Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
File: 0aiWnX4yy_knZkstxDa5bnFJpis.mft (raw, json)
Hash identifier: YzzrFvXmw8UwhA6XqCedf5E84KWX49OG8s3Pc+xDUhQ=
Subject key identifier: BB:67:30:A8:86:ED:98:4F:D7:C2:02:02:C0:3C:EB:FF:75:A3:2D:2E
Authority key identifier: D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
Certificate issuer: /CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Certificate serial: 0195E046383204B3684F2D2FFD759CE78BAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
Manifest number: 0DF8
Signing time: Sat 29 Mar 2025 05:00:52 +0000
Manifest this update: Sat 29 Mar 2025 05:00:52 +0000
Manifest next update: Sun 30 Mar 2025 05:00:52 +0000
Files and hashes: 1: 0aiWnX4yy_knZkstxDa5bnFJpis.crl (hash: qTsdsoJvmTwZPj6fMj7GdirL5oWoigC1lsN8ECcJqTU=)
2: p1fyn5poKGi3v6udklaZLK6DaPs.roa (hash: ksuBLRSUua1zFmd4JmcnhcAsP8MWyD8OR/dcK6d/pkM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:46:38:32:04:b3:68:4f:2d:2f:fd:75:9c:e7:8b:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1a8969d7e32cbf927664b2dc436b96e7149a62b
Validity
Not Before: Mar 29 05:00:52 2025 GMT
Not After : Mar 30 05:00:52 2025 GMT
Subject: CN=bb6730a886ed984fd7c20202c03cebff75a32d2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d6:77:40:bd:32:a9:5e:26:4d:aa:a3:2b:cd:
b1:16:e5:4d:5d:e8:4a:d2:2e:bb:42:97:1c:05:68:
db:27:8d:69:31:49:e0:c7:70:3c:63:9d:df:d8:e8:
b5:57:6b:a1:bd:10:be:41:de:1a:b3:ff:ac:20:96:
75:5e:db:72:fe:60:4a:c8:97:3b:3d:1e:ac:f0:15:
d0:5e:bf:4b:40:a2:9c:3c:47:b8:ea:49:55:4e:01:
a3:ee:85:0b:7a:dd:8a:6f:62:7c:b2:a0:dd:6e:b6:
06:b7:07:ec:ec:de:f3:dd:35:8d:e7:94:3c:f5:55:
cf:e4:d9:d8:db:b9:7f:16:78:69:4a:4a:49:1a:fb:
65:1c:82:56:7c:a3:05:ee:79:03:d3:63:6b:95:02:
37:71:90:2e:78:b3:7f:08:47:fc:d6:ce:b1:e6:4b:
22:2e:bf:f3:86:c9:36:bb:05:66:c3:51:a9:7e:52:
ba:47:c9:bf:60:f7:fa:d3:18:e1:c4:b3:c3:bd:f6:
2e:38:23:e7:75:b4:56:06:cd:0a:93:3b:30:ca:f4:
83:9b:52:ac:ff:bc:eb:5b:4f:ea:8f:41:d7:e6:da:
22:f0:a1:06:f3:d1:ab:c7:1e:e0:63:47:a7:28:cd:
c8:25:26:50:80:f5:59:85:dd:8f:c2:06:74:07:d7:
d1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:67:30:A8:86:ED:98:4F:D7:C2:02:02:C0:3C:EB:FF:75:A3:2D:2E
X509v3 Authority Key Identifier:
keyid:D1:A8:96:9D:7E:32:CB:F9:27:66:4B:2D:C4:36:B9:6E:71:49:A6:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0aiWnX4yy_knZkstxDa5bnFJpis.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/27294e-b9e7-4660-932d-21048a734a46/1/0aiWnX4yy_knZkstxDa5bnFJpis.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:05:4d:f9:f3:b3:cc:75:49:8f:1a:f5:3e:47:40:4f:7f:ae:
8e:4e:66:71:46:86:15:0e:61:90:bc:1e:59:ff:89:5e:97:60:
79:db:90:b5:e8:b5:af:b3:62:14:a8:d0:0f:66:a0:e6:9c:d7:
73:4a:04:d1:8b:db:60:df:55:87:86:47:58:91:65:e9:86:f9:
73:aa:b6:1c:9a:02:af:a9:2b:49:d4:2b:a0:c1:5c:3e:1c:46:
a5:1b:9c:dd:7c:ff:30:0e:7e:3f:ab:22:c9:61:3f:25:69:e9:
a6:34:d6:78:8c:99:93:c3:e2:dd:22:c6:91:59:57:11:bb:04:
0e:0c:83:9e:4d:34:9a:b9:2c:ad:af:bc:62:f9:c9:a4:a8:99:
01:e8:01:68:1e:59:c0:7b:cb:10:fa:f6:99:2c:0f:58:4d:cc:
58:06:05:05:a5:ed:7f:03:5b:4c:e7:20:75:23:35:21:d9:48:
e5:96:db:40:6a:f7:53:5d:2f:2c:b8:a2:c5:83:e9:28:45:8e:
da:10:83:b9:f3:f1:03:84:48:fc:ec:1d:59:5d:b2:00:c6:a5:
e8:14:84:d5:ad:13:10:35:e2:2b:ef:3b:2a:42:14:54:ed:e1:
9f:dd:7e:cb:14:ef:32:38:91:16:03:a6:89:45:c7:28:2b:66:
3b:c3:23:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:36:42 2025 by rpki-client