Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.mft
File: sZ4bfoENZJKr24B_yN3oZ1vWvyw.mft (raw, json)
Hash identifier: 5PfOtr83YmlObsmBYSxuY5wIyPvSOUXD9chz3EN7dn8=
Subject key identifier: F2:B7:09:13:56:EA:7F:EF:87:E5:43:05:5E:0E:54:D4:96:66:1C:69
Authority key identifier: B1:9E:1B:7E:81:0D:64:92:AB:DB:80:7F:C8:DD:E8:67:5B:D6:BF:2C
Certificate issuer: /CN=b19e1b7e810d6492abdb807fc8dde8675bd6bf2c
Certificate serial: 01913402B9E2CF2ACF560F5BCF802BE5F4A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZ4bfoENZJKr24B_yN3oZ1vWvyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.mft
Manifest number: 0CC2
Signing time: Thu 08 Aug 2024 22:01:19 +0000
Manifest this update: Thu 08 Aug 2024 22:01:19 +0000
Manifest next update: Fri 09 Aug 2024 22:01:19 +0000
Files and hashes: 1: Tonf_fDBilVE8CvCB3qX9-Fy9uA.roa (hash: /80jc99Ln+EdbXVfLU9xAVQy6JSX7woEZQ9TAfqpJDE=)
2: sZ4bfoENZJKr24B_yN3oZ1vWvyw.crl (hash: wJAWJsKWs1sDFFsboalnF6tgwLeaDNEiqQnDEBgk2Nc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:34:02:b9:e2:cf:2a:cf:56:0f:5b:cf:80:2b:e5:f4:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b19e1b7e810d6492abdb807fc8dde8675bd6bf2c
Validity
Not Before: Aug 8 22:01:19 2024 GMT
Not After : Aug 9 22:01:19 2024 GMT
Subject: CN=f2b7091356ea7fef87e543055e0e54d496661c69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:5f:51:2a:43:b7:bb:81:57:58:4c:e0:26:af:
7e:18:ec:b1:b7:e2:1b:f9:32:c3:a7:d6:72:45:c2:
c9:cb:d8:08:78:20:d4:24:26:b9:2b:2d:13:f2:2f:
61:92:89:fb:4a:df:7e:b8:c4:3b:78:cf:c6:70:da:
3b:70:88:6a:ae:c3:e9:1b:19:b4:70:ed:37:6f:3c:
fe:2d:b3:34:e3:20:dd:d4:ce:a1:85:8a:ca:75:12:
de:0c:62:67:72:65:e9:52:ae:62:25:75:df:54:83:
1a:27:23:e4:42:9d:89:ed:bd:cf:2c:d5:9d:2b:43:
a3:6c:5c:8c:e5:b4:8d:34:bf:45:0f:14:17:c9:d5:
e0:02:2e:db:66:7b:bd:9d:d1:0a:76:4d:f9:61:6c:
0b:45:ec:b6:66:85:30:cf:fa:77:7e:bc:d6:ff:29:
9a:2b:d8:3b:49:cf:f1:63:bd:9d:ce:90:a1:b8:11:
6c:6e:3f:3a:82:8e:82:e4:3c:d3:70:18:ab:9c:ea:
2c:e9:4f:7a:ef:25:ff:82:93:92:58:2b:4e:bd:be:
00:4d:00:03:5d:7f:d0:95:84:16:32:00:43:9b:13:
09:50:87:7b:97:c3:21:3a:0f:2f:cc:8d:e2:6f:01:
c7:99:2e:ff:50:1e:28:df:51:2d:23:43:0c:84:b5:
d3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:B7:09:13:56:EA:7F:EF:87:E5:43:05:5E:0E:54:D4:96:66:1C:69
X509v3 Authority Key Identifier:
keyid:B1:9E:1B:7E:81:0D:64:92:AB:DB:80:7F:C8:DD:E8:67:5B:D6:BF:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZ4bfoENZJKr24B_yN3oZ1vWvyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/49b48e-c84b-4f99-923f-4586238305f1/1/sZ4bfoENZJKr24B_yN3oZ1vWvyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:3f:81:7c:fc:93:60:30:2d:2a:c6:50:03:2a:75:dd:5f:ab:
d4:63:78:c6:0a:67:77:99:87:77:09:3b:f8:5e:cc:84:1e:06:
36:f2:bc:da:18:66:a5:61:18:95:f7:d3:3f:b5:bc:e1:b3:d9:
e7:fa:33:a2:1e:75:00:7e:52:55:f3:9b:ee:ef:69:c1:92:32:
5e:71:40:a4:e9:c1:8d:93:41:0c:33:cc:61:81:69:52:bc:48:
87:1e:12:9a:6e:51:6b:8d:9a:ca:3f:9b:e7:1a:10:ac:52:01:
33:9e:55:22:bd:07:bc:99:0f:93:2b:00:4f:78:64:8d:6b:df:
47:b8:33:6b:13:29:a7:03:cb:53:0a:88:d4:16:e4:5d:f9:ef:
26:6b:7e:c5:30:8f:a7:fe:be:47:09:f4:89:8f:97:72:14:98:
cb:1f:c0:54:db:78:ec:84:df:30:66:85:94:33:78:e6:a8:cd:
c4:35:4d:df:26:4b:19:3a:8c:85:ba:95:49:5b:39:61:f4:b1:
4e:06:9d:57:2f:7c:c7:e8:06:19:81:ec:da:9c:fc:6d:11:c6:
a2:66:bc:f7:c0:e7:e3:6e:7d:7d:3e:c8:24:38:b2:43:ce:fe:
1b:5c:9e:85:e1:bc:8d:18:b4:aa:fb:a4:9a:be:44:e6:49:8c:
50:b3:02:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:07:34 2025 by rpki-client