
MmZmNWYwHhcNMjUwNDIyMDMwMDQ3WhcNMjUwNDIzMDMwMDQ3WjAzMTEwLwYDVQQD
Eyg3Y2FmNjc4Y2Q1M2RhMDM5MDc1ZjNlYTdlNTUxYzQ1MGQzMjM2NThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNVih5TYRS4GA8kbAshcu/s2+dGF
xh+wKtAYb+QTyPI+YlYZzbDFQN6+yB7X9MhzFO4SMcg8lTMvBqNUHFq9zpDVhMUh
lHynvWH6WtRi2ardFXkJ3GfIbgKWWExOaq3vHp00e/045Rn/ukm/b7NjEH+yzxEO
viJGTZVu7YiFVBWpczOw8P/B14b6G3D11gQqYe2k3B77RSnYyj2v+aKl+d+4E0tM
MdCBXKz3WT6P53DU90P8OVOU9X09HGzS/TXdE+CqD7QMnX+fitJ2AV7zE1bdkTEt
FFCGa1m384qksrhngjH58YIUju551gL134+ixh6haCNhwOf0z9HFxJd0zQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHyvZ4zVPaA5B18+p+VRxFDTI2WNMB8GA1UdIwQY
MBaAFIBK52sZdftKjLqyIHGJ7tICMv9fMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0VybmF4bDEtMHFNdXJJZ2NZbnUwZ0l5XzE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC82ODA5OTItMzhkYS00OThmLWEzNDkt
OTQyMjcyOTNjODhlLzEvZ0VybmF4bDEtMHFNdXJJZ2NZbnUwZ0l5XzE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC82ODA5OTItMzhkYS00OThmLWEzNDktOTQyMjcyOTNjODhl
LzEvZ0VybmF4bDEtMHFNdXJJZ2NZbnUwZ0l5XzE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiMrBUygx
uhV0+mmK1K1pxEnxRqXB1gFPrDZFZTtVx78OkQUmENSLyoOm8o3q1RtCkVcYsd3l
G4L3jm2TedEKpPRsinQ29cD4kewMaWbWQs6pGe0z8QAagPaGPlAPWUpWNcodMvSr
gurlQbdM5I4updsBKtYH3P16mtWuxUDDv4sobvNhaH9vMlGml1IcPBdPu2leLN6Z
0c7uEIm10aMT7BOI62PZvxflC/YiLAiUBJvRmDg7xmUKBdSqbYxispSXMzdSOBb2
MZsodn3UdPf1hTTalAR1/hjIL2iYRHYaAnU1WRxll2X02Dy6dC05IBenh4EaTKiL
CCXWR6N35lcXLQ==
-----END CERTIFICATE-----
Generated at Tue Apr 22 12:37:06 2025 by rpki-client