Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json)
Hash identifier: 7ayvHnBp2I9RB6VAHG5DfVdPwapyMlxUwVEQmFLRgOs=
Subject key identifier: E6:43:25:DD:B2:52:7D:16:D5:70:CB:2D:71:D8:57:11:AD:D5:E9:74
Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Certificate serial: 0195DFD8D3157BEC7C89DF115924448DA77C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
Manifest number: 14C2
Signing time: Sat 29 Mar 2025 03:01:23 +0000
Manifest this update: Sat 29 Mar 2025 03:01:23 +0000
Manifest next update: Sun 30 Mar 2025 03:01:23 +0000
Files and hashes: 1: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: lQXYVBNMIB92fKKfmI/OYK0mCEcVDD2LM6nclLra+BA=)
2: xXqtZaQE8p1BJ-LrGDHK3ctGl88.roa (hash: 19HlQM5dbXIMn5dc2AbBJAmDmCjDbQENEnPoWF/ZUJA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:d8:d3:15:7b:ec:7c:89:df:11:59:24:44:8d:a7:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90
Validity
Not Before: Mar 29 03:01:23 2025 GMT
Not After : Mar 30 03:01:23 2025 GMT
Subject: CN=e64325ddb2527d16d570cb2d71d85711add5e974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cf:56:6d:9c:09:ba:7e:75:98:66:8a:5b:b8:
4a:0d:9b:11:f5:30:69:8a:6d:06:2a:3a:b1:40:e4:
f2:7e:d8:90:a2:cf:4c:94:9b:57:ed:e6:19:ca:64:
84:1c:f7:7a:20:a1:d3:93:18:5f:a0:d9:e0:62:34:
14:fd:e8:66:26:1f:2b:f0:09:de:30:a4:82:18:42:
f9:36:42:1e:d7:45:cb:64:ca:25:bc:8a:dd:49:2a:
91:cf:d3:f8:18:b5:2e:65:da:2b:99:3c:7f:e7:30:
f1:36:de:7e:6a:7f:90:7d:ae:4f:17:8e:d3:bd:fa:
a2:cd:9e:f7:34:0f:c9:13:69:83:c3:92:19:de:c2:
bf:a7:38:f1:3d:95:c1:10:4e:c3:36:0b:53:70:f2:
94:2f:d8:e8:71:65:13:58:6f:c9:ff:89:28:21:64:
d5:5d:ee:7f:40:e9:93:be:b1:a7:22:33:f9:75:21:
71:2a:a3:9d:07:13:8d:a4:e5:92:09:06:6a:b2:b9:
32:b9:a5:3f:b4:31:54:4c:d5:79:a1:7f:44:e0:7c:
5d:46:51:5c:01:1f:e5:4a:09:64:3e:34:fa:03:48:
07:b5:78:c7:24:3e:9e:23:a7:b4:86:5c:a5:d2:09:
a0:0a:11:fa:db:33:66:d9:1e:b9:9b:68:0e:be:52:
ab:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:43:25:DD:B2:52:7D:16:D5:70:CB:2D:71:D8:57:11:AD:D5:E9:74
X509v3 Authority Key Identifier:
keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:f7:a7:43:6c:ea:e3:b1:8c:d2:ae:4f:30:12:d7:a3:5c:a6:
29:74:06:8c:31:62:72:19:10:8d:74:05:e7:30:f6:22:79:b4:
8f:bd:f7:85:80:96:75:ec:54:61:57:43:82:78:2c:67:39:d3:
4a:7d:60:07:94:32:4a:d0:fb:89:4c:65:a7:a9:b7:07:a4:18:
b2:ce:4f:81:3f:c8:47:f1:08:0c:01:c8:87:21:58:c5:20:bc:
67:60:b7:8d:df:2c:70:95:aa:46:dd:4a:9a:72:b2:8e:ef:51:
32:f5:fb:b9:f7:80:29:2d:a7:bc:a0:1a:6e:c6:72:f7:3c:21:
6f:68:ff:b7:5d:10:b0:b2:da:59:15:7c:f1:c3:75:70:ad:ee:
ff:07:cd:f7:7c:82:0c:29:e3:9c:8f:02:de:0a:d8:3d:df:07:
bf:a7:9b:09:d7:12:e9:a4:30:ac:15:fb:a1:e1:a4:10:d5:9f:
65:93:3b:7a:4d:ed:71:34:d0:64:c7:61:34:52:09:c5:a1:ef:
ea:47:bd:c8:1a:8c:bb:6b:bc:23:ae:ed:63:e0:12:47:85:e1:
4a:04:15:ee:0a:39:9d:88:22:4c:d5:df:ae:d0:e5:cf:97:ca:
e8:37:6d:d3:88:c7:e5:c2:71:27:d2:a7:17:db:aa:d3:99:c8:
1a:47:cd:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:20:07 2025 by rpki-client