Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
File: q6N0OU_hCA1kohnX01pJRi6Omaw.mft (raw, json)
Hash identifier: b86bAyivcPtFIrmf2Vlg+PE5QsOo1sR2QF5RQOVt2Xc=
Subject key identifier: B6:97:FB:36:DB:14:BA:07:CC:8E:DA:78:D9:7E:FB:FB:7C:03:E3:4E
Authority key identifier: AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC
Certificate issuer: /CN=aba374394fe1080d64a219d7d35a49462e8e99ac
Certificate serial: 0194BC72BE740B75463B86E2FFCA16F6FE30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
Manifest number: 0537
Signing time: Fri 31 Jan 2025 13:00:23 +0000
Manifest this update: Fri 31 Jan 2025 13:00:23 +0000
Manifest next update: Sat 01 Feb 2025 13:00:23 +0000
Files and hashes: 1: q6N0OU_hCA1kohnX01pJRi6Omaw.crl (hash: q92DlQzbdrBuLDPcagFg+0SXRH6vPzOOhiUQ7G5azJI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bc:72:be:74:0b:75:46:3b:86:e2:ff:ca:16:f6:fe:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aba374394fe1080d64a219d7d35a49462e8e99ac
Validity
Not Before: Jan 31 13:00:23 2025 GMT
Not After : Feb 1 13:00:23 2025 GMT
Subject: CN=b697fb36db14ba07cc8eda78d97efbfb7c03e34e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ae:f7:6f:56:52:fb:62:64:f5:4d:88:f3:85:
bd:3a:dc:51:a3:94:f3:fb:16:1f:ef:61:9d:8a:57:
cc:42:af:01:82:c5:17:54:a2:2f:cc:47:55:0b:74:
5f:7c:46:0e:63:d0:28:0b:3a:b6:7e:44:9e:ce:20:
c2:5a:27:b4:01:67:83:ce:20:d7:06:2b:bf:1f:1e:
52:d4:4d:08:eb:7c:c0:9b:86:a8:1c:da:c3:c9:2f:
18:3e:1e:6b:a8:19:aa:c0:aa:5e:0d:41:47:de:a2:
21:34:45:37:41:9b:de:ea:9d:25:14:b8:0a:62:e8:
dd:5d:50:e9:84:c5:d1:9d:de:28:70:c7:5f:3c:66:
56:ca:9b:8d:ec:c5:d2:a2:8b:ee:41:f1:3d:24:9d:
cb:01:bf:e8:0b:08:a6:50:ed:fa:63:16:fa:0d:27:
b4:cd:96:b4:c6:40:bb:55:35:10:5b:b3:5f:73:9e:
35:9d:2f:6c:24:b2:8e:94:c7:69:f8:e7:47:44:f1:
50:3a:c0:ed:83:c8:32:d0:d0:6b:21:9b:b7:37:04:
f5:ea:60:62:f2:ae:cf:b4:eb:b2:f2:0e:2b:11:24:
83:1d:ed:ab:41:f5:62:a4:ab:d8:70:b3:08:f7:0b:
69:8a:5f:7d:81:c0:ee:55:61:ef:be:46:df:e8:8e:
f5:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:97:FB:36:DB:14:BA:07:CC:8E:DA:78:D9:7E:FB:FB:7C:03:E3:4E
X509v3 Authority Key Identifier:
keyid:AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:e6:0a:02:f4:19:10:36:de:1d:37:f8:d6:2c:b3:e7:29:a5:
88:eb:02:a4:11:f1:7d:3c:c0:ba:6e:9f:ac:20:20:2b:0f:09:
70:a3:45:09:09:32:d7:51:8e:b0:9d:34:ce:2d:b9:b6:df:46:
47:03:2d:e6:08:21:01:08:ee:14:54:30:64:12:36:5b:e8:f8:
f5:bc:03:fe:db:59:3b:2b:ea:68:79:49:a2:2c:18:4a:96:b6:
6a:a3:b2:90:08:09:ca:35:24:b7:a4:d7:28:99:d2:aa:ec:07:
e1:6b:0d:03:80:53:1d:3b:ec:41:bf:5b:ab:e3:bb:90:a2:fa:
35:08:46:cd:78:e4:85:12:94:28:4f:02:24:92:3b:c2:f9:21:
79:05:cc:1b:55:df:50:24:90:1d:fb:27:f5:8d:fe:bb:c3:0c:
6f:36:c3:58:8e:83:e0:5d:63:42:97:06:dc:63:ef:bc:79:14:
3a:19:ef:f7:9a:09:48:33:00:33:fd:5d:dc:56:d6:25:e9:4f:
74:1e:19:88:e1:ff:68:8b:13:1b:30:b8:db:e7:a8:34:d8:1d:
b5:6a:bc:b9:a9:92:25:9b:f1:e6:fb:a1:f6:aa:f3:27:a2:33:
de:92:c0:d8:91:5b:30:1b:20:92:29:85:87:30:6c:55:11:18:
72:4c:b4:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS8cr50C3VGO4bi/8oW9v4wMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFiYTM3NDM5NGZlMTA4MGQ2NGEyMTlkN2QzNWE0OTQ2MmU4
ZTk5YWMwHhcNMjUwMTMxMTMwMDIzWhcNMjUwMjAxMTMwMDIzWjAzMTEwLwYDVQQD
EyhiNjk3ZmIzNmRiMTRiYTA3Y2M4ZWRhNzhkOTdlZmJmYjdjMDNlMzRlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAua73b1ZS+2Jk9U2I84W9OtxRo5Tz
+xYf72GdilfMQq8BgsUXVKIvzEdVC3RffEYOY9AoCzq2fkSeziDCWie0AWeDziDX
Biu/Hx5S1E0I63zAm4aoHNrDyS8YPh5rqBmqwKpeDUFH3qIhNEU3QZve6p0lFLgK
YujdXVDphMXRnd4ocMdfPGZWypuN7MXSoovuQfE9JJ3LAb/oCwimUO36Yxb6DSe0
zZa0xkC7VTUQW7Nfc541nS9sJLKOlMdp+OdHRPFQOsDtg8gy0NBrIZu3NwT16mBi
8q7PtOuy8g4rESSDHe2rQfVipKvYcLMI9wtpil99gcDuVWHvvkbf6I71FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLaX+zbbFLoHzI7aeNl++/t8A+NOMB8GA1UdIwQY
MBaAFKujdDlP4QgNZKIZ19NaSUYujpmsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84MTA0YzAtYmU2Mi00MDE3LTkxY2Yt
MjJjODdkZmY4ZDQxLzEvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC84MTA0YzAtYmU2Mi00MDE3LTkxY2YtMjJjODdkZmY4ZDQx
LzEvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfOYKAvQZ
EDbeHTf41iyz5ymliOsCpBHxfTzAum6frCAgKw8JcKNFCQky11GOsJ00zi25tt9G
RwMt5gghAQjuFFQwZBI2W+j49bwD/ttZOyvqaHlJoiwYSpa2aqOykAgJyjUkt6TX
KJnSquwH4WsNA4BTHTvsQb9bq+O7kKL6NQhGzXjkhRKUKE8CJJI7wvkheQXMG1Xf
UCSQHfsn9Y3+u8MMbzbDWI6D4F1jQpcG3GPvvHkUOhnv95oJSDMAM/1d3FbWJelP
dB4ZiOH/aIsTGzC42+eoNNgdtWq8uamSJZvx5vuh9qrzJ6Iz3pLA2JFbMBsgkimF
hzBsVREYcky0EQ==
-----END CERTIFICATE-----
Generated at Thu May 1 14:03:16 2025 by rpki-client