Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.mft
File: DoNbiW2nHS2q3_E51ltymPhBJBc.mft (raw, json)
Hash identifier: 2W8IsXOH9SH2lusoVoaG+YHd8eWHG9/F4oF0CeDLaAU=
Subject key identifier: C2:EC:68:70:C8:24:96:5A:93:14:AC:C3:76:9A:69:F8:2D:B4:09:CA
Authority key identifier: 0E:83:5B:89:6D:A7:1D:2D:AA:DF:F1:39:D6:5B:72:98:F8:41:24:17
Certificate issuer: /CN=0e835b896da71d2daadff139d65b7298f8412417
Certificate serial: 01961E129FC59602457CE18BAE925734BA70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoNbiW2nHS2q3_E51ltymPhBJBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.mft
Manifest number: 14E1
Signing time: Thu 10 Apr 2025 05:00:59 +0000
Manifest this update: Thu 10 Apr 2025 05:00:59 +0000
Manifest next update: Fri 11 Apr 2025 05:00:59 +0000
Files and hashes: 1: DoNbiW2nHS2q3_E51ltymPhBJBc.crl (hash: GME62J0rHfxGaygLeg5Ud2stzFxF00Qlb5BWjRiZaeU=)
2: jBckqPQFaXVG0d-H_hcaAGH7CKM.roa (hash: +uEvgPae+lRjbvXvv3CmkwknC6+ftUjZQH4oSS8SHfc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:1e:12:9f:c5:96:02:45:7c:e1:8b:ae:92:57:34:ba:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e835b896da71d2daadff139d65b7298f8412417
Validity
Not Before: Apr 10 05:00:59 2025 GMT
Not After : Apr 11 05:00:59 2025 GMT
Subject: CN=c2ec6870c824965a9314acc3769a69f82db409ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:20:c6:0d:9c:51:a8:de:14:84:c3:5f:10:46:
a9:5a:ee:31:29:bc:e7:cd:57:3b:f1:7d:54:26:e2:
31:c3:d1:93:33:0d:6c:13:bb:91:c9:77:a3:b5:32:
fa:37:83:a1:27:5c:8f:6f:8b:93:4c:57:51:67:cf:
db:b1:01:4a:b4:d4:09:c8:e3:dc:5e:79:a6:d5:4a:
4e:83:4b:a0:0d:8b:b8:9c:42:1e:b2:d2:12:46:33:
fb:7e:ec:02:d4:1b:a7:7d:fc:82:ce:3d:ba:1d:48:
69:29:52:59:bd:e1:92:bf:b9:bd:0e:1e:a2:04:65:
42:62:17:d1:c9:c7:db:f6:59:ab:8d:60:1a:8a:38:
d8:9a:b6:2a:59:22:0a:09:86:22:0f:12:82:af:2e:
3f:fc:b3:a9:ba:6d:9a:d7:1b:cf:9b:c7:00:f7:2e:
27:b9:a6:1d:6a:f7:fa:4a:71:a6:0e:21:f4:65:df:
13:c2:8f:5c:95:34:37:1a:b0:09:98:d4:61:fb:1e:
d3:a0:22:1f:19:1d:4b:bc:10:c6:67:a2:5b:64:8d:
9e:e5:f3:04:8a:05:36:4a:11:e5:0d:e3:9c:c3:d0:
f0:4c:36:a0:ce:03:9c:df:2e:7f:02:d7:c6:97:2d:
5a:d0:7a:53:be:c3:54:9a:da:ac:0c:bc:3e:33:8f:
d1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:EC:68:70:C8:24:96:5A:93:14:AC:C3:76:9A:69:F8:2D:B4:09:CA
X509v3 Authority Key Identifier:
keyid:0E:83:5B:89:6D:A7:1D:2D:AA:DF:F1:39:D6:5B:72:98:F8:41:24:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoNbiW2nHS2q3_E51ltymPhBJBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:a6:de:82:52:60:1a:b5:99:70:e8:30:ae:5a:ac:c0:c0:3c:
89:7c:88:21:69:08:3b:05:4c:14:34:b5:9c:d7:74:75:b6:9f:
00:3b:c7:09:71:63:21:57:1c:56:7e:64:87:47:d2:30:a9:d2:
88:1d:7a:6c:ec:58:8a:86:f6:60:93:57:90:99:f7:64:c8:87:
9e:e4:c8:ad:bb:9a:8b:97:40:a7:47:15:7f:15:25:e5:bd:4b:
71:7f:f7:4b:1a:b2:42:b9:09:89:d1:47:07:cf:39:71:d3:e0:
03:50:41:d7:81:12:4d:58:12:43:8c:d6:03:5c:6c:ce:21:c3:
5e:d7:32:81:bd:09:5f:21:92:d8:a6:cb:81:79:30:81:81:31:
af:18:5b:d5:fb:94:b7:d2:7c:d1:03:e1:d6:56:a0:66:25:ed:
e0:9c:10:6e:dd:49:7d:3d:27:e4:05:7b:67:0f:05:82:54:72:
8d:49:a2:fc:30:78:62:85:7e:f6:dc:0b:73:1c:5a:c5:89:2c:
42:aa:ce:72:33:6e:83:da:15:f0:ab:29:33:9f:6e:1a:6a:17:
37:8d:22:c1:b3:17:c3:85:8b:69:d9:62:8d:bf:63:bc:bc:13:
25:ce:d1:da:59:13:08:6c:f9:91:cf:6e:9e:f1:40:77:a8:a5:
af:70:8f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 16:24:00 2025 by rpki-client