Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: Wr7aRYbxNRPwyaHZABI1i6kt21MansNEVM1ka17DkDA=
Subject key identifier: B9:69:4A:11:9E:80:63:02:03:2D:52:27:4B:6C:5D:4C:84:69:D8:47
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 0195E0EAFFAACDCB05519D71A5F99091151A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 1213
Signing time: Sat 29 Mar 2025 08:00:51 +0000
Manifest this update: Sat 29 Mar 2025 08:00:51 +0000
Manifest next update: Sun 30 Mar 2025 08:00:51 +0000
Files and hashes: 1: LM0g69HtGp_batQfV5x1NEUMmOk.roa (hash: 7VtBpd+wuDX24L0fq4Y7fsMl9oygXrzXXYzNLlqhtLg=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: DvyiOr05njRoF6MXZojYA6Nl4c1NIqrjttF9DEdJWDU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:ea:ff:aa:cd:cb:05:51:9d:71:a5:f9:90:91:15:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Mar 29 08:00:51 2025 GMT
Not After : Mar 30 08:00:51 2025 GMT
Subject: CN=b9694a119e806302032d52274b6c5d4c8469d847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:09:28:e5:13:15:1f:fc:92:b1:70:8b:19:b3:
80:44:4f:5f:bb:2d:72:66:60:ef:ba:c8:19:e6:1d:
9e:a7:a1:df:9a:93:56:b7:6f:da:37:ce:58:c5:18:
dc:1c:d5:d2:89:a5:8e:5c:71:88:e4:22:86:f4:b4:
c0:98:d0:a5:0a:8b:5c:fe:e8:02:0c:77:e4:1a:1f:
ff:44:11:71:cb:5a:ce:d4:6e:0a:df:da:cd:c1:e3:
01:a9:60:51:e1:a6:1b:f0:c3:10:2a:b5:a1:95:96:
ef:25:e9:52:58:50:6e:12:e5:a7:b8:e6:b7:57:fa:
f9:8e:32:db:12:a0:88:74:5a:e9:4b:9b:87:f3:25:
97:40:f1:93:10:e2:2b:dd:46:eb:b3:b3:f9:d0:f9:
32:2c:16:60:3c:af:e6:70:aa:b9:5e:c8:6f:55:dc:
36:bb:3f:a1:e1:d8:df:17:e8:97:8e:1a:86:38:94:
61:4b:94:90:f7:3f:08:04:92:05:db:5c:56:75:24:
b0:fe:13:dc:06:c6:15:db:11:f8:b8:7d:ed:0f:35:
a6:3a:fd:eb:2b:a1:12:95:02:7d:4d:7b:f4:34:72:
ba:a7:5b:25:9e:fa:2b:5b:69:25:44:4b:cb:60:64:
ef:03:8c:6c:1a:0f:d2:14:b4:9c:dd:42:d8:8e:df:
99:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:69:4A:11:9E:80:63:02:03:2D:52:27:4B:6C:5D:4C:84:69:D8:47
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:04:3a:8a:a0:57:4d:db:ed:87:ad:c8:37:b6:c6:31:42:5b:
21:28:ce:35:da:23:e0:d1:81:eb:a9:47:c9:df:d0:84:93:bb:
cb:4e:13:25:eb:fb:66:3d:40:2f:44:05:3a:f2:6e:c8:05:73:
8b:7f:eb:bd:a7:1b:f1:0f:7e:d2:cb:ae:91:b2:f2:05:7f:05:
2e:13:8b:6f:1b:93:35:e1:1b:1a:df:e7:39:8c:7a:99:a4:bc:
8c:8b:1f:44:4f:37:5c:f4:e0:d4:c8:d0:64:d2:08:13:eb:29:
77:81:83:ee:04:67:20:ef:31:52:e7:bf:30:0d:25:2e:17:61:
51:7d:3a:bf:4e:c7:f1:24:52:03:70:09:34:c7:cf:a4:2c:0b:
21:7e:f0:2c:3d:ea:21:26:2a:21:48:df:95:ed:0d:5b:ff:8f:
1b:b4:87:b6:3d:3d:6f:35:7c:54:1d:3b:60:76:e9:1c:22:f1:
66:f7:46:80:44:60:69:65:59:e9:97:17:34:02:a8:dc:94:68:
86:75:62:eb:eb:ba:87:ce:ec:44:a9:ac:d5:76:6d:73:ff:34:
4a:0c:49:35:fd:57:71:2f:c6:98:8c:f3:4f:ca:60:90:9b:9a:
06:e9:c0:b8:52:93:4b:77:a1:77:63:8f:bd:b2:38:dc:03:01:
56:f5:25:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:32:52 2025 by rpki-client