Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
File: gErnaxl1-0qMurIgcYnu0gIy_18.mft (raw, json)
Hash identifier: PsGJFV+aThiBTzvAEH+/4UJ1VmCuPT0GDrin1gPL+bs=
Subject key identifier: D9:A4:09:CE:AE:DC:71:4B:76:A4:B6:3C:39:2A:10:33:1A:EB:32:AF
Authority key identifier: 80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
Certificate issuer: /CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Certificate serial: 0199221E405D7BC7631CCE15CE92E7F16451
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
Manifest number: 04B2
Signing time: Sun 07 Sep 2025 03:00:31 +0000
Manifest this update: Sun 07 Sep 2025 03:00:31 +0000
Manifest next update: Mon 08 Sep 2025 03:00:31 +0000
Files and hashes: 1: gErnaxl1-0qMurIgcYnu0gIy_18.crl (hash: V8yXyOigYS784yqSKhV6RIpR8i3JD6jHOJRWR3O+Xo0=)
2: v3oDa-WSUoJp1kuV1a6fLuRGHQ0.roa (hash: Y4h5O4hQh1m1aEWNf7XMnqa6q5Txb+8pJ/1S7VkKt/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:40:5d:7b:c7:63:1c:ce:15:ce:92:e7:f1:64:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=804ae76b1975fb4a8cbab2207189eed20232ff5f
Validity
Not Before: Sep 7 03:00:31 2025 GMT
Not After : Sep 8 03:00:31 2025 GMT
Subject: CN=d9a409ceaedc714b76a4b63c392a10331aeb32af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:85:e1:b0:af:02:b5:9c:31:66:61:3f:5f:6b:
d0:9b:4a:da:aa:d3:a4:52:fa:88:99:46:a1:6a:34:
40:f0:f0:05:28:30:3c:32:98:5e:73:6a:ba:b5:7c:
1c:86:d4:3f:f5:c4:5d:c0:17:e7:28:37:28:de:57:
61:4d:68:af:d6:57:a4:13:86:f7:50:f0:5c:ef:d3:
85:bb:4a:32:fd:8f:89:4c:4b:5d:fe:d7:07:29:a1:
83:2c:22:54:f5:9b:9c:a2:2a:25:c3:5e:43:6b:9c:
b4:0c:4f:a6:d6:9d:ab:5f:b9:f5:db:6d:28:e9:67:
32:c3:2c:9a:ed:a3:02:a4:23:0a:e0:32:50:14:4d:
97:9a:d4:f7:58:c6:8f:6b:67:be:82:20:7e:f2:09:
97:67:06:82:ba:22:45:6f:2b:f1:14:14:06:55:ba:
66:33:ee:75:5d:a1:23:cf:06:96:98:b9:14:7d:ae:
46:9a:0f:ab:e5:6b:f9:1e:b3:89:42:7e:c3:c7:9c:
0b:22:fa:d2:8c:72:ca:18:27:dc:9e:cb:42:cd:cc:
f3:df:24:d4:5d:a0:b3:c3:e4:10:a4:ef:9e:41:75:
ce:71:11:b0:31:a6:90:30:73:5a:c0:b0:4b:58:30:
93:0c:df:60:ba:7c:2f:2c:20:96:84:28:7e:b8:36:
49:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:A4:09:CE:AE:DC:71:4B:76:A4:B6:3C:39:2A:10:33:1A:EB:32:AF
X509v3 Authority Key Identifier:
keyid:80:4A:E7:6B:19:75:FB:4A:8C:BA:B2:20:71:89:EE:D2:02:32:FF:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gErnaxl1-0qMurIgcYnu0gIy_18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/680992-38da-498f-a349-94227293c88e/1/gErnaxl1-0qMurIgcYnu0gIy_18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:3f:95:f3:81:96:da:91:33:d3:e1:38:7a:18:2a:dc:ec:98:
d4:27:10:b8:66:81:3c:00:33:66:92:03:b2:88:a2:0a:98:b3:
c7:8f:f5:9a:a9:52:fb:db:00:bb:7a:da:4b:4d:89:41:19:8f:
03:bb:b6:95:60:01:0c:ed:9c:35:2a:d0:a0:e7:0b:3b:6f:1c:
b4:af:8c:62:d0:a8:7c:0e:81:db:62:9f:03:12:ba:66:e0:1f:
93:88:41:71:89:57:b5:aa:c4:e1:8f:54:87:9c:01:90:f3:89:
be:e2:24:fd:30:8f:44:ee:91:ff:b2:cc:bc:b2:ee:12:f0:5f:
8d:1a:1d:28:68:b4:6c:a8:41:6b:da:0c:c1:6e:98:37:0d:ab:
fc:70:82:e3:0e:8e:29:13:15:77:62:dd:d8:aa:bd:1a:e4:6b:
e5:bb:be:96:2c:f0:72:08:8e:c4:17:b3:a6:d7:81:07:85:0c:
9f:69:4b:2a:e0:52:55:7c:2d:5d:82:48:07:10:6a:02:b8:3d:
ed:e3:84:1c:5a:61:55:08:93:ae:be:6e:ce:8c:43:21:39:1b:
5d:3c:ce:6c:d7:30:fb:33:0b:0c:c4:46:48:14:f0:a5:95:f9:
b8:28:89:f9:39:94:d8:52:7e:e2:df:7a:71:12:bf:6b:f9:b1:
be:7e:2c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:52:02 2025 by rpki-client