Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
File: QeODxYB-mzL1dtCluO53RMrPtxc.mft (raw, json)
Hash identifier: AQEi0M6XY1RrZNmezgNx7tpVqArXeHZsDQzzlHg9r6c=
Subject key identifier: F7:42:C6:1D:FC:04:BB:7B:36:91:5A:C1:68:02:40:45:D3:10:46:D0
Authority key identifier: 41:E3:83:C5:80:7E:9B:32:F5:76:D0:A5:B8:EE:77:44:CA:CF:B7:17
Certificate issuer: /CN=41e383c5807e9b32f576d0a5b8ee7744cacfb717
Certificate serial: 0195DFD8FEBFB23400BEB2C12F434B759A48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
Manifest number: 0390
Signing time: Sat 29 Mar 2025 03:01:34 +0000
Manifest this update: Sat 29 Mar 2025 03:01:34 +0000
Manifest next update: Sun 30 Mar 2025 03:01:34 +0000
Files and hashes: 1: 03enaQCGw_eqXqIAwZyG-7zrfRA.roa (hash: YhNG/6VofCuK7pQjtVrVurKsTSoyBGAKru+JjLAKpoo=)
2: DUyUlX3xTZHlVnLSKpECvt4NkYU.roa (hash: ZP6huwEf1pdyFLtyz+3lIcMnm1rz3bsZAcR3RQdU+KU=)
3: QeODxYB-mzL1dtCluO53RMrPtxc.crl (hash: hB6Bkfe5VbpC1CvUYzEKyhObu8jT4lr4NKlogW/iVKw=)
4: bB3G3EZqBAqArfU6X5zzc1opBME.roa (hash: gPeixOKastqxOj7HlHBp8UwchVAjS4fsBzFCexJl5H8=)
5: lKGyjDcky_IoNZN6qvlaMVTqM58.roa (hash: IiBQAy+zcf79xQNY8RIQMsijGISjsQrLjaoVvIJA9t4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:d8:fe:bf:b2:34:00:be:b2:c1:2f:43:4b:75:9a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41e383c5807e9b32f576d0a5b8ee7744cacfb717
Validity
Not Before: Mar 29 03:01:34 2025 GMT
Not After : Mar 30 03:01:34 2025 GMT
Subject: CN=f742c61dfc04bb7b36915ac168024045d31046d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1b:89:e9:53:b4:eb:0b:c6:b3:7d:79:83:4e:
ef:ad:08:19:50:0a:f4:ee:8a:12:1d:24:59:83:90:
83:cf:c7:69:41:b9:69:06:ea:73:22:0f:66:f0:c6:
c2:7e:bf:fa:bc:33:b6:67:50:5a:2a:4a:21:0e:87:
7c:cd:ae:13:db:78:c0:52:cb:ef:fc:5c:69:81:99:
7e:2e:a8:0f:77:9e:6a:6b:7c:10:56:e3:cc:5e:50:
95:d1:7c:88:82:75:8c:14:66:48:cf:e3:49:63:6e:
55:1e:aa:8e:52:6c:da:b3:23:be:32:3d:7e:c6:b9:
ae:11:14:e0:87:86:d9:0a:e3:2f:c6:bf:0a:d5:5b:
5b:52:91:42:9a:7e:29:83:aa:f7:ae:63:ab:42:e0:
64:07:d7:15:57:db:c9:31:7a:1a:6b:04:67:ed:ce:
99:44:15:b0:66:ad:2a:a5:78:65:66:c5:5e:2d:b5:
e1:c3:d7:bf:dd:88:28:f4:4a:51:fc:bb:71:32:69:
51:46:f2:fe:fa:ff:f7:0f:52:e2:f0:53:3f:d5:2d:
5a:ec:51:6c:5e:4a:f2:53:a8:2d:be:a2:52:d2:18:
6f:d0:e6:41:ea:44:70:8c:e2:79:1c:ac:9a:cf:06:
bb:fe:ba:b9:55:5e:1d:72:5b:6f:19:50:19:26:f9:
b4:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:42:C6:1D:FC:04:BB:7B:36:91:5A:C1:68:02:40:45:D3:10:46:D0
X509v3 Authority Key Identifier:
keyid:41:E3:83:C5:80:7E:9B:32:F5:76:D0:A5:B8:EE:77:44:CA:CF:B7:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QeODxYB-mzL1dtCluO53RMrPtxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/aea465-ba45-49ac-9c68-7b41fabc6f67/1/QeODxYB-mzL1dtCluO53RMrPtxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:04:6e:77:0f:6e:b7:bb:12:11:46:ae:28:53:d0:e2:ba:38:
d6:c0:fc:9a:cb:dd:16:ef:d9:6b:d9:f6:df:dc:59:f4:0f:36:
e3:17:46:e2:f0:1c:5b:61:8a:05:6e:21:54:c5:10:50:b7:79:
1b:56:ce:47:bf:7b:44:a1:38:56:39:36:c7:8f:a6:91:be:f7:
ef:c7:82:8b:1e:1b:4d:e1:1f:f7:1b:35:22:7d:b6:e2:fe:f2:
df:3f:cd:1e:4f:95:97:38:ac:ce:d4:7f:53:d7:7a:50:8b:6d:
e0:cd:9d:3e:05:9b:b9:c1:d0:13:2b:36:09:53:48:1a:97:07:
fd:9a:82:87:94:43:da:03:76:42:22:49:f4:79:41:03:b0:b3:
1d:56:aa:d8:5c:a2:0e:c4:20:1a:ec:7f:e9:3d:61:c2:47:a0:
04:8e:44:85:a7:61:1b:ad:11:82:18:db:ab:e8:05:d8:5c:d5:
2b:68:30:ab:55:e4:b7:fd:37:ab:45:4b:88:7e:ba:1d:6d:42:
66:1b:87:e5:24:f5:13:6e:c2:3a:23:ee:ff:ca:dd:28:54:ed:
a0:97:6e:c3:bc:67:cb:8f:15:fb:e9:17:98:3b:32:40:32:20:
f3:21:e2:2c:45:ab:5f:ed:6e:e1:19:cb:b3:42:6e:71:2d:95:
93:cd:99:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:38:50 2025 by rpki-client