Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
File: sxagaE0dOLrPQzjCsB2ztBNw60U.mft (raw, json)
Hash identifier: MbIwoqczy0K+9k6i4IeMbzSlrKUHsFheBlUos9tFq6I=
Subject key identifier: B6:D7:26:E3:9A:2D:47:B0:9C:7A:73:04:DF:2B:D6:53:A4:C3:22:09
Authority key identifier: B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
Certificate issuer: /CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Certificate serial: 0195E1221EE0F0328E9B509E41E9FB977981
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
Manifest number: 0340
Signing time: Sat 29 Mar 2025 09:01:04 +0000
Manifest this update: Sat 29 Mar 2025 09:01:04 +0000
Manifest next update: Sun 30 Mar 2025 09:01:04 +0000
Files and hashes: 1: pBOBaEWXkYoN8gJBhZMkD24bH8M.roa (hash: yYFHTbbCS/jQtr+ov28WxXyLXELdV4Do2QZ+inX5RdA=)
2: sxagaE0dOLrPQzjCsB2ztBNw60U.crl (hash: 8wLTnPgOX7ciOw9tLcIkRv70y3yAvU44CLA0HFxlcPw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:22:1e:e0:f0:32:8e:9b:50:9e:41:e9:fb:97:79:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Validity
Not Before: Mar 29 09:01:04 2025 GMT
Not After : Mar 30 09:01:04 2025 GMT
Subject: CN=b6d726e39a2d47b09c7a7304df2bd653a4c32209
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:73:d8:d6:67:63:03:3d:4e:4f:48:f6:bd:bc:
89:02:f5:cf:00:28:2a:94:14:13:5b:68:50:4a:58:
99:54:3c:6c:43:94:34:1e:7b:67:2c:57:db:19:89:
5b:50:3e:e8:be:cd:83:98:07:c6:b2:cb:16:a1:4b:
53:33:61:cd:87:79:b1:bf:b7:8a:88:72:9b:10:55:
36:37:7e:c3:07:ce:45:2b:7e:60:d5:f6:77:4f:c4:
81:5d:8a:97:13:50:2d:07:c2:cd:2c:bb:7e:ac:79:
a6:ca:74:a0:c6:6f:cf:b3:83:de:7d:1e:95:c6:79:
f0:58:c6:14:44:a0:93:a0:eb:f0:c5:45:fd:71:57:
98:22:8d:73:b8:a9:7e:10:62:ad:01:af:c9:30:c4:
fb:e7:70:54:1a:e6:25:d4:c3:1c:4e:a6:e2:cf:bd:
c4:af:a7:91:d5:cc:f9:bb:71:28:83:c1:2f:35:80:
ff:98:d8:13:c9:23:c6:61:57:fd:b2:71:fd:88:81:
01:a3:c2:1f:f3:d3:1c:bf:83:a4:f1:52:62:71:2f:
fe:17:d2:b1:36:fe:e0:a7:f4:aa:f4:fd:8a:3e:0b:
ce:55:1b:ad:a1:ab:30:28:01:b0:b5:4a:0b:d9:93:
2d:59:d8:72:ab:a2:3e:d9:d0:01:2d:d1:fa:27:01:
d3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:D7:26:E3:9A:2D:47:B0:9C:7A:73:04:DF:2B:D6:53:A4:C3:22:09
X509v3 Authority Key Identifier:
keyid:B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:47:f5:92:9e:ae:c4:57:13:e8:36:a3:f8:23:fe:38:a3:66:
eb:c8:86:e0:94:24:a6:b4:f7:bc:cc:f9:db:0e:4e:28:fd:08:
f4:a0:d2:ae:4e:71:b0:da:5c:7f:aa:a3:7a:cc:48:c9:ce:a1:
bb:cc:8b:a4:bf:1a:4b:d4:35:01:ec:25:cb:bd:78:0d:b1:15:
6c:e0:52:4d:9c:2f:74:1d:6c:43:30:50:53:27:93:58:9c:78:
1c:4a:c5:93:ab:55:d0:9f:a4:d0:0f:70:2a:b2:97:7a:99:67:
1e:66:84:4a:4d:68:b1:63:f7:6a:7d:da:d2:3a:f4:d2:37:c8:
40:42:1f:6f:31:2e:57:11:95:53:b9:ea:22:ea:6c:a1:41:e3:
9f:7a:8b:7f:d2:a4:3a:aa:15:2d:77:57:07:93:51:76:13:7d:
1e:44:c1:24:14:22:1e:bf:16:48:5f:30:4a:1f:10:8f:e7:95:
4f:20:98:33:3a:a9:3b:08:be:35:6f:a5:69:57:66:d9:fa:27:
34:b9:4c:19:02:6f:bc:88:8e:ee:05:8b:b6:20:24:ec:87:2d:
2d:f1:c7:32:6c:40:dd:b7:5f:5e:29:12:03:a1:8d:d4:80:50:
83:07:74:4c:8b:16:20:45:b9:f7:d0:70:ec:82:7c:9e:5c:1f:
60:c1:6a:e8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXhIh7g8DKOm1CeQen7l3mBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzMTZhMDY4NGQxZDM4YmFjZjQzMzhjMmIwMWRiM2I0MTM3
MGViNDUwHhcNMjUwMzI5MDkwMTA0WhcNMjUwMzMwMDkwMTA0WjAzMTEwLwYDVQQD
EyhiNmQ3MjZlMzlhMmQ0N2IwOWM3YTczMDRkZjJiZDY1M2E0YzMyMjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3PY1mdjAz1OT0j2vbyJAvXPACgq
lBQTW2hQSliZVDxsQ5Q0HntnLFfbGYlbUD7ovs2DmAfGsssWoUtTM2HNh3mxv7eK
iHKbEFU2N37DB85FK35g1fZ3T8SBXYqXE1AtB8LNLLt+rHmmynSgxm/Ps4PefR6V
xnnwWMYURKCToOvwxUX9cVeYIo1zuKl+EGKtAa/JMMT753BUGuYl1MMcTqbiz73E
r6eR1cz5u3Eog8EvNYD/mNgTySPGYVf9snH9iIEBo8If89Mcv4Ok8VJicS/+F9Kx
Nv7gp/Sq9P2KPgvOVRutoaswKAGwtUoL2ZMtWdhyq6I+2dABLdH6JwHT4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLbXJuOaLUewnHpzBN8r1lOkwyIJMB8GA1UdIwQY
MBaAFLMWoGhNHTi6z0M4wrAds7QTcOtFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3hhZ2FFMGRPTHJQUXpqQ3NCMnp0Qk53NjBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC82YzRkNjItOGRhZi00NTAyLWIzZjct
MTRiOTdjZmJhZDQ3LzEvc3hhZ2FFMGRPTHJQUXpqQ3NCMnp0Qk53NjBVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC82YzRkNjItOGRhZi00NTAyLWIzZjctMTRiOTdjZmJhZDQ3
LzEvc3hhZ2FFMGRPTHJQUXpqQ3NCMnp0Qk53NjBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApEf1kp6u
xFcT6Daj+CP+OKNm68iG4JQkprT3vMz52w5OKP0I9KDSrk5xsNpcf6qjesxIyc6h
u8yLpL8aS9Q1Aewly714DbEVbOBSTZwvdB1sQzBQUyeTWJx4HErFk6tV0J+k0A9w
KrKXeplnHmaESk1osWP3an3a0jr00jfIQEIfbzEuVxGVU7nqIupsoUHjn3qLf9Kk
OqoVLXdXB5NRdhN9HkTBJBQiHr8WSF8wSh8Qj+eVTyCYMzqpOwi+NW+laVdm2fon
NLlMGQJvvIiO7gWLtiAk7IctLfHHMmxA3bdfXikSA6GN1IBQgwd0TIsWIEW599Bw
7IJ8nlwfYMFq6A==
-----END CERTIFICATE-----
Generated at Tue Apr 8 11:59:21 2025 by rpki-client