Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
File: OkjgM962SsQkPHLOiZ1Tgi32mW0.mft (raw, json)
Hash identifier: 99aCs4ETvxDpYREL3tuLAUrCEidumcnH/f/2Z5Ld3I4=
Subject key identifier: 2C:EB:D9:CD:61:0F:67:E1:82:39:72:96:C1:D7:BF:0F:35:06:A3:BA
Authority key identifier: 3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
Certificate issuer: /CN=3a48e033deb64ac4243c72ce899d53822df6996d
Certificate serial: 0194BD174B038EE3EF7929C2601636A5E26B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
Manifest number: 13BC
Signing time: Fri 31 Jan 2025 16:00:07 +0000
Manifest this update: Fri 31 Jan 2025 16:00:07 +0000
Manifest next update: Sat 01 Feb 2025 16:00:07 +0000
Files and hashes: 1: OkjgM962SsQkPHLOiZ1Tgi32mW0.crl (hash: wsulzbl07WGBY8s0R4rDZhzqmlP3Q/KZ2/5+1Yq3648=)
2: oU-Dh2GrIk6DJo0B3ckZobCZQLg.roa (hash: 3M/n9wvPmKU+uLTP2MTaGav/2cb5GDciUi4YXKv/+G0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bd:17:4b:03:8e:e3:ef:79:29:c2:60:16:36:a5:e2:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48e033deb64ac4243c72ce899d53822df6996d
Validity
Not Before: Jan 31 16:00:07 2025 GMT
Not After : Feb 1 16:00:07 2025 GMT
Subject: CN=2cebd9cd610f67e182397296c1d7bf0f3506a3ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ed:51:03:9e:d4:eb:3c:07:d7:f9:62:b4:fb:
c5:da:d3:7d:40:6a:86:2a:f4:b3:64:23:ee:40:27:
0a:47:03:cc:03:a6:90:ae:c2:5f:37:79:d0:41:0c:
6d:fc:ff:9a:56:90:7b:b8:c5:ae:3b:7d:c9:e1:c7:
d1:db:64:5b:a2:94:ec:33:5d:60:ba:e1:c4:1a:4c:
37:c1:25:f0:f4:e0:43:1e:a3:55:af:dc:99:bb:68:
1c:b1:f1:8b:5c:cd:ee:d4:ec:3e:13:77:03:93:03:
9a:94:f5:67:46:99:ef:18:44:db:de:ca:7e:da:59:
6a:e2:fe:ae:1c:1d:eb:fb:09:62:72:4e:ab:23:e1:
33:cc:de:fb:5e:7d:fa:23:a4:86:85:0c:40:8f:87:
bf:b1:d8:69:8f:b8:6f:f9:13:e9:b1:75:d1:06:68:
80:95:0f:eb:08:7e:e0:d1:08:9a:3e:28:13:97:dd:
f0:07:b3:0e:12:d5:b1:7a:3f:41:6a:fc:ad:a8:d3:
dc:a5:c6:6a:48:7a:bb:21:78:0e:24:d0:a0:32:15:
80:dd:21:cd:fc:5d:ca:65:5c:73:c8:f9:c9:9f:36:
9c:8e:b8:07:50:65:e5:41:e3:c5:28:5f:61:44:50:
b1:53:5f:ee:3d:14:95:9e:c9:a2:5b:7c:3e:86:2b:
73:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:EB:D9:CD:61:0F:67:E1:82:39:72:96:C1:D7:BF:0F:35:06:A3:BA
X509v3 Authority Key Identifier:
keyid:3A:48:E0:33:DE:B6:4A:C4:24:3C:72:CE:89:9D:53:82:2D:F6:99:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjgM962SsQkPHLOiZ1Tgi32mW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/7fa7b0-ace4-492d-8e91-c5321dc9e64b/1/OkjgM962SsQkPHLOiZ1Tgi32mW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:1a:c5:a0:5b:cd:b2:86:ac:28:65:c0:18:30:3f:14:e0:6d:
72:3d:08:fb:5a:f8:24:43:5c:d3:7b:8f:c9:97:0d:7d:72:5a:
df:9b:cd:5f:80:b8:9b:e5:16:44:93:7f:40:bd:1e:7a:ac:ec:
43:d6:17:d6:f3:94:0c:ef:2d:04:3a:b6:b8:42:20:9c:88:d3:
b6:bf:ce:65:d8:c1:c6:6f:43:9d:c0:1f:26:c3:90:a2:8e:17:
dc:9b:16:81:5c:83:ac:b0:2c:cf:de:ce:a3:28:13:4b:a2:db:
38:fb:fa:a3:06:5d:7d:58:b6:39:77:de:86:28:cc:79:39:02:
a5:43:7d:64:0e:6a:0b:55:4e:93:c7:27:e8:34:1f:33:09:c7:
98:be:08:bb:19:6e:a5:12:1b:ff:7d:e6:6b:b9:d8:12:ea:42:
46:40:6e:9b:64:a4:fc:96:ec:3c:49:43:53:70:a6:47:d9:eb:
0c:c2:bf:94:2e:b1:57:e7:f1:11:00:fa:6c:6f:cd:7a:8c:05:
8e:00:7c:34:3e:69:95:a2:e2:a1:6a:ce:df:2a:71:d2:63:c3:
94:53:91:bb:c2:6f:f0:f7:77:61:60:51:07:56:83:4c:f4:62:
d2:0e:07:40:18:3d:66:3b:d3:8e:ea:72:4d:90:99:9b:ef:0d:
10:92:06:73
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS9F0sDjuPveSnCYBY2peJrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNhNDhlMDMzZGViNjRhYzQyNDNjNzJjZTg5OWQ1MzgyMmRm
Njk5NmQwHhcNMjUwMTMxMTYwMDA3WhcNMjUwMjAxMTYwMDA3WjAzMTEwLwYDVQQD
EygyY2ViZDljZDYxMGY2N2UxODIzOTcyOTZjMWQ3YmYwZjM1MDZhM2JhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAre1RA57U6zwH1/litPvF2tN9QGqG
KvSzZCPuQCcKRwPMA6aQrsJfN3nQQQxt/P+aVpB7uMWuO33J4cfR22RbopTsM11g
uuHEGkw3wSXw9OBDHqNVr9yZu2gcsfGLXM3u1Ow+E3cDkwOalPVnRpnvGETb3sp+
2llq4v6uHB3r+wlick6rI+EzzN77Xn36I6SGhQxAj4e/sdhpj7hv+RPpsXXRBmiA
lQ/rCH7g0QiaPigTl93wB7MOEtWxej9BavytqNPcpcZqSHq7IXgOJNCgMhWA3SHN
/F3KZVxzyPnJnzacjrgHUGXlQePFKF9hRFCxU1/uPRSVnsmiW3w+hitzFQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCzr2c1hD2fhgjlylsHXvw81BqO6MB8GA1UdIwQY
MBaAFDpI4DPetkrEJDxyzomdU4It9pltMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy83ZmE3YjAtYWNlNC00OTJkLThlOTEt
YzUzMjFkYzllNjRiLzEvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy83ZmE3YjAtYWNlNC00OTJkLThlOTEtYzUzMjFkYzllNjRi
LzEvT2tqZ005NjJTc1FrUEhMT2laMVRnaTMybVcwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQhrFoFvN
soasKGXAGDA/FOBtcj0I+1r4JENc03uPyZcNfXJa35vNX4C4m+UWRJN/QL0eeqzs
Q9YX1vOUDO8tBDq2uEIgnIjTtr/OZdjBxm9DncAfJsOQoo4X3JsWgVyDrLAsz97O
oygTS6LbOPv6owZdfVi2OXfehijMeTkCpUN9ZA5qC1VOk8cn6DQfMwnHmL4Iuxlu
pRIb/33ma7nYEupCRkBum2Sk/JbsPElDU3CmR9nrDMK/lC6xV+fxEQD6bG/NeowF
jgB8ND5plaLioWrO3ypx0mPDlFORu8Jv8Pd3YWBRB1aDTPRi0g4HQBg9ZjvTjupy
TZCZm+8NEJIGcw==
-----END CERTIFICATE-----
Generated at Fri Apr 25 14:22:29 2025 by rpki-client