Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
File: PUJ2NzsED6msd-VmxbbN81tTuTc.mft (raw, json)
Hash identifier: atNfh9+V9B+8tVfsYNAzBHpkF7DLmnC/bP74wudY5Yg=
Subject key identifier: 69:20:FB:76:DC:2B:1A:F2:5D:A0:54:81:7A:4A:2F:C9:E6:B8:3E:8A
Authority key identifier: 3D:42:76:37:3B:04:0F:A9:AC:77:E5:66:C5:B6:CD:F3:5B:53:B9:37
Certificate issuer: /CN=3d4276373b040fa9ac77e566c5b6cdf35b53b937
Certificate serial: 0195E046860D830447B6B66D6E6A04DED30F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
Manifest number: 03A3
Signing time: Sat 29 Mar 2025 05:01:12 +0000
Manifest this update: Sat 29 Mar 2025 05:01:12 +0000
Manifest next update: Sun 30 Mar 2025 05:01:12 +0000
Files and hashes: 1: JTpkIG2gAi87qZ4MaDyiSAhDmGs.roa (hash: pqYQEm9FQENA5hwqBQ6sbfRExLr5G9tm4QJ0ttI7KnA=)
2: PUJ2NzsED6msd-VmxbbN81tTuTc.crl (hash: P0E8InzAiSRqQ+SMUmlPNAopirh86v7N78i9QkfiYow=)
3: p62oDeoT4vvUHo4yGegZ6_TWKY0.roa (hash: JITepKVcCtsEzEyKS9PibwaqvpfOsAJXxc4iERP2W4s=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:46:86:0d:83:04:47:b6:b6:6d:6e:6a:04:de:d3:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d4276373b040fa9ac77e566c5b6cdf35b53b937
Validity
Not Before: Mar 29 05:01:12 2025 GMT
Not After : Mar 30 05:01:12 2025 GMT
Subject: CN=6920fb76dc2b1af25da054817a4a2fc9e6b83e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d8:1c:5f:73:97:8d:4b:8f:95:d4:c0:e3:fc:
8b:6c:2d:5a:d7:b2:16:d9:72:3a:5d:9a:d8:0b:a5:
a9:bb:de:d4:8e:a9:92:ab:4c:ea:e8:1e:2a:74:42:
e5:df:e9:18:08:3b:b2:d3:4d:f9:cb:c6:e5:52:8d:
65:e8:1d:6e:04:3d:fd:3c:4f:3c:8b:d2:bd:0f:ea:
12:35:72:a4:9f:d4:11:d2:89:68:64:61:13:95:58:
40:9b:17:3e:88:20:cc:d0:5b:de:ed:b3:f1:7a:c2:
f3:86:85:ef:45:d5:59:d6:20:eb:95:4a:ac:7d:98:
63:5d:47:f9:91:a1:64:60:c9:61:f8:50:a7:4c:65:
63:5f:10:df:68:5d:d2:24:dc:6a:81:80:05:69:d7:
fc:9a:02:03:45:1d:af:f2:b1:da:17:6b:d9:66:cd:
b0:8b:cc:c9:44:e6:16:a0:21:98:ab:95:8f:c3:aa:
93:16:19:f3:58:ce:d6:ee:c0:c2:98:a6:47:12:3d:
9f:8a:23:e1:3a:76:98:9f:cd:30:53:7f:96:62:10:
1f:e0:b4:bd:07:10:ba:5a:d0:40:38:47:d1:2b:a3:
c7:a8:b1:df:b0:c2:7c:36:92:a1:57:92:1d:1b:60:
2e:7e:c9:9a:8b:29:c8:3f:72:64:dc:35:a2:92:e8:
d2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:20:FB:76:DC:2B:1A:F2:5D:A0:54:81:7A:4A:2F:C9:E6:B8:3E:8A
X509v3 Authority Key Identifier:
keyid:3D:42:76:37:3B:04:0F:A9:AC:77:E5:66:C5:B6:CD:F3:5B:53:B9:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PUJ2NzsED6msd-VmxbbN81tTuTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/a19d51-07e5-4db5-9d0e-66d3198bf1a2/1/PUJ2NzsED6msd-VmxbbN81tTuTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:fe:75:ea:a9:76:84:93:1f:4a:1e:16:d4:54:dd:c5:4d:6c:
03:47:bb:5e:1e:7c:7e:80:c3:a0:4f:9a:95:29:52:e5:8a:ed:
de:c4:f7:88:c4:9d:ab:f9:61:10:1e:f0:f8:f6:39:2d:09:81:
8d:cd:6a:08:46:27:2b:87:9f:3f:ec:4c:07:31:67:3a:4e:4d:
65:97:96:c4:db:ea:1e:9e:31:20:1d:ec:83:5a:e3:67:1b:88:
09:f5:76:72:8e:84:70:20:75:74:e4:66:f7:aa:03:df:ce:2a:
51:1c:67:d7:12:ee:90:3f:cc:80:9b:c0:8d:06:5e:8a:5e:9a:
35:13:21:9d:85:95:81:a1:e7:04:5a:a9:73:80:eb:b6:1e:35:
0d:97:37:7a:72:99:3c:84:f1:b9:73:f1:54:a3:11:be:2c:b3:
4c:f6:18:b1:3e:ad:cc:a9:f5:e4:05:77:30:b9:dd:3b:48:2a:
39:7c:5d:9d:e8:7d:76:aa:58:61:06:46:21:dc:5d:af:ce:fa:
87:c9:29:2f:2e:84:3e:15:e0:6f:3d:d7:9d:d4:f1:a6:50:bf:
c5:91:95:9f:57:80:32:6d:f2:40:fe:a7:46:80:f1:53:9e:36:
a6:72:b1:1b:e2:1c:13:47:96:fa:9d:b3:87:73:6e:e8:76:cf:
0d:b8:75:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 13:01:33 2025 by rpki-client