Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
File: ib1U59acFH1rVvjGognT3q6id90.mft (raw, json)
Hash identifier: sgyIc8BJ70vY+pXwo1PMAF8YVoLxMQj6SnNJlyCc830=
Subject key identifier: C5:A0:D8:5F:FE:95:4B:AC:00:7E:06:73:02:74:5F:FB:04:9F:43:7D
Authority key identifier: 89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD
Certificate issuer: /CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd
Certificate serial: 0195E0EB651BA31E11D454E013524B7A89C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
Manifest number: 0F6F
Signing time: Sat 29 Mar 2025 08:01:17 +0000
Manifest this update: Sat 29 Mar 2025 08:01:17 +0000
Manifest next update: Sun 30 Mar 2025 08:01:17 +0000
Files and hashes: 1: 3TtQeJqIixTVaSWBRgJKRyJiMtM.roa (hash: +aaxMIBwckBc+5Nn6sLOaOsjDThvNfT/bDobAmTCJB8=)
2: 8GtdV5vXVwAD_7uzLpWTP9X8Eis.roa (hash: va61wvJzxODdeX2y1RUDtdwQklO+DI+rxflcf0q3NHg=)
3: ib1U59acFH1rVvjGognT3q6id90.crl (hash: QCnsLzmrTDsD/ppbsVh00EfDP60xg3HY6xLgVqzv8fU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:eb:65:1b:a3:1e:11:d4:54:e0:13:52:4b:7a:89:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89bd54e7d69c147d6b56f8c6a209d3deaea277dd
Validity
Not Before: Mar 29 08:01:17 2025 GMT
Not After : Mar 30 08:01:17 2025 GMT
Subject: CN=c5a0d85ffe954bac007e067302745ffb049f437d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:93:6c:c8:f8:eb:41:94:70:0c:7a:70:67:80:
a7:f7:e1:b1:b4:da:5e:b2:ea:21:52:52:14:44:0d:
da:a0:80:b2:5e:77:6e:f9:b1:3f:9b:68:8d:2f:0f:
0b:59:6f:8a:d6:4d:19:18:3d:ce:e1:21:cc:d4:1b:
00:1e:c9:9b:9a:20:de:b1:63:ab:49:ba:92:29:04:
c5:0a:af:45:e1:0c:c0:3e:52:59:b3:14:6d:59:31:
ab:b9:8f:de:22:ed:5f:d9:cd:51:d7:69:c1:36:30:
85:61:4e:39:53:15:73:71:14:33:dc:75:bf:20:8e:
d0:ac:08:28:e8:f4:02:0c:00:2d:d5:d8:46:eb:db:
2f:b9:d9:1d:c8:04:3c:e7:91:37:52:8d:5d:6b:db:
e8:b1:37:2c:7f:2f:50:95:a7:cb:6b:1a:51:14:78:
84:a9:14:cb:e8:2f:c3:ef:b0:71:31:9f:43:9b:26:
ec:9b:d7:c0:b5:b5:12:fb:94:39:e2:c6:ab:62:10:
1d:79:51:0c:31:e0:36:9f:53:50:bc:a9:b1:ed:46:
43:7b:ec:4b:9b:11:95:65:98:d4:74:15:8e:c6:f2:
55:09:2f:a1:2b:8e:48:95:3f:32:c9:fa:c2:74:31:
d1:51:d8:03:5a:8f:73:db:95:88:5f:45:92:c6:14:
3e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:A0:D8:5F:FE:95:4B:AC:00:7E:06:73:02:74:5F:FB:04:9F:43:7D
X509v3 Authority Key Identifier:
keyid:89:BD:54:E7:D6:9C:14:7D:6B:56:F8:C6:A2:09:D3:DE:AE:A2:77:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ib1U59acFH1rVvjGognT3q6id90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d800be-4acf-49f2-969d-db227c496804/1/ib1U59acFH1rVvjGognT3q6id90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:fd:fa:3a:af:9a:3a:83:d8:52:e3:be:40:5d:a9:58:85:95:
2e:c4:b9:c5:1e:d4:ed:6e:77:9a:e3:94:12:21:e3:08:45:e2:
5c:82:40:d5:5f:74:5f:5c:5d:5d:ff:ad:ff:59:dc:37:f1:8c:
e5:ca:8e:3c:f2:f4:6d:6a:24:b1:94:2c:62:c8:46:8a:bd:f0:
3d:c4:44:44:88:aa:92:1f:7c:a6:b3:36:b9:83:32:7a:e4:29:
96:5d:5d:cc:cf:eb:08:8c:98:11:e8:42:dd:f1:89:57:90:73:
e7:cd:01:18:c0:41:25:8d:fb:12:dc:cd:15:35:60:2e:23:1a:
48:88:1d:9d:04:49:b2:c7:9a:d3:da:58:ed:7f:83:e0:74:aa:
dc:bc:d8:1c:cf:24:1e:0d:32:4a:be:62:81:af:f3:2b:59:2c:
45:90:a9:53:c3:09:b6:38:db:b8:82:57:48:30:6e:2c:f6:7f:
6c:7c:2e:d1:b5:92:30:9e:8d:fd:2d:cd:5c:98:35:67:2d:b8:
a7:45:9f:80:63:46:17:cd:86:d9:88:21:22:25:1a:a7:41:29:
ce:37:31:65:cc:49:cc:4c:bd:6a:ca:04:26:91:9a:4e:f8:76:
0f:ef:37:22:a2:2d:69:09:63:98:0f:91:a9:4a:d0:34:51:8a:
53:8e:0d:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXg62Ubox4R1FTgE1JLeonIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg5YmQ1NGU3ZDY5YzE0N2Q2YjU2ZjhjNmEyMDlkM2RlYWVh
Mjc3ZGQwHhcNMjUwMzI5MDgwMTE3WhcNMjUwMzMwMDgwMTE3WjAzMTEwLwYDVQQD
EyhjNWEwZDg1ZmZlOTU0YmFjMDA3ZTA2NzMwMjc0NWZmYjA0OWY0MzdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypNsyPjrQZRwDHpwZ4Cn9+GxtNpe
suohUlIURA3aoICyXndu+bE/m2iNLw8LWW+K1k0ZGD3O4SHM1BsAHsmbmiDesWOr
SbqSKQTFCq9F4QzAPlJZsxRtWTGruY/eIu1f2c1R12nBNjCFYU45UxVzcRQz3HW/
II7QrAgo6PQCDAAt1dhG69svudkdyAQ855E3Uo1da9vosTcsfy9QlafLaxpRFHiE
qRTL6C/D77BxMZ9Dmybsm9fAtbUS+5Q54sarYhAdeVEMMeA2n1NQvKmx7UZDe+xL
mxGVZZjUdBWOxvJVCS+hK45IlT8yyfrCdDHRUdgDWo9z25WIX0WSxhQ+LwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMWg2F/+lUusAH4GcwJ0X/sEn0N9MB8GA1UdIwQY
MBaAFIm9VOfWnBR9a1b4xqIJ096uonfdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWIxVTU5YWNGSDFyVnZqR29nblQzcTZpZDkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS9kODAwYmUtNGFjZi00OWYyLTk2OWQt
ZGIyMjdjNDk2ODA0LzEvaWIxVTU5YWNGSDFyVnZqR29nblQzcTZpZDkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83ZS9kODAwYmUtNGFjZi00OWYyLTk2OWQtZGIyMjdjNDk2ODA0
LzEvaWIxVTU5YWNGSDFyVnZqR29nblQzcTZpZDkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjP36Oq+a
OoPYUuO+QF2pWIWVLsS5xR7U7W53muOUEiHjCEXiXIJA1V90X1xdXf+t/1ncN/GM
5cqOPPL0bWoksZQsYshGir3wPcRERIiqkh98prM2uYMyeuQpll1dzM/rCIyYEehC
3fGJV5Bz580BGMBBJY37EtzNFTVgLiMaSIgdnQRJssea09pY7X+D4HSq3LzYHM8k
Hg0ySr5iga/zK1ksRZCpU8MJtjjbuIJXSDBuLPZ/bHwu0bWSMJ6N/S3NXJg1Zy24
p0WfgGNGF82G2YghIiUap0EpzjcxZcxJzEy9asoEJpGaTvh2D+83IqItaQljmA+R
qUrQNFGKU44NqQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:24:32 2025 by rpki-client