Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
File: K5didVR7dd8rBMT5spHAcQxQd0A.mft (raw, json)
Hash identifier: olVK5Yapv1VAfntXOi9PnRrFDkrKzImxBZ5ikhDmBxw=
Subject key identifier: 14:AA:BF:53:29:C7:75:E1:4D:BC:91:A5:04:E2:D4:84:5B:6D:EA:2D
Authority key identifier: 2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40
Certificate issuer: /CN=2b976275547b75df2b04c4f9b291c0710c507740
Certificate serial: 0195E1596CCD77B9DC8313C84C89C6E02F61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
Manifest number: 14C4
Signing time: Sat 29 Mar 2025 10:01:28 +0000
Manifest this update: Sat 29 Mar 2025 10:01:28 +0000
Manifest next update: Sun 30 Mar 2025 10:01:28 +0000
Files and hashes: 1: K5didVR7dd8rBMT5spHAcQxQd0A.crl (hash: Ypa+4CJ2Ox8uC4lxtoC0yRsbC2EfDx5bw03f4dzJNKw=)
2: LM4PEm0ffK75EUFTgpXPbuoAKZ8.roa (hash: d7gyd2tIHJ6HJ/7vl5EHNlkX+eVBttxlbWWHGFZ3xxQ=)
3: _w36PBooYvePauBkPOTldD_qNZc.roa (hash: hpJoX8luKbQz9GDhdRpg1rk5Zn+lxQz5UWYQbVjTs1Y=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:6c:cd:77:b9:dc:83:13:c8:4c:89:c6:e0:2f:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b976275547b75df2b04c4f9b291c0710c507740
Validity
Not Before: Mar 29 10:01:28 2025 GMT
Not After : Mar 30 10:01:28 2025 GMT
Subject: CN=14aabf5329c775e14dbc91a504e2d4845b6dea2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:12:fc:f0:84:91:30:7a:2b:b9:ec:00:9a:f3:
03:15:f6:78:df:50:56:45:5b:75:73:1e:9b:9e:ad:
07:5f:43:75:cf:d4:ad:c6:ae:a1:dd:2e:e3:c4:98:
94:64:8f:51:f8:6a:8b:c4:69:7a:7c:98:f3:35:06:
27:7f:59:02:a4:ea:af:18:86:e7:f0:06:34:11:91:
31:5e:f7:b0:d1:f4:59:a0:03:48:17:bc:3e:42:6a:
b0:8e:3f:db:c4:a5:d7:4b:8e:70:1b:c0:58:52:48:
51:1d:17:c3:23:7d:70:b0:d0:19:38:3a:12:49:33:
f9:26:71:b5:a2:bf:3a:53:cb:76:e8:da:09:ea:6e:
bd:06:c4:5f:36:16:f3:31:47:44:89:b1:c1:ff:59:
97:fa:a1:0b:61:9e:4b:da:4a:24:8f:a5:af:9a:25:
93:db:86:ca:e5:68:7a:54:9e:0b:71:d0:af:d0:12:
1a:d0:cc:03:68:70:be:89:07:a8:35:55:86:89:5a:
fa:86:90:ed:20:c9:80:f7:49:a2:ae:07:c4:2b:0c:
0c:60:4f:7d:be:77:58:e9:f7:dd:d9:0c:6b:8b:7b:
5b:33:07:35:a8:d2:06:fb:a2:ec:ce:c5:f1:a1:85:
d5:18:e9:12:a4:ce:ce:06:10:ea:c2:08:f9:67:56:
57:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:AA:BF:53:29:C7:75:E1:4D:BC:91:A5:04:E2:D4:84:5B:6D:EA:2D
X509v3 Authority Key Identifier:
keyid:2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:67:93:b1:8d:f2:e5:30:50:1e:7f:6d:9d:24:f7:bb:71:b3:
e7:81:e3:4b:3d:4a:86:64:bb:f1:da:5e:6a:06:38:1f:78:dd:
fd:6f:a6:12:04:21:b9:cb:42:cb:94:5d:6d:85:02:60:fc:36:
f7:bf:8f:5e:be:87:b4:ef:64:f6:96:8b:de:5b:f2:3b:c6:63:
96:d5:c6:6a:3a:ce:d1:a3:47:e3:d2:d6:89:64:c6:f4:f6:75:
0e:b5:10:f0:73:5f:7b:c3:36:92:4c:98:d0:12:e3:14:28:6b:
03:d5:22:7b:79:fb:07:76:08:17:fa:43:7d:39:3f:67:3e:13:
91:fa:fb:ed:eb:77:86:4a:92:b8:23:7a:4a:25:b6:f2:33:5e:
25:a8:68:ed:fc:f5:bc:94:b9:58:c3:c6:7f:10:0d:f1:6c:f5:
7b:1d:70:77:2e:ab:1c:34:fc:82:6a:6d:5a:21:3f:6c:ec:58:
f8:c1:cd:04:0d:c3:98:78:f5:96:49:11:c7:e4:77:a1:9c:53:
a4:9f:44:5f:8e:99:34:29:50:17:14:6f:8e:34:c2:dd:df:f7:
1f:ae:28:a3:d5:c3:5e:e8:0b:67:86:7b:9c:f7:17:44:d1:a3:
8c:7c:7a:01:46:76:9d:2e:32:cc:9d:10:b3:88:32:a0:6e:09:
7d:82:5f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:22 2025 by rpki-client