Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
File: cDbgTlO505Z8-dQY54tgu60HWDE.mft (raw, json)
Hash identifier: LB+QTpxRqHBNylbeBwmvFrnfQuLRsMbuyxoeyiYyQqI=
Subject key identifier: 4C:BF:47:7B:CF:6E:ED:CF:85:B7:9E:05:98:16:10:36:14:DC:BB:E5
Authority key identifier: 70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
Certificate issuer: /CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Certificate serial: 0195DFD8C1022A856B6027854EA569C35B48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
Manifest number: 64
Signing time: Sat 29 Mar 2025 03:01:19 +0000
Manifest this update: Sat 29 Mar 2025 03:01:19 +0000
Manifest next update: Sun 30 Mar 2025 03:01:19 +0000
Files and hashes: 1: 79VsR-5nub7DUrhryJn99r0sSJE.roa (hash: PKoaa5fww3RYvMlarfjIhYGHHPB9uxMDQ5a1vOFmd9k=)
2: cDbgTlO505Z8-dQY54tgu60HWDE.crl (hash: 0uUKuTElxCXfzbRoxNx7rRgezVR4NgHsBVCsx3pIW88=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:d8:c1:02:2a:85:6b:60:27:85:4e:a5:69:c3:5b:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7036e04e53b9d3967cf9d418e78b60bbad075831
Validity
Not Before: Mar 29 03:01:19 2025 GMT
Not After : Mar 30 03:01:19 2025 GMT
Subject: CN=4cbf477bcf6eedcf85b79e059816103614dcbbe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a1:e9:04:2a:c1:94:ff:d8:a2:d8:8f:b5:ca:
e2:07:80:4c:b3:83:7d:97:f2:9e:27:05:8a:ac:46:
ab:92:58:19:3a:4c:6c:99:2e:f5:20:5c:ce:e0:cf:
5d:2a:37:a3:db:ad:ce:78:15:59:ea:73:5c:e7:7d:
76:f4:e0:6b:0d:ef:cd:24:d5:8d:70:99:36:d3:8a:
aa:bc:d1:f1:3e:91:fe:f2:42:d4:b2:39:70:70:f4:
f0:2b:1a:d9:68:df:c6:a8:84:f1:b1:b1:95:5c:d2:
8a:c5:0e:7f:4c:91:53:e3:17:34:33:ee:95:3a:e4:
65:72:b7:42:38:96:75:e9:a6:16:88:96:51:1e:35:
a5:1f:e2:c6:13:dc:ae:f5:e0:10:f8:7e:ab:f6:01:
9d:27:e9:4d:a3:31:7c:24:f0:bf:e7:4e:0e:50:03:
a0:50:37:04:33:a9:92:d3:df:c2:1f:f2:c4:88:69:
88:16:14:93:12:ef:e0:39:72:6d:5d:b8:1c:60:2e:
f6:4d:fe:b5:16:67:33:29:db:c4:a7:63:11:b6:8f:
36:32:f4:fa:e4:e9:67:e2:99:f2:4e:bc:99:55:b2:
b6:a7:d7:61:6e:18:26:47:9d:61:b5:9a:a9:1e:30:
4f:42:5f:d2:e4:2a:4f:39:69:10:84:69:ce:e0:68:
73:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:BF:47:7B:CF:6E:ED:CF:85:B7:9E:05:98:16:10:36:14:DC:BB:E5
X509v3 Authority Key Identifier:
keyid:70:36:E0:4E:53:B9:D3:96:7C:F9:D4:18:E7:8B:60:BB:AD:07:58:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cDbgTlO505Z8-dQY54tgu60HWDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/8332cb-fd4b-49d9-b0a1-89def0082e2a/1/cDbgTlO505Z8-dQY54tgu60HWDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:27:40:f8:88:82:10:4b:f1:62:60:65:5f:45:f8:68:4b:14:
c0:40:ca:4f:b4:fa:f2:fc:bc:67:17:af:fe:48:94:4e:c9:ec:
1b:e8:ea:53:35:71:59:4c:54:0e:47:74:d9:2a:8c:f1:04:e8:
c3:05:e9:c7:7c:d9:0a:64:f2:9b:03:fc:8c:54:0b:60:6b:7c:
0d:e4:50:6f:72:55:76:64:34:73:63:35:b7:d5:e9:1c:6f:2e:
01:b9:55:20:91:62:e5:23:4d:a2:31:ab:08:ca:4e:de:f7:28:
72:43:97:60:bf:03:c4:22:7e:1b:c0:8f:76:c8:1b:7d:9a:6f:
74:7d:22:92:a1:40:0a:c2:14:d3:fb:c1:7a:41:ec:fa:40:c8:
41:0d:c8:bc:f2:4f:af:20:f7:b1:ea:7c:78:4c:9f:42:dd:26:
33:a1:7f:c3:96:5e:93:d4:b6:9b:0b:9f:bf:1f:da:74:cd:a9:
61:ea:b1:3a:ea:fe:b8:3a:4d:b3:00:f7:d4:ca:b0:cd:a8:56:
0b:4c:96:17:b8:88:31:66:49:58:b0:fc:3c:3b:70:c1:70:d1:
9b:d0:13:25:6c:1f:64:12:fc:06:b4:5d:82:4b:ad:86:91:5f:
b8:65:05:7d:f3:0d:91:04:e2:1f:16:f6:49:60:f3:1f:08:05:
81:b4:83:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:13:03 2025 by rpki-client