Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
File: BzzBj8cG31qZM7C-INzLBGdb9HQ.mft (raw, json)
Hash identifier: WqJGoCtOSo+gXcSd4ErwFrL4m5W8+2Q/Rg0t4JcIqKw=
Subject key identifier: 5B:69:9B:C9:94:5D:BC:EB:6A:69:5B:AF:2D:22:6F:BA:A5:7E:86:52
Authority key identifier: 07:3C:C1:8F:C7:06:DF:5A:99:33:B0:BE:20:DC:CB:04:67:5B:F4:74
Certificate issuer: /CN=073cc18fc706df5a9933b0be20dccb04675bf474
Certificate serial: 019A0B5E4036CB0DB11C54666CC943F86057
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
Manifest number: 13C4
Signing time: Wed 22 Oct 2025 10:01:57 +0000
Manifest this update: Wed 22 Oct 2025 10:01:57 +0000
Manifest next update: Thu 23 Oct 2025 10:01:57 +0000
Files and hashes: 1: BzzBj8cG31qZM7C-INzLBGdb9HQ.crl (hash: 4TVOqCz3VgbzkPXkkQk4VA+31B2YSeMCf3j73jg9rI4=)
2: goFsxxYVVDsH1YxnuVEoHVEyuUQ.roa (hash: H+4TEC+hHsfjX7/LNloV4KRFUkMNXemYneHOCftwWZE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0b:5e:40:36:cb:0d:b1:1c:54:66:6c:c9:43:f8:60:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073cc18fc706df5a9933b0be20dccb04675bf474
Validity
Not Before: Oct 22 10:01:57 2025 GMT
Not After : Oct 23 10:01:57 2025 GMT
Subject: CN=5b699bc9945dbceb6a695baf2d226fbaa57e8652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e4:80:f2:5c:0b:10:03:e9:b4:7b:d2:30:6c:
84:e8:e7:31:ba:4e:b7:b6:70:2c:8d:87:cc:bb:bf:
64:14:3b:1e:89:32:fa:2a:1a:74:da:54:c9:b4:72:
1f:f7:94:69:3e:ab:32:a2:d5:07:3b:f0:9b:6d:93:
7d:7a:bb:a4:1e:89:1c:6f:bc:2e:df:ed:c6:cd:e7:
f6:7a:15:2e:85:6b:ab:ae:99:85:e8:86:93:19:ff:
54:23:5e:06:63:2d:bd:4c:e9:0d:35:f1:40:70:9d:
ed:c1:0f:b6:63:2a:25:ab:f3:9f:45:6f:02:96:98:
5b:31:c1:85:1b:b4:61:b4:f1:98:24:1a:9a:d8:28:
56:f5:7d:4b:6a:11:6c:fd:82:06:a6:7f:4f:ea:52:
75:0e:0f:07:a2:b6:05:c2:c5:fa:9d:99:0a:d1:d6:
9f:46:c1:00:03:59:f0:b5:3f:26:f8:76:24:b5:55:
9d:c7:24:25:91:03:c6:1e:8e:58:1d:5a:19:03:39:
21:4d:a9:58:aa:54:b1:23:f0:a1:66:36:5b:d1:d1:
9e:22:d7:9d:2a:48:ba:92:bc:9f:10:de:06:4f:15:
e1:a9:bb:ff:16:fc:ae:f1:ed:69:33:04:08:e1:ec:
ea:1c:ea:1d:c1:04:cb:62:a9:49:84:dc:8f:eb:bb:
e5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:69:9B:C9:94:5D:BC:EB:6A:69:5B:AF:2D:22:6F:BA:A5:7E:86:52
X509v3 Authority Key Identifier:
keyid:07:3C:C1:8F:C7:06:DF:5A:99:33:B0:BE:20:DC:CB:04:67:5B:F4:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:f3:31:c8:e7:75:62:c3:47:e6:49:72:0d:b4:3e:5f:87:f8:
25:57:06:ea:5d:4c:08:51:76:76:ac:c6:83:2c:a9:49:78:79:
91:e7:9d:22:fd:2a:57:4d:bb:54:09:f7:0c:4c:2a:19:be:fb:
7e:88:7b:e6:2d:9c:64:d5:fd:57:95:76:8d:8f:44:90:57:bb:
aa:0d:e2:1e:d9:70:ad:20:8d:f7:97:6d:c2:7b:a9:7b:9a:3d:
bf:f0:79:73:01:b1:0a:48:22:98:72:bd:6c:35:36:7f:61:c4:
f3:03:71:d8:05:b4:17:55:7f:f0:aa:a5:0a:be:77:a8:bc:2b:
36:73:e4:dc:99:13:9f:3f:6e:39:80:2f:96:a3:8f:ac:f7:f9:
a8:33:1c:50:2d:ab:de:4b:d4:02:e8:b0:f8:b0:b3:ff:b1:18:
76:a0:d9:d1:3e:01:18:09:b4:5f:3b:68:b3:b5:5e:9c:ad:c0:
fa:cd:aa:4b:6e:e5:f2:4e:70:7e:5f:64:74:ce:78:b9:f6:b0:
44:21:6c:a8:c0:f1:03:cb:63:4e:a6:51:0a:72:50:0a:0a:1e:
93:81:c4:bc:40:b9:8f:26:e6:38:07:f8:fd:26:2b:74:e7:ae:
bc:81:a0:6b:f4:45:dc:a7:d2:7f:ea:74:c0:85:29:2e:f6:a3:
ec:94:7c:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:14:35 2025 by rpki-client