Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.mft
File: XTnRW9L8yEdxumqimqVEKLIc72A.mft (raw, json)
Hash identifier: 0d/bS8z/kDNCiYlXsVsaFcZwcEmHB2UHjndVa+kmcIQ=
Subject key identifier: CF:99:B1:5C:D9:74:E9:72:F5:BC:C0:9F:4D:C1:CB:81:A8:A4:6B:D3
Authority key identifier: 5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
Certificate issuer: /CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Certificate serial: 0195EF826DFE86E82C083B44E89A39AD3D26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.mft
Manifest number: 14F6
Signing time: Tue 01 Apr 2025 04:00:57 +0000
Manifest this update: Tue 01 Apr 2025 04:00:57 +0000
Manifest next update: Wed 02 Apr 2025 04:00:57 +0000
Files and hashes: 1: XTnRW9L8yEdxumqimqVEKLIc72A.crl (hash: XqJy8nQCgsbsNqYXkDNCGVNS/qbhgK2Q0Ae/wm6wKUQ=)
2: ePJeWVTAdZT_Wr3OYR6GjKSITgU.roa (hash: klWWeDelEbUTnfh8FrnhieoEbxuIBTXbZQXnpDFAChk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ef:82:6d:fe:86:e8:2c:08:3b:44:e8:9a:39:ad:3d:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d39d15bd2fcc84771ba6aa29aa54428b21cef60
Validity
Not Before: Apr 1 04:00:57 2025 GMT
Not After : Apr 2 04:00:57 2025 GMT
Subject: CN=cf99b15cd974e972f5bcc09f4dc1cb81a8a46bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:fb:4d:53:c4:49:96:b7:c6:35:b3:a2:52:df:
b0:ab:25:84:83:4c:b3:4b:9c:9d:81:7f:6c:c9:a5:
33:86:56:d5:a0:aa:7e:c3:e8:7b:d9:d0:f7:f7:ba:
55:83:a5:8e:eb:28:bd:42:12:fd:d1:a6:29:c2:0b:
0b:4c:8f:e8:50:f0:d2:44:f4:cc:06:7f:56:70:23:
fb:fe:4e:3c:34:5d:c9:8f:85:6e:20:e3:75:7f:ac:
7f:6f:bf:de:fb:13:5c:f9:c3:02:59:ee:16:4a:b2:
61:4a:90:2d:79:57:ee:06:cb:53:33:b7:97:0d:81:
18:85:eb:09:0f:58:f3:da:b3:eb:bd:1b:09:37:b3:
be:22:bc:41:4b:d0:a0:00:2f:0f:93:17:66:84:8b:
58:38:d5:17:65:9f:93:ce:63:8c:a3:0f:e3:7a:b7:
9e:4e:34:29:d6:8b:39:0a:49:7a:5b:9a:4c:d2:40:
cb:1a:1f:b0:10:27:05:69:81:ea:eb:fd:d0:42:cb:
17:ab:b3:d9:c9:f8:be:fa:a5:23:92:74:26:cb:a3:
58:6c:bf:65:c8:52:4e:33:33:6c:f8:7f:12:87:8d:
50:e8:1f:3c:b5:14:57:39:98:18:2e:05:71:90:1a:
a9:f8:84:38:e2:bd:57:ed:b0:99:77:47:69:9e:45:
29:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:99:B1:5C:D9:74:E9:72:F5:BC:C0:9F:4D:C1:CB:81:A8:A4:6B:D3
X509v3 Authority Key Identifier:
keyid:5D:39:D1:5B:D2:FC:C8:47:71:BA:6A:A2:9A:A5:44:28:B2:1C:EF:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XTnRW9L8yEdxumqimqVEKLIc72A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c8092e-9f8c-4718-b770-c29b44de53a8/1/XTnRW9L8yEdxumqimqVEKLIc72A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:33:6d:d5:89:ca:ec:e9:5f:1b:39:95:09:67:82:39:72:7a:
6a:7d:ce:b6:94:04:7a:6d:e6:29:ea:a2:00:18:e9:c7:15:43:
55:16:bd:a6:29:e6:46:a9:cb:93:df:aa:5b:c6:c2:f4:f9:23:
5e:e5:07:50:de:e9:1d:f1:75:f3:95:ed:f9:bc:36:09:21:17:
60:fd:79:df:aa:16:ac:0a:52:9f:54:ee:e5:28:8c:af:fc:5f:
8f:b7:69:2a:37:3f:fd:57:33:6e:3d:60:25:d9:88:9c:7b:02:
87:6d:21:b1:83:27:cc:1b:1d:06:7b:72:8e:45:bc:c1:e7:6a:
97:c0:b4:25:af:67:b7:15:7f:13:94:4b:72:29:fa:90:64:f5:
f2:7b:01:08:6c:c2:4f:d4:c2:a0:94:a4:86:b2:aa:95:af:a8:
3a:67:fe:75:ac:2d:9c:47:92:7a:34:fd:a4:53:ff:33:b3:dd:
e0:dc:7f:6b:aa:1c:4c:1f:77:de:4e:42:30:d3:fe:82:88:da:
07:69:61:65:bc:dc:d4:c3:d4:55:88:33:72:8d:95:ed:b5:8a:
8c:6a:f3:0e:36:d9:56:0a:55:c4:7b:19:40:09:1c:12:12:35:
cb:f8:74:ab:a4:40:08:8a:be:ea:b3:9f:ab:73:c1:b8:3e:3c:
44:a7:c2:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:31:50 2025 by rpki-client