Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.mft
File: CNOBziQjEGGBXzIEPGUiZq272GU.mft (raw, json)
Hash identifier: RO8Pq4YIOP5ZA2cvZLGDXwaqPLKBTJkM9Sp2uuWICOo=
Subject key identifier: 32:7F:12:64:E1:44:EB:09:93:22:D4:F2:74:D9:50:78:1B:B2:DE:0A
Authority key identifier: 08:D3:81:CE:24:23:10:61:81:5F:32:04:3C:65:22:66:AD:BB:D8:65
Certificate issuer: /CN=08d381ce24231061815f32043c652266adbbd865
Certificate serial: 019448940276E907222FCCE8FDBB0AA9EDFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNOBziQjEGGBXzIEPGUiZq272GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.mft
Manifest number: 11B3
Signing time: Thu 09 Jan 2025 01:00:46 +0000
Manifest this update: Thu 09 Jan 2025 01:00:46 +0000
Manifest next update: Fri 10 Jan 2025 01:00:46 +0000
Files and hashes: 1: CNOBziQjEGGBXzIEPGUiZq272GU.crl (hash: 0nQGAD5/su5E6tqr5nGoVGLg6uLy8uTUbHkdxh/2tuk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:48:94:02:76:e9:07:22:2f:cc:e8:fd:bb:0a:a9:ed:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d381ce24231061815f32043c652266adbbd865
Validity
Not Before: Jan 9 01:00:46 2025 GMT
Not After : Jan 10 01:00:46 2025 GMT
Subject: CN=327f1264e144eb099322d4f274d950781bb2de0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:64:5d:2c:69:0a:09:cc:7b:b7:ad:6f:fb:24:
9d:3d:d8:88:4a:05:21:58:8a:c6:5e:30:12:b3:6d:
ae:31:79:b2:2f:5d:a2:8e:43:76:1c:f8:9c:03:57:
3a:e7:87:bc:5d:72:fe:5f:4d:76:5f:8d:78:29:59:
0d:c8:d1:ad:b3:c4:ff:92:1b:c8:10:b5:65:30:cf:
b5:09:ee:17:e3:d4:91:a6:3c:19:08:23:bc:bb:8f:
80:87:88:73:37:4f:1b:1b:52:1e:b9:b6:ca:ff:ec:
64:26:dd:d9:e8:97:1f:c3:92:cf:e7:f6:81:09:08:
fd:e2:38:85:fe:43:d4:80:fe:47:a4:89:19:0c:91:
1d:4f:b6:8e:f6:57:9d:d3:b9:11:84:c1:ff:14:a4:
fc:51:70:a7:6d:5d:2d:11:77:dd:b1:2d:40:bb:cc:
c7:e4:09:13:79:7c:4a:f6:f7:1f:0e:a2:3e:7c:47:
5e:bf:17:01:48:96:4e:94:2d:c2:a4:0c:80:f4:94:
7e:fd:27:06:0e:44:49:60:3d:e2:6f:94:68:45:27:
6d:37:df:40:47:f5:bc:ef:86:f7:86:03:bd:01:47:
8c:fa:c9:c1:d9:c6:56:5b:0b:8b:73:6b:d2:8f:02:
a5:42:19:70:1a:c9:96:c7:61:5a:2d:e7:da:31:0c:
aa:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:7F:12:64:E1:44:EB:09:93:22:D4:F2:74:D9:50:78:1B:B2:DE:0A
X509v3 Authority Key Identifier:
keyid:08:D3:81:CE:24:23:10:61:81:5F:32:04:3C:65:22:66:AD:BB:D8:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNOBziQjEGGBXzIEPGUiZq272GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/5b7ef8-e71f-429e-aadf-6cb78e95ab44/1/CNOBziQjEGGBXzIEPGUiZq272GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:51:a2:72:70:ac:38:75:38:bb:11:97:5a:bf:0d:3a:02:d4:
99:ee:ca:79:60:25:ba:15:a9:3e:cc:f6:04:01:bc:27:45:87:
74:77:da:41:de:70:d8:72:f1:3f:40:18:fb:fa:32:68:7c:ac:
37:5b:99:ad:0c:4b:a6:ce:ca:b1:a7:3d:aa:07:fb:a4:38:0a:
13:65:ae:23:96:88:fa:ca:6d:0b:30:60:11:b5:ef:57:24:7f:
22:bc:fc:b1:6d:1b:46:9d:2a:72:78:02:98:4c:a5:c2:c4:45:
71:3e:e2:d4:a3:fe:d3:fe:60:3f:dd:e3:62:c7:ab:18:ae:96:
30:56:bf:d1:9e:e1:d7:47:a6:2e:bb:6a:1b:e7:8a:d7:7d:71:
4f:8d:e8:54:bf:f0:6f:f0:33:c5:c7:e7:6d:40:b4:b4:b1:1e:
bb:d6:74:81:b0:96:c7:f5:3e:d9:03:85:73:af:35:2e:3e:dc:
84:8d:13:c9:08:3c:0f:92:41:3f:22:6c:8b:be:1a:53:d7:35:
19:69:f9:62:dd:1f:3e:85:da:9f:b9:54:84:78:96:32:6c:8d:
63:1a:4c:96:c4:67:2a:d6:f0:92:ed:2a:71:b1:b1:10:ca:f0:
0d:78:30:b3:fc:33:a1:53:d0:6e:5e:db:43:f7:e7:3b:a9:ca:
69:51:45:69
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZRIlAJ26QciL8zo/bsKqe37MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4ZDM4MWNlMjQyMzEwNjE4MTVmMzIwNDNjNjUyMjY2YWRi
YmQ4NjUwHhcNMjUwMTA5MDEwMDQ2WhcNMjUwMTEwMDEwMDQ2WjAzMTEwLwYDVQQD
EygzMjdmMTI2NGUxNDRlYjA5OTMyMmQ0ZjI3NGQ5NTA3ODFiYjJkZTBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2GRdLGkKCcx7t61v+ySdPdiISgUh
WIrGXjASs22uMXmyL12ijkN2HPicA1c654e8XXL+X012X414KVkNyNGts8T/khvI
ELVlMM+1Ce4X49SRpjwZCCO8u4+Ah4hzN08bG1IeubbK/+xkJt3Z6Jcfw5LP5/aB
CQj94jiF/kPUgP5HpIkZDJEdT7aO9led07kRhMH/FKT8UXCnbV0tEXfdsS1Au8zH
5AkTeXxK9vcfDqI+fEdevxcBSJZOlC3CpAyA9JR+/ScGDkRJYD3ib5RoRSdtN99A
R/W874b3hgO9AUeM+snB2cZWWwuLc2vSjwKlQhlwGsmWx2FaLefaMQyqxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDJ/EmThROsJkyLU8nTZUHgbst4KMB8GA1UdIwQY
MBaAFAjTgc4kIxBhgV8yBDxlImatu9hlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ05PQnppUWpFR0dCWHpJRVBHVWlacTI3MkdVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS81YjdlZjgtZTcxZi00MjllLWFhZGYt
NmNiNzhlOTVhYjQ0LzEvQ05PQnppUWpFR0dCWHpJRVBHVWlacTI3MkdVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS81YjdlZjgtZTcxZi00MjllLWFhZGYtNmNiNzhlOTVhYjQ0
LzEvQ05PQnppUWpFR0dCWHpJRVBHVWlacTI3MkdVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALFGicnCs
OHU4uxGXWr8NOgLUme7KeWAluhWpPsz2BAG8J0WHdHfaQd5w2HLxP0AY+/oyaHys
N1uZrQxLps7Ksac9qgf7pDgKE2WuI5aI+sptCzBgEbXvVyR/Irz8sW0bRp0qcngC
mEylwsRFcT7i1KP+0/5gP93jYserGK6WMFa/0Z7h10emLrtqG+eK131xT43oVL/w
b/AzxcfnbUC0tLEeu9Z0gbCWx/U+2QOFc681Lj7chI0TyQg8D5JBPyJsi74aU9c1
GWn5Yt0fPoXan7lUhHiWMmyNYxpMlsRnKtbwku0qcbGxEMrwDXgws/wzoVPQbl7b
Q/fnO6nKaVFFaQ==
-----END CERTIFICATE-----
Generated at Mon May 12 11:51:46 2025 by rpki-client