Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7ca958-b303-4c02-9d9b-69bd5224fec0/1/hPIXCGwc0XI9dXsvlZcA4GntHYY.mft
File: hPIXCGwc0XI9dXsvlZcA4GntHYY.mft (raw, json)
Hash identifier: ki8tIx/12ee+V3QCZQcrCKJWk7g76WmXPG9jXw/KJCk=
Subject key identifier: EB:FB:6C:76:B9:83:20:C1:E6:7A:71:77:D4:B0:70:9B:89:2B:30:B8
Authority key identifier: 84:F2:17:08:6C:1C:D1:72:3D:75:7B:2F:95:97:00:E0:69:ED:1D:86
Certificate issuer: /CN=84f217086c1cd1723d757b2f959700e069ed1d86
Certificate serial: 01975DCB9B2982FBDA97E3DDD15887318780
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPIXCGwc0XI9dXsvlZcA4GntHYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7ca958-b303-4c02-9d9b-69bd5224fec0/1/hPIXCGwc0XI9dXsvlZcA4GntHYY.mft
Manifest number: 087F
Signing time: Wed 11 Jun 2025 07:01:54 +0000
Manifest this update: Wed 11 Jun 2025 07:01:54 +0000
Manifest next update: Thu 12 Jun 2025 07:01:54 +0000
Files and hashes: 1: hPIXCGwc0XI9dXsvlZcA4GntHYY.crl (hash: snDO6bVv8TiIcchymzhCe4IX6p2ZHJQF12EKlOMTk8E=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5d:cb:9b:29:82:fb:da:97:e3:dd:d1:58:87:31:87:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f217086c1cd1723d757b2f959700e069ed1d86
Validity
Not Before: Jun 11 07:01:54 2025 GMT
Not After : Jun 12 07:01:54 2025 GMT
Subject: CN=ebfb6c76b98320c1e67a7177d4b0709b892b30b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:98:45:de:19:c6:04:9e:13:6d:0e:3d:89:73:
d8:02:97:39:5c:95:fb:52:66:f5:39:c9:a6:54:80:
5b:7e:59:6c:89:94:ec:5a:6c:79:a1:83:7e:52:6d:
46:2b:a6:29:ef:ae:03:2b:47:12:95:cc:53:9a:f4:
12:25:e3:f9:9f:29:23:e7:28:e4:b9:97:22:04:b6:
94:ce:a9:06:d3:7b:34:cf:f0:00:24:d3:33:2a:86:
a6:5f:1c:fc:47:ac:e6:ed:fd:43:11:54:56:c5:6a:
eb:5d:8e:50:95:85:0d:75:43:49:90:5c:5c:65:61:
c6:c4:57:7d:c7:9f:aa:77:94:85:09:70:3d:0e:64:
89:e4:8f:d9:16:af:1b:05:54:96:73:a1:66:ac:d8:
ff:f3:55:c5:7d:83:ff:2b:25:e8:44:c8:df:69:e4:
25:1d:8b:c1:9b:fc:14:3f:db:b5:10:d1:1b:df:2b:
a5:00:5c:61:24:59:cb:0c:18:a2:67:87:b0:c6:39:
29:ea:2f:78:37:1d:14:dc:1d:fa:30:22:f7:cc:de:
45:dd:fa:18:50:fd:71:c1:ff:16:be:04:73:45:48:
34:39:47:2d:a3:4a:98:0f:03:56:a6:aa:91:a4:7a:
b6:1e:72:ac:9a:2a:8f:6d:5e:2b:62:87:61:e0:04:
ee:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:FB:6C:76:B9:83:20:C1:E6:7A:71:77:D4:B0:70:9B:89:2B:30:B8
X509v3 Authority Key Identifier:
keyid:84:F2:17:08:6C:1C:D1:72:3D:75:7B:2F:95:97:00:E0:69:ED:1D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPIXCGwc0XI9dXsvlZcA4GntHYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7ca958-b303-4c02-9d9b-69bd5224fec0/1/hPIXCGwc0XI9dXsvlZcA4GntHYY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7ca958-b303-4c02-9d9b-69bd5224fec0/1/hPIXCGwc0XI9dXsvlZcA4GntHYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:15:3f:56:52:17:b0:2e:2c:c5:ae:62:12:08:08:bc:86:24:
34:87:59:7e:60:b8:45:0f:64:e8:70:c2:1d:9e:f4:c9:1d:cc:
98:55:af:8d:17:5b:6d:8d:2a:bc:40:da:16:4d:30:5e:be:89:
44:47:e8:24:c4:51:5e:2d:eb:09:c2:e9:6d:20:b4:c8:28:2b:
dc:9d:17:ae:12:f9:4f:66:4f:ea:05:d2:e5:9c:83:65:51:49:
31:db:62:1d:8b:c2:4c:16:bf:3b:13:fd:35:b8:66:5b:2b:5f:
15:7c:88:24:30:30:4f:c3:a5:31:c4:55:4c:44:b4:2f:ef:8a:
10:fa:c0:1d:c3:b5:00:20:ac:d4:24:2c:b7:98:59:11:e8:02:
37:12:7e:d9:26:53:eb:07:e4:be:4c:61:13:b6:0d:ff:03:51:
61:52:4b:75:38:9d:40:e4:9d:77:82:37:5f:df:be:26:e8:48:
03:d3:ea:2b:fe:71:df:4d:3b:55:38:b7:9b:fa:37:fd:56:3b:
19:23:8a:4b:7f:00:df:dd:96:e1:67:74:b0:d4:ea:cf:17:c2:
af:e1:2c:16:fb:29:d2:9d:5e:89:5a:46:f3:f5:a2:f6:d2:ea:
07:a1:15:c2:6a:92:88:c1:29:81:d7:9f:4c:a1:21:d2:31:8c:
90:88:80:7a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZddy5spgvval+Pd0ViHMYeAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDg0ZjIxNzA4NmMxY2QxNzIzZDc1N2IyZjk1OTcwMGUwNjll
ZDFkODYwHhcNMjUwNjExMDcwMTU0WhcNMjUwNjEyMDcwMTU0WjAzMTEwLwYDVQQD
EyhlYmZiNmM3NmI5ODMyMGMxZTY3YTcxNzdkNGIwNzA5Yjg5MmIzMGI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsphF3hnGBJ4TbQ49iXPYApc5XJX7
Umb1OcmmVIBbfllsiZTsWmx5oYN+Um1GK6Yp764DK0cSlcxTmvQSJeP5nykj5yjk
uZciBLaUzqkG03s0z/AAJNMzKoamXxz8R6zm7f1DEVRWxWrrXY5QlYUNdUNJkFxc
ZWHGxFd9x5+qd5SFCXA9DmSJ5I/ZFq8bBVSWc6FmrNj/81XFfYP/KyXoRMjfaeQl
HYvBm/wUP9u1ENEb3yulAFxhJFnLDBiiZ4ewxjkp6i94Nx0U3B36MCL3zN5F3foY
UP1xwf8WvgRzRUg0OUcto0qYDwNWpqqRpHq2HnKsmiqPbV4rYodh4ATuhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOv7bHa5gyDB5npxd9SwcJuJKzC4MB8GA1UdIwQY
MBaAFITyFwhsHNFyPXV7L5WXAOBp7R2GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaFBJWENHd2MwWEk5ZFhzdmxaY0E0R250SFlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My83Y2E5NTgtYjMwMy00YzAyLTlkOWIt
NjliZDUyMjRmZWMwLzEvaFBJWENHd2MwWEk5ZFhzdmxaY0E0R250SFlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My83Y2E5NTgtYjMwMy00YzAyLTlkOWItNjliZDUyMjRmZWMw
LzEvaFBJWENHd2MwWEk5ZFhzdmxaY0E0R250SFlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAThU/VlIX
sC4sxa5iEggIvIYkNIdZfmC4RQ9k6HDCHZ70yR3MmFWvjRdbbY0qvEDaFk0wXr6J
REfoJMRRXi3rCcLpbSC0yCgr3J0XrhL5T2ZP6gXS5ZyDZVFJMdtiHYvCTBa/OxP9
NbhmWytfFXyIJDAwT8OlMcRVTES0L++KEPrAHcO1ACCs1CQst5hZEegCNxJ+2SZT
6wfkvkxhE7YN/wNRYVJLdTidQOSdd4I3X9++JuhIA9PqK/5x3007VTi3m/o3/VY7
GSOKS38A392W4Wd0sNTqzxfCr+EsFvsp0p1eiVpG8/Wi9tLqB6EVwmqSiMEpgdef
TKEh0jGMkIiAeg==
-----END CERTIFICATE-----
Generated at Sat Jun 14 09:51:53 2025 by rpki-client