Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
File: cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft (raw, json)
Hash identifier: HTDysdoO0pGlxZU01tApHnSnHwO//xP7gYWI1EBkMCw=
Subject key identifier: 92:B5:20:B5:56:9E:A5:A8:63:BE:6D:71:CE:DC:DA:4A:D0:F6:82:B0
Authority key identifier: 70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
Certificate issuer: /CN=708029a674177efd99252275094618c0c9cfbd1d
Certificate serial: 0195E19034FAEA1718A3ADC34BF5DFDA86F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
Manifest number: 048D
Signing time: Sat 29 Mar 2025 11:01:19 +0000
Manifest this update: Sat 29 Mar 2025 11:01:19 +0000
Manifest next update: Sun 30 Mar 2025 11:01:19 +0000
Files and hashes: 1: cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl (hash: +dVL//164qKi5yHGVOhb7FgxnaWMavoGSc0Bde8iS0M=)
2: gf0Xy6qbBLzQzsLjIlFfh_7JZjk.roa (hash: Ah/uhPrNkgzcI+es99gluPPaRScN93x4JTQmt+pb9V0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:90:34:fa:ea:17:18:a3:ad:c3:4b:f5:df:da:86:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=708029a674177efd99252275094618c0c9cfbd1d
Validity
Not Before: Mar 29 11:01:19 2025 GMT
Not After : Mar 30 11:01:19 2025 GMT
Subject: CN=92b520b5569ea5a863be6d71cedcda4ad0f682b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6f:45:79:7e:30:e4:7a:09:b9:a6:88:d2:52:
27:19:35:14:ee:bc:e4:f9:1b:3c:01:ec:d1:6c:9e:
ce:06:af:b9:01:9c:11:3d:8b:e1:98:03:8a:f3:6d:
13:33:e0:20:e9:fd:73:7b:ae:08:8f:47:82:ff:e5:
69:bd:d5:ba:e7:23:7e:4f:13:a2:29:5b:63:8a:29:
e4:7c:a4:a5:e9:6f:56:f3:b2:e1:e5:ac:f7:2b:05:
dc:84:a7:bc:ca:ae:28:fd:33:3a:69:1e:48:60:92:
a5:7a:65:6a:1e:41:f6:c1:ce:53:2d:b7:27:73:5c:
90:01:9d:ba:66:d0:7a:47:c6:77:77:37:34:45:36:
c2:86:b0:e6:de:22:69:ab:34:4f:43:37:82:e4:42:
16:c8:33:54:50:7e:6c:b4:87:ce:f7:9a:f3:e9:40:
4f:e5:fb:dd:90:3b:0c:72:ac:3a:a0:2a:79:4a:db:
fd:74:09:e5:4b:e3:a6:21:15:86:be:26:41:5b:6e:
50:5c:fc:84:5b:71:c2:69:36:38:d4:04:71:74:7d:
39:48:99:56:b4:a0:81:ac:fa:09:9a:81:7f:92:10:
32:d2:de:66:19:d8:0b:75:b1:45:3a:4e:25:2e:c3:
51:95:0f:5b:88:dd:cf:cd:5f:90:cb:3c:09:d3:a3:
84:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:B5:20:B5:56:9E:A5:A8:63:BE:6D:71:CE:DC:DA:4A:D0:F6:82:B0
X509v3 Authority Key Identifier:
keyid:70:80:29:A6:74:17:7E:FD:99:25:22:75:09:46:18:C0:C9:CF:BD:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/08d44c-f102-4b70-8db0-72abeefeda4a/1/cIAppnQXfv2ZJSJ1CUYYwMnPvR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:89:80:d8:98:d7:8e:5d:a3:23:fe:d0:a4:a3:d8:73:4b:2f:
5a:9e:a3:19:e4:51:8f:4c:55:87:cd:7d:41:27:f1:54:31:ba:
52:e0:5d:ec:f0:bd:8a:14:79:14:7f:b7:83:e6:f9:e0:da:92:
84:63:89:bb:fd:7f:da:07:77:09:7d:72:13:80:ad:50:4e:82:
a1:7d:0e:04:70:8e:63:97:a7:7b:55:18:97:a5:83:a8:75:4b:
48:9c:f7:c9:14:62:ec:90:87:13:3c:ae:fb:4c:a7:aa:ac:a7:
a3:fc:1b:bc:5b:ef:3f:81:37:c7:88:f0:29:53:d8:fb:fa:28:
10:4f:d1:c8:de:f9:ce:1a:55:3c:e4:76:36:da:aa:fe:ea:b2:
8e:83:7f:47:7e:cd:cd:ca:13:ff:5a:b9:10:56:63:f2:0f:8f:
4f:33:98:2f:b2:c6:3d:9c:33:f1:65:76:e4:6d:c0:12:a8:00:
d3:ed:fb:c4:21:5c:56:a2:eb:83:0b:88:ea:2b:5a:86:c6:09:
09:61:5e:78:16:96:fb:82:7f:d8:4d:f4:95:8b:47:da:0a:75:
9e:9f:95:2c:a3:d5:26:f4:b0:74:b0:42:98:d0:80:40:d2:ce:
8a:1f:db:8e:99:8d:da:52:9c:51:dd:b3:6c:b9:7f:58:7d:ff:
f2:94:a8:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 14:26:28 2025 by rpki-client