Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
File: KVZYS3DOhHwam0AFSLFNsDG-3_I.mft (raw, json)
Hash identifier: G9tyvlIsniPN0iu8w4WOPWtoZ3hr4xb6wY4baJ2fesQ=
Subject key identifier: 0F:1D:E0:AB:83:65:43:E8:31:EE:DC:44:BC:ED:D0:5A:25:22:F4:1D
Authority key identifier: 29:56:58:4B:70:CE:84:7C:1A:9B:40:05:48:B1:4D:B0:31:BE:DF:F2
Certificate issuer: /CN=2956584b70ce847c1a9b400548b14db031bedff2
Certificate serial: 0195E0EB25296880F2B6241581782CD4C328
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KVZYS3DOhHwam0AFSLFNsDG-3_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
Manifest number: 07A6
Signing time: Sat 29 Mar 2025 08:01:01 +0000
Manifest this update: Sat 29 Mar 2025 08:01:01 +0000
Manifest next update: Sun 30 Mar 2025 08:01:01 +0000
Files and hashes: 1: Hg9ftZU-9AaUb-uuud6YLmFeeqc.roa (hash: kIMrWnLBKnZqV6WvzFWIcWQTCQyb5mE+suXdE7Wee/M=)
2: KVZYS3DOhHwam0AFSLFNsDG-3_I.crl (hash: l6CoCpz/pNacFDZYm3hI0ot7XlADNfsmyfeXB1rhdLc=)
3: UY5PADzbeIj93cBuCOAZIezRods.roa (hash: 94p+JoB1n19vWg1B3h2izrs5nmNxhhnj9iR596bjT+I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:eb:25:29:68:80:f2:b6:24:15:81:78:2c:d4:c3:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2956584b70ce847c1a9b400548b14db031bedff2
Validity
Not Before: Mar 29 08:01:01 2025 GMT
Not After : Mar 30 08:01:01 2025 GMT
Subject: CN=0f1de0ab836543e831eedc44bcedd05a2522f41d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:44:9b:aa:51:bf:dc:27:fb:b8:ec:0d:04:41:
a6:67:5a:78:4c:a4:1e:dc:5f:af:2c:c3:8a:1a:84:
0c:51:6d:2d:06:78:77:93:15:af:f1:6a:d3:18:61:
ba:72:83:3e:86:db:41:0c:47:aa:ab:ba:9a:9a:66:
07:c2:11:3e:f3:0d:60:06:39:06:30:a4:b4:f5:fb:
86:50:7f:e0:ae:3b:7d:51:20:0c:93:b6:b9:26:f6:
8d:91:54:f2:45:22:4b:72:be:0e:8e:c8:4e:74:28:
f9:fe:ee:d7:9a:d1:fd:07:87:df:74:36:97:21:6a:
00:fd:91:d1:da:e7:bb:c2:3f:2f:3f:c1:f9:b0:97:
fd:d3:bb:75:f6:b5:b0:f6:34:12:31:15:c2:66:4b:
25:a2:a8:b4:2d:33:28:57:fe:83:21:01:c8:b7:59:
a1:59:4a:8d:50:24:d4:c0:33:3e:18:9f:3c:5d:6a:
35:56:39:16:48:95:ee:5c:da:1c:38:f3:67:c8:1a:
0e:d5:b5:2d:b6:77:5b:0b:80:e9:77:62:57:2f:99:
6c:8b:06:fd:3f:6d:ad:d5:cd:a6:1a:1d:a6:78:67:
68:66:cc:8e:f5:f0:95:97:71:17:f7:08:df:2a:e8:
a8:0b:b5:27:44:7c:9e:c7:29:9e:63:be:5e:5d:b4:
a6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:1D:E0:AB:83:65:43:E8:31:EE:DC:44:BC:ED:D0:5A:25:22:F4:1D
X509v3 Authority Key Identifier:
keyid:29:56:58:4B:70:CE:84:7C:1A:9B:40:05:48:B1:4D:B0:31:BE:DF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KVZYS3DOhHwam0AFSLFNsDG-3_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/64fe7d-862d-4e1a-9fd0-06b41ef1398d/1/KVZYS3DOhHwam0AFSLFNsDG-3_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:63:64:2c:13:f8:84:89:61:4b:db:cd:78:cb:94:48:2e:4e:
f9:a9:13:d0:d0:a6:72:92:35:ce:b5:ef:1b:de:73:13:cc:b7:
2d:74:f7:03:19:d1:5b:1d:4c:89:6c:60:a3:fa:a7:ba:05:7a:
ee:cf:ed:e4:f2:b8:fc:a4:17:ce:c9:6f:ba:fd:18:25:6d:35:
e0:89:28:08:2a:c6:b6:fa:a7:da:af:bf:5b:ac:4b:b9:1d:97:
6a:5b:10:f9:89:bf:c2:94:cb:7d:9f:98:12:b7:bf:0d:bb:a3:
e9:17:85:ec:78:34:a4:1e:eb:fc:09:e3:1b:01:d5:f0:be:c1:
cc:e1:0c:69:3f:2a:7d:61:5c:34:85:a1:7d:35:8e:a9:c1:29:
d0:ac:3a:92:34:43:58:66:62:30:99:48:66:c3:a6:8a:f6:85:
ca:3f:fb:28:d5:8d:f3:ea:ed:58:2e:71:f5:1c:9c:8c:b8:72:
5f:64:0c:8e:0c:3c:9d:82:ff:8b:fc:d0:6b:24:71:d8:5b:6f:
9f:a8:b9:d1:e8:d4:6c:d1:be:c0:ed:70:e2:dd:f7:d6:5f:39:
be:ed:73:f4:9d:b3:8c:24:91:c1:00:17:e1:63:91:26:13:6a:
a8:19:64:d0:e2:02:46:f2:0a:1d:25:0b:97:a1:84:44:78:4a:
af:e7:b9:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:24:02 2025 by rpki-client