Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
File: iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft (raw, json)
Hash identifier: KlR6yDJ1Fw8mkkraMdYClLmEGSVKR8ZUGKuxubSv5+Y=
Subject key identifier: 88:88:2B:0D:61:05:2E:EE:53:23:C9:38:41:9B:F5:70:8F:4C:D0:67
Authority key identifier: 8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
Certificate issuer: /CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Certificate serial: 0195E158EE12D04C18584F21BEA1D3930DDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
Manifest number: 0821
Signing time: Sat 29 Mar 2025 10:00:56 +0000
Manifest this update: Sat 29 Mar 2025 10:00:56 +0000
Manifest next update: Sun 30 Mar 2025 10:00:56 +0000
Files and hashes: 1: 2N-Ad_PjuCdbWMhOkKca0e_4aH4.roa (hash: mX5PwA+5z3mRrepVsPYas6Uu6jFtb6sejxlwArRN7qw=)
2: 9qSGcGsaAT-Orj-BviLbbFBnobc.roa (hash: KGQdMGZUYXqZM3Cup0R+gwjVZv7t7VL1nDYpfpe2mMo=)
3: C6v3z8kGbpGtAYhEGvbIA9POeJ4.roa (hash: dVnxKmSOxpULCnBph8ARAXzts2lzvI7njmrNqMweylU=)
4: Q3cz4EEEExax1nv4wtLZZPPEgSk.roa (hash: ML1oxtfPutOEqYHFMGiG3+QvRpl8345MdKNoHGmCBSQ=)
5: iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl (hash: owY0FNLCjX6BUp52AuSIitIze4nPFmj+397/5UMfIwU=)
6: raR6qfZ5L-9hzvpYVK9us-1wIug.roa (hash: ARfa5iwtjYV/gUtHJTALBEg3MfK/IBejlaZvsXofCl8=)
7: tBuToTypjDQ6u5RK5DBD-fEJHi4.roa (hash: iFrIeR1iIdBgXE0Q5UKDG34iIF6/jJkNwFYF+l/o72M=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:58:ee:12:d0:4c:18:58:4f:21:be:a1:d3:93:0d:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8aad9c0ce5ba3905b41970a04e51976076c67e00
Validity
Not Before: Mar 29 10:00:56 2025 GMT
Not After : Mar 30 10:00:56 2025 GMT
Subject: CN=88882b0d61052eee5323c938419bf5708f4cd067
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:4f:20:29:a3:46:1a:d7:db:b9:69:9f:89:b3:
3b:83:db:78:64:a4:4c:27:04:0b:2f:1b:11:0d:c8:
1f:09:8d:01:0b:e0:bc:e5:65:7f:fa:59:6c:43:0e:
1f:40:be:a6:bb:11:19:fb:da:6f:4c:05:5a:0d:f9:
24:70:fa:9e:72:5f:99:46:7a:09:4a:e0:73:6f:b4:
bf:ac:ee:b2:5e:ef:87:13:7e:f1:b7:cd:21:19:2a:
10:97:28:1d:ae:8e:e8:d4:3e:b8:0b:2d:41:e3:ca:
c9:1f:4f:28:c1:e6:e8:ec:63:4e:e3:c2:9f:b8:ed:
c9:2a:2e:6c:86:62:0a:be:e7:2c:a8:39:5b:c9:d6:
a2:c3:26:5e:57:f1:2b:4c:43:df:b5:25:b7:3f:67:
ce:4e:2d:26:01:af:77:39:44:00:32:f9:cc:c1:d5:
5d:a3:76:b6:17:3e:83:3e:f7:ef:ee:f0:e0:4c:0c:
bb:10:5c:e9:51:c4:85:05:38:00:a0:f0:1f:87:64:
45:fa:12:0c:0e:c1:e0:de:20:48:9d:fb:90:93:59:
8c:ad:6f:87:2b:39:1f:de:4c:4e:7b:e6:86:af:c8:
8e:b9:7b:6b:08:0d:72:0d:4b:4d:fa:56:c0:78:f6:
0b:95:4f:b4:55:68:71:4b:2e:04:f8:cf:89:20:02:
02:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:88:2B:0D:61:05:2E:EE:53:23:C9:38:41:9B:F5:70:8F:4C:D0:67
X509v3 Authority Key Identifier:
keyid:8A:AD:9C:0C:E5:BA:39:05:B4:19:70:A0:4E:51:97:60:76:C6:7E:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iq2cDOW6OQW0GXCgTlGXYHbGfgA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e445e4-26bd-48c9-83db-7a0ece9c0af8/1/iq2cDOW6OQW0GXCgTlGXYHbGfgA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:ad:c8:25:51:ed:e4:32:3e:b2:70:fa:8c:0f:ec:53:77:03:
85:8d:c1:c2:eb:2e:b2:d1:ec:2b:82:8d:ce:18:35:fd:20:9a:
f0:ca:cb:c3:71:c1:7f:1b:9d:7a:8e:71:91:14:96:45:09:84:
bb:d0:d0:da:52:2a:49:16:7f:10:ab:e5:7b:b7:9e:d1:75:3b:
2b:30:12:64:87:69:27:a1:ed:d8:14:d6:9c:c4:f8:e3:28:dc:
58:7e:8c:dc:75:d0:4d:c9:d5:59:89:79:0a:d6:d4:d9:65:7b:
82:6a:38:07:94:16:a2:a7:83:f6:b9:2f:ba:2c:cf:63:28:9d:
22:a9:13:6e:1d:1f:96:fc:9a:84:27:66:aa:b4:4c:82:5f:24:
9f:20:4a:fd:7a:83:f5:6d:a2:93:1d:4e:12:1b:f3:45:28:8a:
4a:30:83:31:a9:c3:86:d1:08:5c:c5:02:10:6e:0a:3e:3f:5d:
0d:fb:25:3c:02:42:0c:16:d0:25:70:70:ab:4d:0a:d3:e8:6a:
59:5c:32:4a:aa:3c:2f:3d:7c:1c:9c:7b:c1:ad:5c:b8:5f:c4:
40:d7:fa:e0:53:4b:1a:83:d6:5f:24:fa:f1:97:75:1b:13:7c:
28:97:ec:a2:16:4b:27:68:2b:1c:a6:30:d5:bb:fb:3c:c2:f8:
4e:e1:39:ac
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXhWO4S0EwYWE8hvqHTkw3dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhYWQ5YzBjZTViYTM5MDViNDE5NzBhMDRlNTE5NzYwNzZj
NjdlMDAwHhcNMjUwMzI5MTAwMDU2WhcNMjUwMzMwMTAwMDU2WjAzMTEwLwYDVQQD
Eyg4ODg4MmIwZDYxMDUyZWVlNTMyM2M5Mzg0MTliZjU3MDhmNGNkMDY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2E8gKaNGGtfbuWmfibM7g9t4ZKRM
JwQLLxsRDcgfCY0BC+C85WV/+llsQw4fQL6muxEZ+9pvTAVaDfkkcPqecl+ZRnoJ
SuBzb7S/rO6yXu+HE37xt80hGSoQlygdro7o1D64Cy1B48rJH08owebo7GNO48Kf
uO3JKi5shmIKvucsqDlbydaiwyZeV/ErTEPftSW3P2fOTi0mAa93OUQAMvnMwdVd
o3a2Fz6DPvfv7vDgTAy7EFzpUcSFBTgAoPAfh2RF+hIMDsHg3iBInfuQk1mMrW+H
Kzkf3kxOe+aGr8iOuXtrCA1yDUtN+lbAePYLlU+0VWhxSy4E+M+JIAICFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIiIKw1hBS7uUyPJOEGb9XCPTNBnMB8GA1UdIwQY
MBaAFIqtnAzlujkFtBlwoE5Rl2B2xn4AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGIt
N2EwZWNlOWMwYWY4LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9lNDQ1ZTQtMjZiZC00OGM5LTgzZGItN2EwZWNlOWMwYWY4
LzEvaXEyY0RPVzZPUVcwR1hDZ1RsR1hZSGJHZmdBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkK3IJVHt
5DI+snD6jA/sU3cDhY3BwusustHsK4KNzhg1/SCa8MrLw3HBfxudeo5xkRSWRQmE
u9DQ2lIqSRZ/EKvle7ee0XU7KzASZIdpJ6Ht2BTWnMT44yjcWH6M3HXQTcnVWYl5
CtbU2WV7gmo4B5QWoqeD9rkvuizPYyidIqkTbh0flvyahCdmqrRMgl8knyBK/XqD
9W2ikx1OEhvzRSiKSjCDManDhtEIXMUCEG4KPj9dDfslPAJCDBbQJXBwq00K0+hq
WVwySqo8Lz18HJx7wa1cuF/EQNf64FNLGoPWXyT68Zd1GxN8KJfsohZLJ2grHKYw
1bv7PML4TuE5rA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 06:27:11 2025 by rpki-client