Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
File: u7hl_W36q6dxJJt-uujr1SgKDJc.mft (raw, json)
Hash identifier: oHYzDg6I0dgOaxjr5MVu622gG/iqznTXL559trxCkyw=
Subject key identifier: 77:97:51:42:86:49:90:3A:8E:FF:7C:A1:14:EC:1C:19:EE:F8:3C:B3
Authority key identifier: BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
Certificate issuer: /CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Certificate serial: 0195E046FADB05E9D043FAD1AB7767180183
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
Manifest number: 100C
Signing time: Sat 29 Mar 2025 05:01:42 +0000
Manifest this update: Sat 29 Mar 2025 05:01:42 +0000
Manifest next update: Sun 30 Mar 2025 05:01:42 +0000
Files and hashes: 1: kr3FPTrUbvprQB5gOzb6Xm9In9I.roa (hash: hZOcB5l1wSRFBsah9a6wwCM7j6k84PdiP/Urp0eSJlg=)
2: u7hl_W36q6dxJJt-uujr1SgKDJc.crl (hash: 9xraBy3m8nz1/PK4WMyLG39gOYHsgZzksHJZS2LNjNo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:46:fa:db:05:e9:d0:43:fa:d1:ab:77:67:18:01:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbb865fd6dfaaba771249b7ebae8ebd5280a0c97
Validity
Not Before: Mar 29 05:01:42 2025 GMT
Not After : Mar 30 05:01:42 2025 GMT
Subject: CN=779751428649903a8eff7ca114ec1c19eef83cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ee:7f:57:47:a9:04:9a:df:6a:ab:5a:c7:76:
6b:2a:70:19:a5:4e:07:c7:eb:51:c8:77:5e:b7:f7:
3b:47:e4:4e:7d:fa:80:0c:9d:b9:6d:46:0a:83:12:
7d:42:21:2f:2d:9f:ef:8b:7b:1d:cc:e1:b0:d9:af:
b6:72:44:4b:a2:39:ae:dd:5f:38:75:2a:66:0e:4f:
8e:30:09:e3:1a:26:99:4a:3d:29:6e:f2:b3:f7:ce:
89:01:4c:40:bf:38:04:ac:3e:7a:74:59:e5:de:aa:
7a:0c:75:f5:1e:c2:78:06:dd:5e:26:5a:d0:9c:ca:
d4:9b:9e:fa:3b:1b:17:0a:48:23:07:49:05:d8:1b:
aa:e3:1a:ba:8b:17:1f:84:3b:c3:d1:2f:58:c1:bf:
86:49:79:4c:7f:1e:f8:5b:12:06:f0:d4:55:14:50:
02:68:23:ae:d1:6b:80:ef:94:a2:e3:4c:dd:a0:54:
3f:d4:96:ec:6b:62:a3:ac:91:4e:fa:5d:cc:78:d8:
c1:68:8a:19:49:fd:d6:94:bc:d0:56:29:ff:22:c8:
fa:a6:4b:7b:8c:34:32:cd:32:17:85:63:4a:49:43:
e7:0a:dd:41:98:8b:5c:ca:46:6d:99:11:3a:41:a9:
70:05:e2:c8:01:94:e4:7b:5e:8a:bc:84:9e:88:ac:
31:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:97:51:42:86:49:90:3A:8E:FF:7C:A1:14:EC:1C:19:EE:F8:3C:B3
X509v3 Authority Key Identifier:
keyid:BB:B8:65:FD:6D:FA:AB:A7:71:24:9B:7E:BA:E8:EB:D5:28:0A:0C:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u7hl_W36q6dxJJt-uujr1SgKDJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/43bb94-94c6-4dad-a372-5fcfa421975c/1/u7hl_W36q6dxJJt-uujr1SgKDJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:ec:13:c2:69:ac:78:f0:52:d2:52:8b:a4:2d:b1:5a:77:48:
cc:7b:3a:fa:b3:a8:39:50:74:36:56:0b:e7:78:e0:56:4a:34:
78:95:07:15:a0:56:4d:79:be:2c:3c:37:a6:fc:be:05:52:b7:
e9:c5:02:91:1e:c0:dd:67:6f:51:4d:93:d1:f8:97:06:29:58:
94:d8:13:8b:84:57:80:93:74:48:c0:3b:a7:a6:cf:8f:c2:e9:
a6:07:c2:a6:df:07:73:a4:04:05:b6:fe:8c:ca:de:db:96:6d:
48:f0:f4:16:79:41:f9:db:bb:04:ba:d7:68:f6:76:af:94:04:
8d:ef:9b:4c:84:87:f5:2e:ac:76:a8:e7:f6:9e:26:2e:5a:0d:
78:df:2d:1f:e8:96:3f:0a:e6:ef:b4:6f:b2:b7:ba:1b:09:d7:
2b:3a:4e:f4:54:ca:2f:fa:a8:87:a9:ef:ba:67:55:37:e3:8a:
c3:ce:46:f6:43:0c:26:8a:9d:49:54:d3:14:00:91:c1:b6:e3:
df:0b:f1:29:4a:1c:9a:c0:d9:05:44:9b:a8:f0:1a:2e:c0:18:
89:48:da:11:46:0e:fa:f4:97:04:ac:44:b8:6d:f4:74:86:a8:
fe:29:17:73:f0:00:a6:de:d8:5b:90:68:56:4c:74:c8:5f:ad:
73:b7:42:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 08:29:31 2025 by rpki-client