Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
File: CnAgLDEt0sem_8MXqobk4gaSSaY.mft (raw, json)
Hash identifier: 8/dAyWYL08O0gMyBRK8pCi+4DF+FoeoY0/7f1XYEcOA=
Subject key identifier: 28:76:8A:4B:0D:E0:F4:41:91:15:4E:44:EF:31:4C:3D:BD:D7:7C:AC
Authority key identifier: 0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
Certificate issuer: /CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Certificate serial: 0195DFD885AF89B1B01C100A7174101E309F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
Manifest number: 07ED
Signing time: Sat 29 Mar 2025 03:01:03 +0000
Manifest this update: Sat 29 Mar 2025 03:01:03 +0000
Manifest next update: Sun 30 Mar 2025 03:01:03 +0000
Files and hashes: 1: CnAgLDEt0sem_8MXqobk4gaSSaY.crl (hash: zexyf9ARe9OlmIECbZfrlh9zYq84fCEryhhEtqjtG48=)
2: xVi5DHD3s-r5Votl1DTiGtuYvcw.roa (hash: +V2nAdl2ox/97Kg2Kv4wd0L6SAO7LGva7RVK1ZGXjZk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:d8:85:af:89:b1:b0:1c:10:0a:71:74:10:1e:30:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a70202c312dd2c7a6ffc317aa86e4e2069249a6
Validity
Not Before: Mar 29 03:01:03 2025 GMT
Not After : Mar 30 03:01:03 2025 GMT
Subject: CN=28768a4b0de0f44191154e44ef314c3dbdd77cac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:38:01:21:48:a3:d3:5f:a1:7c:4a:d5:81:a9:
78:7d:59:47:74:f7:58:b1:68:03:c7:ed:91:e9:31:
a3:0a:f6:8f:ae:5a:24:6d:02:f4:d7:78:f8:d2:c9:
f9:4d:1a:52:3c:9c:11:e1:28:e3:e7:c9:72:3e:8b:
aa:f4:32:67:d8:76:72:7d:c1:81:de:a4:9f:09:ee:
f1:f8:f2:0f:a7:ae:a0:73:8e:a0:01:c1:81:4a:46:
67:57:83:72:c9:ab:84:85:40:2d:fb:00:8a:ce:cd:
eb:cd:f4:89:3f:07:c9:01:5e:0b:9a:10:af:8e:8f:
e0:0f:8e:5e:51:78:25:76:e3:d8:ad:bf:f5:d0:94:
1e:da:73:6f:46:43:da:a9:ea:ed:2a:95:ff:3b:57:
d7:de:a3:c7:5d:1d:25:25:27:ea:f8:de:c5:78:77:
4d:c0:42:90:18:7e:08:c5:48:bd:a4:dc:a1:df:71:
e3:24:19:1f:f6:55:38:7e:72:26:67:72:3d:f8:5b:
a8:15:83:34:cc:42:1f:d5:39:b0:23:b5:c7:15:bf:
f2:a3:6a:94:10:5e:1e:5f:e1:52:ca:ee:b6:f2:48:
aa:2e:78:22:07:82:07:5a:1c:aa:7f:f5:e0:66:04:
e5:52:7e:34:07:54:8a:e7:47:f0:21:f6:39:f8:8d:
aa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:76:8A:4B:0D:E0:F4:41:91:15:4E:44:EF:31:4C:3D:BD:D7:7C:AC
X509v3 Authority Key Identifier:
keyid:0A:70:20:2C:31:2D:D2:C7:A6:FF:C3:17:AA:86:E4:E2:06:92:49:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnAgLDEt0sem_8MXqobk4gaSSaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/8ff697-57fc-40ff-8a53-68c849277d73/1/CnAgLDEt0sem_8MXqobk4gaSSaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:97:e0:3a:be:aa:3d:9d:77:14:bf:a4:3b:7a:5d:dd:6d:80:
09:73:43:5f:b6:a6:01:57:22:f4:0c:49:53:99:d5:8f:82:e3:
f4:b5:11:4f:37:65:f8:f7:d6:5c:30:31:56:79:86:d7:56:ca:
60:61:ee:83:35:cd:a5:42:9c:fa:4e:81:3c:a9:90:35:0d:87:
2c:7a:c4:19:ac:53:12:36:1b:e7:a2:0e:09:ef:5c:ba:3a:78:
66:d3:e1:2d:3b:91:84:92:ce:d8:e9:80:0e:ae:7b:17:b3:90:
98:d8:46:10:7a:a7:ea:fa:ac:98:26:25:85:af:28:84:04:d1:
b8:63:5b:70:76:1c:95:ac:fb:ed:f5:32:4d:a4:73:c8:43:e8:
28:83:6b:64:b1:2d:43:74:d6:dc:b7:5a:bc:80:6f:6d:be:44:
61:3f:1f:0c:3b:1e:ae:f8:06:82:2a:5f:34:cd:b1:06:44:b9:
ce:06:51:e4:6c:b3:ff:2c:1f:0f:61:ab:a3:d3:69:e0:c8:b3:
1e:a2:31:50:e8:98:38:68:5d:46:16:15:25:f5:01:36:58:10:
81:a2:d2:a7:14:19:78:a7:52:de:d2:08:01:5c:b0:31:fb:7c:
a5:7b:56:fd:51:a8:03:98:6c:48:0b:a4:fc:78:75:10:32:54:
d6:f1:17:61
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXf2IWvibGwHBAKcXQQHjCfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBhNzAyMDJjMzEyZGQyYzdhNmZmYzMxN2FhODZlNGUyMDY5
MjQ5YTYwHhcNMjUwMzI5MDMwMTAzWhcNMjUwMzMwMDMwMTAzWjAzMTEwLwYDVQQD
EygyODc2OGE0YjBkZTBmNDQxOTExNTRlNDRlZjMxNGMzZGJkZDc3Y2FjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnTgBIUij01+hfErVgal4fVlHdPdY
sWgDx+2R6TGjCvaPrlokbQL013j40sn5TRpSPJwR4Sjj58lyPouq9DJn2HZyfcGB
3qSfCe7x+PIPp66gc46gAcGBSkZnV4NyyauEhUAt+wCKzs3rzfSJPwfJAV4LmhCv
jo/gD45eUXglduPYrb/10JQe2nNvRkPaqertKpX/O1fX3qPHXR0lJSfq+N7FeHdN
wEKQGH4IxUi9pNyh33HjJBkf9lU4fnImZ3I9+FuoFYM0zEIf1TmwI7XHFb/yo2qU
EF4eX+FSyu628kiqLngiB4IHWhyqf/XgZgTlUn40B1SK50fwIfY5+I2qtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCh2iksN4PRBkRVORO8xTD2913ysMB8GA1UdIwQY
MBaAFApwICwxLdLHpv/DF6qG5OIGkkmmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS84ZmY2OTctNTdmYy00MGZmLThhNTMt
NjhjODQ5Mjc3ZDczLzEvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iOS84ZmY2OTctNTdmYy00MGZmLThhNTMtNjhjODQ5Mjc3ZDcz
LzEvQ25BZ0xERXQwc2VtXzhNWHFvYms0Z2FTU2FZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH5fgOr6q
PZ13FL+kO3pd3W2ACXNDX7amAVci9AxJU5nVj4Lj9LURTzdl+PfWXDAxVnmG11bK
YGHugzXNpUKc+k6BPKmQNQ2HLHrEGaxTEjYb56IOCe9cujp4ZtPhLTuRhJLO2OmA
Dq57F7OQmNhGEHqn6vqsmCYlha8ohATRuGNbcHYclaz77fUyTaRzyEPoKINrZLEt
Q3TW3LdavIBvbb5EYT8fDDservgGgipfNM2xBkS5zgZR5Gyz/ywfD2Gro9Np4Miz
HqIxUOiYOGhdRhYVJfUBNlgQgaLSpxQZeKdS3tIIAVywMft8pXtW/VGoA5hsSAuk
/Hh1EDJU1vEXYQ==
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:32:05 2025 by rpki-client