Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/56487e-4a38-43cb-bf64-ef1b3239396a/1/NaK0X77RmzeKMDj-Ia3_q2jXUMc.mft
File: NaK0X77RmzeKMDj-Ia3_q2jXUMc.mft (raw, json)
Hash identifier: ZH9az8lmoQR+btGID7VHcI7pjfOVdiAXi8tjQegJuLA=
Subject key identifier: 26:10:65:ED:0D:E0:84:B0:47:11:04:B1:A1:DA:9B:15:39:3D:52:2A
Authority key identifier: 35:A2:B4:5F:BE:D1:9B:37:8A:30:38:FE:21:AD:FF:AB:68:D7:50:C7
Certificate issuer: /CN=35a2b45fbed19b378a3038fe21adffab68d750c7
Certificate serial: 019191FE8A3D051CF5F586E1AF002ED6DA9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NaK0X77RmzeKMDj-Ia3_q2jXUMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/56487e-4a38-43cb-bf64-ef1b3239396a/1/NaK0X77RmzeKMDj-Ia3_q2jXUMc.mft
Manifest number: 0347
Signing time: Tue 27 Aug 2024 04:01:03 +0000
Manifest this update: Tue 27 Aug 2024 04:01:03 +0000
Manifest next update: Wed 28 Aug 2024 04:01:03 +0000
Files and hashes: 1: J60oSRVmRPDVtQbnLo9G9Y_PR10.roa (hash: +k7lTXXlz0vB92RaxqBvHBsAWUed0YiLY7VnChNn5ZA=)
2: NaK0X77RmzeKMDj-Ia3_q2jXUMc.crl (hash: ekjDslbHl7KxLpuAL/8pHyLVLdzmXWU+8CNYWMfKLI0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:91:fe:8a:3d:05:1c:f5:f5:86:e1:af:00:2e:d6:da:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35a2b45fbed19b378a3038fe21adffab68d750c7
Validity
Not Before: Aug 27 04:01:03 2024 GMT
Not After : Aug 28 04:01:03 2024 GMT
Subject: CN=261065ed0de084b0471104b1a1da9b15393d522a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9f:e5:ff:e6:6e:df:c2:ad:25:87:ec:cc:08:
04:b0:8b:58:2b:64:c1:2b:1a:e3:bc:0b:e1:cd:20:
2d:60:91:80:b4:fe:3a:ba:b9:d6:b0:22:2f:cb:65:
7a:a6:6a:94:67:a6:25:9b:7a:21:0b:e3:42:b3:b1:
85:41:20:42:14:22:d3:c3:ba:0f:d0:78:3c:84:7b:
1d:b5:e0:28:49:b6:2a:f8:fa:8b:24:e5:a1:27:93:
d3:7e:b7:59:fa:49:aa:fb:a3:51:e3:85:a5:3d:d7:
09:63:bc:e8:7e:43:6c:7f:4b:10:c9:ac:8f:f7:d5:
e2:7f:55:cc:2a:4a:61:6f:92:8b:60:38:d2:fe:5f:
ea:9e:48:81:e0:a1:06:ca:14:e8:e8:e3:3b:e0:a2:
5e:ab:56:b8:5a:9b:18:55:1f:b4:79:e7:45:a9:26:
1d:7f:64:68:e6:d2:25:1d:e3:d4:a1:4c:fb:96:bf:
9e:30:96:76:20:48:b4:c7:1e:68:48:65:0a:5f:3b:
5e:10:0a:1b:26:c9:c3:fc:e9:71:52:24:71:e1:aa:
9d:dd:1e:f0:94:1a:72:67:ed:2b:13:b6:e1:2b:a8:
a8:d4:6a:93:cb:d9:b1:e1:2d:32:9a:18:1e:b1:62:
0f:0d:16:db:07:a5:4d:fb:10:0b:16:7a:63:5a:79:
e1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:10:65:ED:0D:E0:84:B0:47:11:04:B1:A1:DA:9B:15:39:3D:52:2A
X509v3 Authority Key Identifier:
keyid:35:A2:B4:5F:BE:D1:9B:37:8A:30:38:FE:21:AD:FF:AB:68:D7:50:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NaK0X77RmzeKMDj-Ia3_q2jXUMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/56487e-4a38-43cb-bf64-ef1b3239396a/1/NaK0X77RmzeKMDj-Ia3_q2jXUMc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/56487e-4a38-43cb-bf64-ef1b3239396a/1/NaK0X77RmzeKMDj-Ia3_q2jXUMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:27:36:ac:16:04:7d:f7:a3:f2:86:2a:4b:af:36:5c:e7:c1:
fb:82:9e:38:3d:c8:78:05:01:41:81:ea:f9:25:bb:a4:f0:92:
c5:6b:81:b4:0c:6c:c7:82:80:f4:bb:01:2c:62:ee:f9:08:e5:
bc:ca:4d:0e:ed:92:38:10:a6:a0:cd:82:f8:cb:ee:9e:9c:73:
f1:a7:26:65:2e:a3:3d:70:a1:ae:50:cd:6c:c1:b2:f2:23:7b:
12:d1:8c:2e:8e:27:c3:51:d7:45:82:aa:c0:c0:84:16:f4:84:
aa:96:08:53:df:bc:66:55:b8:92:d7:a1:52:83:b3:aa:99:18:
b4:76:49:60:23:02:fe:e5:28:9b:4b:8c:0a:28:bd:c9:ad:62:
6c:95:0c:78:b0:49:6f:16:49:a1:f3:26:5a:bc:0e:8e:7f:a8:
ff:2a:cd:06:ce:84:f5:8a:65:a5:b0:8e:f4:09:35:69:36:02:
e1:11:f5:d0:1a:de:7b:e1:8d:ba:9c:1d:46:89:ad:2c:75:28:
90:f0:73:04:c9:7c:b1:90:08:06:6b:58:4b:52:0e:36:a8:1e:
1d:5e:97:e9:7e:64:d1:c4:1b:10:ac:19:ab:7b:d5:2d:68:60:
8b:c2:ef:92:ea:53:d5:72:65:1f:34:01:d0:be:06:42:68:a3:
7f:19:6a:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 27 16:00:27 2024 by rpki-client on console-fra.rpki-client.org