Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
File: AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft (raw, json)
Hash identifier: vhOV4o03TMXTqfmYKzQj57MTi0H1dPfPq3usaKGLd2g=
Subject key identifier: D6:0D:3C:E7:B1:11:4D:5B:FC:2A:DE:DF:CD:6A:E2:FE:51:29:F4:AC
Authority key identifier: 00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
Certificate issuer: /CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Certificate serial: 0195E00F5DB266DDE9BEB935D3CAA4CE6A58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
Manifest number: 0D83
Signing time: Sat 29 Mar 2025 04:00:58 +0000
Manifest this update: Sat 29 Mar 2025 04:00:58 +0000
Manifest next update: Sun 30 Mar 2025 04:00:58 +0000
Files and hashes: 1: AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl (hash: tmgTQtpcOTd/h3amt3C6IcRTO8twpJ6e0g0Pne68ZuY=)
2: D6FQ_AOx7VEUAwBlUYJ5Pt1jupM.roa (hash: 4lHXyj3pRBx2LFAwlRyUS6mFr8ntH6TaBTAezCtdNUI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:0f:5d:b2:66:dd:e9:be:b9:35:d3:ca:a4:ce:6a:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0008589496bf86d2d0f8874b76cac843025bcd3b
Validity
Not Before: Mar 29 04:00:58 2025 GMT
Not After : Mar 30 04:00:58 2025 GMT
Subject: CN=d60d3ce7b1114d5bfc2adedfcd6ae2fe5129f4ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6f:e3:3b:d2:d4:54:ec:22:5e:76:26:1a:30:
65:ad:02:46:82:1e:55:19:c0:03:d3:40:7d:d0:38:
17:73:b5:c0:a0:cc:87:f6:1a:82:88:50:66:47:99:
61:57:c3:96:68:51:ef:5c:b2:4a:3c:89:df:0d:2f:
c8:f1:cf:59:2d:69:85:eb:c8:c5:91:b8:a2:89:78:
91:38:02:8b:38:2f:df:c8:09:31:84:a2:b9:0b:62:
93:f4:57:3a:f7:ad:c6:f2:48:aa:27:d9:e6:a0:ed:
a1:49:cc:9e:6b:b0:fb:9d:cf:da:f3:b5:de:ab:ed:
94:a3:fa:10:87:db:d5:c0:4f:4b:9b:8c:12:ec:5e:
92:69:5a:55:9f:76:b8:90:e9:b3:c3:62:cf:77:b3:
9b:b0:e7:ff:9f:90:b5:0e:40:25:58:ba:bb:83:32:
bc:a7:6e:b6:6e:18:66:9c:51:bf:a8:90:59:0d:0e:
9c:2c:bf:e6:17:a5:bb:76:47:07:d4:64:24:3f:36:
b7:4a:f8:ad:7a:0c:c7:1f:cd:fc:ef:aa:8b:43:24:
fa:86:d1:2d:1c:9c:a7:8c:1c:74:24:6e:64:77:3c:
3a:65:d5:8b:96:93:ed:c0:51:81:39:22:6f:c4:88:
d8:ea:e0:3e:fd:35:89:a9:85:a7:a9:44:6e:5e:5b:
f3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:0D:3C:E7:B1:11:4D:5B:FC:2A:DE:DF:CD:6A:E2:FE:51:29:F4:AC
X509v3 Authority Key Identifier:
keyid:00:08:58:94:96:BF:86:D2:D0:F8:87:4B:76:CA:C8:43:02:5B:CD:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAhYlJa_htLQ-IdLdsrIQwJbzTs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/d1c06a-dfa5-4c78-980a-6be2f4d24c96/1/AAhYlJa_htLQ-IdLdsrIQwJbzTs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:d2:71:f7:c6:22:50:1a:d7:46:69:52:d4:ef:6e:e3:c8:d1:
95:a5:68:47:b4:27:94:2b:88:13:cb:3e:cd:fa:1e:b4:c1:7b:
f2:75:6a:57:97:1a:e4:b2:35:ba:af:38:98:c1:fa:89:d3:d2:
0f:78:08:b6:ff:bb:ba:f4:5c:1a:a4:15:98:b4:5d:52:e0:e8:
e1:c7:02:4a:1f:a5:d7:e5:61:42:f9:16:b8:a2:c3:33:b7:48:
aa:e8:02:56:39:5a:ad:0c:fc:89:fb:9d:3b:f3:5a:03:d8:2c:
62:b6:24:07:b3:27:1f:4d:29:1b:16:b3:6e:3e:4b:b4:03:83:
3b:b0:e6:6b:08:fa:58:15:0f:9b:1d:88:d1:2e:6b:11:8b:12:
c6:f4:9b:53:68:c8:cf:67:a6:fe:c7:0e:7e:42:c2:f0:22:ca:
1d:62:21:c0:aa:a9:85:52:76:02:4f:47:82:b5:07:02:ed:cb:
73:f8:fe:fc:0e:81:b3:03:82:5c:41:d2:05:5c:3b:e0:57:2a:
e9:2c:f4:9d:66:d4:83:e2:23:f9:61:be:71:9a:62:8f:38:03:
45:03:d8:94:c9:50:4b:41:a9:a9:41:68:43:4a:d5:ee:c8:5b:
3a:57:07:08:4c:8c:8a:b7:d6:36:05:34:4e:e5:60:07:d8:23:
61:6f:0d:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:44:12 2025 by rpki-client