Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
File: HH3TyBbYWWCARyBUNICV7SuFUeU.mft (raw, json)
Hash identifier: iZTYae76c+7NQhNOwVkP6r/1UoXgMqpJEIbtvlRBmYI=
Subject key identifier: EB:66:80:1A:DC:5D:8F:D0:3F:4B:BC:C1:ED:62:44:7A:DB:92:BD:C0
Authority key identifier: 1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
Certificate issuer: /CN=1c7dd3c816d8596080472054348095ed2b8551e5
Certificate serial: 0195E19099FD4D89D3F9C53A2B0C2BDCFC67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
Manifest number: 1235
Signing time: Sat 29 Mar 2025 11:01:44 +0000
Manifest this update: Sat 29 Mar 2025 11:01:44 +0000
Manifest next update: Sun 30 Mar 2025 11:01:44 +0000
Files and hashes: 1: HH3TyBbYWWCARyBUNICV7SuFUeU.crl (hash: ozt7LQ55d4AmyAsguSVFIhy9FS7HQaKUld88bb/g0+8=)
2: lUApR8rVpWyDLR1GadE8v1PzIFI.roa (hash: SjTc2RPVxxZZujKF5tyIKpHPh6Uad/TapUg1uEd/j6M=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:90:99:fd:4d:89:d3:f9:c5:3a:2b:0c:2b:dc:fc:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7dd3c816d8596080472054348095ed2b8551e5
Validity
Not Before: Mar 29 11:01:44 2025 GMT
Not After : Mar 30 11:01:44 2025 GMT
Subject: CN=eb66801adc5d8fd03f4bbcc1ed62447adb92bdc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:72:08:55:ff:b1:60:7e:b6:e7:7e:47:d1:4e:
61:c5:0a:98:6e:ff:1d:37:41:36:5b:1e:21:5e:12:
82:98:ec:85:ff:a5:b5:d1:55:ad:49:ac:30:76:91:
db:37:f5:d8:7e:0d:89:57:b5:29:06:c0:81:01:f6:
41:03:bf:dd:bb:4c:4f:ae:b5:d4:fd:bd:80:cd:4c:
1d:4b:c8:3c:d6:10:c8:2d:f3:32:8a:51:fc:75:70:
b4:5d:11:f3:e1:64:90:b2:3d:6d:d4:13:14:50:42:
70:1b:6b:fa:5a:17:b9:90:da:c0:61:92:7d:c7:b0:
f2:19:da:9b:e1:60:c7:47:1e:14:61:cf:7a:3d:f3:
ea:8c:d3:b9:77:22:06:d9:91:7b:13:5d:27:a1:8e:
88:72:86:5f:6b:3a:f3:84:d3:d8:05:a4:d5:f6:0f:
1e:85:46:45:80:b3:1c:12:9a:b1:4e:b8:2e:b3:08:
39:22:12:54:8b:69:2d:e9:bb:d5:c3:f6:49:ea:ee:
30:e6:ff:db:c7:73:89:1b:97:9f:2e:93:4b:44:1a:
e5:b1:c7:5d:8e:24:6c:79:4d:40:ab:35:c4:f3:75:
a7:42:bd:3c:89:19:6b:2a:6a:7c:cc:bc:59:15:14:
22:85:d6:ba:08:85:3b:49:ea:76:4a:e3:c2:52:57:
36:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:66:80:1A:DC:5D:8F:D0:3F:4B:BC:C1:ED:62:44:7A:DB:92:BD:C0
X509v3 Authority Key Identifier:
keyid:1C:7D:D3:C8:16:D8:59:60:80:47:20:54:34:80:95:ED:2B:85:51:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HH3TyBbYWWCARyBUNICV7SuFUeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/baab36-8886-4206-9e79-cc2cd7d31a26/1/HH3TyBbYWWCARyBUNICV7SuFUeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:c2:46:73:ab:e5:d6:44:c6:c7:0c:35:20:1d:81:4d:90:cb:
3f:ee:1c:89:ea:df:35:99:47:ba:04:6b:4e:d5:25:06:1e:47:
e1:6d:eb:6d:43:95:de:ab:cc:64:16:8b:f7:17:0b:28:41:cb:
f2:f2:03:1c:62:63:b7:8c:22:e4:30:cf:e7:77:59:b7:8c:b5:
64:21:0d:e0:38:42:c4:a6:b2:f5:89:ce:84:41:ed:2e:d4:2c:
ad:e0:fa:a5:47:e0:d5:60:e6:8b:60:e4:1c:e8:48:31:6b:f1:
6d:ee:3d:04:ae:70:0d:c4:63:a0:18:ed:54:21:49:68:4f:1e:
17:71:21:75:1c:af:f8:a7:ae:12:98:62:fb:a5:b6:20:b6:73:
82:d1:f1:7e:7d:86:6f:07:ca:65:f5:cf:a0:40:4a:86:00:d7:
f6:b8:fc:3e:b3:00:32:37:5f:32:52:d4:10:c2:47:af:1e:a8:
57:de:2d:69:0e:d4:6d:cd:5e:49:15:82:f3:70:1a:46:dc:e9:
96:cb:97:09:2c:ca:47:62:7a:47:e2:f0:bb:42:53:ad:c9:b9:
22:c8:3a:86:9c:7a:15:8f:d2:8c:d6:5f:1f:84:1f:b2:c4:21:
bc:c3:c8:88:55:ef:ec:0b:50:4e:d6:63:df:62:1f:fe:a8:f9:
7d:03:20:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:19:04 2025 by rpki-client