Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json)
Hash identifier: eb9dGjemfNd08AG/a2LKjKkvoGYOfc+f+VFypfIv05k=
Subject key identifier: 0C:6A:17:F7:84:62:F6:A5:56:A6:03:18:37:E0:33:1D:48:D7:8F:F7
Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Certificate serial: 0195E0463FD8BAFA76312A35DC6D99A92E4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
Manifest number: 066B
Signing time: Sat 29 Mar 2025 05:00:54 +0000
Manifest this update: Sat 29 Mar 2025 05:00:54 +0000
Manifest next update: Sun 30 Mar 2025 05:00:54 +0000
Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: dDBWWcvdmsLtsMniMZFjGybiI/3mLH3x4mThsQ+LETs=)
2: rDLUksu5RJZHpovJcJfARGodJyk.roa (hash: 6LsaGYClie7jwTmpMZAxkMISVs9EUqwDFuEv8m5cWNA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:46:3f:d8:ba:fa:76:31:2a:35:dc:6d:99:a9:2e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f
Validity
Not Before: Mar 29 05:00:54 2025 GMT
Not After : Mar 30 05:00:54 2025 GMT
Subject: CN=0c6a17f78462f6a556a6031837e0331d48d78ff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fb:12:06:da:a3:ac:01:ee:79:8b:62:7e:e4:
48:75:35:e8:c0:b2:fa:8d:9b:86:26:38:46:5d:ca:
13:67:1c:13:14:52:10:c5:4b:a2:bd:1e:fc:1c:6b:
a0:2f:11:91:a0:93:d7:4b:ea:4a:1b:0f:f2:17:68:
e0:0e:4f:87:91:a5:02:55:14:b8:a8:d1:19:b9:5b:
96:e6:df:ec:1c:57:33:cf:3e:02:99:af:52:35:53:
72:8d:e9:d0:ea:55:5a:cb:14:23:c8:db:33:64:f2:
17:7b:31:60:b9:ff:46:ec:8b:ee:d0:e2:84:e1:29:
7b:68:c6:44:7c:08:8a:5d:5b:28:ba:00:e0:35:35:
5c:e3:fa:c9:0a:20:82:8b:af:03:c5:57:e1:0a:0e:
14:99:9c:a1:45:fa:29:99:ea:cd:76:8c:dc:18:c4:
63:17:19:d6:93:17:19:15:d0:c1:b4:1b:af:50:a5:
c1:4d:06:cf:c9:89:21:1f:49:be:5d:23:2d:5e:08:
e1:69:d4:e8:51:19:e3:f3:85:e9:f1:18:37:f2:28:
15:4f:eb:41:65:27:8c:fe:36:64:18:69:5a:00:12:
21:e2:92:c2:7d:5f:d5:a0:34:bf:69:8c:54:3e:a2:
5b:b6:82:60:f8:c6:8c:78:33:93:92:16:f8:a8:bb:
9e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6A:17:F7:84:62:F6:A5:56:A6:03:18:37:E0:33:1D:48:D7:8F:F7
X509v3 Authority Key Identifier:
keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:a4:3f:40:87:7e:cc:ae:df:7a:26:ee:c8:d7:75:c3:82:69:
9e:4d:1d:23:8a:43:b4:3b:b3:19:7d:dd:11:cd:10:b1:cd:43:
cf:75:c6:fe:4a:11:5d:ec:75:22:b3:b7:fd:d8:ca:57:e1:d7:
73:ec:6e:a6:03:1c:d7:a4:fd:ce:39:1a:de:c8:fb:e2:40:40:
29:63:93:02:ea:f1:df:05:52:80:ad:fc:5c:4a:b0:4a:af:ac:
cc:1b:e1:ac:a5:0f:09:f3:dd:58:18:2f:45:f6:11:7a:02:fa:
e8:24:c5:3f:17:81:b0:c4:2a:26:ad:9e:f8:0d:d6:0f:91:38:
ff:36:0a:bd:89:b7:c1:2a:72:22:84:6a:ad:3a:20:1c:a4:cb:
f8:0e:13:12:17:de:bd:c2:32:98:f7:82:bc:4f:68:6f:b8:88:
9b:33:1e:6e:84:99:53:80:80:b0:27:f3:bd:50:60:7b:dd:bc:
51:fa:25:1b:f5:5b:18:57:21:e2:7d:46:7f:f3:5c:c9:ea:ee:
1b:0a:9d:0f:f8:31:0e:ce:65:3b:14:c0:58:e1:54:e5:f1:5b:
5c:a2:51:09:eb:bd:2f:67:58:b4:59:1f:60:c6:97:fc:72:1a:
2d:4c:39:95:eb:3d:31:8d:e0:68:ea:5b:31:90:41:03:05:6b:
64:80:4b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:44:27 2025 by rpki-client