Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
File: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft (raw, json)
Hash identifier: MXipKIsJQrXkHOtiWdoXgz81O+znFLfYVC1Q+0Y02uI=
Subject key identifier: 12:33:77:D3:D2:12:6C:8E:56:66:A3:E4:DC:48:F1:84:4A:E7:80:60
Authority key identifier: E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2
Certificate issuer: /CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
Certificate serial: 0195DFD9028B476D83A5FCC1AEA56658CB0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
Manifest number: 1402
Signing time: Sat 29 Mar 2025 03:01:35 +0000
Manifest this update: Sat 29 Mar 2025 03:01:35 +0000
Manifest next update: Sun 30 Mar 2025 03:01:35 +0000
Files and hashes: 1: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl (hash: ErERoZD+aL419QKWixF6ns1zcjNwnIIfH1t8IZjcYwc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:d9:02:8b:47:6d:83:a5:fc:c1:ae:a5:66:58:cb:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2
Validity
Not Before: Mar 29 03:01:35 2025 GMT
Not After : Mar 30 03:01:35 2025 GMT
Subject: CN=123377d3d2126c8e5666a3e4dc48f1844ae78060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:64:98:12:75:1a:7c:5f:f7:01:23:bb:60:81:
d4:4c:64:89:b1:b8:a1:6f:58:c0:e4:87:eb:49:b7:
08:ed:97:14:07:c0:d9:c5:b1:b1:3f:af:b6:cd:0b:
ac:62:e2:80:e5:7d:c0:4d:be:fc:10:28:ce:f0:7c:
00:e6:76:a6:fd:f0:86:06:ef:f0:a4:81:64:81:a4:
97:25:0b:5c:4f:46:1b:f6:01:67:87:cf:36:9b:1f:
d8:f1:83:91:c5:1a:47:7d:e9:69:83:4e:67:4d:65:
59:f1:ea:92:66:0e:fc:7c:cf:1a:72:38:df:59:10:
f5:c8:c8:8c:76:c1:e0:11:cf:b2:25:42:0d:c5:90:
53:e3:45:a6:d9:87:bd:8b:72:89:28:03:43:23:d9:
5f:9b:6c:75:09:88:1e:bd:f9:1f:9d:e4:ca:fa:60:
d2:32:33:44:97:19:7e:f8:af:63:01:67:5a:5b:d6:
c5:c8:5a:f4:20:7a:5a:39:b1:e8:5b:72:ad:6f:10:
e4:eb:f1:a7:a3:9d:50:14:8e:45:55:74:01:02:d0:
e1:44:3f:7f:c8:40:52:53:74:c0:cc:77:fc:7e:64:
b0:a0:6b:7c:31:8c:17:48:26:d2:08:94:46:cd:1a:
cc:c1:1f:5c:1e:7b:eb:4a:2e:9f:83:be:58:c8:12:
0f:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:33:77:D3:D2:12:6C:8E:56:66:A3:E4:DC:48:F1:84:4A:E7:80:60
X509v3 Authority Key Identifier:
keyid:E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:3e:63:f0:f7:ec:0d:5f:02:97:a0:12:81:13:e9:7d:a7:92:
34:9f:24:61:b1:66:86:2f:78:63:97:4f:67:98:52:8c:af:ff:
2a:92:aa:53:27:4b:2c:e2:c5:58:1c:46:35:89:87:c2:3c:f5:
89:8a:a0:18:2a:d1:ed:76:33:83:7a:cc:ec:1b:ea:9e:23:4d:
4b:ac:34:78:6e:ce:7c:82:5e:89:49:9e:dc:7a:71:a9:3d:15:
f7:c3:f2:c0:00:93:27:e1:4a:05:46:ff:7d:bb:86:33:fb:90:
d0:0c:08:71:e7:61:24:83:de:68:f0:b3:49:83:55:63:a1:47:
ca:4c:90:c3:98:21:48:e0:d7:14:6a:61:9e:5f:50:9d:8f:ef:
5b:74:bf:40:c7:d8:49:3b:c8:46:14:70:fd:91:83:5f:76:6d:
e7:13:d9:4a:f3:16:da:a0:25:91:16:57:3b:89:6a:85:96:d4:
90:f8:f7:25:2c:2d:54:93:ea:b2:6a:f8:1c:07:08:e7:80:8a:
ed:7f:c4:cc:19:75:38:33:c3:00:e1:44:21:43:a2:49:7f:84:
c9:7a:ea:91:80:9d:ee:8c:d5:ca:72:4b:e9:f7:0a:c5:df:a2:
7c:12:fe:12:53:9c:28:2f:c2:99:4e:80:20:85:f7:c4:10:ad:
7f:bf:7e:c2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXf2QKLR22DpfzBrqVmWMsLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0ZDA5ZThlZjE3MWU5YWUyMTYyN2NjYTc2ZWQ2NGZkMTdl
NmVlZDIwHhcNMjUwMzI5MDMwMTM1WhcNMjUwMzMwMDMwMTM1WjAzMTEwLwYDVQQD
EygxMjMzNzdkM2QyMTI2YzhlNTY2NmEzZTRkYzQ4ZjE4NDRhZTc4MDYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGSYEnUafF/3ASO7YIHUTGSJsbih
b1jA5IfrSbcI7ZcUB8DZxbGxP6+2zQusYuKA5X3ATb78ECjO8HwA5nam/fCGBu/w
pIFkgaSXJQtcT0Yb9gFnh882mx/Y8YORxRpHfelpg05nTWVZ8eqSZg78fM8acjjf
WRD1yMiMdsHgEc+yJUINxZBT40Wm2Ye9i3KJKANDI9lfm2x1CYgevfkfneTK+mDS
MjNElxl++K9jAWdaW9bFyFr0IHpaObHoW3KtbxDk6/Gno51QFI5FVXQBAtDhRD9/
yEBSU3TAzHf8fmSwoGt8MYwXSCbSCJRGzRrMwR9cHnvrSi6fg75YyBIP5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBIzd9PSEmyOVmaj5NxI8YRK54BgMB8GA1UdIwQY
MBaAFOTQno7xcemuIWJ8ynbtZP0X5u7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNU5DZWp2Rng2YTRoWW56S2R1MWtfUmZtN3RJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84Yzg4MTEtMDFjNi00N2MyLWI1ZjAt
M2MxNjI0MTAwNzUyLzEvNU5DZWp2Rng2YTRoWW56S2R1MWtfUmZtN3RJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC84Yzg4MTEtMDFjNi00N2MyLWI1ZjAtM2MxNjI0MTAwNzUy
LzEvNU5DZWp2Rng2YTRoWW56S2R1MWtfUmZtN3RJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAET5j8Pfs
DV8Cl6ASgRPpfaeSNJ8kYbFmhi94Y5dPZ5hSjK//KpKqUydLLOLFWBxGNYmHwjz1
iYqgGCrR7XYzg3rM7BvqniNNS6w0eG7OfIJeiUme3HpxqT0V98PywACTJ+FKBUb/
fbuGM/uQ0AwIcedhJIPeaPCzSYNVY6FHykyQw5ghSODXFGphnl9QnY/vW3S/QMfY
STvIRhRw/ZGDX3Zt5xPZSvMW2qAlkRZXO4lqhZbUkPj3JSwtVJPqsmr4HAcI54CK
7X/EzBl1ODPDAOFEIUOiSX+EyXrqkYCd7ozVynJL6fcKxd+ifBL+ElOcKC/CmU6A
IIX3xBCtf79+wg==
-----END CERTIFICATE-----
Generated at Mon Apr 7 18:20:43 2025 by rpki-client