Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
File: IPblO2l60mO0uk6kmBQ2aog7VK0.mft (raw, json)
Hash identifier: mgEtgPrAqBmnSNPZQihQ3mLcKf6dc2REiG1taN6FD5E=
Subject key identifier: 1B:FE:1B:61:1E:A2:4B:C9:BE:63:EF:FE:BE:2C:95:2D:A7:B5:C8:74
Authority key identifier: 20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
Certificate issuer: /CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Certificate serial: 0195E1593FE0CA33DE0EC691C1CFAA917236
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
Manifest number: 14C1
Signing time: Sat 29 Mar 2025 10:01:17 +0000
Manifest this update: Sat 29 Mar 2025 10:01:17 +0000
Manifest next update: Sun 30 Mar 2025 10:01:17 +0000
Files and hashes: 1: APkFGhaR8YtianTelxgsgSDeVhM.roa (hash: 2Pdlo7CTCPlVPPRVRRuXnXVCI5TavhpFPnrp+xkks5o=)
2: IPblO2l60mO0uk6kmBQ2aog7VK0.crl (hash: 0Iv+Pqu4NdyWCFvjMogWHviRKrmXyorVQDvS1nKn6XM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:3f:e0:ca:33:de:0e:c6:91:c1:cf:aa:91:72:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f6e53b697ad263b4ba4ea49814366a883b54ad
Validity
Not Before: Mar 29 10:01:17 2025 GMT
Not After : Mar 30 10:01:17 2025 GMT
Subject: CN=1bfe1b611ea24bc9be63effebe2c952da7b5c874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a7:b6:3e:3a:2a:2d:26:36:46:c8:f9:6a:f0:
c7:11:97:bd:a6:a0:da:e2:5b:2c:87:a0:04:a0:0b:
f1:03:35:c3:93:13:e7:5a:83:43:57:80:8c:b0:83:
3b:6a:53:49:36:35:88:57:4c:c5:65:2f:5a:5b:c8:
4c:0e:c9:09:a6:99:d1:37:f0:04:01:1b:ec:d9:f7:
ee:10:e3:a0:37:91:34:a0:64:b0:02:c1:13:77:3f:
37:3b:94:fc:47:6e:2a:35:18:db:97:37:84:77:53:
31:66:ef:99:1a:33:6d:73:88:bd:46:f8:47:99:a9:
65:83:f2:b1:85:bc:41:5e:22:75:aa:5e:76:8f:a5:
fc:cb:95:ce:44:e7:75:6b:db:c4:54:98:15:bf:34:
fc:63:dd:d8:3c:ef:da:6b:5e:5c:78:7e:08:4b:d6:
d2:12:3e:07:fc:db:77:29:28:55:05:8a:0e:78:fe:
75:ae:59:f6:9e:c5:d9:40:ba:f9:55:a1:12:f7:06:
72:3a:74:79:f2:30:ab:b3:02:18:8e:3a:3b:3b:8a:
05:71:ef:25:16:2d:28:40:5a:ed:5d:4f:7c:dc:7e:
8b:fe:b5:bf:9b:18:60:2d:5b:e1:81:26:55:c4:c4:
26:94:d5:73:53:75:29:a1:75:dd:5f:10:c7:21:6c:
5e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:FE:1B:61:1E:A2:4B:C9:BE:63:EF:FE:BE:2C:95:2D:A7:B5:C8:74
X509v3 Authority Key Identifier:
keyid:20:F6:E5:3B:69:7A:D2:63:B4:BA:4E:A4:98:14:36:6A:88:3B:54:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPblO2l60mO0uk6kmBQ2aog7VK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7576a-4363-4984-b4c7-b1f29cccce55/1/IPblO2l60mO0uk6kmBQ2aog7VK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:e5:bc:3e:a2:f7:7d:47:8f:7a:7d:df:b8:e9:59:23:be:79:
83:d5:46:35:8a:34:a5:cc:18:34:10:b0:5e:c0:03:e0:1e:74:
b0:14:6a:56:ce:f6:33:0a:da:cd:d5:43:08:73:8a:a7:ec:b7:
c4:4e:58:c8:e6:43:33:4d:2a:66:6b:c9:d9:b7:c6:8d:c2:87:
e5:10:1a:92:3a:52:93:30:79:c6:0a:c4:67:51:c6:e7:bd:d2:
6e:44:5e:9b:14:57:36:62:1e:75:65:1b:f5:f7:6a:00:c7:23:
90:e6:48:ed:92:30:57:9e:30:99:f9:f3:5a:df:cf:7f:fd:97:
6b:09:16:75:f9:28:31:a4:2a:89:40:b8:71:95:b7:70:40:9b:
7e:83:2e:5c:c1:7d:ad:3b:b8:dd:f4:65:3e:bd:73:68:b0:19:
ec:9b:37:51:7b:76:34:8e:c8:2f:1d:7d:72:08:4f:22:c7:5c:
4b:fc:c6:d8:9a:24:b9:1d:e7:26:60:86:1f:78:bc:e2:41:56:
90:db:47:c2:be:bb:04:6a:69:8d:1b:ea:a2:b6:5f:c8:81:24:
bc:f7:04:9c:f4:48:d5:3f:e8:93:c1:ee:0c:a7:e8:61:39:fd:
93:88:c3:63:05:0d:f1:3e:4c:71:bc:8e:cc:0f:5d:c0:6c:32:
ba:72:e0:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:20:21 2025 by rpki-client