Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft
File: Kfp91j8uLYe194UAk8dDu_vhTkQ.mft (raw, json)
Hash identifier: y56DIFu9aq9kW9gnlO15jsmZ4PDuraBzEEi98cTlGMY=
Subject key identifier: B1:E4:EE:82:91:79:25:7B:E9:CD:6A:A6:00:88:B6:5C:39:4D:64:83
Authority key identifier: 29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44
Certificate issuer: /CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44
Certificate serial: 0195E122044A26506E8776EC74CDA2E4B419
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft
Manifest number: 036B
Signing time: Sat 29 Mar 2025 09:00:57 +0000
Manifest this update: Sat 29 Mar 2025 09:00:57 +0000
Manifest next update: Sun 30 Mar 2025 09:00:57 +0000
Files and hashes: 1: 9BLDEYYfsffNxOST_G3WnWk3RLA.roa (hash: MbxghGhOd7fIdjWxFjFEtI5ZuPSJHWi+9N5XupuxNmk=)
2: Kfp91j8uLYe194UAk8dDu_vhTkQ.crl (hash: xZ436sQu750qe1Dqo0NnOWQV0qZMyrr5NNnjqlConlE=)
3: b-fZU063IRXBr0_njPWLHik1IME.roa (hash: QnZY9irbc3BhKzjR2VvGlYqWf/DBrKHZfstPePWZwRA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:22:04:4a:26:50:6e:87:76:ec:74:cd:a2:e4:b4:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29fa7dd63f2e2d87b5f7850093c743bbfbe14e44
Validity
Not Before: Mar 29 09:00:57 2025 GMT
Not After : Mar 30 09:00:57 2025 GMT
Subject: CN=b1e4ee829179257be9cd6aa60088b65c394d6483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:3c:52:ad:67:28:89:e6:69:a6:41:b9:da:6b:
84:45:9b:9f:04:63:f4:aa:31:f5:2a:9f:d0:85:f7:
d7:25:b8:85:af:67:83:66:2d:d0:9a:8e:f2:fa:aa:
d9:b2:25:4c:45:c9:f5:c8:34:ee:c9:ff:21:c9:64:
ee:80:98:7a:a0:96:74:6c:8a:28:c8:fd:1a:7d:92:
e2:6c:41:8c:33:02:10:03:8a:df:59:f3:5d:12:5c:
03:68:e4:4a:19:de:b3:5e:98:43:dc:7f:86:00:d7:
2f:a9:fb:ab:50:11:9c:e8:f4:84:9d:23:41:fa:90:
25:e0:17:78:26:c2:c4:65:00:33:42:dd:2a:f6:d5:
d0:07:d9:ff:2b:ea:b4:60:4c:08:01:2b:9e:35:9c:
4c:46:59:25:d5:29:b7:8c:a5:18:97:61:e3:f3:96:
a4:b8:b2:c5:eb:81:90:ce:e3:a5:f3:7e:0d:2b:e0:
32:1d:d2:8d:d1:a9:80:28:0e:df:33:6f:e4:13:82:
8c:85:5e:06:50:58:3e:2e:40:8c:39:32:47:29:99:
c6:78:01:dd:71:21:89:71:52:4e:91:4b:46:ea:e8:
8b:9a:59:2c:47:47:83:50:81:39:94:da:da:fd:dd:
54:64:2d:c6:2f:78:3a:0d:94:a1:43:7b:1a:de:50:
eb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:E4:EE:82:91:79:25:7B:E9:CD:6A:A6:00:88:B6:5C:39:4D:64:83
X509v3 Authority Key Identifier:
keyid:29:FA:7D:D6:3F:2E:2D:87:B5:F7:85:00:93:C7:43:BB:FB:E1:4E:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kfp91j8uLYe194UAk8dDu_vhTkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/2c0cbf-11f7-4b6d-b88e-79f7b6ea7c14/1/Kfp91j8uLYe194UAk8dDu_vhTkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:82:0d:dc:4d:e7:0e:5f:9c:6a:70:18:dc:a9:e0:9e:3b:5d:
b1:03:a2:15:02:23:b2:48:25:a1:75:0c:33:f9:a6:a3:7d:92:
2e:d2:5b:6a:4e:46:18:e4:28:42:6b:1f:1c:a8:24:9b:1e:84:
f7:91:54:98:2f:05:be:e4:d5:d9:72:44:73:25:8a:91:bd:12:
53:49:c8:5e:c4:35:75:51:27:bf:d0:ba:17:fc:d2:36:32:c8:
3f:a2:51:8d:40:20:b4:23:c6:2a:42:4b:a5:68:34:c2:e8:b5:
c3:13:51:f8:17:2b:28:bb:f8:21:3f:e6:84:a7:28:85:b0:18:
2c:a8:fc:85:8e:e5:09:9d:6c:6a:46:3c:0a:5f:ed:d5:35:36:
36:2b:07:9d:97:9a:4b:38:00:10:3a:8b:a2:e7:c4:a4:0f:34:
1e:08:7f:01:32:fa:0f:91:22:e7:bf:01:05:27:29:f1:cd:81:
f0:9e:75:29:b6:aa:92:7b:d7:74:1f:3c:53:93:d0:e9:2b:f9:
e0:f7:b6:f2:6e:a2:4f:6e:b8:ef:19:ee:c8:d2:7d:21:b9:de:
aa:17:09:09:d9:da:c6:3f:3a:f9:4f:36:69:2c:16:fd:2b:b3:
08:de:83:40:09:72:ee:13:bf:7c:f0:4a:60:a0:7d:b8:51:28:
5a:c2:f5:91
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXhIgRKJlBuh3bsdM2i5LQZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5ZmE3ZGQ2M2YyZTJkODdiNWY3ODUwMDkzYzc0M2JiZmJl
MTRlNDQwHhcNMjUwMzI5MDkwMDU3WhcNMjUwMzMwMDkwMDU3WjAzMTEwLwYDVQQD
EyhiMWU0ZWU4MjkxNzkyNTdiZTljZDZhYTYwMDg4YjY1YzM5NGQ2NDgzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoTxSrWcoieZppkG52muERZufBGP0
qjH1Kp/QhffXJbiFr2eDZi3Qmo7y+qrZsiVMRcn1yDTuyf8hyWTugJh6oJZ0bIoo
yP0afZLibEGMMwIQA4rfWfNdElwDaORKGd6zXphD3H+GANcvqfurUBGc6PSEnSNB
+pAl4Bd4JsLEZQAzQt0q9tXQB9n/K+q0YEwIASueNZxMRlkl1Sm3jKUYl2Hj85ak
uLLF64GQzuOl834NK+AyHdKN0amAKA7fM2/kE4KMhV4GUFg+LkCMOTJHKZnGeAHd
cSGJcVJOkUtG6uiLmlksR0eDUIE5lNra/d1UZC3GL3g6DZShQ3sa3lDrkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLHk7oKReSV76c1qpgCItlw5TWSDMB8GA1UdIwQY
MBaAFCn6fdY/Li2HtfeFAJPHQ7v74U5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUt
NzlmN2I2ZWE3YzE0LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8yYzBjYmYtMTFmNy00YjZkLWI4OGUtNzlmN2I2ZWE3YzE0
LzEvS2ZwOTFqOHVMWWUxOTRVQWs4ZER1X3ZoVGtRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAooIN3E3n
Dl+canAY3KngnjtdsQOiFQIjskgloXUMM/mmo32SLtJbak5GGOQoQmsfHKgkmx6E
95FUmC8FvuTV2XJEcyWKkb0SU0nIXsQ1dVEnv9C6F/zSNjLIP6JRjUAgtCPGKkJL
pWg0wui1wxNR+BcrKLv4IT/mhKcohbAYLKj8hY7lCZ1sakY8Cl/t1TU2NisHnZea
SzgAEDqLoufEpA80Hgh/ATL6D5Ei578BBScp8c2B8J51KbaqknvXdB88U5PQ6Sv5
4Pe28m6iT2647xnuyNJ9IbneqhcJCdnaxj86+U82aSwW/SuzCN6DQAly7hO/fPBK
YKB9uFEoWsL1kQ==
-----END CERTIFICATE-----
Generated at Mon Apr 7 11:45:29 2025 by rpki-client