Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
File: 3YpOHe5bseZXmxFhypEsqcA7Ru0.mft (raw, json)
Hash identifier: w0dnXieRqQkalVLg7nXh5KmPi+C+f8fOaXpEhs+9trw=
Subject key identifier: FE:E3:30:26:63:56:FD:A6:E0:60:C6:2F:9F:4F:1D:61:37:3A:0A:E3
Authority key identifier: DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED
Certificate issuer: /CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed
Certificate serial: 0195E15A0E547824A3002D9F6A09B1BCFB89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
Manifest number: 0E15
Signing time: Sat 29 Mar 2025 10:02:10 +0000
Manifest this update: Sat 29 Mar 2025 10:02:10 +0000
Manifest next update: Sun 30 Mar 2025 10:02:10 +0000
Files and hashes: 1: 1-hdiWMY5l0xAZuqxRKYMnls1-tQ.roa (hash: T86Jb9a9Ub4X+hYRFQtCytnDevJ3Vo4p0E2BCYldVL4=)
2: 3YpOHe5bseZXmxFhypEsqcA7Ru0.crl (hash: XiR6v+GpGXQHxytIj72xcvyP/mobDxbGvu+9mWuYS7o=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:5a:0e:54:78:24:a3:00:2d:9f:6a:09:b1:bc:fb:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd8a4e1dee5bb1e6579b1161ca912ca9c03b46ed
Validity
Not Before: Mar 29 10:02:10 2025 GMT
Not After : Mar 30 10:02:10 2025 GMT
Subject: CN=fee330266356fda6e060c62f9f4f1d61373a0ae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a1:53:1f:2e:57:38:ee:0e:5a:78:25:12:53:
2a:16:26:62:2c:64:df:f0:50:5c:f4:cd:ad:1e:e5:
cf:e2:18:17:2b:9c:b1:e0:d3:21:6e:43:0b:ff:ea:
35:ba:d3:e1:ba:aa:fa:7a:e0:cd:b4:58:f5:28:55:
49:ee:91:fa:d9:fb:4b:e0:d7:6b:41:98:cb:49:63:
c5:32:98:55:19:d1:e2:16:2a:84:0f:89:c7:05:c3:
8a:89:7d:53:53:3d:8e:f7:a0:54:6e:55:68:cd:0c:
9f:a4:2b:51:45:4c:48:37:10:4d:77:73:6e:73:4d:
0b:03:3d:c6:ef:3a:40:ef:b0:d4:60:56:28:c9:b8:
34:fe:38:75:fb:93:91:6d:72:86:9d:cd:92:83:bd:
f5:4c:99:7f:17:52:10:ba:6b:32:6e:b9:e2:52:52:
10:d4:5e:43:f5:c5:ee:70:30:a5:a1:a4:90:c5:e5:
a0:d9:9f:df:b0:75:34:e6:04:9f:2c:02:82:57:55:
e1:9e:29:2d:d7:67:c3:8e:04:57:f8:06:0b:12:13:
1b:d5:0e:ab:1b:bb:04:90:bb:ce:35:18:fc:e3:bc:
50:35:bc:fe:ed:4a:39:09:7c:a2:9b:e1:bc:82:54:
47:aa:82:ce:e0:6b:90:2c:6b:1b:e4:88:28:40:99:
19:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:E3:30:26:63:56:FD:A6:E0:60:C6:2F:9F:4F:1D:61:37:3A:0A:E3
X509v3 Authority Key Identifier:
keyid:DD:8A:4E:1D:EE:5B:B1:E6:57:9B:11:61:CA:91:2C:A9:C0:3B:46:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YpOHe5bseZXmxFhypEsqcA7Ru0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5d1908-6c4d-4581-8f10-985aac5beb30/1/3YpOHe5bseZXmxFhypEsqcA7Ru0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:7c:fb:45:22:22:2b:e0:e2:af:07:21:2e:4e:df:87:50:60:
55:d6:04:36:81:ef:5d:d8:c0:4c:4d:a8:f7:9a:86:49:70:bd:
db:b1:3d:8b:eb:01:80:7b:55:70:ce:ea:bd:d9:f5:e7:41:de:
f5:cb:47:94:fd:4a:51:bf:9e:c8:ef:14:b8:06:c1:d9:a3:58:
91:ab:67:67:ee:af:6f:6f:e7:31:5d:33:be:61:b0:02:71:ce:
7b:c7:1f:5d:ce:6a:5b:74:81:b8:98:26:41:1a:82:93:21:e7:
4d:07:62:71:fc:a9:ab:bf:98:09:ef:69:b4:bf:75:42:e3:16:
25:5d:bb:af:88:5d:96:68:d8:b5:d4:f0:34:ae:4c:05:d4:05:
b8:3c:d9:28:f7:58:72:40:b4:40:34:88:c0:1b:77:db:0c:5d:
47:ba:2a:09:d1:7d:15:53:b3:0e:c6:bf:8e:57:34:27:84:66:
d3:57:da:f3:94:95:0a:72:f0:1e:6d:b2:b8:c0:22:d3:df:ee:
fe:07:cf:3c:3a:ce:d0:55:64:7e:36:52:b5:1d:1d:6e:fe:1f:
d8:b7:d0:e5:a3:ad:8f:b6:60:30:5b:ac:1e:81:88:4e:d9:92:
17:22:3e:d9:5c:77:6f:62:75:20:0c:a4:1e:e5:8f:d4:17:1a:
62:7a:c8:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXhWg5UeCSjAC2fagmxvPuJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRkOGE0ZTFkZWU1YmIxZTY1NzliMTE2MWNhOTEyY2E5YzAz
YjQ2ZWQwHhcNMjUwMzI5MTAwMjEwWhcNMjUwMzMwMTAwMjEwWjAzMTEwLwYDVQQD
EyhmZWUzMzAyNjYzNTZmZGE2ZTA2MGM2MmY5ZjRmMWQ2MTM3M2EwYWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6FTHy5XOO4OWnglElMqFiZiLGTf
8FBc9M2tHuXP4hgXK5yx4NMhbkML/+o1utPhuqr6euDNtFj1KFVJ7pH62ftL4Ndr
QZjLSWPFMphVGdHiFiqED4nHBcOKiX1TUz2O96BUblVozQyfpCtRRUxINxBNd3Nu
c00LAz3G7zpA77DUYFYoybg0/jh1+5ORbXKGnc2Sg731TJl/F1IQumsybrniUlIQ
1F5D9cXucDCloaSQxeWg2Z/fsHU05gSfLAKCV1Xhnikt12fDjgRX+AYLEhMb1Q6r
G7sEkLvONRj847xQNbz+7Uo5CXyim+G8glRHqoLO4GuQLGsb5IgoQJkZywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP7jMCZjVv2m4GDGL59PHWE3OgrjMB8GA1UdIwQY
MBaAFN2KTh3uW7HmV5sRYcqRLKnAO0btMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM1lwT0hlNWJzZVpYbXhGaHlwRXNxY0E3UnUwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS81ZDE5MDgtNmM0ZC00NTgxLThmMTAt
OTg1YWFjNWJlYjMwLzEvM1lwT0hlNWJzZVpYbXhGaHlwRXNxY0E3UnUwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS81ZDE5MDgtNmM0ZC00NTgxLThmMTAtOTg1YWFjNWJlYjMw
LzEvM1lwT0hlNWJzZVpYbXhGaHlwRXNxY0E3UnUwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoHz7RSIi
K+DirwchLk7fh1BgVdYENoHvXdjATE2o95qGSXC927E9i+sBgHtVcM7qvdn150He
9ctHlP1KUb+eyO8UuAbB2aNYkatnZ+6vb2/nMV0zvmGwAnHOe8cfXc5qW3SBuJgm
QRqCkyHnTQdicfypq7+YCe9ptL91QuMWJV27r4hdlmjYtdTwNK5MBdQFuDzZKPdY
ckC0QDSIwBt32wxdR7oqCdF9FVOzDsa/jlc0J4Rm01fa85SVCnLwHm2yuMAi09/u
/gfPPDrO0FVkfjZStR0dbv4f2LfQ5aOtj7ZgMFusHoGITtmSFyI+2Vx3b2J1IAyk
HuWP1BcaYnrI9Q==
-----END CERTIFICATE-----
Generated at Wed Apr 9 23:50:44 2025 by rpki-client