Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/29638b-12ca-49ef-94e9-0502a6a54aab/1/OKDIgmwYvNUTqqflIIH_n9N5Gfs.mft
File: OKDIgmwYvNUTqqflIIH_n9N5Gfs.mft (raw, json)
Hash identifier: omqmwQWwpxdGmdpOwM/AfZg8PoCFIC/ixlpnr1ZIAJ8=
Subject key identifier: 42:0C:55:3C:E2:30:DB:79:86:3F:D4:5C:A1:F4:49:7B:53:0E:D6:ED
Authority key identifier: 38:A0:C8:82:6C:18:BC:D5:13:AA:A7:E5:20:81:FF:9F:D3:79:19:FB
Certificate issuer: /CN=38a0c8826c18bcd513aaa7e52081ff9fd37919fb
Certificate serial: 0194BC3C67292FF645EDA270DB6FCC9102B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKDIgmwYvNUTqqflIIH_n9N5Gfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/29638b-12ca-49ef-94e9-0502a6a54aab/1/OKDIgmwYvNUTqqflIIH_n9N5Gfs.mft
Manifest number: 1390
Signing time: Fri 31 Jan 2025 12:01:02 +0000
Manifest this update: Fri 31 Jan 2025 12:01:02 +0000
Manifest next update: Sat 01 Feb 2025 12:01:02 +0000
Files and hashes: 1: KBKNSo54C-UjedwUMFB9xB41sio.roa (hash: EOnhGNtgG2NlhPSt6QkJfBoHbT869foRrNlEhdeoqqA=)
2: OKDIgmwYvNUTqqflIIH_n9N5Gfs.crl (hash: l7EkFug8DGGP5nkz5TIf8UTFZmziD6gCj/1Lc6YtdsA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bc:3c:67:29:2f:f6:45:ed:a2:70:db:6f:cc:91:02:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a0c8826c18bcd513aaa7e52081ff9fd37919fb
Validity
Not Before: Jan 31 12:01:02 2025 GMT
Not After : Feb 1 12:01:02 2025 GMT
Subject: CN=420c553ce230db79863fd45ca1f4497b530ed6ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:03:28:f6:e4:a2:ba:17:d9:a5:fb:35:fc:45:
56:7f:9c:b6:55:77:1b:6e:a5:9b:fe:92:8b:84:e8:
ee:da:4b:ec:7e:6f:d4:f8:f0:a8:4d:10:a3:9d:07:
b6:42:33:e9:36:56:d0:e5:71:ae:5d:a6:fe:66:3c:
e7:2c:63:b1:91:fa:49:42:00:2f:39:e8:92:08:04:
81:05:29:cf:50:34:a0:ef:3c:53:52:70:47:b8:0b:
a0:30:61:55:21:24:91:d1:14:e1:50:82:20:32:f0:
6c:d8:9f:b2:c8:3d:b9:53:f2:58:dc:77:7a:ec:da:
33:e2:a1:ad:38:b6:5b:13:26:17:be:23:74:bb:a6:
ff:36:1e:20:d6:67:43:cb:f7:be:0b:04:4f:a0:d0:
7a:b2:4a:da:f0:d0:c2:ef:19:c6:f7:b0:97:47:42:
18:ef:ad:eb:14:9a:f7:96:41:cf:ae:fd:5a:05:cf:
a5:54:e0:75:74:b3:28:e6:2f:c4:74:b7:20:bd:a9:
9e:6b:c6:e1:ab:8b:a8:e3:39:d1:1b:a1:e7:34:09:
6a:92:18:df:75:13:0c:68:d0:98:11:be:e0:b1:c9:
06:62:86:f8:74:ee:60:37:47:de:f9:e1:4e:45:f1:
7d:7f:21:b8:93:52:ef:2d:e1:96:f3:a0:2d:47:79:
30:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:0C:55:3C:E2:30:DB:79:86:3F:D4:5C:A1:F4:49:7B:53:0E:D6:ED
X509v3 Authority Key Identifier:
keyid:38:A0:C8:82:6C:18:BC:D5:13:AA:A7:E5:20:81:FF:9F:D3:79:19:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKDIgmwYvNUTqqflIIH_n9N5Gfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/29638b-12ca-49ef-94e9-0502a6a54aab/1/OKDIgmwYvNUTqqflIIH_n9N5Gfs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/29638b-12ca-49ef-94e9-0502a6a54aab/1/OKDIgmwYvNUTqqflIIH_n9N5Gfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:1b:6a:dd:00:3d:d3:8b:a1:7d:48:94:a0:95:14:ce:7a:70:
e6:b4:ea:18:b8:95:51:c8:b1:40:e0:0d:44:17:f8:a0:de:5d:
d0:71:78:70:70:b4:23:05:81:d4:76:ad:eb:f6:b6:fe:e7:22:
5d:c6:00:f4:bc:d5:1e:58:0d:81:c3:7c:54:3f:d8:b8:98:2e:
c3:e8:5c:74:4c:9e:8e:46:4a:cf:f4:f9:97:33:04:b3:40:88:
18:a0:c5:63:89:0d:f0:25:4b:fb:14:90:eb:5a:31:b8:87:94:
be:ea:25:c0:0e:1a:84:be:c9:68:28:c0:b1:c8:5d:07:f7:8b:
31:15:5f:5c:e4:4e:0a:6b:d5:64:83:79:f1:2b:38:fb:70:8e:
a4:48:e4:27:18:55:a9:60:12:cd:e1:7e:a3:df:00:d6:e6:28:
ca:07:1c:c4:a0:ae:2e:2a:df:de:fc:b1:54:f4:09:8d:21:1d:
22:31:a5:31:27:cf:37:49:e1:3a:72:5f:b8:c0:82:8b:60:cf:
7f:ca:86:bc:16:8e:82:95:bd:26:38:5a:d6:da:d0:80:52:91:
89:a0:9d:43:b9:6c:9f:40:1b:e4:0d:ef:a1:19:e0:3d:fc:cc:
e5:8f:a8:13:79:4f:3a:18:0d:a7:20:f8:5a:4e:33:e6:1c:86:
f8:0b:57:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS8PGcpL/ZF7aJw22/MkQK0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4YTBjODgyNmMxOGJjZDUxM2FhYTdlNTIwODFmZjlmZDM3
OTE5ZmIwHhcNMjUwMTMxMTIwMTAyWhcNMjUwMjAxMTIwMTAyWjAzMTEwLwYDVQQD
Eyg0MjBjNTUzY2UyMzBkYjc5ODYzZmQ0NWNhMWY0NDk3YjUzMGVkNmVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAswMo9uSiuhfZpfs1/EVWf5y2VXcb
bqWb/pKLhOju2kvsfm/U+PCoTRCjnQe2QjPpNlbQ5XGuXab+ZjznLGOxkfpJQgAv
OeiSCASBBSnPUDSg7zxTUnBHuAugMGFVISSR0RThUIIgMvBs2J+yyD25U/JY3Hd6
7Noz4qGtOLZbEyYXviN0u6b/Nh4g1mdDy/e+CwRPoNB6skra8NDC7xnG97CXR0IY
763rFJr3lkHPrv1aBc+lVOB1dLMo5i/EdLcgvamea8bhq4uo4znRG6HnNAlqkhjf
dRMMaNCYEb7gsckGYob4dO5gN0fe+eFORfF9fyG4k1LvLeGW86AtR3kwxQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEIMVTziMNt5hj/UXKH0SXtTDtbtMB8GA1UdIwQY
MBaAFDigyIJsGLzVE6qn5SCB/5/TeRn7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT0tESWdtd1l2TlVUcXFmbElJSF9uOU41R2ZzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8yOTYzOGItMTJjYS00OWVmLTk0ZTkt
MDUwMmE2YTU0YWFiLzEvT0tESWdtd1l2TlVUcXFmbElJSF9uOU41R2ZzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Zi8yOTYzOGItMTJjYS00OWVmLTk0ZTktMDUwMmE2YTU0YWFi
LzEvT0tESWdtd1l2TlVUcXFmbElJSF9uOU41R2ZzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFRtq3QA9
04uhfUiUoJUUznpw5rTqGLiVUcixQOANRBf4oN5d0HF4cHC0IwWB1Hat6/a2/uci
XcYA9LzVHlgNgcN8VD/YuJguw+hcdEyejkZKz/T5lzMEs0CIGKDFY4kN8CVL+xSQ
61oxuIeUvuolwA4ahL7JaCjAschdB/eLMRVfXOROCmvVZIN58Ss4+3COpEjkJxhV
qWASzeF+o98A1uYoygccxKCuLirf3vyxVPQJjSEdIjGlMSfPN0nhOnJfuMCCi2DP
f8qGvBaOgpW9Jjha1trQgFKRiaCdQ7lsn0Ab5A3voRngPfzM5Y+oE3lPOhgNpyD4
Wk4z5hyG+AtXRA==
-----END CERTIFICATE-----
Generated at Thu Apr 24 21:51:15 2025 by rpki-client