
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
File: aqNKS6w794E80qZrT0W5x4bdNUI.mft (raw, json)
Hash identifier: FsXtDjXgDglpQvio6dkLnsnO+saxr0Jesw3e3jKjo/Q=
Subject key identifier: 9C:64:50:3D:CF:B1:A4:D3:0B:63:FD:8D:0D:17:F5:F2:7F:74:07:A9
Authority key identifier: 6A:A3:4A:4B:AC:3B:F7:81:3C:D2:A6:6B:4F:45:B9:C7:86:DD:35:42
Certificate issuer: /CN=6aa34a4bac3bf7813cd2a66b4f45b9c786dd3542
Certificate serial: 019733F2B4606CF30083F5666884A5F33B9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aqNKS6w794E80qZrT0W5x4bdNUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
Manifest number: 07C0
Signing time: Tue 03 Jun 2025 04:00:33 +0000
Manifest this update: Tue 03 Jun 2025 04:00:33 +0000
Manifest next update: Wed 04 Jun 2025 04:00:33 +0000
Files and hashes: 1: aqNKS6w794E80qZrT0W5x4bdNUI.crl (hash: TJaJYfwKdtMBuCJD2nMKYWyhIDzMo3cVxD2cOeS2+24=)
2: b9B102wOebSEH0EiAU4o7haSTNE.roa (hash: w8TiYlYrrX0BopJEemJvanYXKIEW88KrCZAniAUGX7I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:33:f2:b4:60:6c:f3:00:83:f5:66:68:84:a5:f3:3b:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aa34a4bac3bf7813cd2a66b4f45b9c786dd3542
Validity
Not Before: Jun 3 04:00:33 2025 GMT
Not After : Jun 4 04:00:33 2025 GMT
Subject: CN=9c64503dcfb1a4d30b63fd8d0d17f5f27f7407a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:87:7d:94:87:a9:0e:15:3a:79:5f:76:b3:79:
87:36:2a:6c:7c:df:a0:bd:cc:96:28:2d:b0:32:fc:
fe:72:84:e9:e5:20:dd:95:ef:34:54:96:41:0b:91:
e0:53:71:3b:15:6f:55:ec:22:01:20:ad:87:94:03:
55:96:00:cd:81:48:28:34:d6:7d:81:b5:fc:6d:73:
7e:e8:16:50:ef:13:e1:bd:57:7f:d6:49:ce:a9:22:
16:e8:32:85:14:e5:3a:3e:b5:1c:02:bc:07:7b:06:
ce:5f:21:38:c8:39:af:42:44:71:80:ed:f1:07:6b:
a0:60:fc:18:86:29:b0:e9:2c:42:d2:48:df:32:11:
68:ec:fd:5e:87:21:c3:b8:f5:44:af:97:85:dc:13:
39:13:5d:a9:bc:c9:74:0c:b6:fe:cc:65:ee:a4:7b:
83:26:c5:a4:65:20:0f:7e:43:fa:e1:51:00:68:1d:
df:5a:7e:de:e7:5c:04:2f:81:d8:82:4c:8f:2c:db:
05:dd:cd:fe:5d:59:30:fa:42:fe:c6:03:11:b8:10:
db:db:3f:65:03:23:55:ee:78:1e:d2:01:1e:c6:06:
ef:8e:76:a5:86:6b:aa:ea:a1:34:c4:ce:5f:85:c0:
72:9b:a7:bd:8e:19:ce:cb:24:de:39:a1:18:12:aa:
15:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:64:50:3D:CF:B1:A4:D3:0B:63:FD:8D:0D:17:F5:F2:7F:74:07:A9
X509v3 Authority Key Identifier:
keyid:6A:A3:4A:4B:AC:3B:F7:81:3C:D2:A6:6B:4F:45:B9:C7:86:DD:35:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aqNKS6w794E80qZrT0W5x4bdNUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/cc920d-8109-4119-b840-664ef0da8c30/1/aqNKS6w794E80qZrT0W5x4bdNUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:04:dc:57:fe:d9:46:3c:f2:54:d7:39:72:16:4b:6f:10:18:
aa:df:f1:67:3b:6e:35:f1:23:92:49:7c:3d:4e:55:c3:e2:90:
86:4f:18:62:23:69:ff:11:e6:c0:2e:f5:7a:ec:36:bb:44:d7:
f2:ff:e6:a5:94:c5:d2:da:c9:7c:4c:60:9c:e8:4c:40:70:bc:
8d:82:c0:d9:7d:6b:c3:5d:3e:e9:30:db:61:41:19:ef:6f:07:
63:6a:57:7f:ef:4f:9c:ef:ca:2d:d8:7e:67:5a:a2:ee:fa:36:
7d:82:df:e3:23:f7:9d:17:52:b7:1a:f8:02:03:5e:84:a8:ad:
0c:06:c1:59:b7:a4:48:e3:2e:32:a9:99:c9:1d:8a:6f:17:68:
7a:f8:ff:79:f9:be:bd:4d:8f:f8:14:cb:44:f3:f5:a1:4c:8c:
05:ce:86:d8:ab:bd:c8:4c:21:07:d3:b3:61:3c:9e:6e:b9:23:
1e:88:d9:7f:15:94:ea:77:c7:f3:f2:2d:05:1d:d2:2b:da:6b:
4f:77:2f:92:78:80:c1:aa:da:7a:e6:70:42:4c:8f:e1:94:ff:
15:7d:a9:14:d4:22:24:5c:85:01:f3:8d:61:95:5e:f1:bd:2a:
66:e1:d8:59:04:e9:f8:4d:e1:a8:4a:a9:0d:14:d9:a0:55:2e:
a2:22:db:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:42:14 2025 by rpki-client