Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
File: 2FAiKC40aZ_lSLdShRmiWlDZEzo.mft (raw, json)
Hash identifier: 29JqzVU7/Ji4KmTux+iy6kML8gS23oGh123E91B2Byo=
Subject key identifier: BC:10:0A:BF:7F:0C:F0:4D:FA:43:62:E9:15:27:0D:69:FA:B1:95:02
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 0195E0B47C9A6A22BF1631B19189BF17DB09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
Manifest number: 13F0
Signing time: Sat 29 Mar 2025 07:01:19 +0000
Manifest this update: Sat 29 Mar 2025 07:01:19 +0000
Manifest next update: Sun 30 Mar 2025 07:01:19 +0000
Files and hashes: 1: 2FAiKC40aZ_lSLdShRmiWlDZEzo.crl (hash: HmaF+tHLG37rdLS5tzJUI+zU3w+hdN93AqRjgUnuz7c=)
2: 6R0wvkFPscZQ2uww-ZvwnaXh--0.roa (hash: wyiJ7rZP6x6kzeIfld1VjsLp4nIqzGhNhuxTGdTq1Ek=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:b4:7c:9a:6a:22:bf:16:31:b1:91:89:bf:17:db:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Mar 29 07:01:19 2025 GMT
Not After : Mar 30 07:01:19 2025 GMT
Subject: CN=bc100abf7f0cf04dfa4362e915270d69fab19502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:52:62:e7:2d:fe:54:c0:33:ac:7e:7d:1f:c5:
56:8d:95:d7:ea:b1:12:5b:76:ed:b2:93:61:0a:0f:
c5:55:4a:8d:4f:8f:b4:b2:08:38:90:26:7d:c5:59:
a0:a4:c2:93:cc:69:33:b3:70:50:8f:a3:1e:f7:36:
49:cc:d1:74:95:90:97:e0:d0:4f:52:7f:f6:75:50:
11:c6:03:7f:04:80:e1:03:6c:db:12:35:28:74:25:
4f:fe:95:bd:1d:17:b7:7a:6a:36:67:1b:6a:20:e8:
09:ed:b5:64:95:05:dc:a1:be:0c:45:66:ba:34:cb:
a5:3f:30:14:2c:10:eb:c1:0e:78:36:5d:8e:db:92:
f0:66:f4:ac:8f:49:d1:68:9a:3f:dd:c0:be:22:6a:
d1:7a:f5:d8:b0:ef:8d:5b:86:f4:4d:cd:bd:64:a0:
3c:b6:66:f5:11:9e:97:90:4c:07:fc:a8:70:01:e3:
77:37:22:22:3b:48:10:e6:56:81:46:1a:4e:40:f4:
37:d1:13:2b:01:7e:e1:55:c0:33:1c:8c:7b:49:46:
36:b9:0d:9a:37:64:13:aa:99:c7:3f:e4:c1:30:f2:
aa:63:fe:f5:3b:8b:5d:fd:21:0f:f0:ad:f9:2a:ba:
6b:28:88:98:00:f3:e7:e4:79:8f:da:c9:b6:e1:d4:
5a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:10:0A:BF:7F:0C:F0:4D:FA:43:62:E9:15:27:0D:69:FA:B1:95:02
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:c3:01:92:75:12:64:8a:72:db:d7:ba:cf:61:5b:89:e0:65:
e3:80:b1:a8:35:ba:9e:e3:c9:31:ea:5b:d1:43:df:8c:9b:88:
31:e9:12:c6:74:63:b7:dc:d5:9b:48:a5:ad:7a:fe:5b:95:0a:
75:b3:65:f5:62:05:c9:61:e8:66:d3:cb:39:e9:ab:46:7b:f6:
33:6b:0b:1d:1e:cf:ee:37:3c:ea:2c:5e:fd:99:14:85:66:cb:
a8:69:7a:8a:97:db:29:4c:ca:1f:ec:76:dd:57:ad:5f:56:28:
3f:70:90:5c:f5:cf:ab:82:3f:da:c7:a4:ca:0e:0c:da:24:61:
47:88:f4:65:a9:5d:6c:9c:73:cc:ed:15:ed:d3:48:79:e5:a8:
77:0c:43:4d:bd:36:8c:ac:1a:2e:06:62:16:02:77:ae:db:38:
69:4e:53:d8:1b:a7:ae:1b:63:c7:ba:86:92:79:11:57:5e:fd:
ed:a4:ac:c6:d6:91:2d:2f:13:38:1a:ae:08:a5:3e:b5:86:bf:
9b:e5:79:b4:92:20:56:18:25:29:81:30:94:fe:3b:60:63:3e:
a6:4a:95:99:6d:ff:16:bf:78:59:a5:dc:00:71:72:43:3f:36:
fd:69:a2:ae:d5:bc:e8:60:93:63:62:8d:d5:a3:72:bb:92:88:
81:b7:b3:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:05:58 2025 by rpki-client