Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
File: kERLB53wCKfHy-KPy6Xb4GIOjhc.mft (raw, json)
Hash identifier: 11Sbmr4iJyplWUvDKA3BgdWqe3+ulYci1qqYhRvUx1Q=
Subject key identifier: B3:10:2A:4D:7D:90:ED:C3:25:0B:AC:1F:59:87:61:5B:A2:60:74:E5
Authority key identifier: 90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
Certificate issuer: /CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Certificate serial: 0195E0470165163DF3064790B5D44646040F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
Manifest number: 1334
Signing time: Sat 29 Mar 2025 05:01:44 +0000
Manifest this update: Sat 29 Mar 2025 05:01:44 +0000
Manifest next update: Sun 30 Mar 2025 05:01:44 +0000
Files and hashes: 1: kERLB53wCKfHy-KPy6Xb4GIOjhc.crl (hash: DjG7pzpD6sYyzdtjtmUgf+G9zKnk2/hRPAP/SpcEnfA=)
2: o9Mrd_Zp-119sDj-V8VZv-bH4Po.roa (hash: T/Zr25wueuSL7uIuxkLz/YPHfupfyL0OiqXaAJQQ9Uw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:47:01:65:16:3d:f3:06:47:90:b5:d4:46:46:04:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Validity
Not Before: Mar 29 05:01:44 2025 GMT
Not After : Mar 30 05:01:44 2025 GMT
Subject: CN=b3102a4d7d90edc3250bac1f5987615ba26074e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:69:3d:89:03:da:32:cb:77:36:0f:2e:70:a2:
5e:1c:ab:95:5a:3b:ac:7d:12:e8:be:29:64:9e:c3:
58:f5:63:e3:80:45:c2:0d:7a:d5:b2:fd:1d:8c:a2:
96:a7:00:05:27:b8:46:bc:db:60:14:49:99:24:e4:
ef:3b:08:dd:b9:c6:74:7c:8c:bc:ff:b1:53:98:aa:
1e:25:b4:0f:5b:c1:2d:32:78:c6:39:f7:8d:73:4f:
1a:2f:ba:fc:31:de:04:78:75:4e:fb:9b:cb:88:3d:
6f:88:38:74:56:0d:99:67:25:18:9b:1b:2a:69:5d:
9f:d4:f5:da:09:be:77:d3:1a:b7:2f:cc:26:2b:64:
8c:e4:7a:33:ba:fc:e1:38:9c:01:d8:b3:49:a4:bf:
3d:c7:b3:b1:a6:95:9b:a1:0a:69:80:62:4e:c7:44:
41:df:78:7a:ac:9e:aa:0c:cf:51:9d:36:03:c5:6c:
48:d5:1f:8d:d0:f2:6e:5d:e0:b7:da:00:5a:a9:7b:
3b:f0:56:e3:6b:66:6c:54:74:e9:dd:43:43:15:a0:
93:79:25:bd:8e:9d:c1:ea:ba:fc:2d:cc:da:d1:9a:
50:10:7e:c7:69:06:83:b6:de:b2:b8:81:f5:6c:f9:
77:34:ad:34:ec:d8:5c:79:e8:11:0d:ac:68:a3:96:
d7:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:10:2A:4D:7D:90:ED:C3:25:0B:AC:1F:59:87:61:5B:A2:60:74:E5
X509v3 Authority Key Identifier:
keyid:90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:c8:72:20:a3:22:3a:3a:2f:27:a8:59:74:b8:09:9d:ad:82:
9e:59:3c:11:e4:85:08:17:67:58:d2:2f:be:ff:7e:b9:dc:34:
f8:a2:25:7a:cb:d2:34:84:37:a5:2a:09:6f:b5:48:8c:b0:7f:
d3:f0:80:12:6d:38:a5:5f:88:da:3c:74:90:0d:01:dc:95:3f:
40:92:35:73:9a:37:c0:9e:b2:35:8b:d8:89:66:82:f1:14:31:
f5:4b:04:c4:bb:a7:cb:40:a0:44:5d:47:d8:c5:a2:f8:f2:37:
84:dc:75:ec:36:41:ee:45:14:50:5d:48:e2:6c:31:29:ad:f7:
7d:93:ab:ae:a6:ae:90:c5:fc:12:98:a8:f5:b9:12:4a:59:c9:
1b:1e:8e:1b:90:d5:fb:00:42:0b:c6:30:94:16:9e:8b:a8:61:
81:38:b1:b7:7c:67:5b:1d:eb:50:54:02:78:68:81:3f:6b:c9:
e7:b8:63:9d:1c:f2:b8:2e:fb:b7:c5:0f:29:74:57:cc:d3:f0:
a7:33:b3:1e:d0:ef:4f:ad:e2:34:27:9d:78:20:d1:c7:cc:ec:
9c:d3:9c:89:10:ce:59:c4:00:10:8b:4a:cd:9e:12:58:fd:f9:
46:a2:4f:6d:68:17:94:08:a0:d1:ee:56:2d:1d:c9:ff:4e:a9:
aa:b0:87:88
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXgRwFlFj3zBkeQtdRGRgQPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwNDQ0YjA3OWRmMDA4YTdjN2NiZTI4ZmNiYTVkYmUwNjIw
ZThlMTcwHhcNMjUwMzI5MDUwMTQ0WhcNMjUwMzMwMDUwMTQ0WjAzMTEwLwYDVQQD
EyhiMzEwMmE0ZDdkOTBlZGMzMjUwYmFjMWY1OTg3NjE1YmEyNjA3NGU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1mk9iQPaMst3Ng8ucKJeHKuVWjus
fRLovilknsNY9WPjgEXCDXrVsv0djKKWpwAFJ7hGvNtgFEmZJOTvOwjducZ0fIy8
/7FTmKoeJbQPW8EtMnjGOfeNc08aL7r8Md4EeHVO+5vLiD1viDh0Vg2ZZyUYmxsq
aV2f1PXaCb530xq3L8wmK2SM5HozuvzhOJwB2LNJpL89x7OxppWboQppgGJOx0RB
33h6rJ6qDM9RnTYDxWxI1R+N0PJuXeC32gBaqXs78Fbja2ZsVHTp3UNDFaCTeSW9
jp3B6rr8Lcza0ZpQEH7HaQaDtt6yuIH1bPl3NK007NhceegRDaxoo5bXVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLMQKk19kO3DJQusH1mHYVuiYHTlMB8GA1UdIwQY
MBaAFJBESwed8Ainx8vij8ul2+BiDo4XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0VSTEI1M3dDS2ZIeS1LUHk2WGI0R0lPamhjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZS8yNGVjOGUtMWNjNi00NWUzLTkwNjMt
OTkxNDk4NjdkYmY3LzEva0VSTEI1M3dDS2ZIeS1LUHk2WGI0R0lPamhjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZS8yNGVjOGUtMWNjNi00NWUzLTkwNjMtOTkxNDk4NjdkYmY3
LzEva0VSTEI1M3dDS2ZIeS1LUHk2WGI0R0lPamhjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAMhyIKMi
OjovJ6hZdLgJna2Cnlk8EeSFCBdnWNIvvv9+udw0+KIlesvSNIQ3pSoJb7VIjLB/
0/CAEm04pV+I2jx0kA0B3JU/QJI1c5o3wJ6yNYvYiWaC8RQx9UsExLuny0CgRF1H
2MWi+PI3hNx17DZB7kUUUF1I4mwxKa33fZOrrqaukMX8Epio9bkSSlnJGx6OG5DV
+wBCC8YwlBaei6hhgTixt3xnWx3rUFQCeGiBP2vJ57hjnRzyuC77t8UPKXRXzNPw
pzOzHtDvT63iNCedeCDRx8zsnNOciRDOWcQAEItKzZ4SWP35RqJPbWgXlAig0e5W
LR3J/06pqrCHiA==
-----END CERTIFICATE-----
Generated at Tue Apr 8 14:52:12 2025 by rpki-client