Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
File: pqBZBOyBdGoKZtIH9dNvjZeIig0.mft (raw, json)
Hash identifier: 1T4nMkZwZgY4EOMoVkBgpi/3MVzxLpwtHblrt2AWY2M=
Subject key identifier: DD:0F:EB:94:DD:96:B6:44:14:F5:17:78:0F:6D:88:61:18:E1:4F:79
Authority key identifier: A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
Certificate issuer: /CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Certificate serial: 0195E1597CCF00F581632005DEAF13C1CC51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
Manifest number: 0625
Signing time: Sat 29 Mar 2025 10:01:32 +0000
Manifest this update: Sat 29 Mar 2025 10:01:32 +0000
Manifest next update: Sun 30 Mar 2025 10:01:32 +0000
Files and hashes: 1: pqBZBOyBdGoKZtIH9dNvjZeIig0.crl (hash: ut4As84Mh3N077nUwC8KwNShfAL+GbQ0q+4IcN6u4is=)
2: wcWtJWZdHtQ3MB-JGGb4XgtvRZY.roa (hash: uBYBylJRjDgsdsAh3Gf2WJ38oblmNaRqlj9rvalMb+M=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:7c:cf:00:f5:81:63:20:05:de:af:13:c1:cc:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a05904ec81746a0a66d207f5d36f8d97888a0d
Validity
Not Before: Mar 29 10:01:32 2025 GMT
Not After : Mar 30 10:01:32 2025 GMT
Subject: CN=dd0feb94dd96b64414f517780f6d886118e14f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:22:bb:10:e2:5c:62:47:6b:21:b5:75:c2:f5:
17:79:18:35:a6:44:5d:4e:9d:60:5d:aa:80:1e:e9:
7c:54:d7:62:81:9b:07:a7:c0:dd:7e:98:ad:0e:ef:
72:06:59:97:9f:fd:51:1f:50:ae:a3:1b:0d:a8:5e:
e7:96:10:50:31:bd:27:c6:4a:e2:c9:2c:58:b8:7a:
b5:de:33:11:db:7e:a2:33:94:7b:18:54:9e:aa:e5:
1e:75:5f:54:c6:75:5b:c2:55:7b:90:7a:e6:f9:69:
3f:0e:ea:8f:a5:12:7d:9e:35:26:5c:6c:df:06:a5:
f9:b8:17:eb:f3:03:02:db:d2:db:9e:33:c1:22:ae:
83:e0:76:12:ac:16:f1:c5:a7:5d:97:8e:0d:72:84:
91:ea:b8:db:0e:82:a6:89:a3:00:af:ca:57:62:b4:
00:80:3d:3e:6f:eb:e0:ec:99:18:26:bd:68:55:56:
8d:cb:27:f1:f9:4b:39:b4:f4:04:ca:f2:76:e4:b1:
02:26:3b:82:90:1f:df:cc:91:1d:f2:62:02:80:62:
4a:4e:14:f9:dc:b3:f7:13:3d:3d:66:b2:35:6a:88:
f1:0f:25:f1:90:c7:f4:b2:c1:84:84:04:50:10:c7:
15:13:76:7a:44:41:47:64:e1:ae:2f:2c:e9:d8:fb:
cf:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:0F:EB:94:DD:96:B6:44:14:F5:17:78:0F:6D:88:61:18:E1:4F:79
X509v3 Authority Key Identifier:
keyid:A6:A0:59:04:EC:81:74:6A:0A:66:D2:07:F5:D3:6F:8D:97:88:8A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBZBOyBdGoKZtIH9dNvjZeIig0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3b51c9-b37b-4767-88d9-5df6a463035b/1/pqBZBOyBdGoKZtIH9dNvjZeIig0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:62:2d:db:95:f3:77:f5:e8:3c:e7:40:05:78:5c:01:d7:d1:
c7:51:59:b2:a9:1c:39:f5:02:d9:50:50:e1:55:24:fa:70:27:
01:9d:23:73:a8:68:ac:7e:74:8e:e1:06:08:f5:8a:16:e4:0e:
70:a8:53:cc:89:d8:e8:4b:40:23:fd:f3:2a:04:39:4e:e3:2a:
8c:1a:06:03:79:ea:b1:b4:f1:1a:f1:3d:cd:00:21:41:58:2a:
29:e1:f6:ee:f3:da:ed:dc:34:d5:7b:94:4a:18:94:16:af:b6:
55:b7:38:38:e0:36:43:90:ca:83:22:e7:91:0b:09:7e:4e:42:
72:de:3f:e3:9c:34:e1:22:c5:4d:b1:ff:e7:b6:53:67:a6:7d:
f2:e8:c6:07:30:b8:ec:d8:3c:e9:64:ac:e7:a1:b0:ba:a1:7e:
76:bf:a8:a2:b3:72:89:51:9a:41:70:fc:90:f8:5b:54:3d:62:
8f:a6:62:31:ac:5d:d2:82:43:f7:51:81:a9:59:ba:94:a8:ad:
99:fd:08:7d:f4:fc:5e:a8:1a:54:78:81:87:b0:7b:80:fc:60:
ab:ec:8e:3d:33:4c:51:0c:68:95:84:1a:98:a8:57:39:ff:bc:
04:e9:db:f9:55:2c:57:15:c2:a4:3f:dc:ed:ff:39:76:a9:a9:
63:8e:6e:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 06:25:56 2025 by rpki-client