Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
File: zZFzvIKKtx2i68r6f4mOxqoe6nY.mft (raw, json)
Hash identifier: GvXLJRCFGOM4+cccHh8E4HwAJXahIaKPEWqBQy+K2jo=
Subject key identifier: B3:D6:45:44:EB:AB:8F:EA:D0:D9:34:29:A2:D9:32:22:4A:EA:AF:D0
Authority key identifier: CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
Certificate issuer: /CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Certificate serial: 0195E19032049A29B47F9B0E27EDEB416E65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
Manifest number: 0350
Signing time: Sat 29 Mar 2025 11:01:18 +0000
Manifest this update: Sat 29 Mar 2025 11:01:18 +0000
Manifest next update: Sun 30 Mar 2025 11:01:18 +0000
Files and hashes: 1: RtwNd0kIIB4fJfHreOuMYKMR7lc.roa (hash: qbEtbkjwEQIcvAZsD7fY24iBMXF9LqUeMZOAB812XzU=)
2: zZFzvIKKtx2i68r6f4mOxqoe6nY.crl (hash: 7CpIU53tL8VCZ9Ee9Fuas3uO/he2b+IOTYdqf9LCiuo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:90:32:04:9a:29:b4:7f:9b:0e:27:ed:eb:41:6e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd9173bc828ab71da2ebcafa7f898ec6aa1eea76
Validity
Not Before: Mar 29 11:01:18 2025 GMT
Not After : Mar 30 11:01:18 2025 GMT
Subject: CN=b3d64544ebab8fead0d93429a2d932224aeaafd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f7:9a:e8:93:42:a3:fc:ce:8e:f6:f9:84:ba:
8f:4b:b1:0a:98:fa:1b:c9:b1:6e:90:3b:27:a5:ac:
b1:54:4a:b7:e5:35:c2:57:53:25:c2:4b:71:1d:e7:
df:54:bf:50:90:8c:77:63:96:e6:7e:c2:61:c1:67:
ae:79:23:de:80:f2:c2:fd:bf:ca:72:a0:15:f3:62:
c4:61:55:c2:54:a8:19:23:3f:ea:74:52:9c:06:36:
2e:9d:70:45:df:59:07:c0:cd:97:37:37:da:f1:2c:
32:58:87:a5:6b:5f:ec:ad:14:d8:54:ad:ea:7f:08:
7b:1f:67:76:0e:86:53:10:c8:f2:17:5e:86:00:67:
6d:71:84:35:8f:3a:e9:96:09:58:d1:a6:a9:16:9c:
03:a0:0f:e5:27:44:13:3e:e5:93:44:c5:78:81:dc:
ba:64:b1:b1:51:bf:40:ad:c1:04:e6:95:8f:13:e4:
89:67:c1:96:91:00:4b:1f:73:bb:6b:67:09:6d:bd:
32:17:2e:28:e9:48:83:0a:d2:5d:d3:9d:3f:c7:4d:
7d:19:1f:35:1e:8f:b8:96:3b:58:e1:f9:c0:36:b6:
4b:dd:20:5f:16:94:61:76:31:ad:08:33:c7:84:1b:
b9:41:37:e0:9f:4a:25:72:e3:08:a2:98:79:05:da:
03:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D6:45:44:EB:AB:8F:EA:D0:D9:34:29:A2:D9:32:22:4A:EA:AF:D0
X509v3 Authority Key Identifier:
keyid:CD:91:73:BC:82:8A:B7:1D:A2:EB:CA:FA:7F:89:8E:C6:AA:1E:EA:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zZFzvIKKtx2i68r6f4mOxqoe6nY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/5b8b9c-8f19-4c6b-afd7-c694260017b0/1/zZFzvIKKtx2i68r6f4mOxqoe6nY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:c3:74:fd:e5:80:85:59:d3:35:b0:55:7d:eb:3f:b7:91:46:
65:58:0f:cd:41:a8:4f:88:13:c8:85:4d:c6:c5:fd:0d:2e:e8:
48:eb:50:5b:30:66:c9:2c:03:7d:45:6a:3c:f1:a4:32:67:dc:
06:e0:f9:e0:b4:e8:99:7d:5c:d8:ae:62:66:49:0a:bf:c8:b3:
c5:91:b2:33:56:6f:cc:81:35:4a:42:fd:a2:ff:09:13:9b:25:
bf:be:dd:33:c9:c7:91:f3:b0:b3:bf:45:ab:97:a0:9b:ec:bd:
9f:3f:46:5a:96:83:b3:3f:8b:d8:9e:6e:34:84:fa:47:8d:96:
18:21:60:3d:3e:57:4b:f4:cd:f7:fd:5a:eb:ed:82:e2:8e:94:
26:0f:77:5c:6b:26:bb:5b:5b:36:06:80:f0:fd:ff:4e:47:de:
47:75:a5:83:ce:df:47:00:6e:24:c6:36:cc:a4:0c:48:da:35:
48:e1:71:71:14:19:05:4d:68:0c:9f:52:73:37:64:ae:88:9d:
ed:ed:37:6c:bd:4b:a8:7d:3f:dd:13:c8:9f:12:56:31:f9:d8:
a8:a5:19:93:10:7f:20:df:de:cb:63:a4:21:0b:2f:96:6a:f0:
71:89:0d:a9:f6:e3:2d:cb:1c:0b:5b:34:6a:fb:b0:b5:48:be:
30:91:2c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:38:06 2025 by rpki-client