Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
File: XHkaG6CbnU01jvBare1_DoXogbY.mft (raw, json)
Hash identifier: zxnLIbbYzo/puQeyzaQLLqVLq6PSmQVbNnS2bgDNRXU=
Subject key identifier: 23:F5:4D:AA:27:1B:C1:A7:59:7B:6B:C6:CD:40:3E:E3:D8:4E:2F:34
Authority key identifier: 5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
Certificate issuer: /CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Certificate serial: 0195E0EB24F2E57071B39177A6C463C61FBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
Manifest number: 09FE
Signing time: Sat 29 Mar 2025 08:01:01 +0000
Manifest this update: Sat 29 Mar 2025 08:01:01 +0000
Manifest next update: Sun 30 Mar 2025 08:01:01 +0000
Files and hashes: 1: XHkaG6CbnU01jvBare1_DoXogbY.crl (hash: n3UXMVIrOEKQptClHHGhJEcjZrfJsv19LijR2RWpCTM=)
2: _GYD1AJUDNposAkJpRDfG9xq6dk.roa (hash: afY5Qh0XccEeUiEofkFyRBQd+JnAG3mTgUzmW0se7YQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:eb:24:f2:e5:70:71:b3:91:77:a6:c4:63:c6:1f:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c791a1ba09b9d4d358ef05aaded7f0e85e881b6
Validity
Not Before: Mar 29 08:01:01 2025 GMT
Not After : Mar 30 08:01:01 2025 GMT
Subject: CN=23f54daa271bc1a7597b6bc6cd403ee3d84e2f34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ab:4e:09:dc:e0:01:17:2b:bb:e8:c8:7b:7c:
7e:d8:ce:fe:d4:e9:4d:76:54:b6:66:ff:42:63:76:
52:74:cc:6c:c9:73:b1:66:8a:0b:f8:ac:bb:ba:a7:
73:53:34:92:30:54:df:cb:00:b7:ae:de:41:07:c0:
73:fe:66:f2:4c:10:7f:0c:44:54:ec:f7:9c:f7:12:
ea:a3:da:f3:82:b2:09:01:a4:2d:3d:69:83:4d:4a:
ee:38:f7:69:20:66:48:8a:ff:90:47:ef:b9:bc:7b:
fd:3c:9c:14:ca:8f:7e:e1:da:3e:52:f5:69:c0:74:
25:79:01:b5:dc:aa:1b:7e:f1:f3:99:1a:95:0e:bc:
ab:68:ad:5e:f6:fd:d5:9b:d0:01:cc:8d:38:36:77:
95:14:5f:60:99:3f:68:d9:aa:9c:94:48:f7:ca:df:
46:80:ba:9e:20:69:01:3e:6f:9d:7d:19:b1:dd:ba:
1a:ef:98:ea:24:ce:65:c6:00:35:54:af:a3:7d:ea:
70:99:45:27:10:33:42:46:81:8b:0c:ae:95:78:88:
5e:02:af:ae:64:ff:8a:4f:ff:5e:63:7b:1c:f2:78:
5b:3c:47:42:ca:de:f1:8e:1a:d1:cc:bd:ea:e0:66:
37:f8:2d:38:18:b7:5f:37:bf:26:58:54:8a:e2:69:
9a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F5:4D:AA:27:1B:C1:A7:59:7B:6B:C6:CD:40:3E:E3:D8:4E:2F:34
X509v3 Authority Key Identifier:
keyid:5C:79:1A:1B:A0:9B:9D:4D:35:8E:F0:5A:AD:ED:7F:0E:85:E8:81:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XHkaG6CbnU01jvBare1_DoXogbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/a27a03-f645-462b-94e7-66c5ae8a36b4/1/XHkaG6CbnU01jvBare1_DoXogbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:d3:4c:14:02:69:a6:41:1f:a3:73:96:73:67:aa:f0:14:05:
a5:3e:df:50:58:77:0b:c8:f9:c0:6a:bc:48:db:ba:e6:ec:5b:
e9:53:54:c8:15:22:f3:c7:dd:d1:f7:23:be:64:62:ad:71:63:
53:b9:a5:3b:4c:6c:db:a8:1a:26:da:46:46:cc:b4:68:5a:0b:
e1:be:82:eb:6a:a7:dd:a5:90:6a:b4:0c:b8:01:c7:fe:df:e2:
e9:7a:98:81:e7:da:37:2f:98:2a:39:39:f3:4d:30:a5:cb:5b:
96:23:8c:68:c5:10:f7:38:ad:eb:38:c2:a4:1c:8b:5d:ca:7e:
3d:66:3f:76:63:cc:62:d8:b5:06:06:9b:80:95:f2:89:de:3d:
7b:12:cd:31:90:e8:b2:ed:88:e2:3f:bc:be:91:33:0b:62:ae:
38:51:47:d0:e3:ba:ca:05:e6:b4:4f:b3:65:66:63:6e:82:c3:
fa:2a:32:83:29:c4:c0:18:19:57:bf:1e:4d:fb:e4:66:4f:6f:
00:41:3c:98:20:2b:24:a5:9f:9d:da:5d:e6:9a:c0:5e:15:9b:
4b:b6:33:e6:4d:d0:ef:06:ac:35:4b:0d:d4:56:60:2e:83:72:
1a:e5:62:b7:98:b5:2c:89:fb:c3:fe:3c:01:8d:a5:5e:6e:c4:
bb:72:21:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:38:58 2025 by rpki-client