Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
File: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft (raw, json)
Hash identifier: DcU3+1bBwpm+fRAF+/nLra6PtsdE1XzBP+NG/XOICxM=
Subject key identifier: EF:F4:C2:FF:EE:8F:58:FB:89:FA:2D:EF:14:60:BA:33:F0:94:2C:DF
Authority key identifier: 40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
Certificate issuer: /CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Certificate serial: 0195E1590ED411F31789B235C1F661A91E28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
Manifest number: 0BE3
Signing time: Sat 29 Mar 2025 10:01:04 +0000
Manifest this update: Sat 29 Mar 2025 10:01:04 +0000
Manifest next update: Sun 30 Mar 2025 10:01:04 +0000
Files and hashes: 1: Ci2nxFCN2-JFxhCGu2Re4yZAOHs.roa (hash: +bhZNarT7FFMkSZsUhSIu2eb8t+79YYtheiLS/N1UY0=)
2: QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl (hash: Dv5wSsiMcm8vzzkKqZqVJG3GndHMJuA3GlIGkhHxek0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:0e:d4:11:f3:17:89:b2:35:c1:f6:61:a9:1e:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40aa949d31c66888cb4758f23dd5f312141dec4a
Validity
Not Before: Mar 29 10:01:04 2025 GMT
Not After : Mar 30 10:01:04 2025 GMT
Subject: CN=eff4c2ffee8f58fb89fa2def1460ba33f0942cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7b:3b:4e:71:9d:41:8f:ff:ce:f5:69:39:7e:
64:e7:a9:4d:6c:f2:94:64:ef:b0:7c:44:f3:88:9d:
3e:da:3d:d4:90:24:13:77:2c:7f:ad:3f:34:d4:64:
11:2c:ec:3c:3f:b2:07:9a:6f:62:10:8b:8e:8e:7c:
63:7f:c0:76:85:eb:75:68:fd:52:18:ab:8d:10:d4:
8d:fc:96:c4:42:d0:fd:c5:da:e8:a6:4d:de:66:b2:
5c:e2:5e:81:a3:10:71:bf:b0:ad:ac:d2:26:45:83:
b0:25:d2:8a:bf:7b:44:9b:b3:a2:49:c5:06:5a:5e:
2c:e2:67:45:9f:54:ce:70:14:a1:81:d7:d9:7f:c0:
38:83:b3:b8:b3:48:71:f6:37:d9:ed:9b:6e:97:d9:
83:5c:f1:3b:50:0e:fa:fc:c3:56:95:30:56:0c:81:
e6:64:dd:e6:98:21:a6:d3:58:c7:b5:73:8e:03:52:
f6:97:29:59:e2:23:dc:0c:99:22:28:4d:4f:ab:fb:
85:a1:fa:0e:c7:e0:f5:75:ed:cb:cf:d2:18:fa:4d:
80:a2:12:3a:50:42:d6:fb:17:be:28:b1:04:20:6b:
61:b6:21:9e:79:80:62:56:00:7c:b8:f5:fe:e8:95:
e7:4e:89:b7:16:8b:77:ed:c0:3c:5e:99:4b:15:5a:
f8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F4:C2:FF:EE:8F:58:FB:89:FA:2D:EF:14:60:BA:33:F0:94:2C:DF
X509v3 Authority Key Identifier:
keyid:40:AA:94:9D:31:C6:68:88:CB:47:58:F2:3D:D5:F3:12:14:1D:EC:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/de9401-56bb-4813-8f88-fd11bb1cc82d/1/QKqUnTHGaIjLR1jyPdXzEhQd7Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:9a:d2:d7:17:59:23:fd:06:3b:e3:ee:8c:b4:d8:6b:64:91:
67:8f:63:c6:52:49:7b:65:0e:20:96:10:61:7e:f0:04:5d:02:
b0:9b:ce:bc:da:91:ea:27:f2:3e:0b:9a:2b:a6:7e:61:86:a1:
c2:1f:71:00:ec:1d:5f:64:6f:b5:79:a7:09:c8:a0:f9:57:0d:
73:5e:17:71:b1:0a:57:fe:ba:89:88:3b:20:93:f0:b2:5f:11:
a5:b2:9c:b4:e6:fb:23:3c:35:d1:73:3f:71:23:40:93:98:81:
a9:1c:96:7c:40:07:76:2a:72:29:52:54:12:d6:58:47:a7:40:
8f:1f:d2:6e:26:6e:95:14:a6:ed:20:8d:25:d1:63:6c:f6:b2:
e6:cf:ea:cb:f9:78:b0:12:22:79:32:0e:8f:ad:62:3d:65:f2:
eb:8f:7a:1f:db:1d:42:76:1e:98:b9:b5:bf:84:7b:a3:53:aa:
41:1a:39:fc:b3:1b:1b:3f:80:5d:03:aa:3e:71:46:2f:88:c1:
85:97:9a:65:a9:6a:a5:d8:81:93:53:d6:91:28:1b:b2:3d:b4:
33:ab:6b:71:09:68:5d:fd:4d:c2:06:d6:7f:91:3b:9f:57:94:
bd:ed:10:f7:8c:68:07:ad:18:ca:2a:03:13:17:d9:1c:be:ec:
a9:82:9f:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXhWQ7UEfMXibI1wfZhqR4oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYWE5NDlkMzFjNjY4ODhjYjQ3NThmMjNkZDVmMzEyMTQx
ZGVjNGEwHhcNMjUwMzI5MTAwMTA0WhcNMjUwMzMwMTAwMTA0WjAzMTEwLwYDVQQD
EyhlZmY0YzJmZmVlOGY1OGZiODlmYTJkZWYxNDYwYmEzM2YwOTQyY2RmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAons7TnGdQY//zvVpOX5k56lNbPKU
ZO+wfETziJ0+2j3UkCQTdyx/rT801GQRLOw8P7IHmm9iEIuOjnxjf8B2het1aP1S
GKuNENSN/JbEQtD9xdropk3eZrJc4l6BoxBxv7CtrNImRYOwJdKKv3tEm7OiScUG
Wl4s4mdFn1TOcBShgdfZf8A4g7O4s0hx9jfZ7Ztul9mDXPE7UA76/MNWlTBWDIHm
ZN3mmCGm01jHtXOOA1L2lylZ4iPcDJkiKE1Pq/uFofoOx+D1de3Lz9IY+k2AohI6
UELW+xe+KLEEIGthtiGeeYBiVgB8uPX+6JXnTom3Fot37cA8XplLFVr4KwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFO/0wv/uj1j7ifot7xRgujPwlCzfMB8GA1UdIwQY
MBaAFECqlJ0xxmiIy0dY8j3V8xIUHexKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9kZTk0MDEtNTZiYi00ODEzLThmODgt
ZmQxMWJiMWNjODJkLzEvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNC9kZTk0MDEtNTZiYi00ODEzLThmODgtZmQxMWJiMWNjODJk
LzEvUUtxVW5USEdhSWpMUjFqeVBkWHpFaFFkN0VvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdJrS1xdZ
I/0GO+PujLTYa2SRZ49jxlJJe2UOIJYQYX7wBF0CsJvOvNqR6ifyPguaK6Z+YYah
wh9xAOwdX2RvtXmnCcig+VcNc14XcbEKV/66iYg7IJPwsl8RpbKctOb7Izw10XM/
cSNAk5iBqRyWfEAHdipyKVJUEtZYR6dAjx/SbiZulRSm7SCNJdFjbPay5s/qy/l4
sBIieTIOj61iPWXy6496H9sdQnYemLm1v4R7o1OqQRo5/LMbGz+AXQOqPnFGL4jB
hZeaZalqpdiBk1PWkSgbsj20M6trcQloXf1NwgbWf5E7n1eUve0Q94xoB60YyioD
ExfZHL7sqYKfGA==
-----END CERTIFICATE-----
Generated at Tue Apr 8 03:35:23 2025 by rpki-client