Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/db2bd4-af34-441d-8ca9-9f7ed5ca675e/1/2KocemiyIEQatfGzdbIj3oxhTnk.mft
File: 2KocemiyIEQatfGzdbIj3oxhTnk.mft (raw, json)
Hash identifier: uMrP0Yx/XG/ftXtiqIbH4NAgMej48sJjcLHFfY+DQOE=
Subject key identifier: AD:9B:41:B5:95:01:73:02:52:7A:19:E5:3B:0E:4E:A5:1A:30:27:44
Authority key identifier: D8:AA:1C:7A:68:B2:20:44:1A:B5:F1:B3:75:B2:23:DE:8C:61:4E:79
Certificate issuer: /CN=d8aa1c7a68b220441ab5f1b375b223de8c614e79
Certificate serial: 01936FA3AD9C2775F75CB7069EE3E1C0F663
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KocemiyIEQatfGzdbIj3oxhTnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/db2bd4-af34-441d-8ca9-9f7ed5ca675e/1/2KocemiyIEQatfGzdbIj3oxhTnk.mft
Manifest number: 0764
Signing time: Wed 27 Nov 2024 22:00:17 +0000
Manifest this update: Wed 27 Nov 2024 22:00:17 +0000
Manifest next update: Thu 28 Nov 2024 22:00:17 +0000
Files and hashes: 1: 2KocemiyIEQatfGzdbIj3oxhTnk.crl (hash: cIaTIu6L33N/klYGMJjv13W3kK2ng9XgLQVgRjynU24=)
2: sKqvvhIgjBdH7zAxzGApDEeA6sU.roa (hash: PslWwCWeFcvgbFy+ZeEApW6KRGwtPx8kFUMi2LW1IFA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6f:a3:ad:9c:27:75:f7:5c:b7:06:9e:e3:e1:c0:f6:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8aa1c7a68b220441ab5f1b375b223de8c614e79
Validity
Not Before: Nov 27 22:00:17 2024 GMT
Not After : Nov 28 22:00:17 2024 GMT
Subject: CN=ad9b41b595017302527a19e53b0e4ea51a302744
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f6:ee:b8:03:7b:2b:52:53:99:8e:6a:d0:a6:
2a:a2:09:41:ac:8e:a3:30:96:7f:f5:e8:a1:f3:31:
f6:9e:fb:96:e1:c7:b9:4a:ef:c6:77:38:50:d4:8c:
f8:b0:39:d1:62:81:4a:e5:55:55:62:45:f0:36:e0:
04:d5:c1:ca:32:ea:81:a9:ab:91:e6:18:69:b3:25:
4e:a9:ec:e9:a7:80:5d:e9:c2:90:c9:81:93:06:a0:
a0:15:8d:bf:a4:0e:59:4e:02:55:31:1a:39:96:dd:
1a:19:21:39:a2:bc:e0:1f:ce:ae:a4:4d:ae:73:e2:
03:28:ab:be:5b:5a:0d:55:44:4a:3e:1d:09:98:08:
71:a5:30:45:5d:a7:5c:bf:44:96:0b:bc:15:34:f3:
6f:4f:db:46:30:08:22:cc:c4:e8:2f:24:aa:d7:54:
1f:35:8e:e9:0b:f1:8e:3e:40:2a:5d:01:2f:01:2b:
0f:7e:a6:70:da:3d:c2:90:ea:2a:9a:3c:59:b4:6d:
b3:18:cb:3d:f6:09:9f:72:10:cd:c8:d2:df:9d:d2:
8b:95:b0:d5:35:0b:16:4b:c4:fb:45:d3:2b:11:e3:
fd:0a:be:5e:6e:cb:9d:dc:66:6f:ca:95:aa:df:c2:
a7:a4:ab:f7:27:65:72:d2:41:6f:f9:9a:45:f2:36:
b0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:9B:41:B5:95:01:73:02:52:7A:19:E5:3B:0E:4E:A5:1A:30:27:44
X509v3 Authority Key Identifier:
keyid:D8:AA:1C:7A:68:B2:20:44:1A:B5:F1:B3:75:B2:23:DE:8C:61:4E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KocemiyIEQatfGzdbIj3oxhTnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/db2bd4-af34-441d-8ca9-9f7ed5ca675e/1/2KocemiyIEQatfGzdbIj3oxhTnk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/db2bd4-af34-441d-8ca9-9f7ed5ca675e/1/2KocemiyIEQatfGzdbIj3oxhTnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:cc:1c:c9:99:81:e6:37:ea:07:4b:da:51:5a:b3:d9:2c:76:
ca:16:43:4d:d3:02:dc:4e:49:77:96:3f:08:69:a7:23:6e:c2:
e5:95:d1:d8:bf:08:d0:88:23:f6:76:24:3e:9a:71:7f:d8:34:
d0:a6:a7:24:61:6a:64:de:22:60:c1:86:ba:80:5e:70:bc:2b:
ab:83:a6:ac:06:b2:66:f7:20:d1:05:3e:75:84:9d:b9:cc:c8:
ba:91:d1:6d:cc:b1:0b:78:38:90:89:c5:62:0c:b1:97:17:44:
7a:ad:69:20:fa:c5:20:aa:bf:35:2c:45:ed:03:4d:f9:e8:e0:
06:69:d9:85:eb:c3:36:0c:63:d0:f8:33:b1:ab:22:be:53:5b:
8d:e7:0b:55:91:b1:41:5e:1e:16:40:46:b0:c3:97:0b:6c:11:
03:f3:0d:77:98:35:74:3b:cd:3f:5e:b4:91:00:7d:64:48:96:
97:e0:30:f4:0d:84:1a:fc:74:d6:5d:55:c8:f3:df:47:98:e7:
3a:fc:66:bf:b7:7c:9b:8a:6a:6c:b9:cd:eb:2c:59:66:c1:69:
ee:59:81:a1:31:82:1e:57:32:80:19:3a:43:0e:6c:c1:34:77:
d1:5d:6f:dd:a8:32:72:eb:1f:c6:e5:63:9c:f3:35:dc:99:ff:
29:71:ac:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:55:28 2025 by rpki-client