Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft
File: ZTwsX-3AjoxdH2VGksPkVkDIou0.mft (raw, json)
Hash identifier: x1ihe9xUPOx143Bry7NPQRtw4k6y3bAuScLp4TTGUuo=
Subject key identifier: 04:12:2B:3C:47:A0:4B:43:12:75:18:92:98:03:DF:AF:8F:3F:AE:22
Authority key identifier: 65:3C:2C:5F:ED:C0:8E:8C:5D:1F:65:46:92:C3:E4:56:40:C8:A2:ED
Certificate issuer: /CN=653c2c5fedc08e8c5d1f654692c3e45640c8a2ed
Certificate serial: 0195E159B8F39F801B81E7165C731258996F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZTwsX-3AjoxdH2VGksPkVkDIou0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft
Manifest number: 09C5
Signing time: Sat 29 Mar 2025 10:01:48 +0000
Manifest this update: Sat 29 Mar 2025 10:01:48 +0000
Manifest next update: Sun 30 Mar 2025 10:01:48 +0000
Files and hashes: 1: ZTwsX-3AjoxdH2VGksPkVkDIou0.crl (hash: XPAlFOhFLU0LnivTNg3GjKrA2PUUgss5bagirtgztxI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:b8:f3:9f:80:1b:81:e7:16:5c:73:12:58:99:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=653c2c5fedc08e8c5d1f654692c3e45640c8a2ed
Validity
Not Before: Mar 29 10:01:48 2025 GMT
Not After : Mar 30 10:01:48 2025 GMT
Subject: CN=04122b3c47a04b43127518929803dfaf8f3fae22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:63:38:0c:84:e7:58:cc:ec:41:53:d5:57:f2:
6a:2a:18:f2:f1:da:1f:9e:71:e0:b9:ab:d5:0a:9d:
a8:e9:d5:65:23:0a:03:00:c6:0c:fd:3f:13:c3:a7:
bb:d9:72:1a:03:b3:58:1b:4b:22:a0:e0:8e:36:58:
0c:a8:5e:49:b6:2d:4d:72:bd:61:8f:75:23:df:ca:
92:72:9f:37:4e:c7:24:a0:72:60:4b:41:11:61:09:
16:c1:9d:6e:3a:5d:2e:5c:34:4b:8d:5b:9d:48:ce:
4b:7d:97:83:23:48:e2:15:24:5d:33:9f:40:46:bd:
50:86:17:6b:b6:16:4c:7f:4e:e1:ae:f0:fa:b4:10:
9c:65:fd:08:86:8a:ef:2b:c4:6b:ee:63:de:c6:a3:
a4:43:13:70:66:9f:d8:b2:47:7c:94:50:b8:bd:37:
f0:29:f6:25:fa:1b:36:a6:6e:2e:4f:ec:5c:e1:06:
22:b5:20:6f:5a:4f:04:4a:3c:8d:11:6d:7f:e2:3e:
ed:8e:dd:32:25:bf:eb:da:2d:ed:31:3d:3a:28:72:
cc:81:0a:2e:c6:19:df:d6:8a:2c:ae:dc:1c:f2:24:
43:0f:2d:8a:d6:b3:f2:27:6e:75:7a:84:67:50:4e:
1a:62:bd:a3:aa:c3:17:99:45:30:4d:d5:5f:3f:e2:
44:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:12:2B:3C:47:A0:4B:43:12:75:18:92:98:03:DF:AF:8F:3F:AE:22
X509v3 Authority Key Identifier:
keyid:65:3C:2C:5F:ED:C0:8E:8C:5D:1F:65:46:92:C3:E4:56:40:C8:A2:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZTwsX-3AjoxdH2VGksPkVkDIou0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:66:ec:68:18:4b:99:cf:01:c5:9e:89:76:ad:83:08:07:02:
33:72:c1:2b:b9:94:8e:e4:2d:54:61:e6:0e:ae:fe:97:4e:ce:
ed:8c:81:96:07:4a:9b:72:4a:2d:88:07:37:64:a2:93:b9:38:
b0:9d:28:fc:a7:c0:4a:09:7c:d6:bd:96:95:5f:8c:b2:7e:56:
94:c8:8a:74:08:0e:2f:b7:9b:e6:69:a4:4d:9b:15:98:58:a3:
bc:33:89:ac:04:d0:93:b0:df:1f:f8:73:2a:79:67:dc:ca:98:
50:a0:2c:fd:37:8c:1e:e0:2a:b7:44:59:32:8a:87:d4:a9:fa:
0a:6c:0e:c2:40:5e:5e:38:1f:e9:0b:3c:e8:85:1d:d1:c7:67:
90:0e:65:83:4e:d5:ea:cc:f8:39:7e:e4:8a:a2:95:da:4e:f1:
88:79:5f:c5:7a:be:d7:fa:6f:bd:a3:03:ae:14:80:fd:b3:30:
3b:0f:61:6f:b8:f3:51:72:1d:a6:8c:02:3a:89:42:5c:36:0f:
82:3f:19:f7:f3:8c:ba:7c:9c:66:02:45:5e:d4:ce:58:96:d3:
99:7a:ad:da:7a:2c:50:bf:6a:68:e6:a5:91:55:b8:36:93:b7:
ab:ec:02:3e:21:24:83:71:3e:ed:d2:ef:50:28:06:a1:29:25:
15:c9:3e:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXhWbjzn4AbgecWXHMSWJlvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1M2MyYzVmZWRjMDhlOGM1ZDFmNjU0NjkyYzNlNDU2NDBj
OGEyZWQwHhcNMjUwMzI5MTAwMTQ4WhcNMjUwMzMwMTAwMTQ4WjAzMTEwLwYDVQQD
EygwNDEyMmIzYzQ3YTA0YjQzMTI3NTE4OTI5ODAzZGZhZjhmM2ZhZTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA72M4DITnWMzsQVPVV/JqKhjy8dof
nnHguavVCp2o6dVlIwoDAMYM/T8Tw6e72XIaA7NYG0sioOCONlgMqF5Jti1Ncr1h
j3Uj38qScp83TsckoHJgS0ERYQkWwZ1uOl0uXDRLjVudSM5LfZeDI0jiFSRdM59A
Rr1QhhdrthZMf07hrvD6tBCcZf0IhorvK8Rr7mPexqOkQxNwZp/Yskd8lFC4vTfw
KfYl+hs2pm4uT+xc4QYitSBvWk8ESjyNEW1/4j7tjt0yJb/r2i3tMT06KHLMgQou
xhnf1oosrtwc8iRDDy2K1rPyJ251eoRnUE4aYr2jqsMXmUUwTdVfP+JEWwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAQSKzxHoEtDEnUYkpgD36+PP64iMB8GA1UdIwQY
MBaAFGU8LF/twI6MXR9lRpLD5FZAyKLtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWlR3c1gtM0Fqb3hkSDJWR2tzUGtWa0RJb3UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mMTUyZTAtYTdmYi00YWZjLTljNzAt
MWNjYjU0ZjM3MmFhLzEvWlR3c1gtM0Fqb3hkSDJWR2tzUGtWa0RJb3UwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9mMTUyZTAtYTdmYi00YWZjLTljNzAtMWNjYjU0ZjM3MmFh
LzEvWlR3c1gtM0Fqb3hkSDJWR2tzUGtWa0RJb3UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc2bsaBhL
mc8BxZ6Jdq2DCAcCM3LBK7mUjuQtVGHmDq7+l07O7YyBlgdKm3JKLYgHN2Sik7k4
sJ0o/KfASgl81r2WlV+Msn5WlMiKdAgOL7eb5mmkTZsVmFijvDOJrATQk7DfH/hz
Knln3MqYUKAs/TeMHuAqt0RZMoqH1Kn6CmwOwkBeXjgf6Qs86IUd0cdnkA5lg07V
6sz4OX7kiqKV2k7xiHlfxXq+1/pvvaMDrhSA/bMwOw9hb7jzUXIdpowCOolCXDYP
gj8Z9/OMunycZgJFXtTOWJbTmXqt2nosUL9qaOalkVW4NpO3q+wCPiEkg3E+7dLv
UCgGoSklFck+2A==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:27:18 2025 by rpki-client