Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
File: tIKj5Qem8UAPb74uFI-hZERH5s0.mft (raw, json)
Hash identifier: w7pxj3qXteAEvo2cKrWwB+CBuRj+rlQbBRXgnlUBOFQ=
Subject key identifier: 25:F6:62:AA:88:F3:61:03:74:A2:E3:C9:80:7D:EF:37:0A:A3:AB:F5
Authority key identifier: B4:82:A3:E5:07:A6:F1:40:0F:6F:BE:2E:14:8F:A1:64:44:47:E6:CD
Certificate issuer: /CN=b482a3e507a6f1400f6fbe2e148fa1644447e6cd
Certificate serial: 0197113062A99532B166F2D8BB8BAF58B8A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIKj5Qem8UAPb74uFI-hZERH5s0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
Manifest number: 0D79
Signing time: Tue 27 May 2025 10:01:13 +0000
Manifest this update: Tue 27 May 2025 10:01:13 +0000
Manifest next update: Wed 28 May 2025 10:01:13 +0000
Files and hashes: 1: jc3nJE4HlaAIZYtU9WTa-kp6P_0.roa (hash: ni65Uin42OxyzHPEODsDWUqZ0OwEhmfq3oGGPy0ODBg=)
2: tIKj5Qem8UAPb74uFI-hZERH5s0.crl (hash: iLpkK1ZLwiB4L7i1wGOKOGzzXcJxw08cSFseFlpIHF8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:11:30:62:a9:95:32:b1:66:f2:d8:bb:8b:af:58:b8:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b482a3e507a6f1400f6fbe2e148fa1644447e6cd
Validity
Not Before: May 27 10:01:13 2025 GMT
Not After : May 28 10:01:13 2025 GMT
Subject: CN=25f662aa88f3610374a2e3c9807def370aa3abf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3f:6d:64:cd:85:da:b3:8f:c6:b8:44:be:e1:
aa:42:88:b1:e8:2e:7c:a4:33:d9:dd:3b:fc:68:6d:
a1:04:76:be:89:84:35:76:1d:9b:98:73:83:1f:39:
9c:fe:c6:ac:9d:df:89:a9:61:e5:11:48:35:b6:06:
b2:ee:51:f4:3e:26:f4:c2:b4:f3:13:ae:8a:0e:8c:
d6:96:38:ef:2d:22:68:8c:0b:f8:fa:84:03:06:6c:
95:e3:e6:e6:e9:6b:2f:6c:ea:0c:33:36:6c:09:c7:
52:9e:0e:b2:ca:33:20:71:67:a4:d7:54:3d:7c:4b:
69:28:09:23:8d:1e:44:d0:2a:6e:9b:93:8b:0d:f4:
92:cd:88:0f:75:b3:b1:a2:fb:ff:e5:9d:1d:31:fb:
8f:60:a2:3e:df:2b:81:f8:c9:cd:8d:6a:d2:d2:bd:
46:cc:1c:4a:3b:6b:fd:e1:e8:14:be:7b:06:62:4c:
fc:cf:45:99:39:50:90:f9:4c:2c:9b:5b:ca:77:35:
c9:bd:ce:2c:93:dc:91:fc:56:1b:e0:7f:cf:ee:b6:
14:5a:25:4f:55:a5:77:2f:32:1a:26:bf:2d:66:d0:
a0:78:8c:f9:ad:2c:f6:32:01:81:94:71:3b:ee:91:
a8:4e:b6:03:3e:e9:50:78:b7:48:03:ed:aa:bf:c6:
d0:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:F6:62:AA:88:F3:61:03:74:A2:E3:C9:80:7D:EF:37:0A:A3:AB:F5
X509v3 Authority Key Identifier:
keyid:B4:82:A3:E5:07:A6:F1:40:0F:6F:BE:2E:14:8F:A1:64:44:47:E6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIKj5Qem8UAPb74uFI-hZERH5s0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:dd:6a:06:8d:4c:47:8c:44:4e:5d:d4:b6:b1:79:61:1e:71:
fc:fe:5a:05:63:43:cf:7a:4c:de:77:3b:8e:cc:e2:79:5f:70:
59:af:23:3b:6d:b7:d6:db:5c:94:16:f8:dd:66:2c:55:59:e9:
29:6c:6c:b0:76:fe:b4:c4:b7:57:1d:29:28:8c:75:3d:70:95:
71:52:1d:42:e1:02:37:5d:31:d3:73:78:65:0a:44:ef:36:6f:
24:98:cb:14:82:1c:25:59:81:ec:76:0c:f4:9a:b8:54:26:47:
68:af:68:17:a9:8a:6e:44:9f:80:7c:37:6b:af:fc:5f:4b:55:
6a:e0:a7:cb:cb:58:5c:10:e7:cc:a0:2f:c8:62:95:7b:cf:20:
e2:33:6f:a3:bb:7d:8f:57:7a:5e:e5:7b:de:9b:e7:ca:f1:83:
28:a5:6c:a0:50:dd:f7:e9:17:45:01:0d:1d:89:53:ae:49:78:
a4:d7:fe:6d:ee:f6:88:f5:92:1a:70:eb:08:64:fc:6d:8f:79:
a6:5c:a9:f7:2c:9a:e7:67:09:ec:ca:2b:86:b5:67:78:92:3f:
f0:db:e6:bf:35:b9:06:ed:89:48:44:2a:96:d6:6d:65:65:52:
5d:f9:ad:38:d2:0c:5b:12:d7:ea:08:f4:80:0c:1f:12:b0:92:
75:88:7b:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 14:58:36 2025 by rpki-client