Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
File: sYxKQwCDfE6hetHjghoJrVN2QIc.mft (raw, json)
Hash identifier: 6Mtbow0Qi7dyNr1GZMSmHFnRcnjzUztS2JCLQ1zSrjc=
Subject key identifier: 51:51:7B:66:DA:CA:48:FF:D8:05:10:21:0D:A9:BF:BE:49:CE:8F:44
Authority key identifier: B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87
Certificate issuer: /CN=b18c4a4300837c4ea17ad1e3821a09ad53764087
Certificate serial: 0195E159E2BEA122C24645AF0297FE43D170
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
Manifest number: 0D5A
Signing time: Sat 29 Mar 2025 10:01:59 +0000
Manifest this update: Sat 29 Mar 2025 10:01:59 +0000
Manifest next update: Sun 30 Mar 2025 10:01:59 +0000
Files and hashes: 1: 2pelV4FedV45XCLKgpg6a9aqnGU.roa (hash: JAMnQ7Ljsuvl5vUTIxSzwNI1IGVq+RkAOKUEPceEiRc=)
2: sYxKQwCDfE6hetHjghoJrVN2QIc.crl (hash: wmTa1YZAzsSaDmXUQF0L6XZXMRITLZYzVI5zamfsQ+Q=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:e2:be:a1:22:c2:46:45:af:02:97:fe:43:d1:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b18c4a4300837c4ea17ad1e3821a09ad53764087
Validity
Not Before: Mar 29 10:01:59 2025 GMT
Not After : Mar 30 10:01:59 2025 GMT
Subject: CN=51517b66daca48ffd80510210da9bfbe49ce8f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:0d:b5:ea:a5:88:94:aa:04:69:3f:72:17:31:
1e:10:4d:73:17:da:9b:02:18:aa:f6:fd:1f:bf:ce:
00:e5:98:99:18:5a:22:ac:b0:ce:35:f8:96:0c:27:
7a:04:a9:0a:53:0c:32:cc:8b:53:3d:52:45:14:29:
ae:04:0f:ca:39:3f:fe:f5:3a:7e:1b:07:c8:00:bf:
40:b3:74:25:a4:66:64:c0:e5:cc:f9:c9:8e:90:aa:
3e:e3:44:c2:5d:f9:1c:b9:99:6a:46:5f:e9:64:44:
6b:bc:a3:ff:46:3d:ff:7f:9b:82:1f:05:df:40:fd:
6b:25:ae:3a:a0:fe:ff:62:95:5b:74:16:84:bc:71:
7a:60:3a:39:2c:09:97:60:a8:e9:47:6b:dc:18:d5:
e8:52:89:28:b2:8b:2a:fc:0f:d6:29:91:08:39:05:
da:ab:14:33:0f:9b:f6:d0:54:0e:22:35:18:5a:bd:
11:60:e2:26:b3:72:7b:39:68:2c:64:6f:34:8e:f6:
6f:55:b2:33:22:32:07:48:19:be:23:21:2b:5d:63:
a1:51:30:83:fd:73:2c:35:b0:fd:c0:f0:09:69:0e:
72:05:ab:d9:6e:f3:c9:81:f2:9a:1f:03:ec:0a:b6:
38:dc:29:90:4d:a2:05:9e:ac:61:22:b7:64:60:97:
a1:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:51:7B:66:DA:CA:48:FF:D8:05:10:21:0D:A9:BF:BE:49:CE:8F:44
X509v3 Authority Key Identifier:
keyid:B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:20:02:54:99:9a:d8:6d:ef:20:2c:4b:0f:35:ee:54:58:5c:
ae:d8:32:4b:bf:dd:82:8d:b7:85:b7:fd:f9:9f:42:a1:e0:8a:
9c:71:c5:72:93:27:5b:5b:df:42:bf:02:cd:49:36:f5:bc:77:
b6:49:7d:75:40:da:79:3f:d8:6e:73:06:12:bd:84:93:f3:9b:
6a:f8:27:e4:10:4b:36:3f:a1:bd:02:6c:64:ed:29:71:f3:bd:
eb:f1:de:f0:73:c6:b2:72:df:2f:a3:5a:be:f8:73:e9:02:f8:
f6:b8:00:75:ae:76:bb:35:6c:18:72:54:74:24:90:65:7a:79:
28:95:69:79:34:ef:04:6d:23:8f:09:aa:36:7d:cc:ab:48:35:
4b:98:35:8d:e7:f1:ab:73:5c:56:b0:ff:b8:22:13:df:0d:76:
64:fd:70:ef:6f:3b:ba:4e:7e:3d:30:2a:8c:e4:7e:71:6e:12:
99:b8:8b:28:40:3b:98:72:65:5b:a7:51:81:7a:06:54:f3:36:
d2:0d:b7:5e:d6:6e:84:45:ac:ee:44:3e:73:c5:c2:14:be:c5:
a8:2a:89:18:33:ed:ac:dc:f3:7e:0b:7d:00:45:26:d8:c9:0f:
66:78:a5:70:d1:3d:d8:80:d7:bb:ed:a4:00:6e:1d:0f:60:3f:
59:2e:9c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 01:40:34 2025 by rpki-client