Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
File: 7pzNOKXWSWiAvAlHBuaPoE-izZY.mft (raw, json)
Hash identifier: S7BIj+R1+a5C8rlRNOPmOe7CN7xtQvn4dx11G5uK0Go=
Subject key identifier: 31:14:8B:BD:18:60:D2:D0:9D:13:23:9D:4C:38:C0:AA:00:E6:0E:85
Authority key identifier: EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96
Certificate issuer: /CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96
Certificate serial: 0195E1590E21CA89171B21DDE6C8E1C46180
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
Manifest number: 7D
Signing time: Sat 29 Mar 2025 10:01:04 +0000
Manifest this update: Sat 29 Mar 2025 10:01:04 +0000
Manifest next update: Sun 30 Mar 2025 10:01:04 +0000
Files and hashes: 1: 7pzNOKXWSWiAvAlHBuaPoE-izZY.crl (hash: B+97YGKoslJ1u7UiqsWmUB6BzRzTXaY042765U8Jp/Q=)
2: QSjkZq8_AJ0B8g7dlzd0nA4JsWQ.roa (hash: YMcvfk9S0D5BI+lBDXlsaUm2v/yIEV2HtkKOAQ1Y0Xo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:0e:21:ca:89:17:1b:21:dd:e6:c8:e1:c4:61:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee9ccd38a5d6496880bc094706e68fa04fa2cd96
Validity
Not Before: Mar 29 10:01:04 2025 GMT
Not After : Mar 30 10:01:04 2025 GMT
Subject: CN=31148bbd1860d2d09d13239d4c38c0aa00e60e85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:06:16:78:5c:62:cd:cb:cc:af:0f:8f:7b:d3:
94:3e:55:61:87:4e:c7:94:d0:b6:a2:1a:aa:88:13:
93:73:c5:29:49:ff:e3:8c:fc:7c:a4:7c:61:2a:10:
a1:2c:49:61:ee:7c:fc:72:7a:c4:7b:33:5a:c7:a4:
70:1a:e0:90:00:8d:45:71:9c:01:a0:8d:70:52:1e:
fc:10:93:45:20:37:48:17:92:c0:ee:c9:45:48:2d:
60:42:db:55:e8:0c:d0:4a:67:cf:7a:be:60:14:39:
a0:91:1f:d4:9e:57:9f:64:fb:be:6c:0e:c3:44:c9:
3a:64:f7:c5:0a:b2:47:cf:55:78:c3:3a:d0:2d:08:
2b:e7:1c:bc:b7:62:ff:4f:e9:ec:c8:1b:91:8f:97:
0c:30:69:e3:da:fe:3d:c0:1a:86:03:01:9b:f6:f1:
4c:4e:d6:51:38:9c:f3:d2:83:a9:fd:2e:3c:79:46:
55:d8:c0:20:3d:3a:aa:5e:69:bd:25:f8:d3:9f:2a:
47:f5:60:ad:1c:3d:51:36:f9:ea:eb:f3:b0:44:f3:
4a:d1:93:17:c4:a2:85:ea:20:a2:9f:62:16:9e:12:
51:e1:37:45:02:27:47:52:a4:13:69:b4:85:9c:b6:
3f:cc:5b:d4:23:6e:79:08:1f:7e:38:52:fc:5f:79:
37:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:14:8B:BD:18:60:D2:D0:9D:13:23:9D:4C:38:C0:AA:00:E6:0E:85
X509v3 Authority Key Identifier:
keyid:EE:9C:CD:38:A5:D6:49:68:80:BC:09:47:06:E6:8F:A0:4F:A2:CD:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7pzNOKXWSWiAvAlHBuaPoE-izZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/15f95c-b0b6-4522-8ea0-55beafa4bb29/1/7pzNOKXWSWiAvAlHBuaPoE-izZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:57:d7:88:33:7c:f8:5a:a1:a2:60:f7:db:ae:cc:d9:84:bc:
f5:51:1e:df:18:eb:73:40:cf:d6:ff:af:46:d2:c3:7b:5a:fa:
2e:90:16:d9:b7:3b:a5:13:f7:a3:cf:11:3d:fe:5a:f8:59:e1:
dd:3f:b5:11:b7:ce:14:94:e4:66:a9:52:09:84:55:79:6a:fe:
96:33:ef:ff:d9:ad:fa:03:9b:73:f6:8c:53:55:9c:98:db:22:
f5:5b:c0:4c:91:9f:86:e9:40:68:dd:87:e0:aa:ee:45:81:55:
f4:68:1c:c7:af:c8:09:27:ba:aa:e2:78:26:c4:08:16:72:eb:
84:e5:49:db:5d:54:7d:4e:d9:f6:0a:ab:77:b0:a4:8c:d7:75:
8a:d0:65:08:2e:83:0d:68:2b:e5:e5:41:54:7b:fb:a4:52:50:
aa:fb:60:6e:19:7a:cb:7f:87:7d:a0:47:5f:c3:62:83:47:4c:
85:8d:b2:ea:44:bb:32:86:54:95:65:fc:da:40:1e:16:0b:17:
55:1b:c3:be:08:d7:59:e8:2f:08:21:fa:ed:1a:9d:96:14:9d:
7c:ed:a0:6c:42:43:9d:83:8e:63:6d:8c:92:90:ce:bf:b3:91:
0a:1a:83:f7:74:46:e5:c1:6a:74:08:9c:7d:70:0e:88:b3:26:
37:c7:ad:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXhWQ4hyokXGyHd5sjhxGGAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVlOWNjZDM4YTVkNjQ5Njg4MGJjMDk0NzA2ZTY4ZmEwNGZh
MmNkOTYwHhcNMjUwMzI5MTAwMTA0WhcNMjUwMzMwMTAwMTA0WjAzMTEwLwYDVQQD
EygzMTE0OGJiZDE4NjBkMmQwOWQxMzIzOWQ0YzM4YzBhYTAwZTYwZTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlAYWeFxizcvMrw+Pe9OUPlVhh07H
lNC2ohqqiBOTc8UpSf/jjPx8pHxhKhChLElh7nz8cnrEezNax6RwGuCQAI1FcZwB
oI1wUh78EJNFIDdIF5LA7slFSC1gQttV6AzQSmfPer5gFDmgkR/UnlefZPu+bA7D
RMk6ZPfFCrJHz1V4wzrQLQgr5xy8t2L/T+nsyBuRj5cMMGnj2v49wBqGAwGb9vFM
TtZROJzz0oOp/S48eUZV2MAgPTqqXmm9JfjTnypH9WCtHD1RNvnq6/OwRPNK0ZMX
xKKF6iCin2IWnhJR4TdFAidHUqQTabSFnLY/zFvUI255CB9+OFL8X3k3fwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDEUi70YYNLQnRMjnUw4wKoA5g6FMB8GA1UdIwQY
MBaAFO6czTil1klogLwJRwbmj6BPos2WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN3B6Tk9LWFdTV2lBdkFsSEJ1YVBvRS1pelpZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8xNWY5NWMtYjBiNi00NTIyLThlYTAt
NTViZWFmYTRiYjI5LzEvN3B6Tk9LWFdTV2lBdkFsSEJ1YVBvRS1pelpZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8xNWY5NWMtYjBiNi00NTIyLThlYTAtNTViZWFmYTRiYjI5
LzEvN3B6Tk9LWFdTV2lBdkFsSEJ1YVBvRS1pelpZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACVfXiDN8
+FqhomD3267M2YS89VEe3xjrc0DP1v+vRtLDe1r6LpAW2bc7pRP3o88RPf5a+Fnh
3T+1EbfOFJTkZqlSCYRVeWr+ljPv/9mt+gObc/aMU1WcmNsi9VvATJGfhulAaN2H
4KruRYFV9Ggcx6/ICSe6quJ4JsQIFnLrhOVJ211UfU7Z9gqrd7CkjNd1itBlCC6D
DWgr5eVBVHv7pFJQqvtgbhl6y3+HfaBHX8Nig0dMhY2y6kS7MoZUlWX82kAeFgsX
VRvDvgjXWegvCCH67RqdlhSdfO2gbEJDnYOOY22MkpDOv7ORChqD93RG5cFqdAic
fXAOiLMmN8etFA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:51:18 2025 by rpki-client