Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
File: j32Qq83eC8bwvKryHOw6TyrPrk8.mft (raw, json)
Hash identifier: AIzc9PM+j9H5+8CaI4/HSjfGcFDzysv+i557b+wLxvw=
Subject key identifier: A6:7B:FE:25:42:94:BE:99:68:EA:10:4B:3A:1F:2F:68:FF:5D:C0:5D
Authority key identifier: 8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
Certificate issuer: /CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Certificate serial: 0195E00F8F41F4344FA5C358659A2AFF9D9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
Manifest number: 14C9
Signing time: Sat 29 Mar 2025 04:01:10 +0000
Manifest this update: Sat 29 Mar 2025 04:01:10 +0000
Manifest next update: Sun 30 Mar 2025 04:01:10 +0000
Files and hashes: 1: Ha4iqiemRVs4K0apcX26aGgxEQM.roa (hash: Y9w0WT6CR9hlG1wNToGxOj1Wt0I5gYiZH++6mqrNiy0=)
2: j32Qq83eC8bwvKryHOw6TyrPrk8.crl (hash: 0vf4l9KdRduC0fzEsduumw02XkbBTzm7tpGlkV5CCpk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:0f:8f:41:f4:34:4f:a5:c3:58:65:9a:2a:ff:9d:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f7d90abcdde0bc6f0bcaaf21cec3a4f2acfae4f
Validity
Not Before: Mar 29 04:01:10 2025 GMT
Not After : Mar 30 04:01:10 2025 GMT
Subject: CN=a67bfe254294be9968ea104b3a1f2f68ff5dc05d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:97:cc:20:7e:c9:00:14:79:67:8d:17:59:d8:
29:64:7b:f9:48:80:6f:ec:82:9a:b4:bc:95:8b:63:
e7:a6:9a:92:64:c4:21:c5:c1:9e:a3:39:78:5f:da:
5c:89:16:96:98:d4:26:41:01:d3:79:07:bd:d7:fd:
db:c2:26:b9:49:fa:9b:0f:07:70:72:21:dd:cb:e1:
4c:1c:8d:1d:d7:d6:04:b2:5f:52:89:38:97:8e:8b:
fe:2e:c4:91:20:82:1e:59:ce:ae:07:e3:3d:ae:04:
76:7d:c8:b5:b8:16:67:90:d3:99:9c:af:a5:54:7e:
f1:f6:f7:54:58:20:63:fb:e4:47:e1:e0:d9:a8:94:
e5:0f:3c:19:44:c6:2e:4c:c0:f0:70:7c:dc:f8:0c:
f1:3f:8b:3e:24:be:cd:e2:b2:39:a1:e1:ad:da:4e:
39:67:a6:c3:f1:23:67:dd:b6:ee:d4:9e:67:d4:b8:
1e:ad:24:57:b0:c4:25:07:f3:71:1c:ab:ef:47:0f:
77:66:d1:07:7c:59:f4:93:2c:5f:75:8b:73:b3:e0:
35:18:25:93:aa:a7:b2:be:f0:b0:e9:08:b0:ec:cd:
53:b9:a6:cc:a2:a8:be:7a:db:ac:9c:e6:8b:cc:f6:
3b:4e:98:ea:9c:5e:f4:f8:2b:b3:63:c4:b8:06:c9:
c2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:7B:FE:25:42:94:BE:99:68:EA:10:4B:3A:1F:2F:68:FF:5D:C0:5D
X509v3 Authority Key Identifier:
keyid:8F:7D:90:AB:CD:DE:0B:C6:F0:BC:AA:F2:1C:EC:3A:4F:2A:CF:AE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j32Qq83eC8bwvKryHOw6TyrPrk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/30b0bb-898c-4289-9124-37e32eaa7667/1/j32Qq83eC8bwvKryHOw6TyrPrk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:01:13:9f:4e:99:18:2d:af:f0:4d:2f:97:35:84:ec:33:21:
a9:66:5a:df:93:82:45:c9:bd:f0:57:2e:ff:c2:f3:1a:57:02:
86:21:d7:1a:ee:1e:3a:df:f9:f5:7f:6b:51:be:6b:5e:fe:bf:
bd:34:d5:b5:36:55:f9:d4:67:c9:04:c6:17:69:ff:52:da:00:
05:59:b6:6d:31:7f:a8:e8:2d:ff:87:cd:2c:80:c9:51:9b:50:
38:4b:14:1e:42:b1:41:2a:0d:b6:1f:54:6a:f9:70:dc:b8:35:
70:0a:20:4d:d4:62:10:2d:86:bf:17:50:79:69:20:e1:5a:b1:
36:f2:63:55:07:d5:42:63:be:4a:2a:4c:7b:df:13:85:56:1d:
69:87:5f:18:cf:8d:82:97:74:72:26:42:9e:54:f4:81:d1:b0:
5d:c0:1e:89:0c:46:af:15:1f:9c:5a:ba:95:7b:82:01:1e:22:
08:5f:3d:7c:c4:88:97:9c:85:67:70:36:42:73:a6:c6:3b:17:
8c:4c:a5:85:1c:e4:ff:f1:4d:b4:ca:a8:94:bb:2d:e0:62:7b:
87:d3:96:2c:98:e5:b0:3c:b4:35:ec:d4:da:b1:06:da:f9:d9:
16:4e:49:85:b8:0f:40:bc:03:e9:e4:12:10:77:6b:d8:7c:f5:
c9:18:32:d6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXgD49B9DRPpcNYZZoq/52aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmN2Q5MGFiY2RkZTBiYzZmMGJjYWFmMjFjZWMzYTRmMmFj
ZmFlNGYwHhcNMjUwMzI5MDQwMTEwWhcNMjUwMzMwMDQwMTEwWjAzMTEwLwYDVQQD
EyhhNjdiZmUyNTQyOTRiZTk5NjhlYTEwNGIzYTFmMmY2OGZmNWRjMDVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjZfMIH7JABR5Z40XWdgpZHv5SIBv
7IKatLyVi2PnppqSZMQhxcGeozl4X9pciRaWmNQmQQHTeQe91/3bwia5SfqbDwdw
ciHdy+FMHI0d19YEsl9SiTiXjov+LsSRIIIeWc6uB+M9rgR2fci1uBZnkNOZnK+l
VH7x9vdUWCBj++RH4eDZqJTlDzwZRMYuTMDwcHzc+AzxP4s+JL7N4rI5oeGt2k45
Z6bD8SNn3bbu1J5n1LgerSRXsMQlB/NxHKvvRw93ZtEHfFn0kyxfdYtzs+A1GCWT
qqeyvvCw6Qiw7M1TuabMoqi+etusnOaLzPY7TpjqnF70+CuzY8S4BsnCswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKZ7/iVClL6ZaOoQSzofL2j/XcBdMB8GA1UdIwQY
MBaAFI99kKvN3gvG8Lyq8hzsOk8qz65PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvajMyUXE4M2VDOGJ3dktyeUhPdzZUeXJQcms4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS8zMGIwYmItODk4Yy00Mjg5LTkxMjQt
MzdlMzJlYWE3NjY3LzEvajMyUXE4M2VDOGJ3dktyeUhPdzZUeXJQcms4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS8zMGIwYmItODk4Yy00Mjg5LTkxMjQtMzdlMzJlYWE3NjY3
LzEvajMyUXE4M2VDOGJ3dktyeUhPdzZUeXJQcms4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAugETn06Z
GC2v8E0vlzWE7DMhqWZa35OCRcm98Fcu/8LzGlcChiHXGu4eOt/59X9rUb5rXv6/
vTTVtTZV+dRnyQTGF2n/UtoABVm2bTF/qOgt/4fNLIDJUZtQOEsUHkKxQSoNth9U
avlw3Lg1cAogTdRiEC2GvxdQeWkg4VqxNvJjVQfVQmO+SipMe98ThVYdaYdfGM+N
gpd0ciZCnlT0gdGwXcAeiQxGrxUfnFq6lXuCAR4iCF89fMSIl5yFZ3A2QnOmxjsX
jEylhRzk//FNtMqolLst4GJ7h9OWLJjlsDy0NezU2rEG2vnZFk5JhbgPQLwD6eQS
EHdr2Hz1yRgy1g==
-----END CERTIFICATE-----
Generated at Mon Apr 7 18:42:41 2025 by rpki-client