Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
File: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft (raw, json)
Hash identifier: PLA/XSUaOLCXUIQ0dQlEkJku12hr+Q+nl+V7stkzh9g=
Subject key identifier: 43:95:0B:72:0E:F8:DE:D7:B1:15:6E:21:61:02:77:4F:1B:D6:A7:72
Authority key identifier: DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
Certificate issuer: /CN=dea85f21668a98d7e81a74183f0cce513086601b
Certificate serial: 0195E121EECDC59D69C9C1407BB69C155132
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
Manifest number: 0455
Signing time: Sat 29 Mar 2025 09:00:52 +0000
Manifest this update: Sat 29 Mar 2025 09:00:52 +0000
Manifest next update: Sun 30 Mar 2025 09:00:52 +0000
Files and hashes: 1: 3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl (hash: z4x3Y3t9n0eVS7XRN4J6pHjTLti8E3NlM0rC7kvhKtU=)
2: Vnw9H8iqt-gts3LY3CEVf7p6PaE.roa (hash: s2vDBc3kUppwqWxQSMIljxY/yV7+Xm77EH+5A9yGbgM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:21:ee:cd:c5:9d:69:c9:c1:40:7b:b6:9c:15:51:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dea85f21668a98d7e81a74183f0cce513086601b
Validity
Not Before: Mar 29 09:00:52 2025 GMT
Not After : Mar 30 09:00:52 2025 GMT
Subject: CN=43950b720ef8ded7b1156e216102774f1bd6a772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9a:44:0c:ab:36:a7:d7:6e:72:fc:45:76:f3:
bc:37:e7:5c:3d:87:ef:41:30:f0:cf:53:70:97:ac:
b5:8c:2a:b0:1f:51:d9:9f:46:1c:f8:2b:ab:91:19:
db:6a:74:14:1a:8b:63:d7:ae:a8:1f:83:63:99:cf:
51:c2:ef:0a:b8:f0:fd:53:f0:2d:b3:33:8d:0b:d0:
09:0a:be:f7:df:6b:81:ba:39:5e:1e:24:33:3a:77:
cb:c3:d6:46:9b:3a:bf:da:2a:a2:32:ff:aa:d7:18:
01:dc:d9:1b:76:8f:cb:2c:9b:7b:53:b2:f0:59:2f:
a6:d2:b5:ec:78:e2:7b:ff:6c:ed:92:8e:d5:c4:a7:
00:e5:a5:71:12:a2:8b:4a:bd:13:93:be:95:ee:00:
65:6c:42:18:33:d0:4f:a6:81:6e:a9:3b:4e:33:39:
23:9a:4e:4e:76:f2:c0:7f:e5:12:15:2b:57:ca:79:
ee:f9:08:2a:31:1a:8e:f3:7a:af:85:b3:94:59:3b:
33:d3:81:c7:3a:b4:a4:4a:be:c3:e2:18:b4:7c:da:
e3:64:b7:43:19:88:81:c7:99:6d:ed:31:00:98:cf:
aa:6c:13:9f:89:21:0d:21:52:26:78:5d:1c:d5:85:
1b:09:d4:fd:78:fe:9a:b0:7b:e2:b5:30:45:60:1f:
d5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:95:0B:72:0E:F8:DE:D7:B1:15:6E:21:61:02:77:4F:1B:D6:A7:72
X509v3 Authority Key Identifier:
keyid:DE:A8:5F:21:66:8A:98:D7:E8:1A:74:18:3F:0C:CE:51:30:86:60:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3qhfIWaKmNfoGnQYPwzOUTCGYBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/949daa-1ed1-4088-9c4b-52f8ff18d069/1/3qhfIWaKmNfoGnQYPwzOUTCGYBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:07:c0:f1:23:87:eb:54:9a:78:57:c2:8a:4c:5f:01:45:57:
de:5f:b5:16:ee:42:20:be:04:03:58:c3:e8:ce:f3:15:ec:ac:
8b:36:a8:fd:47:7f:2a:41:bd:dd:f3:fd:7f:a1:b1:c4:ba:35:
df:ea:9a:36:76:da:62:1f:f0:9b:93:12:fe:20:78:fb:db:7f:
bb:92:b0:c7:fb:49:6c:e6:5b:7c:1c:3b:82:ee:9a:3b:0a:fa:
fa:0d:d7:66:6f:70:6c:d8:14:5f:70:82:16:c7:3a:9c:76:ff:
dc:07:94:90:28:d1:7b:55:3d:24:7f:25:40:95:23:b6:d2:3d:
03:de:07:a5:67:c3:f5:d7:5d:d3:3b:d1:25:66:29:84:7d:86:
e8:bc:f8:83:c5:24:eb:c9:0e:b1:5c:de:f4:50:18:39:5f:d1:
c9:39:6e:c9:23:30:1f:a8:a6:5f:80:e4:37:bd:f1:ca:d7:8d:
20:73:e4:f6:73:d7:bf:6f:b9:be:4d:42:51:35:91:d8:1f:3c:
b9:ed:e0:56:2f:ab:d9:cd:1b:ff:0d:3f:c5:d6:26:22:a8:01:
f4:8a:c0:b4:a2:ab:1f:a1:96:c1:72:05:bb:55:47:69:93:c2:
52:48:4c:d3:c0:f5:fd:1e:77:cf:6e:a4:c2:27:2d:ce:8b:44:
23:11:00:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:17:29 2025 by rpki-client