Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
File: Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft (raw, json)
Hash identifier: LKjXewXVKOPxXxJGewS+CJ5hILxbEa+ldlUwHelYuFM=
Subject key identifier: 03:6E:DE:03:EE:98:0A:38:03:79:B3:30:3B:A3:2A:75:70:09:E7:4D
Authority key identifier: 67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
Certificate issuer: /CN=670ec53068393d90db601ec295e42908525e10c2
Certificate serial: 0195E15911ACB6186638C1BA82A08766AE32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
Manifest number: 0BAC
Signing time: Sat 29 Mar 2025 10:01:05 +0000
Manifest this update: Sat 29 Mar 2025 10:01:05 +0000
Manifest next update: Sun 30 Mar 2025 10:01:05 +0000
Files and hashes: 1: Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl (hash: 1gs+MZzOWGIVUeCu0PjPUe+VAYVWUKuNF/cCpGX5tG0=)
2: g-_eT5ct7bDp65zymgf5llHzTKc.roa (hash: 6qrqxL/Wtd1D30D40m2/VyQoFXL4FQNDdMtRsZ56brc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:11:ac:b6:18:66:38:c1:ba:82:a0:87:66:ae:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=670ec53068393d90db601ec295e42908525e10c2
Validity
Not Before: Mar 29 10:01:05 2025 GMT
Not After : Mar 30 10:01:05 2025 GMT
Subject: CN=036ede03ee980a380379b3303ba32a757009e74d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:a0:b2:a7:49:5a:38:35:d8:8d:39:04:a4:ed:
93:15:b9:88:be:26:0f:b5:c0:00:74:83:39:3a:06:
9a:38:57:6b:14:00:35:d4:73:5c:86:7a:43:4b:ba:
6a:7b:1c:93:79:31:0b:3d:9a:2c:7f:75:30:a3:ab:
ac:7b:f4:e9:64:57:8c:c6:fc:75:df:8d:ac:bb:dd:
83:f8:93:d6:af:ea:46:e2:d0:c9:d6:24:fd:20:a6:
75:7d:0a:57:e8:7a:64:cd:2b:1e:ec:51:a4:70:33:
91:95:98:52:36:64:d1:55:e0:d6:9b:09:63:b0:ad:
c7:da:74:e3:76:9c:7b:f6:58:d4:36:40:82:7a:80:
b8:45:d0:d3:c8:7f:0b:de:1a:f9:22:c3:63:7b:c1:
32:0f:2f:b9:3d:0c:5b:8d:53:f7:9d:e8:5b:4c:09:
75:5e:ce:d0:15:2e:c9:03:83:8d:28:3d:fe:8b:a0:
e0:dd:45:6c:31:7d:98:06:0e:e9:31:44:fa:05:db:
dc:e0:c9:80:4f:48:1e:ce:89:98:00:2c:bb:80:c8:
d6:93:9d:b0:56:c3:d5:5d:3c:75:1c:25:bf:24:29:
4a:b2:4f:64:36:9f:67:28:bd:e1:31:80:b3:2f:22:
01:f0:a1:94:5f:72:01:4c:2d:36:2b:1d:75:20:eb:
d7:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:6E:DE:03:EE:98:0A:38:03:79:B3:30:3B:A3:2A:75:70:09:E7:4D
X509v3 Authority Key Identifier:
keyid:67:0E:C5:30:68:39:3D:90:DB:60:1E:C2:95:E4:29:08:52:5E:10:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zw7FMGg5PZDbYB7CleQpCFJeEMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/c424d1-27fd-4f47-bb71-73d218a4903e/1/Zw7FMGg5PZDbYB7CleQpCFJeEMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:20:a4:9d:ba:98:02:3b:ba:32:6c:3e:4e:7f:a5:cc:e8:e3:
34:77:6f:04:69:d1:a2:30:0a:1b:81:48:09:93:cd:a2:e4:ce:
ec:4b:55:48:5f:7f:2d:80:74:cb:61:f3:e9:88:ca:1c:0d:c2:
e2:71:a8:31:17:17:d4:c3:a9:05:77:6d:30:56:e0:ef:05:7a:
63:77:23:9e:76:9d:10:ad:fb:1a:a2:c2:05:7e:53:76:4f:19:
b4:3a:b3:27:a1:99:65:3f:65:dc:84:90:57:54:28:48:ef:ba:
6c:d3:c3:98:c5:63:c6:0c:7c:37:36:e7:b9:fc:85:45:b0:d3:
6a:75:95:c1:a2:0b:a1:98:b0:49:1c:f4:3a:39:ea:11:a3:53:
91:1c:78:cd:55:ad:0d:a1:3c:81:fa:18:9f:5a:93:c2:f1:dd:
91:e5:bc:63:59:c7:b5:c9:54:52:35:22:23:ea:1e:85:53:3a:
77:8c:fd:ed:b7:23:8f:46:65:03:a9:85:05:c9:30:a7:58:aa:
e1:33:a6:6c:d1:c7:fa:ef:ad:47:87:4e:70:78:ce:41:0e:1e:
27:3b:28:a1:63:66:03:c7:3f:19:9d:bd:4d:9e:95:c6:de:24:
78:f2:82:ef:fd:fb:73:a4:28:b1:5d:b6:d1:29:52:ab:8b:24:
f2:d3:db:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:22:29 2025 by rpki-client