Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
File: I3_mTWhI-AEgq-aV4x-sScpdB_M.mft (raw, json)
Hash identifier: hjYBNPSZTKAxY6aY1qw80wtVFqP/Z4IJ5DcKnJA+U+k=
Subject key identifier: 3D:87:AD:D6:8C:AB:06:04:23:4F:15:86:41:C7:E3:89:CC:F9:E5:CC
Authority key identifier: 23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
Certificate issuer: /CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Certificate serial: 0195DFD88EB01CED0C580628893E57F7B8B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
Manifest number: 01C0
Signing time: Sat 29 Mar 2025 03:01:06 +0000
Manifest this update: Sat 29 Mar 2025 03:01:06 +0000
Manifest next update: Sun 30 Mar 2025 03:01:06 +0000
Files and hashes: 1: FR-DdZ6l_dWRg1pnEEZHKy-TtaU.roa (hash: rix3FP+IdraYXi5amLMY1G7LW1GF5A8pUKN7Wo60tBo=)
2: I3_mTWhI-AEgq-aV4x-sScpdB_M.crl (hash: GsAT96VNo3lDhjMJ5+iBjqnYB76yh1Nm3mGdD7dfui4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:d8:8e:b0:1c:ed:0c:58:06:28:89:3e:57:f7:b8:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=237fe64d6848f80120abe695e31fac49ca5d07f3
Validity
Not Before: Mar 29 03:01:06 2025 GMT
Not After : Mar 30 03:01:06 2025 GMT
Subject: CN=3d87add68cab0604234f158641c7e389ccf9e5cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:90:ce:7c:ba:9a:3d:d0:2e:fd:3a:8b:78:00:
95:86:81:a5:3a:19:11:a7:bf:48:52:62:24:aa:34:
a3:97:85:94:68:92:63:87:8a:e6:c6:95:1a:26:a0:
71:14:b3:d0:de:e2:d3:b1:06:d8:b7:9f:4d:4a:7f:
de:56:1d:4c:0a:9b:b3:5c:56:75:e7:6b:2a:4d:1f:
6f:26:35:03:c6:83:9b:62:a2:3e:a9:3b:61:31:84:
56:c5:60:af:bb:9b:a6:ce:1a:ab:a7:70:2b:50:82:
24:51:f4:a6:aa:6b:65:6a:98:d4:68:c3:dc:0b:f1:
cb:ee:95:3e:5d:b6:ab:21:5b:70:3c:8a:00:2b:d0:
9d:74:9e:91:75:d7:10:3a:f8:24:94:1d:c8:e2:15:
04:59:66:fc:f1:1b:13:ba:ae:cf:dd:19:60:92:e5:
cb:a0:b9:b9:fe:9e:8f:4b:02:ff:88:ca:be:59:0d:
b2:ee:0f:bb:74:ed:c8:77:b5:a6:1c:66:45:40:d8:
05:3f:d7:a6:c6:34:a6:6c:32:85:78:f3:a3:1e:d0:
f4:7e:80:cd:62:9a:67:f4:af:63:bf:52:57:a0:e0:
d0:25:27:4d:fd:2e:18:1c:be:b4:a4:17:5b:a2:4e:
a9:07:80:a1:07:ba:c0:7c:82:98:ea:03:23:04:5c:
57:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:87:AD:D6:8C:AB:06:04:23:4F:15:86:41:C7:E3:89:CC:F9:E5:CC
X509v3 Authority Key Identifier:
keyid:23:7F:E6:4D:68:48:F8:01:20:AB:E6:95:E3:1F:AC:49:CA:5D:07:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I3_mTWhI-AEgq-aV4x-sScpdB_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/70c39f-5131-4002-b1fc-fd213722bff9/1/I3_mTWhI-AEgq-aV4x-sScpdB_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:f1:2c:b1:bf:ec:94:76:7e:8b:e6:1a:3e:a8:9f:dd:f9:4e:
b7:84:1b:3a:2e:99:ea:e7:4c:aa:5b:0a:80:8e:e5:7d:08:da:
a6:12:ff:1f:f4:8d:c5:1c:3f:aa:d5:53:1a:a9:93:50:7f:b2:
f2:9f:f6:22:99:71:54:36:76:96:a6:5d:5c:39:0d:15:df:ed:
e3:95:d1:42:54:3b:69:79:a7:7b:f8:2f:c9:a7:72:fe:e3:dd:
d5:25:64:bf:da:45:3e:ed:45:aa:67:83:0e:85:61:a7:3e:9b:
46:23:b5:c6:be:f7:09:60:38:2b:58:0c:ee:f0:cb:11:47:9c:
e1:e5:d6:52:c8:ec:5d:bc:50:8f:bf:78:59:0f:2d:0b:fc:c0:
84:4a:02:f2:95:01:38:20:b8:da:d5:b9:b9:d6:15:ad:34:cc:
f6:5f:de:8d:3b:0a:fe:49:c9:c8:c8:37:9b:b9:0f:7b:d0:03:
38:0e:51:44:47:4f:8e:0b:33:b1:15:23:e5:06:a9:d1:2e:49:
a5:74:34:cd:e6:c3:d5:08:eb:88:f5:f8:91:00:cb:7a:be:fd:
21:fc:bf:c2:df:68:99:89:c3:19:e1:ce:45:56:7b:b7:05:36:
d2:a4:44:f0:4c:0d:d5:1b:93:82:c9:8b:fd:80:a4:ab:d1:17:
85:ce:94:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 12:43:44 2025 by rpki-client