Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
File: qoCTNU5WWsSDilH0fSdpdpxmlE4.mft (raw, json)
Hash identifier: L1Ag6JsF3r0xj7vOr6jLf+O1pQyCSFgILcsGdpvIo+w=
Subject key identifier: 20:BB:78:D4:B4:CE:BA:1D:53:A5:0A:E8:7B:2D:67:10:FD:3A:FF:AA
Authority key identifier: AA:80:93:35:4E:56:5A:C4:83:8A:51:F4:7D:27:69:76:9C:66:94:4E
Certificate issuer: /CN=aa8093354e565ac4838a51f47d2769769c66944e
Certificate serial: 019786FD0B64846FC7CA95F7C7F703A1A97C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
Manifest number: 0CC5
Signing time: Thu 19 Jun 2025 07:00:19 +0000
Manifest this update: Thu 19 Jun 2025 07:00:19 +0000
Manifest next update: Fri 20 Jun 2025 07:00:19 +0000
Files and hashes: 1: ZLWyuBUCt9zFxazwwbh7yb1QxX8.roa (hash: 3SdpbSxYjCjCYkTQyy2TBjnfRY/eKE3ltVUJz5yw6+M=)
2: qoCTNU5WWsSDilH0fSdpdpxmlE4.crl (hash: Cc1deN6oJxs0xvJfoz22Nmd1JdUjnWem3LyuGAgrA/M=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:86:fd:0b:64:84:6f:c7:ca:95:f7:c7:f7:03:a1:a9:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa8093354e565ac4838a51f47d2769769c66944e
Validity
Not Before: Jun 19 07:00:19 2025 GMT
Not After : Jun 20 07:00:19 2025 GMT
Subject: CN=20bb78d4b4ceba1d53a50ae87b2d6710fd3affaa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:34:7d:7f:6a:c2:f3:ef:e7:21:2c:79:46:6d:
54:5e:f9:3b:72:8b:d9:bb:3c:18:b1:39:aa:1f:d2:
eb:71:e0:b3:25:bd:8e:51:da:84:50:cd:a8:5c:36:
d9:19:20:cf:97:a4:e1:a9:00:2f:81:17:18:db:38:
a1:1b:7c:bf:0f:70:a0:43:0f:fb:78:40:02:a2:70:
31:bd:0a:42:34:7f:43:23:7b:e7:c2:26:1b:6e:56:
c2:9f:cb:44:82:67:a6:14:62:7d:89:ec:c1:81:0d:
f3:16:4c:85:f4:3d:1f:ec:de:62:03:40:b8:cd:73:
26:b3:96:b9:a1:9a:34:2b:d8:56:76:1e:ce:75:5d:
26:35:6b:f9:82:b2:70:31:59:30:c3:f4:00:92:38:
b2:8d:f2:42:cc:15:92:d7:bb:c0:43:08:66:ce:dd:
8b:25:30:f0:44:9f:2b:03:6a:29:b7:f1:4e:29:0c:
df:87:39:ae:01:99:db:a5:fd:f1:38:d8:50:e1:48:
b4:f3:f2:ac:be:87:c8:ad:65:5a:1f:02:a4:15:33:
8f:51:3f:86:16:3b:95:be:03:f7:e0:f9:98:09:2b:
07:26:9c:73:54:35:80:42:6b:9a:6c:82:0b:6c:f2:
50:21:a0:ff:ad:d2:d3:5b:69:57:a7:05:07:5d:db:
0f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:BB:78:D4:B4:CE:BA:1D:53:A5:0A:E8:7B:2D:67:10:FD:3A:FF:AA
X509v3 Authority Key Identifier:
keyid:AA:80:93:35:4E:56:5A:C4:83:8A:51:F4:7D:27:69:76:9C:66:94:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoCTNU5WWsSDilH0fSdpdpxmlE4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ee9ddc-acd0-481d-8c0b-788b46e10497/1/qoCTNU5WWsSDilH0fSdpdpxmlE4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:80:88:73:5f:67:fc:c1:78:7a:54:51:19:65:b0:07:4d:f4:
ba:57:a0:a1:47:66:63:33:82:94:b3:5f:32:cc:14:8b:67:7b:
0f:a0:87:de:f1:a2:8b:cc:bf:da:ee:ea:c2:c8:b4:d8:8d:a2:
55:92:7b:53:7d:a8:22:fe:6a:34:f2:05:64:62:ef:13:11:b3:
14:a4:81:72:89:4b:3e:97:31:d1:94:e8:2a:e8:42:ea:60:90:
c5:e3:45:14:74:c2:70:93:0b:25:5b:dd:47:fb:ab:05:ab:6b:
3e:1a:c8:64:48:7d:06:a5:e3:ad:d4:5d:dd:ea:69:a5:af:db:
9b:32:35:f8:2f:26:f2:a0:02:7d:8a:04:f7:eb:c6:71:17:aa:
fb:f5:89:9d:64:e3:e7:f1:a5:eb:ea:68:a9:33:3e:4e:07:0a:
b1:18:a8:2f:98:99:f2:f9:d8:d8:03:2b:4e:b7:2e:52:42:f9:
f4:9e:00:e4:33:9e:b6:bf:50:a6:52:83:77:0a:d2:00:41:ea:
04:db:4d:99:b8:58:ad:84:bf:a4:ce:7a:78:a9:e8:9a:f8:62:
a8:3d:dc:ae:d0:a1:9d:ab:ea:78:b9:8a:9c:40:08:73:fe:9d:
e1:f7:be:9a:0b:91:8a:3e:a9:63:a8:d4:92:5e:a5:1e:cb:18:
e0:85:8d:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeG/QtkhG/HypX3x/cDoal8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhODA5MzM1NGU1NjVhYzQ4MzhhNTFmNDdkMjc2OTc2OWM2
Njk0NGUwHhcNMjUwNjE5MDcwMDE5WhcNMjUwNjIwMDcwMDE5WjAzMTEwLwYDVQQD
EygyMGJiNzhkNGI0Y2ViYTFkNTNhNTBhZTg3YjJkNjcxMGZkM2FmZmFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhzR9f2rC8+/nISx5Rm1UXvk7covZ
uzwYsTmqH9LrceCzJb2OUdqEUM2oXDbZGSDPl6ThqQAvgRcY2zihG3y/D3CgQw/7
eEAConAxvQpCNH9DI3vnwiYbblbCn8tEgmemFGJ9iezBgQ3zFkyF9D0f7N5iA0C4
zXMms5a5oZo0K9hWdh7OdV0mNWv5grJwMVkww/QAkjiyjfJCzBWS17vAQwhmzt2L
JTDwRJ8rA2opt/FOKQzfhzmuAZnbpf3xONhQ4Ui08/KsvofIrWVaHwKkFTOPUT+G
FjuVvgP34PmYCSsHJpxzVDWAQmuabIILbPJQIaD/rdLTW2lXpwUHXdsPuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCC7eNS0zrodU6UK6HstZxD9Ov+qMB8GA1UdIwQY
MBaAFKqAkzVOVlrEg4pR9H0naXacZpROMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcW9DVE5VNVdXc1NEaWxIMGZTZHBkcHhtbEU0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9lZTlkZGMtYWNkMC00ODFkLThjMGIt
Nzg4YjQ2ZTEwNDk3LzEvcW9DVE5VNVdXc1NEaWxIMGZTZHBkcHhtbEU0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS9lZTlkZGMtYWNkMC00ODFkLThjMGItNzg4YjQ2ZTEwNDk3
LzEvcW9DVE5VNVdXc1NEaWxIMGZTZHBkcHhtbEU0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC4CIc19n
/MF4elRRGWWwB030ulegoUdmYzOClLNfMswUi2d7D6CH3vGii8y/2u7qwsi02I2i
VZJ7U32oIv5qNPIFZGLvExGzFKSBcolLPpcx0ZToKuhC6mCQxeNFFHTCcJMLJVvd
R/urBatrPhrIZEh9BqXjrdRd3epppa/bmzI1+C8m8qACfYoE9+vGcReq+/WJnWTj
5/Gl6+poqTM+TgcKsRioL5iZ8vnY2AMrTrcuUkL59J4A5DOetr9QplKDdwrSAEHq
BNtNmbhYrYS/pM56eKnomvhiqD3crtChnavqeLmKnEAIc/6d4fe+mguRij6pY6jU
kl6lHssY4IWNAA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 20:30:06 2025 by rpki-client