Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
File: AkHvRDYUJQbyZZODwW69oeKbT4Y.mft (raw, json)
Hash identifier: /R9fcPDy3Xjfuu/PlDTgwY9JDW51/msYLWLp0BYFYQY=
Subject key identifier: F1:63:66:BC:4A:6A:A0:09:49:A9:5C:82:0A:2E:76:4E:C4:C6:8C:35
Authority key identifier: 02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
Certificate issuer: /CN=0241ef4436142506f2659383c16ebda1e29b4f86
Certificate serial: 0195E00F8C663F88DED221BEBCBB00F976BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
Manifest number: 0D84
Signing time: Sat 29 Mar 2025 04:01:10 +0000
Manifest this update: Sat 29 Mar 2025 04:01:10 +0000
Manifest next update: Sun 30 Mar 2025 04:01:10 +0000
Files and hashes: 1: AkHvRDYUJQbyZZODwW69oeKbT4Y.crl (hash: EsFw0M1WR0A/FQQCcALiQlmBKFfEb4l9zFVUsObKD4k=)
2: NDyhuvBiD7Dcf-VvAcHjeKP4Wls.roa (hash: oeDnEopXVy5MJcNbGxGeEZ1ceng1jmSd304y/xLBjoc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:0f:8c:66:3f:88:de:d2:21:be:bc:bb:00:f9:76:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0241ef4436142506f2659383c16ebda1e29b4f86
Validity
Not Before: Mar 29 04:01:10 2025 GMT
Not After : Mar 30 04:01:10 2025 GMT
Subject: CN=f16366bc4a6aa00949a95c820a2e764ec4c68c35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:88:6a:55:af:19:98:16:48:32:44:43:1c:16:
6f:2b:d9:26:4d:d4:64:e0:f4:49:03:04:a5:1f:c0:
dd:ba:46:06:37:82:75:aa:4d:93:1b:8f:85:88:f6:
14:bf:36:22:eb:39:13:19:20:a7:ff:ec:ab:3d:2b:
b4:a7:f2:7f:23:53:e3:1e:b4:87:15:60:ea:42:22:
bb:e0:a6:a9:ab:03:84:af:fd:86:fa:e2:27:70:e1:
6f:34:08:75:07:7f:da:08:01:48:e0:42:71:a1:80:
23:44:d5:f8:94:1e:d8:d1:82:bc:86:b0:fb:9a:92:
e7:a8:a3:72:e1:aa:c6:fa:14:1a:fa:14:5d:8d:58:
52:f1:98:38:b2:38:bb:07:7d:c4:f6:70:b1:6d:e1:
b5:2a:04:07:86:27:08:fb:0b:72:d2:90:e4:6e:82:
d4:d1:00:b6:d6:2c:90:04:7c:96:91:0f:d7:4c:84:
73:de:01:c2:44:6d:b2:e4:88:97:b2:92:3f:a9:76:
ab:c4:98:47:f3:44:a6:13:b0:02:b0:b6:ef:7d:27:
25:4d:15:77:88:f5:9d:00:97:16:bc:ed:a6:3a:9c:
23:1b:eb:ec:85:67:15:ce:fc:5a:b3:10:04:c0:b0:
67:03:f0:92:57:d5:17:35:0a:e4:e6:a5:78:2e:6e:
33:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:63:66:BC:4A:6A:A0:09:49:A9:5C:82:0A:2E:76:4E:C4:C6:8C:35
X509v3 Authority Key Identifier:
keyid:02:41:EF:44:36:14:25:06:F2:65:93:83:C1:6E:BD:A1:E2:9B:4F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AkHvRDYUJQbyZZODwW69oeKbT4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/9ee202-b9b3-47f0-8c9a-9fdf4c15f9a6/1/AkHvRDYUJQbyZZODwW69oeKbT4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:bd:2c:c6:b4:bc:cc:ba:5f:da:b7:25:04:57:62:fb:2f:d9:
ac:6d:86:ef:86:ad:6c:45:14:e5:05:e4:ef:f1:79:7c:e7:e1:
fd:1a:da:ed:37:54:ba:ca:75:d7:cc:89:03:a1:87:81:ef:ef:
e1:7f:1c:33:d3:db:14:db:09:b8:8c:de:c6:31:a9:a8:70:4c:
b3:3b:f6:6b:a2:71:e0:af:8e:ae:6b:33:c3:0a:0b:d8:ca:4d:
90:fa:53:30:5a:fe:46:2e:45:aa:d3:e6:21:1f:66:dc:ac:8f:
fe:64:b4:99:2b:b6:7d:58:5c:7f:c0:4d:71:da:1e:5b:89:0b:
96:e3:47:d4:4e:09:7d:3f:cb:4d:47:e3:75:af:d7:7b:a2:65:
62:c3:73:7f:f2:42:15:1d:f1:31:dd:ea:f7:2a:d4:6d:f7:ef:
a7:46:ed:c4:a6:bd:a1:1c:ca:14:53:ff:18:1c:5f:71:63:b4:
c1:4c:5f:ea:a7:b5:8b:0f:d6:51:5b:6b:8f:9b:ab:74:49:f8:
80:c9:7b:b7:70:c1:8c:d9:cf:c9:74:30:60:a6:26:10:fb:f0:
2f:a8:bb:20:2e:05:a4:04:0d:2b:1c:3b:4a:87:75:c4:d3:1e:
dc:5b:ea:eb:33:e7:5c:43:b5:2f:17:c0:6d:bf:b3:88:5c:60:
27:7c:7e:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:29:18 2025 by rpki-client