Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json)
Hash identifier: +KGdqbZYL6tKZ6uCNEhUfLy9BQts4GXJtTe6ztK07t0=
Subject key identifier: 3F:75:E2:67:85:09:13:A7:0F:09:B7:E1:21:D6:A1:92:3D:B0:E8:0F
Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Certificate serial: 0195E19006BC1BFF039F77E3632BB93EAD97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
Manifest number: 14C3
Signing time: Sat 29 Mar 2025 11:01:07 +0000
Manifest this update: Sat 29 Mar 2025 11:01:07 +0000
Manifest next update: Sun 30 Mar 2025 11:01:07 +0000
Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: Lvx8U2G/sfVFaOuz+D95LtYvExiWfKOFOXHNYUTeZow=)
2: xQ3PdmMDye_3ODxtjF3bxTEbrgU.roa (hash: OnYXJU1mRvo0V2FhsSO8D1b8k47DbXdYSrQ7JN4NAuQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:90:06:bc:1b:ff:03:9f:77:e3:63:2b:b9:3e:ad:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4
Validity
Not Before: Mar 29 11:01:07 2025 GMT
Not After : Mar 30 11:01:07 2025 GMT
Subject: CN=3f75e267850913a70f09b7e121d6a1923db0e80f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d7:3d:13:fc:9a:6c:a2:97:00:41:6e:3e:f0:
ea:1f:94:54:7c:66:cf:9b:fe:d9:a6:f3:70:f3:05:
69:0c:07:be:19:09:7e:e3:7e:34:5b:c9:9b:4f:d0:
50:63:d6:e3:99:e1:12:dc:e8:56:f2:2e:8a:77:28:
a7:45:8b:51:c2:ab:5f:1c:ad:51:cf:6b:cb:7c:0f:
55:92:2c:ab:51:71:84:06:47:4b:cb:43:aa:a8:2a:
a3:3a:fb:dd:8b:a2:56:be:22:50:7d:82:24:53:50:
e1:45:44:3f:e5:40:b0:16:04:5e:0f:60:4d:6c:9c:
29:83:8c:65:e5:ed:70:26:62:0c:8a:f4:27:c0:9d:
21:66:d4:47:9d:22:bb:eb:26:c1:54:cb:ff:ec:61:
c3:e6:e4:31:ff:d9:b6:9e:6e:1c:a7:2b:32:47:ab:
6a:0a:a8:94:9b:d4:a8:cf:3c:70:57:4a:a8:1f:f2:
2d:31:c1:5f:47:8d:57:0f:32:6c:b3:49:6e:24:4c:
e9:4e:69:5b:51:26:48:57:a2:81:b8:29:6b:b9:f5:
11:10:72:cc:13:4e:45:a6:46:69:fc:e5:34:b2:f9:
59:0b:8a:0c:2c:5a:4f:66:a5:40:c4:2b:57:78:c4:
f6:2d:f9:71:a8:23:22:ee:c6:d9:4f:1e:1e:d7:f3:
46:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:75:E2:67:85:09:13:A7:0F:09:B7:E1:21:D6:A1:92:3D:B0:E8:0F
X509v3 Authority Key Identifier:
keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:5d:0b:55:1d:d1:a1:73:52:87:45:1a:14:cd:51:d0:db:eb:
94:f5:97:e8:5a:bc:f0:9d:cf:ff:c3:c7:c4:3e:81:c9:d1:b1:
0e:a9:ef:c0:0c:ec:b5:0b:3e:df:7e:ab:ab:8d:41:2a:c0:f8:
1e:1b:ab:e4:57:0f:22:52:c2:fb:6f:b1:cb:cf:2f:1a:f4:7f:
a2:5a:8c:43:9b:4e:e7:0d:4f:b6:5d:da:db:2f:cc:cb:43:ad:
f8:41:35:c7:2b:b0:a7:55:92:18:be:57:f2:33:8c:52:38:af:
ee:73:53:57:d8:bd:f9:c8:11:08:b5:e1:3a:fd:7a:89:37:45:
20:07:06:17:ea:67:13:76:54:21:14:ef:e2:70:11:76:39:10:
c4:40:84:1b:2e:61:45:a1:12:1b:eb:52:60:b8:04:8d:4f:b4:
7f:69:2f:47:d0:1a:92:72:cc:22:7b:66:f8:3a:2d:a2:8c:24:
18:4e:f2:bc:59:67:83:06:43:72:5b:51:d6:17:cb:aa:be:6b:
ac:1c:6d:7f:77:0a:c7:28:c1:b8:ab:fe:91:23:a0:83:65:09:
89:c9:9c:0e:6a:3c:73:e5:15:b3:f7:9b:a6:13:f3:3f:f9:9b:
23:6c:32:5d:6d:96:19:64:1f:98:6a:d6:c8:1f:15:fb:1f:3d:
48:36:7a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 01:20:11 2025 by rpki-client