Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.mft
File: ok5SPzBOIuroz_iA2DiEk8WgEXg.mft (raw, json)
Hash identifier: v89fkrvker2+PqW+9DXtBVcIVkfgz8MilETG+ZYffBo=
Subject key identifier: 23:65:8E:97:80:5D:E0:45:E3:9A:D9:BC:FE:C3:15:D6:B0:D3:5C:B6
Authority key identifier: A2:4E:52:3F:30:4E:22:EA:E8:CF:F8:80:D8:38:84:93:C5:A0:11:78
Certificate issuer: /CN=a24e523f304e22eae8cff880d8388493c5a01178
Certificate serial: 0190E79E6A0BFC140E1213706E37D05F400F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ok5SPzBOIuroz_iA2DiEk8WgEXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.mft
Manifest number: 0FFA
Signing time: Thu 25 Jul 2024 02:00:37 +0000
Manifest this update: Thu 25 Jul 2024 02:00:37 +0000
Manifest next update: Fri 26 Jul 2024 02:00:37 +0000
Files and hashes: 1: ok5SPzBOIuroz_iA2DiEk8WgEXg.crl (hash: 5+k3zj3iHQ80SY90d+g4KEPWkigH8iHyTQ3dM75lXZM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e7:9e:6a:0b:fc:14:0e:12:13:70:6e:37:d0:5f:40:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24e523f304e22eae8cff880d8388493c5a01178
Validity
Not Before: Jul 25 02:00:37 2024 GMT
Not After : Jul 26 02:00:37 2024 GMT
Subject: CN=23658e97805de045e39ad9bcfec315d6b0d35cb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bf:24:35:72:be:d4:e1:05:16:17:2e:fa:6e:
03:99:a8:2f:d3:a9:00:0d:17:d0:a3:3d:9a:d6:7d:
42:9a:de:f0:2c:ce:bf:9f:cd:8b:b6:10:e0:a7:c1:
6e:6d:26:b6:34:e3:80:1b:f2:09:4c:33:eb:89:06:
39:31:aa:79:2f:ed:03:2c:89:f6:2e:32:1a:54:a2:
b9:98:e7:92:ca:e5:ac:88:62:e0:38:04:4a:22:d1:
b3:ee:cc:7a:a5:83:76:c4:42:85:15:b6:4b:85:d9:
f2:73:31:df:21:ef:fb:29:05:d3:c1:4a:45:ae:8c:
a6:e7:58:28:ef:9c:39:55:ef:0f:ae:2d:34:35:5d:
d8:24:0a:83:4c:9a:7f:c7:cd:6f:e5:0a:84:60:29:
07:17:32:f5:1c:a6:0e:0d:f3:18:4e:19:09:58:64:
e3:0d:a4:f9:c4:2b:1a:5a:32:5b:c8:ea:07:10:93:
3a:87:8b:e1:dd:d1:b0:81:be:d5:b1:19:c7:c2:e6:
df:9a:ce:46:55:19:c6:6e:b2:17:5d:ca:c6:6b:31:
cc:2b:47:79:ab:39:59:8c:32:72:94:ed:e0:51:a9:
18:38:cd:a9:35:d7:c2:02:ce:b1:39:b7:36:ff:ac:
e0:91:96:af:f0:c2:3f:fa:1c:9a:4c:1c:84:17:ed:
78:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:65:8E:97:80:5D:E0:45:E3:9A:D9:BC:FE:C3:15:D6:B0:D3:5C:B6
X509v3 Authority Key Identifier:
keyid:A2:4E:52:3F:30:4E:22:EA:E8:CF:F8:80:D8:38:84:93:C5:A0:11:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ok5SPzBOIuroz_iA2DiEk8WgEXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/0ee012-ba7b-4606-9d7c-c4ace4f834b5/1/ok5SPzBOIuroz_iA2DiEk8WgEXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:c7:2a:d6:1e:26:0a:89:2e:cd:11:4a:18:7b:66:d9:f8:eb:
52:34:56:f2:84:27:f1:96:2b:e0:80:96:ab:1a:90:5d:86:bb:
1f:5c:95:45:48:50:c1:f6:b6:d9:f2:0a:25:11:b9:50:63:5b:
6f:b0:05:c0:96:d3:ae:fa:0f:53:64:0d:8f:d6:e2:0c:8e:d9:
7c:10:fc:88:9b:c2:3e:ff:7c:a8:0c:7b:b9:2f:28:9d:1d:76:
39:1a:64:bd:3d:d0:4c:19:d4:03:7c:02:9e:d4:b1:56:d8:5c:
1a:ac:fb:74:f7:d4:dd:de:9f:31:0e:7b:3f:ee:64:de:21:10:
ae:dc:f2:42:b6:7d:22:05:7e:57:d9:07:2a:87:5f:6d:74:a6:
12:8a:7e:9f:4d:be:76:b6:00:38:82:da:eb:97:b9:5b:09:53:
24:05:c7:f6:f8:61:37:25:f8:60:5b:15:f8:aa:b1:3d:f3:93:
88:b7:49:d1:52:e1:81:16:6d:3c:5d:85:c4:0d:ee:0c:0c:ce:
d9:cb:16:e7:d9:8f:ed:11:e9:16:04:14:aa:3b:fb:b5:a1:72:
5e:9e:4d:6f:9e:6f:37:2b:df:55:96:47:6e:51:79:ea:b0:24:
10:88:4b:15:44:61:46:2a:c3:b9:b0:2b:c7:76:53:67:10:89:
c5:06:4d:2f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZDnnmoL/BQOEhNwbjfQX0APMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyNGU1MjNmMzA0ZTIyZWFlOGNmZjg4MGQ4Mzg4NDkzYzVh
MDExNzgwHhcNMjQwNzI1MDIwMDM3WhcNMjQwNzI2MDIwMDM3WjAzMTEwLwYDVQQD
EygyMzY1OGU5NzgwNWRlMDQ1ZTM5YWQ5YmNmZWMzMTVkNmIwZDM1Y2I2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp78kNXK+1OEFFhcu+m4Dmagv06kA
DRfQoz2a1n1Cmt7wLM6/n82LthDgp8FubSa2NOOAG/IJTDPriQY5Map5L+0DLIn2
LjIaVKK5mOeSyuWsiGLgOARKItGz7sx6pYN2xEKFFbZLhdnyczHfIe/7KQXTwUpF
roym51go75w5Ve8Pri00NV3YJAqDTJp/x81v5QqEYCkHFzL1HKYODfMYThkJWGTj
DaT5xCsaWjJbyOoHEJM6h4vh3dGwgb7VsRnHwubfms5GVRnGbrIXXcrGazHMK0d5
qzlZjDJylO3gUakYOM2pNdfCAs6xObc2/6zgkZav8MI/+hyaTByEF+149QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCNljpeAXeBF45rZvP7DFdaw01y2MB8GA1UdIwQY
MBaAFKJOUj8wTiLq6M/4gNg4hJPFoBF4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2s1U1B6Qk9JdXJvel9pQTJEaUVrOFdnRVhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi8wZWUwMTItYmE3Yi00NjA2LTlkN2Mt
YzRhY2U0ZjgzNGI1LzEvb2s1U1B6Qk9JdXJvel9pQTJEaUVrOFdnRVhnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi8wZWUwMTItYmE3Yi00NjA2LTlkN2MtYzRhY2U0ZjgzNGI1
LzEvb2s1U1B6Qk9JdXJvel9pQTJEaUVrOFdnRVhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVMcq1h4m
CokuzRFKGHtm2fjrUjRW8oQn8ZYr4ICWqxqQXYa7H1yVRUhQwfa22fIKJRG5UGNb
b7AFwJbTrvoPU2QNj9biDI7ZfBD8iJvCPv98qAx7uS8onR12ORpkvT3QTBnUA3wC
ntSxVthcGqz7dPfU3d6fMQ57P+5k3iEQrtzyQrZ9IgV+V9kHKodfbXSmEop+n02+
drYAOILa65e5WwlTJAXH9vhhNyX4YFsV+KqxPfOTiLdJ0VLhgRZtPF2FxA3uDAzO
2csW59mP7RHpFgQUqjv7taFyXp5Nb55vNyvfVZZHblF56rAkEIhLFURhRirDubAr
x3ZTZxCJxQZNLw==
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:14:22 2025 by rpki-client