Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
File: MAVrA3XYlLk8sOJtm01koIxYNx4.mft (raw, json)
Hash identifier: N8dDcVF7eAn0MqoAJfIhc3kY6Fnw6NaEMOVlY4D3uvk=
Subject key identifier: 30:C1:5F:93:16:61:A2:FB:34:FE:CF:74:A5:C7:12:59:F2:D3:99:EC
Authority key identifier: 30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
Certificate issuer: /CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Certificate serial: 0195E07DBDFC61A4D484228CFFD458F409C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
Manifest number: 0A4B
Signing time: Sat 29 Mar 2025 06:01:31 +0000
Manifest this update: Sat 29 Mar 2025 06:01:31 +0000
Manifest next update: Sun 30 Mar 2025 06:01:31 +0000
Files and hashes: 1: 3O6Y3eQ5OpGsAft35AyeyfVjQ6o.roa (hash: u+uYD6/L10KdiWIH/nhFz7IkGG28050DGlwgSDFBhnk=)
2: MAVrA3XYlLk8sOJtm01koIxYNx4.crl (hash: 7866otchsf3WD6Aa5WWuts+eJuXlZ1uL3lfeDbupnnE=)
3: vQwx6cGSIAT7m9K8R35GzUVPtvc.roa (hash: zbCFg7Xh1dqpHRv2DApSfzHkCmAjvg9jJtigoE/GHhk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:7d:bd:fc:61:a4:d4:84:22:8c:ff:d4:58:f4:09:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30056b0375d894b93cb0e26d9b4d64a08c58371e
Validity
Not Before: Mar 29 06:01:31 2025 GMT
Not After : Mar 30 06:01:31 2025 GMT
Subject: CN=30c15f931661a2fb34fecf74a5c71259f2d399ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0c:19:70:29:1f:fa:4c:69:f9:83:ee:2d:aa:
2e:bc:82:b6:3f:72:73:a9:1b:5d:5d:f6:97:93:9e:
bd:91:4e:fb:e9:a3:e9:c2:c4:52:bb:6e:4c:5f:11:
56:35:10:3c:a4:e8:4e:f6:e7:ce:7b:91:ce:19:bd:
73:7c:c3:70:67:cc:e4:78:43:64:8d:42:3e:47:72:
14:a7:8e:6b:25:4e:0c:db:20:6e:7f:16:98:ba:51:
e9:c3:b8:24:0e:c7:dd:10:12:b2:b4:85:67:51:37:
9e:2d:29:61:e4:ae:b6:f5:dc:93:e3:11:e1:f1:fd:
45:29:47:9e:6c:70:b7:b6:3d:12:5a:62:e0:20:04:
e9:98:44:28:bb:d1:0f:17:b1:0e:35:4e:c9:16:f2:
3c:33:fc:57:60:27:eb:0a:0e:84:cf:2d:d5:3d:54:
94:f1:9b:5e:93:81:aa:a3:87:eb:db:04:76:43:4c:
97:4a:44:57:a7:15:2e:60:09:0c:e8:5b:90:e1:00:
63:0a:b0:d7:4d:b8:33:93:10:e0:04:d4:dd:2e:f5:
f4:11:2a:6c:51:29:19:e1:c2:23:9b:dc:57:76:40:
12:c1:2c:c2:03:c1:ec:7a:eb:1e:4f:e5:d8:b0:0d:
8c:c1:fa:f0:e6:65:85:80:c3:01:75:43:96:e5:c5:
da:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:C1:5F:93:16:61:A2:FB:34:FE:CF:74:A5:C7:12:59:F2:D3:99:EC
X509v3 Authority Key Identifier:
keyid:30:05:6B:03:75:D8:94:B9:3C:B0:E2:6D:9B:4D:64:A0:8C:58:37:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MAVrA3XYlLk8sOJtm01koIxYNx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/2a7472-cbb8-4c99-be21-11b4afbede19/1/MAVrA3XYlLk8sOJtm01koIxYNx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:86:56:94:9d:9f:6c:6e:4d:4e:bb:55:d2:78:54:cb:ca:eb:
2e:88:2d:08:51:3e:7c:43:02:5a:4a:01:28:98:74:39:d0:ab:
77:9f:00:59:fe:55:b8:5c:d2:c5:e0:7c:59:2e:8f:c7:da:cc:
b1:3d:49:e5:f4:3d:5a:22:b7:f9:7e:5f:12:72:e4:c9:17:6a:
07:12:55:b7:ac:84:e2:f9:bb:34:14:b5:5b:c6:49:17:5e:14:
29:be:8b:d3:8a:bd:f1:a2:2b:70:a9:aa:95:82:00:19:55:bb:
8c:49:23:f7:d1:99:f3:1d:d1:7c:38:48:5d:55:05:7b:da:5d:
59:87:0d:98:52:83:21:e8:31:0b:3c:2f:57:ec:29:e9:3c:cd:
16:29:7b:cc:2d:9f:90:45:26:9d:0d:a4:d3:8f:ce:4d:af:a0:
f1:98:8a:79:e3:af:d3:97:df:71:18:7f:b3:44:a9:07:24:c8:
c3:bd:3e:f7:82:c5:4e:d4:40:05:67:3a:d6:cc:4f:e7:66:b1:
b1:f3:3b:99:ce:40:e7:9c:ae:5a:fd:fd:c6:0d:89:12:00:3e:
44:41:6b:1e:4a:6c:59:29:c4:c8:37:a5:43:50:b0:b2:1f:06:
d3:ad:8d:9f:32:8b:d5:89:c0:c0:48:09:d7:18:37:d5:0e:bb:
08:2f:2f:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:59 2025 by rpki-client