Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
File: tj8U3_NUhamVlBKGMDe4XfqfE9g.mft (raw, json)
Hash identifier: 4zMEomUyrSqn/q8H4zvWMawsxLBWN007GDjQKYAksS0=
Subject key identifier: D7:AF:91:FD:99:2A:78:B6:4D:B9:7F:2D:D4:9F:2D:D5:AF:9E:0D:CA
Authority key identifier: B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8
Certificate issuer: /CN=b63f14dff35485a9959412863037b85dfa9f13d8
Certificate serial: 0195E0B4ABE4EF851F433A101DB9C4BB1F67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
Manifest number: 03F7
Signing time: Sat 29 Mar 2025 07:01:31 +0000
Manifest this update: Sat 29 Mar 2025 07:01:31 +0000
Manifest next update: Sun 30 Mar 2025 07:01:31 +0000
Files and hashes: 1: tj8U3_NUhamVlBKGMDe4XfqfE9g.crl (hash: jBUSMV/DuXhgx3aEZeYo7o6lzyUUxMA5eLL+/0vfwWQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:b4:ab:e4:ef:85:1f:43:3a:10:1d:b9:c4:bb:1f:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b63f14dff35485a9959412863037b85dfa9f13d8
Validity
Not Before: Mar 29 07:01:31 2025 GMT
Not After : Mar 30 07:01:31 2025 GMT
Subject: CN=d7af91fd992a78b64db97f2dd49f2dd5af9e0dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:77:34:32:5d:d4:5f:82:23:4f:d8:b5:8f:8e:
83:c7:b7:49:3e:5a:7e:f6:b0:c0:36:d2:b1:50:0c:
f6:1d:8b:e8:92:1d:7c:6e:77:13:34:9c:d3:65:fa:
6b:74:f4:f0:6a:f2:46:bb:e8:15:19:7e:ff:99:53:
93:4b:84:7a:86:f6:0f:2b:54:bb:a0:48:c4:25:ea:
08:fa:4c:9a:24:94:bd:03:28:d3:45:07:89:b0:e8:
db:f3:bf:13:2b:b0:49:c1:59:15:7a:3a:fd:74:e6:
f4:fe:6b:4c:6b:a1:30:e4:b9:8e:0a:71:6b:cd:38:
fe:bb:1a:54:c4:ea:2f:3c:85:2b:77:0c:f6:82:67:
74:b6:9f:c9:6d:94:b1:21:69:f3:3a:31:aa:90:e4:
cf:1f:3d:10:b5:51:41:6e:a5:cb:4e:3e:56:16:99:
d7:c3:45:f4:91:c4:78:fc:ae:e2:96:2a:f1:5b:65:
bf:49:12:e2:ac:b8:d3:a9:b8:ab:3b:de:85:1d:07:
42:2d:be:b5:fc:f3:42:95:90:54:b0:49:b5:07:6e:
6e:f7:9a:b3:72:d2:3b:de:31:54:bb:12:ef:7d:58:
11:d3:60:38:97:b4:e0:f3:b9:a3:08:09:95:53:28:
8b:2d:8b:dc:37:b3:94:b3:a5:72:26:23:21:5d:69:
38:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AF:91:FD:99:2A:78:B6:4D:B9:7F:2D:D4:9F:2D:D5:AF:9E:0D:CA
X509v3 Authority Key Identifier:
keyid:B6:3F:14:DF:F3:54:85:A9:95:94:12:86:30:37:B8:5D:FA:9F:13:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tj8U3_NUhamVlBKGMDe4XfqfE9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/3bc865-386b-4bea-aba0-66c98c01dfd7/1/tj8U3_NUhamVlBKGMDe4XfqfE9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:27:62:87:51:55:31:56:51:46:25:15:c2:97:c8:ce:62:3a:
5f:fd:18:c8:8f:b4:a0:b4:e9:06:31:6e:af:71:28:85:b2:0f:
60:34:6b:10:01:32:db:3f:c3:11:55:0d:0e:3a:ff:59:68:5c:
fd:46:50:32:a2:a3:23:1a:2e:e5:18:3d:41:65:a5:09:73:c8:
47:c8:f9:6f:d3:23:3e:a9:fa:ec:95:b8:02:33:72:f9:fb:12:
e4:e6:5e:ef:2b:fa:9b:3e:44:59:e4:23:bd:61:d2:ed:08:50:
6d:74:1e:71:5f:a5:03:3d:32:3c:e4:a6:1f:0f:e3:41:c8:78:
29:6a:94:6f:01:6c:7f:1f:32:10:38:97:a1:8a:30:72:8f:01:
92:bf:e5:85:f4:ea:9b:d7:79:54:85:56:31:4e:57:f8:a8:18:
aa:02:af:a9:05:43:37:15:b3:58:21:83:12:3d:36:95:08:c2:
bf:e0:7b:c9:95:ba:f0:9c:6d:09:a5:4d:5d:1d:3c:43:d7:28:
ce:63:9f:a9:e4:cc:64:e1:fc:27:95:27:46:b2:6a:4a:af:5d:
1c:d6:7c:65:3d:ec:a6:1a:af:63:31:66:55:b3:01:92:33:ff:
3c:4e:4d:70:f8:f5:93:8b:02:25:52:df:40:56:1c:0f:b6:29:
25:ac:e4:f5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXgtKvk74UfQzoQHbnEux9nMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI2M2YxNGRmZjM1NDg1YTk5NTk0MTI4NjMwMzdiODVkZmE5
ZjEzZDgwHhcNMjUwMzI5MDcwMTMxWhcNMjUwMzMwMDcwMTMxWjAzMTEwLwYDVQQD
EyhkN2FmOTFmZDk5MmE3OGI2NGRiOTdmMmRkNDlmMmRkNWFmOWUwZGNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkXc0Ml3UX4IjT9i1j46Dx7dJPlp+
9rDANtKxUAz2HYvokh18bncTNJzTZfprdPTwavJGu+gVGX7/mVOTS4R6hvYPK1S7
oEjEJeoI+kyaJJS9AyjTRQeJsOjb878TK7BJwVkVejr9dOb0/mtMa6Ew5LmOCnFr
zTj+uxpUxOovPIUrdwz2gmd0tp/JbZSxIWnzOjGqkOTPHz0QtVFBbqXLTj5WFpnX
w0X0kcR4/K7ilirxW2W/SRLirLjTqbirO96FHQdCLb61/PNClZBUsEm1B25u95qz
ctI73jFUuxLvfVgR02A4l7Tg87mjCAmVUyiLLYvcN7OUs6VyJiMhXWk46wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNevkf2ZKni2Tbl/LdSfLdWvng3KMB8GA1UdIwQY
MBaAFLY/FN/zVIWplZQShjA3uF36nxPYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdGo4VTNfTlVoYW1WbEJLR01EZTRYZnFmRTlnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy8zYmM4NjUtMzg2Yi00YmVhLWFiYTAt
NjZjOThjMDFkZmQ3LzEvdGo4VTNfTlVoYW1WbEJLR01EZTRYZnFmRTlnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMy8zYmM4NjUtMzg2Yi00YmVhLWFiYTAtNjZjOThjMDFkZmQ3
LzEvdGo4VTNfTlVoYW1WbEJLR01EZTRYZnFmRTlnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVSdih1FV
MVZRRiUVwpfIzmI6X/0YyI+0oLTpBjFur3EohbIPYDRrEAEy2z/DEVUNDjr/WWhc
/UZQMqKjIxou5Rg9QWWlCXPIR8j5b9MjPqn67JW4AjNy+fsS5OZe7yv6mz5EWeQj
vWHS7QhQbXQecV+lAz0yPOSmHw/jQch4KWqUbwFsfx8yEDiXoYowco8Bkr/lhfTq
m9d5VIVWMU5X+KgYqgKvqQVDNxWzWCGDEj02lQjCv+B7yZW68JxtCaVNXR08Q9co
zmOfqeTMZOH8J5UnRrJqSq9dHNZ8ZT3sphqvYzFmVbMBkjP/PE5NcPj1k4sCJVLf
QFYcD7YpJazk9Q==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:14 2025 by rpki-client