Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
File: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft (raw, json)
Hash identifier: 4kcoqVgJspEQBxOrCTVn565ex/UKQOup1aTNXaechIg=
Subject key identifier: FE:C6:FC:0F:3A:B0:45:56:F6:F8:9B:23:10:6D:84:27:F9:A9:B3:07
Authority key identifier: 68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
Certificate issuer: /CN=68a8e93d3f590f4450d1db3c2074598244353e93
Certificate serial: 0195E07DACDE691FB3ED623B101F3C649F95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
Manifest number: 14CD
Signing time: Sat 29 Mar 2025 06:01:27 +0000
Manifest this update: Sat 29 Mar 2025 06:01:27 +0000
Manifest next update: Sun 30 Mar 2025 06:01:27 +0000
Files and hashes: 1: OjcVy0GD8k4hcL8TqatzrwvfKI4.roa (hash: F/NOwGH5uq3Ta1hkwK8ONz25FZMJkk1iczAs1jYB4bA=)
2: X0zgOdGzFbnbluRhuXpZjJlGcaE.roa (hash: OadwEgcvezDEMKG2XzDYD2AjQVOO23z1M1gu9Hpi6DI=)
3: aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl (hash: tEpEJkZPQIVFsRV+brD9jWLy8bFZLLdP2heasG9jm+U=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:7d:ac:de:69:1f:b3:ed:62:3b:10:1f:3c:64:9f:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a8e93d3f590f4450d1db3c2074598244353e93
Validity
Not Before: Mar 29 06:01:27 2025 GMT
Not After : Mar 30 06:01:27 2025 GMT
Subject: CN=fec6fc0f3ab04556f6f89b23106d8427f9a9b307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5d:ad:81:95:52:dd:51:0f:82:90:45:b8:be:
70:9c:e9:c7:a4:e9:50:2e:15:00:38:09:f7:79:f8:
68:f7:27:b6:14:57:22:18:84:2c:b8:f0:ba:f9:95:
11:25:99:9e:2d:1f:06:0c:c3:af:65:75:b5:2e:2f:
41:e3:a9:fb:7f:13:17:96:19:ba:b6:e1:57:8d:b8:
6f:1c:e8:7e:91:0e:2b:e3:82:96:4a:11:52:c6:bb:
63:e1:45:af:9f:5a:0c:af:23:45:d3:3f:b7:0c:2e:
4a:b1:e9:64:b6:2e:0d:a5:43:21:7e:58:69:0a:c7:
1d:b4:c2:80:68:be:c4:90:ca:9b:b4:28:65:b6:99:
e4:69:4f:55:61:95:b9:18:35:a2:75:7b:33:ac:76:
9e:86:d7:8f:24:90:88:a5:43:30:f5:b3:49:ae:5b:
ae:03:02:cf:38:90:57:24:f0:f4:ce:b9:b1:40:68:
1e:35:ee:80:18:44:77:99:6b:52:b5:2d:d8:e1:82:
f0:ba:e4:fc:fe:f5:c4:b9:5f:7f:84:38:d5:b9:10:
cd:a0:42:4c:e2:56:21:ee:92:7e:29:18:6c:b9:ff:
19:2b:ba:64:27:08:23:20:81:36:8f:66:18:19:ca:
74:5c:41:ea:64:48:04:8e:f3:12:c3:b2:3f:5c:53:
f7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:C6:FC:0F:3A:B0:45:56:F6:F8:9B:23:10:6D:84:27:F9:A9:B3:07
X509v3 Authority Key Identifier:
keyid:68:A8:E9:3D:3F:59:0F:44:50:D1:DB:3C:20:74:59:82:44:35:3E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/bb3b29-81e5-45a2-81ec-25dd4cbb3698/1/aKjpPT9ZD0RQ0ds8IHRZgkQ1PpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:11:a0:bf:52:2e:21:14:0b:f2:87:e2:90:06:c3:79:88:3c:
3f:c0:54:e9:66:c2:73:e8:dd:7d:77:54:b5:40:01:47:83:0f:
bb:74:23:68:3d:0b:1c:46:e4:5b:f3:49:f6:04:b2:4f:8f:35:
62:44:4f:a0:b4:51:94:c0:9a:67:e6:1e:40:df:53:fd:8e:c1:
46:46:b1:25:7d:1b:8b:22:73:c8:a4:b1:76:d7:fa:49:34:bd:
53:e6:0c:c4:f7:4b:db:28:18:57:7f:46:63:3e:57:49:bc:7b:
f1:ac:ef:c5:d0:b1:4a:64:e9:02:87:b0:c8:58:96:b2:cb:9a:
a6:0a:77:7e:b5:66:12:d5:b2:0e:13:18:ae:8c:9c:a8:bd:95:
b1:29:69:f4:f8:7d:30:8b:3c:01:2f:a9:fc:9f:44:df:45:3a:
11:36:ed:f6:9c:cf:15:88:cd:23:e0:09:00:47:9a:d6:84:13:
17:8d:0e:15:2f:2e:e3:f0:58:cb:37:ed:0d:46:e0:97:26:6b:
7b:4c:d3:c4:c4:ff:ec:3f:2f:4f:ba:6e:df:b8:57:e8:99:ac:
23:e6:14:16:5a:a4:67:c7:77:ca:07:bc:00:5b:fa:76:d9:09:
80:7c:81:c9:41:0f:85:63:52:5a:fc:ab:84:56:d6:9c:ac:6e:
7d:18:fa:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:03:41 2025 by rpki-client