Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
File: hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft (raw, json)
Hash identifier: XEE5I2otz8YJEw+OrR1MgCopDQieLej3gvgJmunRcEc=
Subject key identifier: 56:35:4A:0C:29:94:51:A0:3C:F1:9A:94:7B:05:6B:88:2A:F6:B1:20
Authority key identifier: 86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
Certificate issuer: /CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Certificate serial: 0195E0EB4B424AB9B10AA47252C80F37CE1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
Manifest number: 14C2
Signing time: Sat 29 Mar 2025 08:01:11 +0000
Manifest this update: Sat 29 Mar 2025 08:01:11 +0000
Manifest next update: Sun 30 Mar 2025 08:01:11 +0000
Files and hashes: 1: 1WUnRPC7TQDCpNLBGqvpavEUfIY.roa (hash: 9QvvOYrRTeWxJPVmSD6bFU7GJTKQU/1G/slvGit4Jc8=)
2: RNRuwUDah5HvDqZL8fLpyHsOiSQ.roa (hash: IBeeTINphPH0VAeRRmwtztVgI3ETdvS9ro285LvOBzI=)
3: hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl (hash: UkQYsqFO44h3Ad+6FIM89z/2HwX+5ajGHP032QOaFUc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:eb:4b:42:4a:b9:b1:0a:a4:72:52:c8:0f:37:ce:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86a8ff4c9c56667d99025d7f01591cbf77ad2f09
Validity
Not Before: Mar 29 08:01:11 2025 GMT
Not After : Mar 30 08:01:11 2025 GMT
Subject: CN=56354a0c299451a03cf19a947b056b882af6b120
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:fe:7c:db:a8:a3:4d:fb:74:eb:e1:6f:86:
34:72:b4:c8:05:7d:69:01:c9:4b:0c:88:53:46:d3:
ca:46:9c:17:21:3c:9f:6d:cc:5b:ec:4d:bb:d9:84:
ec:23:43:2c:d4:74:03:9a:fb:a1:72:50:7e:1e:09:
7c:b6:5e:48:f8:fe:e1:25:65:04:5f:50:54:90:9a:
a6:7e:41:07:58:c2:91:4d:19:7d:e4:2a:53:78:f0:
c7:ec:4c:c8:3a:de:fc:d8:c9:af:01:71:ad:d9:8d:
3e:f7:54:7a:0b:e9:ec:d7:a7:bc:16:47:2e:dc:5a:
4c:3a:04:57:a3:88:98:92:a7:56:d7:ce:e8:a5:0b:
df:1d:ba:c8:43:56:95:ad:84:60:d0:31:33:80:5e:
b5:42:8a:d4:d6:4b:64:a6:dc:27:2a:97:45:c9:71:
ed:50:1e:cf:28:21:71:b8:db:64:8c:20:f2:02:e7:
ce:2f:a6:99:a8:34:25:0c:4c:0c:ac:83:6e:85:8d:
ab:0f:52:83:71:89:c5:be:e9:8f:e8:75:bd:5b:bd:
e1:f8:e9:ca:70:2c:3a:45:a1:84:f6:4f:ef:c6:5a:
bb:de:17:5f:49:f9:48:d5:bf:ff:91:28:38:4a:0f:
07:0d:c1:03:a1:8d:56:15:ee:a5:f6:ab:6f:30:ca:
53:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:35:4A:0C:29:94:51:A0:3C:F1:9A:94:7B:05:6B:88:2A:F6:B1:20
X509v3 Authority Key Identifier:
keyid:86:A8:FF:4C:9C:56:66:7D:99:02:5D:7F:01:59:1C:BF:77:AD:2F:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hqj_TJxWZn2ZAl1_AVkcv3etLwk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c921e8-6c94-4cc2-b9fd-06a49968c2d3/1/hqj_TJxWZn2ZAl1_AVkcv3etLwk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:9d:ed:fb:f8:85:5a:c9:86:39:31:74:74:60:8d:ee:33:bd:
20:99:aa:bf:2a:e7:87:89:5b:b4:13:fc:99:d3:30:ce:6d:9d:
07:51:0e:cc:09:d8:32:70:7a:e8:5e:15:50:71:73:89:44:ff:
42:6c:25:00:8f:8c:f1:01:9c:8f:90:9c:dc:9a:89:90:11:a7:
e9:5d:19:1c:99:72:76:ed:06:a3:2e:db:d0:90:02:2c:cc:a1:
b3:21:3d:d2:13:0a:9e:23:13:58:ee:2f:29:3f:18:b5:1d:29:
86:88:01:2c:1a:ce:5a:56:1d:55:47:32:15:43:ce:e7:1d:09:
59:00:4b:e2:a6:be:c4:08:5a:56:0b:0d:2a:df:cb:47:d3:c0:
53:1d:4e:7a:50:c6:c3:17:83:62:4b:c9:8d:8a:2e:dd:0a:dc:
76:75:ad:38:77:21:8a:4b:61:cf:7c:e0:d5:71:4d:49:cb:d0:
27:5c:20:5c:f1:0a:34:d9:7d:a3:5f:dc:f1:0b:18:37:e3:f6:
bd:b9:8d:64:a2:81:c9:a0:f2:4e:db:63:77:07:d7:c6:d2:e8:
b7:66:ce:cb:66:3e:e3:bc:b4:1f:3e:ed:f9:7f:f8:fb:66:6e:
61:93:69:6d:7b:29:7e:7f:26:21:ef:7d:34:b6:38:a8:31:44:
af:60:e2:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:28:29 2025 by rpki-client