Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.mft
File: 1x--OCD28Y6hszNtqfByuP0qDfI.mft (raw, json)
Hash identifier: h/PGIdGVUqZGh+ZLg/Z6VxoX46AacQFbX9Ly0G+YgxU=
Subject key identifier: 79:49:B3:28:96:24:AB:9C:33:DD:24:D7:9C:58:39:06:9B:4B:4A:13
Authority key identifier: D7:1F:BE:38:20:F6:F1:8E:A1:B3:33:6D:A9:F0:72:B8:FD:2A:0D:F2
Certificate issuer: /CN=d71fbe3820f6f18ea1b3336da9f072b8fd2a0df2
Certificate serial: 0192F5FAB2532ABD7E0AE2D5EA6CBC8A45D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1x--OCD28Y6hszNtqfByuP0qDfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.mft
Manifest number: 1216
Signing time: Mon 04 Nov 2024 07:01:40 +0000
Manifest this update: Mon 04 Nov 2024 07:01:40 +0000
Manifest next update: Tue 05 Nov 2024 07:01:40 +0000
Files and hashes: 1: 0Fg9Wi4EjDi5dnU-79lfwveq-M8.roa (hash: M5B0SkG9hWwwlfig08E3JzP7e25LB4D53pzU2Ly/ANE=)
2: 1x--OCD28Y6hszNtqfByuP0qDfI.crl (hash: ix5V9jptkiZrMMtt1vYTsZ8DgMIHcyQQLIxDm2pUWFY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f5:fa:b2:53:2a:bd:7e:0a:e2:d5:ea:6c:bc:8a:45:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d71fbe3820f6f18ea1b3336da9f072b8fd2a0df2
Validity
Not Before: Nov 4 07:01:40 2024 GMT
Not After : Nov 5 07:01:40 2024 GMT
Subject: CN=7949b3289624ab9c33dd24d79c5839069b4b4a13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:62:b8:f9:39:62:00:82:b3:42:ad:48:c5:d2:
a6:c9:61:a9:0d:ca:28:2a:3e:f8:ff:88:b5:92:4e:
2d:f4:e4:80:be:2a:50:eb:f2:c1:84:11:56:c5:2d:
f2:66:a1:b4:d7:75:e2:e3:5f:2a:82:68:c4:b6:ee:
4e:60:bf:bc:f6:c0:72:4f:14:3a:66:58:fd:b8:d4:
5b:17:32:16:46:b1:0a:d8:52:46:45:07:d3:61:c4:
0f:b1:97:da:95:0f:2d:3d:02:5a:aa:dd:e3:b0:84:
8e:c4:fd:7f:98:9b:d6:93:5c:d2:81:12:1b:1c:9c:
b6:9a:97:31:21:d0:01:f4:1b:44:47:ed:c3:8f:37:
11:56:6a:19:f3:89:06:66:22:ee:14:d5:3f:34:59:
16:50:8f:25:6d:52:7b:f3:dd:32:07:85:bf:8e:6c:
78:f4:7c:04:04:26:fc:cf:12:fb:33:6b:22:af:a2:
c7:51:3b:a4:ca:62:50:d2:39:a2:55:98:0c:6d:8c:
9f:51:1e:d3:31:06:1a:d0:83:c4:68:85:cf:74:1a:
5f:9d:72:ea:85:df:f8:a8:8b:85:d7:52:fb:d8:e8:
d8:c7:40:43:7a:4b:4d:e9:0a:3f:a1:e3:96:11:4f:
d7:9e:96:c3:11:10:c3:d0:e3:c8:81:39:74:c9:25:
13:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:49:B3:28:96:24:AB:9C:33:DD:24:D7:9C:58:39:06:9B:4B:4A:13
X509v3 Authority Key Identifier:
keyid:D7:1F:BE:38:20:F6:F1:8E:A1:B3:33:6D:A9:F0:72:B8:FD:2A:0D:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1x--OCD28Y6hszNtqfByuP0qDfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2f3904-3898-42ed-8f40-97345ca17d7f/1/1x--OCD28Y6hszNtqfByuP0qDfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:84:c9:25:90:04:b5:df:7a:2b:c1:52:c4:ef:71:d0:6b:9c:
37:95:66:06:37:d1:f2:96:94:1b:69:28:20:71:81:d0:a7:9a:
db:22:09:bb:50:db:67:52:a4:8c:e1:d5:9a:e7:1e:c6:4e:cf:
72:51:04:eb:38:1f:ff:54:fa:1f:94:6a:d3:c8:77:e9:1f:ab:
f4:22:92:7f:7c:e9:05:c0:0c:61:44:ba:ec:ed:8b:1b:90:2b:
4a:ee:39:e6:8c:9e:76:2f:a6:2c:e5:f0:2e:69:df:06:c2:fc:
7c:72:f0:ad:17:80:ac:93:d1:f2:e8:b3:9c:3d:a7:10:fb:4a:
57:b3:ab:53:14:16:87:de:f4:81:3c:89:80:3f:7d:49:87:b8:
17:d7:1e:a2:e2:98:56:95:ec:14:40:56:be:39:5f:66:12:d3:
8f:69:8b:c0:a7:f7:8c:d0:07:ae:0a:45:2a:7d:1c:e3:2e:74:
33:b8:92:d3:9b:8f:c7:87:87:7d:e3:56:24:18:64:c9:e1:93:
03:e3:3b:2b:6e:dd:84:06:c0:1a:61:7d:be:04:cf:ab:36:f8:
0b:17:94:60:2b:59:c8:a8:bf:cf:d2:07:01:54:07:d9:ee:b3:
ac:db:10:67:18:ab:19:8f:3a:86:4b:95:24:4f:bc:a4:23:b5:
2f:92:60:fb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZL1+rJTKr1+CuLV6my8ikXXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ3MWZiZTM4MjBmNmYxOGVhMWIzMzM2ZGE5ZjA3MmI4ZmQy
YTBkZjIwHhcNMjQxMTA0MDcwMTQwWhcNMjQxMTA1MDcwMTQwWjAzMTEwLwYDVQQD
Eyg3OTQ5YjMyODk2MjRhYjljMzNkZDI0ZDc5YzU4MzkwNjliNGI0YTEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3GK4+TliAIKzQq1IxdKmyWGpDcoo
Kj74/4i1kk4t9OSAvipQ6/LBhBFWxS3yZqG013Xi418qgmjEtu5OYL+89sByTxQ6
Zlj9uNRbFzIWRrEK2FJGRQfTYcQPsZfalQ8tPQJaqt3jsISOxP1/mJvWk1zSgRIb
HJy2mpcxIdAB9BtER+3DjzcRVmoZ84kGZiLuFNU/NFkWUI8lbVJ7890yB4W/jmx4
9HwEBCb8zxL7M2sir6LHUTukymJQ0jmiVZgMbYyfUR7TMQYa0IPEaIXPdBpfnXLq
hd/4qIuF11L72OjYx0BDektN6Qo/oeOWEU/XnpbDERDD0OPIgTl0ySUTiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHlJsyiWJKucM90k15xYOQabS0oTMB8GA1UdIwQY
MBaAFNcfvjgg9vGOobMzbanwcrj9Kg3yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMXgtLU9DRDI4WTZoc3pOdHFmQnl1UDBxRGZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy8yZjM5MDQtMzg5OC00MmVkLThmNDAt
OTczNDVjYTE3ZDdmLzEvMXgtLU9DRDI4WTZoc3pOdHFmQnl1UDBxRGZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy8yZjM5MDQtMzg5OC00MmVkLThmNDAtOTczNDVjYTE3ZDdm
LzEvMXgtLU9DRDI4WTZoc3pOdHFmQnl1UDBxRGZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcoTJJZAE
td96K8FSxO9x0GucN5VmBjfR8paUG2koIHGB0Kea2yIJu1DbZ1KkjOHVmucexk7P
clEE6zgf/1T6H5Rq08h36R+r9CKSf3zpBcAMYUS67O2LG5ArSu455oyedi+mLOXw
LmnfBsL8fHLwrReArJPR8uiznD2nEPtKV7OrUxQWh970gTyJgD99SYe4F9ceouKY
VpXsFEBWvjlfZhLTj2mLwKf3jNAHrgpFKn0c4y50M7iS05uPx4eHfeNWJBhkyeGT
A+M7K27dhAbAGmF9vgTPqzb4CxeUYCtZyKi/z9IHAVQH2e6zrNsQZxirGY86hkuV
JE+8pCO1L5Jg+w==
-----END CERTIFICATE-----
Generated at Mon May 12 08:13:10 2025 by rpki-client