Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft
File: 2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft (raw, json)
Hash identifier: pCUb7cXe0moYXXAzVzZhKz+j1fJgVggTyJwElFq3TaA=
Subject key identifier: FF:BF:22:77:94:1C:2C:47:F5:07:E5:D0:A6:E3:70:43:D4:96:9E:59
Authority key identifier: D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6
Certificate issuer: /CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6
Certificate serial: 0195E1904AD733BBA92B3A3BB226E732029E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft
Manifest number: 13AE
Signing time: Sat 29 Mar 2025 11:01:24 +0000
Manifest this update: Sat 29 Mar 2025 11:01:24 +0000
Manifest next update: Sun 30 Mar 2025 11:01:24 +0000
Files and hashes: 1: 2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl (hash: mj5y2X/4RBZbqE7R1piT8paG3qfGAHBTuxGc3cjc3vE=)
2: B5m6j_K3O894W_R_t6V6YidAg_M.roa (hash: bXrv4zwrH5nVqybqsixx97jvkGY3LFCIFwVY3pH6Bk8=)
3: gpM2Niv38-bAPpYWDWu_AiD_7fU.roa (hash: U97/Bujuoe+UqbMI2I87geGUh9XKKMGTDgPKSh0HsUc=)
4: iWkENaumrn_VqAXGYeFWSy8pOdc.roa (hash: BifAs92ML2XP6L2w5bLWRZw5RDndqu7o+E6QeoQC5zA=)
5: v_tCnLJbfmXfnX8r8TkiKrJdo6U.roa (hash: 2qeSRWLeCZqoEkwlBGulwS0BehW+dyHuoHpo1B95cR8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:90:4a:d7:33:bb:a9:2b:3a:3b:b2:26:e7:32:02:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8772aac1b62b87d6b01d57a1a00a6a72b8a7da6
Validity
Not Before: Mar 29 11:01:24 2025 GMT
Not After : Mar 30 11:01:24 2025 GMT
Subject: CN=ffbf2277941c2c47f507e5d0a6e37043d4969e59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7c:0a:4d:fb:33:49:24:3a:f8:f8:e2:68:eb:
9c:c8:0f:92:88:33:73:b9:74:9c:45:df:c0:c6:db:
34:4c:db:78:bc:d0:f9:79:02:53:ae:73:76:ba:13:
6f:f4:67:8a:46:4a:fe:46:b6:f6:fc:26:36:16:4e:
5f:a1:2d:bd:e3:ae:da:b2:de:59:f8:e2:69:96:42:
96:63:c9:cb:16:88:bc:30:40:0d:c5:ec:91:4d:85:
ae:81:3f:a5:93:25:24:52:e4:56:df:b6:84:c0:40:
4c:36:91:95:15:3d:b6:31:9b:47:d8:91:ef:6d:b0:
b0:4f:d6:d3:2d:2e:35:95:1b:b9:3b:83:5c:f3:37:
09:73:72:4c:b5:80:c0:49:d1:01:40:71:b1:56:03:
d2:e1:51:48:45:7a:5d:64:de:5e:e1:be:2f:7f:fc:
79:92:2d:ab:11:fc:d2:34:d5:b1:79:cf:92:ea:43:
d8:9a:79:23:e4:2b:d9:23:17:1a:5e:28:90:90:67:
b6:c0:40:c3:a4:71:04:5b:44:14:52:10:de:36:5f:
b3:72:a5:ad:18:30:1d:84:e9:33:fa:2c:7b:b6:a0:
7b:45:86:15:88:2f:5d:71:15:4e:a3:66:22:3b:18:
07:07:fb:10:df:dd:bc:22:d6:6e:84:ec:23:d1:39:
6c:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BF:22:77:94:1C:2C:47:F5:07:E5:D0:A6:E3:70:43:D4:96:9E:59
X509v3 Authority Key Identifier:
keyid:D8:77:2A:AC:1B:62:B8:7D:6B:01:D5:7A:1A:00:A6:A7:2B:8A:7D:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2HcqrBtiuH1rAdV6GgCmpyuKfaY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/616a58-5342-432c-a9c5-333beecff6f4/1/2HcqrBtiuH1rAdV6GgCmpyuKfaY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:26:3b:a8:3e:45:09:62:57:ad:47:a4:30:77:88:9b:44:e1:
4c:54:a9:26:60:df:ec:95:2c:35:a3:d5:14:d3:7a:24:19:54:
9b:69:41:9a:df:e5:70:5b:4f:39:80:55:f3:39:85:12:df:5d:
47:e5:74:be:98:50:f6:af:ff:b5:04:5b:2f:89:71:45:a0:65:
76:18:b3:39:4f:ec:14:78:c6:b0:86:22:ed:30:b6:5e:4d:7b:
20:06:f3:31:6e:e0:c7:a1:9f:79:8a:3b:44:32:75:3e:fc:91:
5c:df:68:c8:a0:3d:2f:e0:a3:9e:80:eb:3d:71:78:58:8d:a7:
9d:86:8e:98:af:d2:e1:6f:9c:65:85:cf:d3:5a:96:c7:b7:c6:
97:90:2a:a8:a0:1b:48:8c:85:70:85:c8:89:5d:82:c3:0a:36:
d0:a7:38:8f:47:6d:22:99:95:34:5c:8c:03:ad:aa:ba:93:39:
56:6f:ac:bf:58:33:5a:cf:d5:11:46:cd:0d:39:4f:f8:3b:5a:
73:f2:9f:79:00:4b:7c:a9:4b:14:b0:bc:65:ed:0d:54:cd:9e:
c0:7e:40:d5:c5:e5:6e:56:6f:c3:48:3c:67:f2:ca:3e:c8:74:
ca:d1:c9:2d:a6:86:24:3d:b6:03:2e:c7:5f:0a:8d:75:72:2e:
7b:5b:6d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 22:59:38 2025 by rpki-client