Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/ab82a4-5a72-45a7-96fd-9480b1633f9c/1/do5xE0z2ctauj2b8RNW-5iTNAqM.mft
File: do5xE0z2ctauj2b8RNW-5iTNAqM.mft (raw, json)
Hash identifier: r/zhW/WZIm2GH0vK3IlehQlyX0DSXJ4+dxcC1ebZwF0=
Subject key identifier: B8:32:C3:8C:67:F9:ED:EB:4C:F9:FA:47:1D:13:9F:D0:9D:9F:58:67
Authority key identifier: 76:8E:71:13:4C:F6:72:D6:AE:8F:66:FC:44:D5:BE:E6:24:CD:02:A3
Certificate issuer: /CN=768e71134cf672d6ae8f66fc44d5bee624cd02a3
Certificate serial: 0195E04694D94E5357647155A1DF5585B939
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do5xE0z2ctauj2b8RNW-5iTNAqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/ab82a4-5a72-45a7-96fd-9480b1633f9c/1/do5xE0z2ctauj2b8RNW-5iTNAqM.mft
Manifest number: 0515
Signing time: Sat 29 Mar 2025 05:01:16 +0000
Manifest this update: Sat 29 Mar 2025 05:01:16 +0000
Manifest next update: Sun 30 Mar 2025 05:01:16 +0000
Files and hashes: 1: do5xE0z2ctauj2b8RNW-5iTNAqM.crl (hash: xzJcc7cOUqVMPo1eyk51XrAVjkyl4h1ZhOQLFwEOwkE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:46:94:d9:4e:53:57:64:71:55:a1:df:55:85:b9:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768e71134cf672d6ae8f66fc44d5bee624cd02a3
Validity
Not Before: Mar 29 05:01:16 2025 GMT
Not After : Mar 30 05:01:16 2025 GMT
Subject: CN=b832c38c67f9edeb4cf9fa471d139fd09d9f5867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d6:9c:96:cb:6f:92:50:18:45:29:81:2d:8e:
33:53:2e:9c:7f:4c:22:cb:df:08:0c:11:dc:43:98:
a3:74:31:4d:a0:b6:20:90:c7:05:55:fb:28:11:4c:
b3:59:0e:9a:75:39:38:9f:81:df:eb:bc:4a:dd:53:
a1:a5:67:99:d7:30:da:6d:b8:b9:c5:c1:0b:63:7f:
d9:49:4e:2b:1a:71:46:f2:51:f6:a2:1d:82:b2:37:
ad:12:ff:70:ff:24:98:bc:38:ae:f6:27:82:13:09:
3e:eb:0f:2a:2e:a3:68:40:67:a6:cb:f1:2e:b6:3c:
4d:11:da:e0:0e:48:3e:01:48:f8:67:4f:83:01:f3:
55:3f:07:1d:25:15:3e:5a:e4:f6:ce:da:5f:39:e0:
5f:f0:92:69:bd:fc:2f:fe:dc:24:ba:c0:f0:2c:0c:
b7:b7:81:51:d2:53:10:67:2a:53:5e:66:eb:6e:e6:
f9:15:4d:3c:8d:1a:4b:13:a8:da:b8:3e:f4:ec:6a:
a2:c1:77:85:4f:7b:cc:ec:c4:c5:a2:c5:6d:be:4c:
6e:4d:8a:f3:9c:ad:df:97:d6:cb:34:8d:d3:9c:de:
79:c6:e2:25:f8:dc:8e:f2:fc:17:0a:6c:e3:87:98:
0e:72:8f:5b:71:02:f9:3e:79:e0:18:b0:a5:1e:40:
dd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:32:C3:8C:67:F9:ED:EB:4C:F9:FA:47:1D:13:9F:D0:9D:9F:58:67
X509v3 Authority Key Identifier:
keyid:76:8E:71:13:4C:F6:72:D6:AE:8F:66:FC:44:D5:BE:E6:24:CD:02:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do5xE0z2ctauj2b8RNW-5iTNAqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ab82a4-5a72-45a7-96fd-9480b1633f9c/1/do5xE0z2ctauj2b8RNW-5iTNAqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/ab82a4-5a72-45a7-96fd-9480b1633f9c/1/do5xE0z2ctauj2b8RNW-5iTNAqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:f1:90:02:17:c8:4d:68:d8:46:95:1c:e7:db:3e:90:ed:20:
bd:6b:8f:98:06:aa:4c:2c:63:7d:4c:3d:5d:8f:c5:8c:2e:22:
ae:85:5c:8f:7c:fd:cc:a7:e5:9b:dc:78:5b:10:2f:8c:f4:e4:
af:3b:83:e4:fe:8f:3d:7e:e5:bd:6e:e1:71:f0:56:1d:40:6d:
64:6d:5f:1a:b5:6d:58:30:18:d6:e8:02:a9:98:8f:a9:ff:db:
63:e2:1e:72:53:22:cc:a5:5e:f2:c1:c3:48:e8:da:04:11:23:
88:25:25:e2:ac:41:9e:34:5f:b9:8c:d8:15:cb:a0:bc:c4:0e:
85:60:16:44:19:72:17:de:55:2e:be:77:98:39:8e:ff:80:56:
ef:2f:85:27:b7:ff:3e:f4:43:7f:8d:ee:95:c1:a2:52:3c:fb:
9c:b2:fe:24:a0:7d:0e:5a:d4:5b:20:be:49:6b:e7:b2:46:4d:
2e:7d:96:ac:3b:62:e0:05:57:cb:bc:9a:ed:55:37:e1:23:12:
d4:8e:0e:6a:73:b5:39:b3:09:1c:12:83:3f:9a:0d:a9:48:c3:
c4:64:fe:dd:92:d5:69:1b:74:ef:e0:0e:e6:34:55:3a:ef:16:
c5:a6:bf:24:99:4e:30:eb:75:08:a9:d8:a2:f7:13:28:5a:be:
b3:84:96:cb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXgRpTZTlNXZHFVod9Vhbk5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc2OGU3MTEzNGNmNjcyZDZhZThmNjZmYzQ0ZDViZWU2MjRj
ZDAyYTMwHhcNMjUwMzI5MDUwMTE2WhcNMjUwMzMwMDUwMTE2WjAzMTEwLwYDVQQD
EyhiODMyYzM4YzY3ZjllZGViNGNmOWZhNDcxZDEzOWZkMDlkOWY1ODY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NaclstvklAYRSmBLY4zUy6cf0wi
y98IDBHcQ5ijdDFNoLYgkMcFVfsoEUyzWQ6adTk4n4Hf67xK3VOhpWeZ1zDabbi5
xcELY3/ZSU4rGnFG8lH2oh2CsjetEv9w/ySYvDiu9ieCEwk+6w8qLqNoQGemy/Eu
tjxNEdrgDkg+AUj4Z0+DAfNVPwcdJRU+WuT2ztpfOeBf8JJpvfwv/twkusDwLAy3
t4FR0lMQZypTXmbrbub5FU08jRpLE6jauD707GqiwXeFT3vM7MTFosVtvkxuTYrz
nK3fl9bLNI3TnN55xuIl+NyO8vwXCmzjh5gOco9bcQL5PnngGLClHkDdAQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLgyw4xn+e3rTPn6Rx0Tn9Cdn1hnMB8GA1UdIwQY
MBaAFHaOcRNM9nLWro9m/ETVvuYkzQKjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZG81eEUwejJjdGF1ajJiOFJOVy01aVROQXFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC9hYjgyYTQtNWE3Mi00NWE3LTk2ZmQt
OTQ4MGIxNjMzZjljLzEvZG81eEUwejJjdGF1ajJiOFJOVy01aVROQXFNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC9hYjgyYTQtNWE3Mi00NWE3LTk2ZmQtOTQ4MGIxNjMzZjlj
LzEvZG81eEUwejJjdGF1ajJiOFJOVy01aVROQXFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARvGQAhfI
TWjYRpUc59s+kO0gvWuPmAaqTCxjfUw9XY/FjC4iroVcj3z9zKflm9x4WxAvjPTk
rzuD5P6PPX7lvW7hcfBWHUBtZG1fGrVtWDAY1ugCqZiPqf/bY+IeclMizKVe8sHD
SOjaBBEjiCUl4qxBnjRfuYzYFcugvMQOhWAWRBlyF95VLr53mDmO/4BW7y+FJ7f/
PvRDf43ulcGiUjz7nLL+JKB9DlrUWyC+SWvnskZNLn2WrDti4AVXy7ya7VU34SMS
1I4OanO1ObMJHBKDP5oNqUjDxGT+3ZLVaRt07+AO5jRVOu8Wxaa/JJlOMOt1CKnY
ovcTKFq+s4SWyw==
-----END CERTIFICATE-----
Generated at Mon Apr 7 20:23:59 2025 by rpki-client