Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
File: 8HH00RnQt0-2bjen74eNRJ1U3cg.mft (raw, json)
Hash identifier: y2hqX2TvzogffeseJ1A/czGrYmnOqRxMBDE+MDVb/90=
Subject key identifier: A2:04:49:D5:77:43:D7:33:AD:74:52:83:8B:E8:98:7E:75:6E:40:99
Authority key identifier: F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8
Certificate issuer: /CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8
Certificate serial: 0195E122470B214E256FE42D578230D0CE0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
Manifest number: 14C4
Signing time: Sat 29 Mar 2025 09:01:14 +0000
Manifest this update: Sat 29 Mar 2025 09:01:14 +0000
Manifest next update: Sun 30 Mar 2025 09:01:14 +0000
Files and hashes: 1: 8HH00RnQt0-2bjen74eNRJ1U3cg.crl (hash: 2X87Papsrcg7edjMZWxDvwn9blUIcIj7m16c3qFw0cg=)
2: uzaT_8pYRSOjnRLn-VDCRDMHjkw.roa (hash: BTL6zzsEp/zMhbPEtqOYQnpjz6sJkx1lWw25F56hHZw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:22:47:0b:21:4e:25:6f:e4:2d:57:82:30:d0:ce:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f071f4d119d0b74fb66e37a7ef878d449d54ddc8
Validity
Not Before: Mar 29 09:01:14 2025 GMT
Not After : Mar 30 09:01:14 2025 GMT
Subject: CN=a20449d57743d733ad7452838be8987e756e4099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0c:35:d2:e7:f4:da:46:41:d3:95:4e:71:e1:
fe:83:4e:f9:43:1f:7a:34:18:c7:86:0e:5d:e7:64:
39:62:db:f7:47:45:5c:9c:8f:de:8f:b3:8b:7b:e5:
a6:6d:56:23:51:da:93:fe:6c:85:c3:76:61:22:94:
a3:e9:7c:a8:4d:4d:91:f4:1b:0a:8f:7c:b1:ad:89:
0d:1e:e5:42:db:3b:95:22:55:63:f5:b2:3d:4b:ae:
34:73:b7:ec:33:e1:46:96:1b:e8:65:59:19:f7:7c:
ec:5c:eb:08:24:8b:ad:b9:58:8f:9c:7e:68:74:64:
8a:cf:76:89:46:75:c9:52:97:92:af:40:36:39:0b:
28:dc:a3:16:74:16:2c:cc:47:a0:4a:4a:64:5a:27:
f0:e5:f6:7d:12:7d:98:db:a3:b1:8a:56:f4:67:f4:
c9:2b:c4:2f:09:4c:f9:35:57:46:9a:2a:29:8c:44:
b7:3a:cd:c8:74:20:86:8e:39:61:2e:a2:14:19:cf:
83:af:09:3d:15:ef:a5:a9:ab:fd:04:78:1c:fb:cd:
89:06:24:55:f9:32:0e:c2:30:07:70:fc:61:6a:c5:
fb:70:d1:01:ee:07:e5:d3:94:61:61:37:0b:e6:54:
29:52:58:36:40:3c:9f:07:f7:86:60:d5:7e:ad:a2:
b8:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:04:49:D5:77:43:D7:33:AD:74:52:83:8B:E8:98:7E:75:6E:40:99
X509v3 Authority Key Identifier:
keyid:F0:71:F4:D1:19:D0:B7:4F:B6:6E:37:A7:EF:87:8D:44:9D:54:DD:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8HH00RnQt0-2bjen74eNRJ1U3cg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/6a9682-201b-4e01-ba09-07474524ef9a/1/8HH00RnQt0-2bjen74eNRJ1U3cg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:0b:7a:0a:b1:f6:10:d9:cd:af:e5:47:6b:89:50:e4:dc:c1:
51:f8:6f:c8:f1:8c:4f:4b:c3:a4:20:16:eb:1c:eb:bf:e9:d0:
ef:2e:02:bd:c2:49:89:1d:a7:80:a9:a5:35:3e:5f:8e:e1:db:
48:a4:80:ae:78:ca:55:65:42:ef:f5:cd:a1:c0:0c:60:32:3c:
7a:2e:f0:71:0c:2f:ae:41:d7:27:b8:1d:78:ef:8b:6f:40:ca:
ef:28:5a:a6:3a:93:6f:14:f2:69:60:df:0c:53:60:fb:0e:f1:
27:80:70:f3:cd:b0:57:05:58:30:2d:ed:6b:b5:8b:22:22:37:
cb:eb:f1:cf:88:9b:ab:e5:3a:4f:45:bc:df:77:3b:d2:bc:6d:
e1:08:7a:72:9b:e9:d2:51:40:87:6b:72:60:18:69:62:c5:85:
69:50:b7:be:5e:c5:96:eb:18:f7:d7:b5:f0:d8:79:63:eb:f7:
9f:aa:c6:26:f1:8b:cd:13:eb:73:17:d5:a4:b1:7d:0e:08:88:
8d:2b:32:eb:2d:23:6d:35:67:90:c7:ba:42:01:3c:74:af:1c:
e3:ae:31:f8:7e:1f:6a:10:ef:f6:1a:0f:f7:21:21:e4:e5:39:
79:4f:12:57:a3:c2:63:13:7f:99:a9:5d:7e:8c:e0:72:f7:b3:
fb:c5:d1:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXhIkcLIU4lb+QtV4Iw0M4KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGYwNzFmNGQxMTlkMGI3NGZiNjZlMzdhN2VmODc4ZDQ0OWQ1
NGRkYzgwHhcNMjUwMzI5MDkwMTE0WhcNMjUwMzMwMDkwMTE0WjAzMTEwLwYDVQQD
EyhhMjA0NDlkNTc3NDNkNzMzYWQ3NDUyODM4YmU4OTg3ZTc1NmU0MDk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjAw10uf02kZB05VOceH+g075Qx96
NBjHhg5d52Q5Ytv3R0VcnI/ej7OLe+WmbVYjUdqT/myFw3ZhIpSj6XyoTU2R9BsK
j3yxrYkNHuVC2zuVIlVj9bI9S640c7fsM+FGlhvoZVkZ93zsXOsIJIutuViPnH5o
dGSKz3aJRnXJUpeSr0A2OQso3KMWdBYszEegSkpkWifw5fZ9En2Y26Oxilb0Z/TJ
K8QvCUz5NVdGmiopjES3Os3IdCCGjjlhLqIUGc+Drwk9Fe+lqav9BHgc+82JBiRV
+TIOwjAHcPxhasX7cNEB7gfl05RhYTcL5lQpUlg2QDyfB/eGYNV+raK4ewIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKIESdV3Q9czrXRSg4vomH51bkCZMB8GA1UdIwQY
MBaAFPBx9NEZ0LdPtm43p++HjUSdVN3IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOEhIMDBSblF0MC0yYmplbjc0ZU5SSjFVM2NnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny82YTk2ODItMjAxYi00ZTAxLWJhMDkt
MDc0NzQ1MjRlZjlhLzEvOEhIMDBSblF0MC0yYmplbjc0ZU5SSjFVM2NnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny82YTk2ODItMjAxYi00ZTAxLWJhMDktMDc0NzQ1MjRlZjlh
LzEvOEhIMDBSblF0MC0yYmplbjc0ZU5SSjFVM2NnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcAt6CrH2
ENnNr+VHa4lQ5NzBUfhvyPGMT0vDpCAW6xzrv+nQ7y4CvcJJiR2ngKmlNT5fjuHb
SKSArnjKVWVC7/XNocAMYDI8ei7wcQwvrkHXJ7gdeO+Lb0DK7yhapjqTbxTyaWDf
DFNg+w7xJ4Bw882wVwVYMC3ta7WLIiI3y+vxz4ibq+U6T0W833c70rxt4Qh6cpvp
0lFAh2tyYBhpYsWFaVC3vl7FlusY99e18Nh5Y+v3n6rGJvGLzRPrcxfVpLF9DgiI
jSsy6y0jbTVnkMe6QgE8dK8c464x+H4fahDv9hoP9yEh5OU5eU8SV6PCYxN/mald
fozgcvez+8XRpg==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:45 2025 by rpki-client