Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
File: Pls0eWfOpnu2K2nSWazeS4-elBc.mft (raw, json)
Hash identifier: KTHOiNvKNBP1SHGePttfeuIzdafymZz+zLCos2d3kiU=
Subject key identifier: 17:13:74:97:1D:DB:1C:30:D0:4A:91:EF:A1:DD:7D:EB:C8:8F:3C:73
Authority key identifier: 3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
Certificate issuer: /CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Certificate serial: 0195E1222E2E0C107D5786AFE0ABD91C9B79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
Manifest number: 09D9
Signing time: Sat 29 Mar 2025 09:01:08 +0000
Manifest this update: Sat 29 Mar 2025 09:01:08 +0000
Manifest next update: Sun 30 Mar 2025 09:01:08 +0000
Files and hashes: 1: Pls0eWfOpnu2K2nSWazeS4-elBc.crl (hash: COq/1A2bJUqBBkKEW0iIYBrpPM4BXyrMOY4fnN92ixU=)
2: yeykCTxRfXSLEqjo1MZ7zObmrks.roa (hash: 1vVWF5KJNfMy/yYL5Sp0YWKLB5R7wsPTTiR6VRMJgCU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:22:2e:2e:0c:10:7d:57:86:af:e0:ab:d9:1c:9b:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e5b347967cea67bb62b69d259acde4b8f9e9417
Validity
Not Before: Mar 29 09:01:08 2025 GMT
Not After : Mar 30 09:01:08 2025 GMT
Subject: CN=171374971ddb1c30d04a91efa1dd7debc88f3c73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:60:f2:01:0f:24:b1:94:a1:ae:0e:25:15:83:
e0:5b:0e:99:b8:e3:47:25:a2:86:74:c5:79:13:4e:
87:84:4b:0e:a6:e7:b6:6c:ee:cc:48:0b:1b:df:40:
d2:c3:81:ef:23:89:b0:60:3c:15:cc:a7:89:48:ba:
3b:0e:2c:60:2e:6f:64:a1:40:ee:bc:1b:40:6a:40:
5c:85:2a:08:04:f0:d8:17:3c:32:a7:6a:3c:ae:bd:
b6:3f:62:e7:20:d3:11:8a:15:14:0b:63:f4:d6:5d:
65:d6:0d:f1:2a:ea:98:c3:fb:d4:4a:90:59:bf:ab:
75:5f:a3:01:99:5b:95:d0:c4:92:8f:76:04:17:65:
14:5d:c9:f1:27:da:81:3c:46:69:e3:e1:c6:18:c2:
a2:59:b8:89:60:74:66:75:58:a2:23:2c:ff:5a:a7:
3a:fa:c1:15:be:8a:ba:9f:bb:3b:ae:99:49:dd:68:
8e:77:be:cd:3b:48:92:f2:c4:28:c6:90:8f:63:ff:
a7:8f:6c:bc:c9:d1:6a:c8:80:a9:e0:43:5e:d0:cf:
e4:9e:1d:1f:d8:49:52:48:2a:8a:b2:14:8f:8f:f9:
4b:7e:71:1b:80:a8:d9:3c:bb:b2:7b:c7:33:68:5a:
b3:fa:26:49:cd:3e:b1:63:01:84:af:26:8e:4b:7f:
5a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:13:74:97:1D:DB:1C:30:D0:4A:91:EF:A1:DD:7D:EB:C8:8F:3C:73
X509v3 Authority Key Identifier:
keyid:3E:5B:34:79:67:CE:A6:7B:B6:2B:69:D2:59:AC:DE:4B:8F:9E:94:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pls0eWfOpnu2K2nSWazeS4-elBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/256da7-19d0-459a-b53e-94e7d07fb31d/1/Pls0eWfOpnu2K2nSWazeS4-elBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:40:f8:df:3d:94:bf:6a:76:11:6e:e2:fe:4d:26:de:a9:fa:
e9:05:d9:a0:96:8f:87:96:50:01:cb:3c:14:8b:fa:55:57:47:
96:46:d9:97:6e:a2:3c:8d:c9:08:9d:70:50:1b:70:13:e1:3c:
6b:50:6a:4b:e7:36:81:d0:cd:ad:5f:96:96:5c:ea:99:e7:9a:
38:27:2d:b5:6b:7a:27:0d:5b:5c:1f:d6:12:c8:11:d4:65:ed:
74:43:5a:7c:dd:58:99:93:24:f2:ea:d3:11:6b:f3:ed:b3:af:
3d:e1:f3:8a:f8:22:04:87:00:cc:26:4d:37:49:26:4d:78:ec:
15:2c:22:0e:a3:90:af:5a:09:0d:df:a1:db:07:ac:6d:9b:8c:
41:ff:ff:db:a0:8b:25:9d:7b:9f:ce:a9:8a:ec:5f:08:6c:43:
f8:a9:57:41:e7:74:b0:8d:b6:fc:93:45:fc:76:1d:ae:5a:35:
03:fe:ac:93:d9:76:65:ad:02:29:80:d2:89:8e:3a:3a:77:d4:
5d:21:81:ea:70:7b:16:d1:b3:a1:f2:50:5f:f1:f3:01:cd:e2:
f8:29:f1:20:f9:c5:52:90:a0:30:35:5a:96:0f:42:fb:1b:d4:
c8:d5:ea:a0:80:1b:7f:5b:31:32:24:8c:ae:11:34:8e:f4:96:
02:c8:8c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:32:22 2025 by rpki-client