Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/Q2bEOHJzGiaL9clj3fZhd075yuE.mft
File: Q2bEOHJzGiaL9clj3fZhd075yuE.mft (raw, json)
Hash identifier: cWPlXsXZ+X85ymwH6eOOMbO9XORW9NFFLAkre3Do85A=
Subject key identifier: 84:BC:7F:99:30:AA:53:6C:15:86:64:29:CE:FB:E1:65:C9:97:2F:9E
Authority key identifier: 43:66:C4:38:72:73:1A:26:8B:F5:C9:63:DD:F6:61:77:4E:F9:CA:E1
Certificate issuer: /CN=4366c43872731a268bf5c963ddf661774ef9cae1
Certificate serial: 018DF305D0C8ABE6272738EA777815CEA2AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q2bEOHJzGiaL9clj3fZhd075yuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/Q2bEOHJzGiaL9clj3fZhd075yuE.mft
Manifest number: 0895
Signing time: Thu 29 Feb 2024 04:01:01 +0000
Manifest this update: Thu 29 Feb 2024 04:01:01 +0000
Manifest next update: Fri 01 Mar 2024 04:01:01 +0000
Files and hashes: 1: PHApMklLVi60iRZpZownn-1ctto.roa (hash: cNivT1eRjHFcnI5q2rxJOkjxuGG3T0Tz/XU/ka58Fwc=)
2: Q2bEOHJzGiaL9clj3fZhd075yuE.crl (hash: wSQlHyWEGR5fa+aWMEgDX2Q2vd8v73ZaSsfPIoBJrJM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f3:05:d0:c8:ab:e6:27:27:38:ea:77:78:15:ce:a2:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4366c43872731a268bf5c963ddf661774ef9cae1
Validity
Not Before: Feb 29 04:01:01 2024 GMT
Not After : Mar 1 04:01:01 2024 GMT
Subject: CN=84bc7f9930aa536c15866429cefbe165c9972f9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6d:ba:17:2a:9a:da:51:87:c6:97:a5:67:bb:
58:b2:2f:8b:81:d8:78:e0:ed:23:a0:44:01:1d:9a:
c8:10:c0:6c:54:8a:15:93:20:3a:ac:95:a8:8e:e9:
58:c5:31:c2:b2:75:e8:d9:04:ee:f3:2e:e2:f4:9c:
de:cc:5a:8f:3b:da:bf:38:27:41:92:e6:e1:c0:d4:
8c:d3:7b:fa:59:84:ec:01:cd:95:12:40:3e:dd:3f:
10:df:e1:7b:07:ef:cd:2f:4a:64:eb:17:3c:d9:88:
32:d3:9f:95:a3:05:f0:3c:81:32:43:96:96:52:66:
2e:f1:53:51:94:58:0d:d8:10:dc:89:33:13:4d:f0:
26:23:32:57:2e:61:84:6f:d9:9f:ae:84:59:0e:fd:
76:28:eb:5f:92:8f:5f:04:03:ce:20:36:54:18:ee:
0c:9f:4b:e7:a3:c8:95:81:64:e4:12:52:57:5c:c4:
30:f9:9a:10:d8:d0:b9:6b:a6:22:5d:a0:75:2d:91:
1a:65:7b:35:25:76:f6:4a:35:3a:9c:8f:27:b0:0d:
ea:40:53:25:03:73:61:c9:fc:25:46:46:1c:01:7b:
f0:4e:08:36:df:ff:3f:8f:60:a9:94:a7:88:b5:35:
94:0b:5a:5d:f6:27:f4:86:d6:15:af:48:24:70:c3:
c5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:BC:7F:99:30:AA:53:6C:15:86:64:29:CE:FB:E1:65:C9:97:2F:9E
X509v3 Authority Key Identifier:
keyid:43:66:C4:38:72:73:1A:26:8B:F5:C9:63:DD:F6:61:77:4E:F9:CA:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q2bEOHJzGiaL9clj3fZhd075yuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/Q2bEOHJzGiaL9clj3fZhd075yuE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/9fa580-cfd9-442b-943f-d843ee551eb2/1/Q2bEOHJzGiaL9clj3fZhd075yuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:d6:85:c5:74:65:fe:af:a6:16:2e:3f:54:a8:05:97:69:30:
aa:a5:a9:15:7f:ef:bd:61:f3:5b:f7:0e:53:fa:fe:00:30:43:
90:ab:2d:98:07:fe:fe:29:a2:a2:52:ed:7f:07:c8:9e:7d:27:
dd:38:3e:86:52:fa:1f:09:c7:6a:e7:b8:86:66:db:b2:a8:20:
e1:c5:f0:ab:c3:c9:96:0f:85:93:b5:ca:af:fe:99:39:30:63:
7d:a3:11:33:17:2e:c5:b8:f2:4d:e0:8f:5e:47:cf:3e:4a:46:
f6:a8:ed:75:78:76:b1:0d:36:5d:be:a0:8d:f7:ba:35:77:47:
e6:e3:d7:08:d7:76:bc:0e:e3:9f:00:ec:59:df:2d:ba:c9:7c:
44:da:e8:49:e0:1e:18:ac:76:94:ff:3e:80:7c:37:ec:a9:8f:
e3:8e:eb:31:08:97:84:25:d6:2c:09:28:7c:7f:ab:36:9c:3c:
c6:fe:68:c4:96:d7:27:50:71:d2:6f:b7:10:9b:f8:56:6c:ec:
a2:19:00:25:38:1a:38:65:41:78:80:af:e6:31:a6:6d:1e:8b:
21:00:b7:bb:38:16:c6:61:3b:35:b3:32:f1:60:40:85:d1:a4:
f3:16:8f:c2:f9:22:a9:74:c8:31:6a:a2:4b:40:b0:98:8f:ab:
4d:3f:c3:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:16 2025 by rpki-client