Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
File: uHt2aWhxYpblu6C86DhWrnFluLg.mft (raw, json)
Hash identifier: es4BPDg05tsqonoHOWeABFs3TT68Kw5fhjm1LUhm5Wk=
Subject key identifier: 13:CC:86:6F:1B:63:35:B6:C6:AD:7E:B1:CC:43:E7:56:74:5D:F2:D3
Authority key identifier: B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
Certificate issuer: /CN=b87b766968716296e5bba0bce83856ae7165b8b8
Certificate serial: 0195E159466226AA687BFCF67118672387B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
Manifest number: 14C7
Signing time: Sat 29 Mar 2025 10:01:18 +0000
Manifest this update: Sat 29 Mar 2025 10:01:18 +0000
Manifest next update: Sun 30 Mar 2025 10:01:18 +0000
Files and hashes: 1: EMnxCwOEWhhPugjrcZ3jtYAbiJc.roa (hash: ioXKgGTre/pDJJ5LrVdx9gIh66mx4jxeELCjJSUVqnM=)
2: fEaK7ErCTm7Fivri0S-qqcMkyMU.roa (hash: IfCVzZn66SOIRBGzYSq04PtQc+Pau+GA8F1M7N7TehY=)
3: uHt2aWhxYpblu6C86DhWrnFluLg.crl (hash: ozQZ56Djc0Zqua+chLiA6xRao///RdZ2w2UYyLYVUQU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:46:62:26:aa:68:7b:fc:f6:71:18:67:23:87:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b87b766968716296e5bba0bce83856ae7165b8b8
Validity
Not Before: Mar 29 10:01:18 2025 GMT
Not After : Mar 30 10:01:18 2025 GMT
Subject: CN=13cc866f1b6335b6c6ad7eb1cc43e756745df2d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:31:4c:71:71:bc:bc:26:a4:4a:bc:a9:ea:46:
40:df:8b:eb:fe:28:da:5b:ab:43:e7:19:12:08:c4:
a8:6b:4b:2d:0f:c5:eb:10:8c:cb:37:bb:4d:ab:cc:
21:8f:14:1a:31:3f:e6:5c:76:38:a3:ce:bb:ae:d5:
9d:fe:f7:a7:5c:8b:91:50:e3:16:16:09:6e:d9:67:
9d:d4:76:6c:fa:34:07:9d:74:df:14:a0:d8:b2:45:
2c:15:42:36:e2:d6:1c:35:b3:86:cd:88:91:11:39:
17:7f:b6:74:32:4c:d8:08:51:11:28:17:ae:a1:d4:
b8:c9:7b:78:fa:d9:aa:19:41:2d:9d:0d:c6:f6:49:
0d:8c:b5:72:28:e7:7e:d6:4b:37:09:a5:54:10:d0:
cc:3f:1f:63:22:d4:3a:3a:1e:e1:6a:22:88:37:b8:
d1:80:e9:02:78:c7:8a:e8:8f:9d:08:d2:32:45:7b:
16:57:2c:f6:6e:ca:1c:d5:0e:92:9c:fd:8d:25:f3:
ed:3a:0d:a5:69:a1:73:86:5f:b4:dc:65:e9:73:99:
be:36:9e:9e:cf:07:db:eb:e3:f2:f4:b1:99:dd:2c:
3d:94:34:17:cd:67:60:07:6d:73:58:dc:54:24:ed:
09:2f:d8:d1:d5:d8:0b:22:d9:b1:70:1d:ff:5c:c9:
58:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:CC:86:6F:1B:63:35:B6:C6:AD:7E:B1:CC:43:E7:56:74:5D:F2:D3
X509v3 Authority Key Identifier:
keyid:B8:7B:76:69:68:71:62:96:E5:BB:A0:BC:E8:38:56:AE:71:65:B8:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHt2aWhxYpblu6C86DhWrnFluLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/a3ede6-bc31-4d00-925c-3d612f324996/1/uHt2aWhxYpblu6C86DhWrnFluLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:76:b9:74:07:3f:eb:e9:b9:ce:0e:dc:53:bc:1d:3c:0c:b5:
fc:94:b3:31:ab:05:bb:b8:37:06:4b:57:4a:0d:3f:71:75:5d:
21:a9:ac:32:cc:02:02:93:5d:07:44:23:48:92:c4:a1:39:4f:
64:05:71:0d:4a:26:47:ae:79:cd:87:c3:5f:9b:ee:c5:52:6f:
fd:19:38:4b:da:b1:e8:2d:4d:58:3d:f7:df:61:b4:c3:95:f3:
02:50:0f:6e:8f:2b:8e:ec:64:c0:87:81:2e:56:7b:4a:4c:98:
7e:87:df:0b:13:eb:62:b7:b8:14:6f:00:b3:e9:df:6e:fb:46:
2b:b5:7d:1a:e6:5a:56:9f:b5:64:75:c3:77:1c:0a:e5:71:65:
a7:7e:70:b9:08:63:53:81:4a:ec:1b:53:ea:78:21:e6:74:d9:
24:c5:45:88:b9:59:8a:ef:82:2d:ad:1f:be:11:92:84:f1:30:
0e:2f:fe:e2:06:51:93:a7:9c:d3:93:40:9f:12:d4:8e:f0:ae:
0d:53:de:fa:b7:b5:e2:29:9f:8b:3d:62:c7:62:a4:4f:d6:2c:
f4:45:e7:39:56:4b:0f:49:9d:aa:dd:10:33:19:1b:95:9b:a4:
ff:b7:d5:e7:9d:08:b7:1e:c4:5e:79:cf:16:92:a1:60:09:04:
53:6c:76:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:11:23 2025 by rpki-client