Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
File: YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft (raw, json)
Hash identifier: ftJ7naw/mHdriXJVLnUr+C45eD1tf9aLuLLkueGECDA=
Subject key identifier: 7A:FB:68:53:03:79:10:6A:F9:38:96:80:0D:C6:94:AE:C9:64:EA:7B
Authority key identifier: 61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
Certificate issuer: /CN=6149cbba3e6629beaebfb69668678ada51744898
Certificate serial: 019514A3F3B73E8B25B5107D4F28228403C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
Manifest number: 1180
Signing time: Mon 17 Feb 2025 16:00:43 +0000
Manifest this update: Mon 17 Feb 2025 16:00:43 +0000
Manifest next update: Tue 18 Feb 2025 16:00:43 +0000
Files and hashes: 1: 0IG70QW2hCrm52M5Cqyqdv7Bcb0.roa (hash: usdtXTbOrc0vwd46ZO8C/l/xue6j9QcbuHgY1Bupvvo=)
2: YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl (hash: 3tDlxnKmisFb1XO0hxRGRa/XQhhPJwd8hZ8gz4MOpss=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:14:a3:f3:b7:3e:8b:25:b5:10:7d:4f:28:22:84:03:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6149cbba3e6629beaebfb69668678ada51744898
Validity
Not Before: Feb 17 16:00:43 2025 GMT
Not After : Feb 18 16:00:43 2025 GMT
Subject: CN=7afb68530379106af93896800dc694aec964ea7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2a:f8:ea:85:af:7f:dc:4f:ea:95:3d:99:02:
6d:a6:a8:3e:c8:63:b1:95:5c:3c:db:e4:38:ec:7e:
6f:34:7a:2b:6f:ac:bb:dd:c6:2f:3e:b6:ca:7a:d2:
6b:8f:45:50:7d:14:cc:f6:8c:28:19:6c:a9:a7:bd:
60:0d:72:a4:ba:72:20:0d:40:a1:92:0e:2b:a1:80:
68:2d:3e:b1:7e:82:10:8a:9e:b0:ff:3d:5b:45:67:
b4:67:55:b5:a6:f2:3b:f4:d4:05:9f:8f:54:82:4d:
9c:0a:43:cf:59:a9:6a:27:4c:c8:37:73:32:16:06:
96:c4:40:3a:df:94:c6:d1:37:f9:f7:2a:32:5f:19:
00:61:60:8d:13:d2:ea:d9:80:0a:cc:a2:b6:aa:01:
f3:52:de:25:57:b3:b1:cd:3c:a2:b9:91:1e:69:cb:
fa:3f:26:aa:05:e0:80:05:9e:30:8d:7c:21:30:1b:
df:8d:1e:75:15:e8:aa:42:a1:b7:70:09:98:a6:36:
d5:22:e2:b3:e0:a2:e2:c0:1a:b5:7a:eb:f4:7b:36:
d4:1c:5c:88:53:d7:82:9a:a4:86:c7:6d:b8:c9:46:
ed:24:a0:b7:8a:d3:05:4a:5c:5c:9d:9d:fe:b2:be:
2f:3c:9b:6b:d4:1a:7d:ef:ab:25:bf:2d:6f:7c:f7:
e8:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:FB:68:53:03:79:10:6A:F9:38:96:80:0D:C6:94:AE:C9:64:EA:7B
X509v3 Authority Key Identifier:
keyid:61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:6f:39:49:6c:97:be:cc:9d:9b:b5:9c:00:72:85:bf:07:ed:
8d:54:ee:89:d9:cc:0b:95:24:a3:75:59:00:12:4c:d5:ed:6d:
cc:c3:b9:16:04:a8:68:36:7f:58:c7:84:12:95:2d:df:ca:fd:
bf:2b:47:11:e9:02:ed:18:96:6d:24:e4:70:44:bd:a5:cc:dc:
60:1f:30:91:3f:62:60:ba:43:a0:53:54:31:a8:40:e6:74:d9:
3f:43:52:f8:dd:5f:ce:1f:76:20:cb:d7:7f:7a:f3:cd:50:85:
2b:30:9e:72:3b:0c:01:d3:e5:bb:04:56:e8:bd:32:15:17:b3:
25:1f:bd:c9:67:88:90:21:9b:59:43:6f:2d:94:3b:82:69:c9:
d8:a4:56:f1:7b:65:aa:85:30:64:2d:c7:7e:af:b9:6e:07:e0:
0c:e3:39:05:82:09:f1:d3:b1:b9:40:21:ff:8f:b3:6b:55:2b:
f4:7b:a0:7e:73:32:3b:06:b0:4e:45:67:db:0f:62:bf:0b:4f:
b5:26:3c:82:f0:9e:2d:8f:a5:49:6b:a8:a9:1b:3f:f7:6c:2f:
fb:20:f9:68:36:1c:3e:f8:2d:db:41:ba:d4:f5:47:8b:d7:96:
63:5a:99:85:ca:c3:bf:1e:e6:7f:8d:10:9e:ce:8f:08:c6:6b:
34:e8:11:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:13:21 2025 by rpki-client