Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/a16bfb-36c5-45bf-b627-1d77718022d1/1/y1ojbIrLg4aEGSMtmO8syxLxnrA.mft
File: y1ojbIrLg4aEGSMtmO8syxLxnrA.mft (raw, json)
Hash identifier: BPYv0AoyWzPdzcMZ4xwCfTPbgfGT1jw40AtpHvJI1zc=
Subject key identifier: FB:4A:23:82:72:C2:7B:72:6E:5C:DB:5B:5E:BD:19:CB:38:D0:A9:6F
Authority key identifier: CB:5A:23:6C:8A:CB:83:86:84:19:23:2D:98:EF:2C:CB:12:F1:9E:B0
Certificate issuer: /CN=cb5a236c8acb83868419232d98ef2ccb12f19eb0
Certificate serial: 0192B2D05C0D116E5AE135BB8D05F1F144EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1ojbIrLg4aEGSMtmO8syxLxnrA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/a16bfb-36c5-45bf-b627-1d77718022d1/1/y1ojbIrLg4aEGSMtmO8syxLxnrA.mft
Manifest number: 0166
Signing time: Tue 22 Oct 2024 06:00:52 +0000
Manifest this update: Tue 22 Oct 2024 06:00:52 +0000
Manifest next update: Wed 23 Oct 2024 06:00:52 +0000
Files and hashes: 1: QM0OCtW9RH5wF_RJAhnFi1Qk2N8.roa (hash: ZfIJyLuR/iWhui3rw61vGal9I2FfuUdlNV0JnWdyQfM=)
2: y1ojbIrLg4aEGSMtmO8syxLxnrA.crl (hash: xG2g+c9KsryVyvbxFhBbMBYmoJNvxB8f9u3KGcCKobU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b2:d0:5c:0d:11:6e:5a:e1:35:bb:8d:05:f1:f1:44:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb5a236c8acb83868419232d98ef2ccb12f19eb0
Validity
Not Before: Oct 22 06:00:52 2024 GMT
Not After : Oct 23 06:00:52 2024 GMT
Subject: CN=fb4a238272c27b726e5cdb5b5ebd19cb38d0a96f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d5:ed:72:9c:34:51:b0:d0:96:a0:3c:5a:f7:
c5:e7:21:4f:30:c9:6e:b2:1a:bc:07:a9:4a:94:b4:
8e:95:44:ab:16:37:90:92:a1:c0:b3:a7:67:c6:7f:
e3:ad:ae:79:a3:d2:05:85:a4:13:07:24:e0:90:fb:
7e:ec:e8:4a:00:ec:0d:74:a0:7f:a5:67:86:dc:51:
8f:a4:ef:8b:9b:c3:66:98:12:cb:80:8f:1e:76:f2:
b8:ec:73:c8:2a:36:cc:a5:11:1c:e0:a8:c9:6b:5a:
f4:74:db:5c:42:3c:cd:3a:08:f9:87:de:e5:bc:1b:
b9:65:e9:75:2d:b6:bb:7c:2d:ff:be:14:de:37:06:
a5:9f:c6:97:81:0f:ff:2f:40:1c:ac:61:2e:45:86:
3d:27:c4:ae:dd:a6:d6:ab:ed:79:79:09:21:d0:ce:
f5:af:43:bc:d2:02:55:c4:2e:1e:3d:d0:53:d4:7f:
29:50:ea:8d:2c:17:f0:9a:29:d0:db:f0:ab:de:42:
c1:cd:21:f6:da:e1:30:70:f7:58:9e:a2:92:bf:e7:
72:b4:5e:93:73:cb:7d:80:23:13:a2:3f:02:be:88:
3c:fe:30:1c:59:1c:15:9c:8c:2d:62:6b:04:5d:89:
72:5f:0f:77:ef:78:93:be:a9:f0:1a:1a:df:6d:8e:
c8:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4A:23:82:72:C2:7B:72:6E:5C:DB:5B:5E:BD:19:CB:38:D0:A9:6F
X509v3 Authority Key Identifier:
keyid:CB:5A:23:6C:8A:CB:83:86:84:19:23:2D:98:EF:2C:CB:12:F1:9E:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1ojbIrLg4aEGSMtmO8syxLxnrA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/a16bfb-36c5-45bf-b627-1d77718022d1/1/y1ojbIrLg4aEGSMtmO8syxLxnrA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/a16bfb-36c5-45bf-b627-1d77718022d1/1/y1ojbIrLg4aEGSMtmO8syxLxnrA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:bd:b7:53:ed:cb:08:5c:dd:81:e3:90:ac:9e:b3:d5:40:11:
ec:da:ce:aa:16:c1:98:4b:58:bf:56:aa:66:c3:f4:89:eb:2b:
05:c1:7b:36:03:8c:e2:a0:23:5f:09:fe:4a:e8:df:b2:38:10:
5c:2d:e6:19:de:6d:d9:34:d4:9e:c0:19:1c:48:ba:c7:42:1f:
fe:5c:f8:c3:18:7c:3a:89:82:26:24:7c:58:ac:34:61:8c:e0:
db:d1:ff:47:b9:74:61:4e:53:fb:15:1c:bb:b9:92:0e:2d:04:
b7:98:63:e5:fb:29:03:8c:cf:f0:02:01:df:14:19:57:7d:21:
a3:fb:74:fd:df:3e:6f:85:96:03:27:66:89:a6:a5:3a:7c:eb:
c4:2d:83:fb:b8:41:28:92:90:d7:0c:6d:07:a7:d2:de:b1:0b:
3f:b1:cf:b6:49:fe:eb:03:05:b9:57:ef:e7:86:35:a2:e9:13:
a5:42:c3:8f:7e:e5:2e:29:00:60:ce:30:6b:da:33:4d:22:61:
6c:e4:0d:fa:42:47:fb:b9:12:7e:5c:ed:dc:4f:c8:98:13:4f:
7c:54:b2:94:af:50:ff:98:d9:a5:b3:2f:c1:fc:e0:d9:1c:d6:
fb:f9:13:83:f3:45:2a:b8:bc:9a:02:6e:cd:ca:80:d1:6f:86:
f8:a6:fb:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 13:52:12 2024 by rpki-client on console-fra.rpki-client.org