Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
File: XPMa_DbLaVUAf-l-1KXjGF0icbo.mft (raw, json)
Hash identifier: t5Vu4HMGLQCLd9gzbMhkQe12QNrNG8koYOBYS6QN40I=
Subject key identifier: 14:E3:2D:EA:B8:0C:78:62:D1:E3:F1:8D:AB:78:72:81:FB:E7:6E:7F
Authority key identifier: 5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
Certificate issuer: /CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Certificate serial: 0195E07D303342437D1286138627366854AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
Manifest number: 14D1
Signing time: Sat 29 Mar 2025 06:00:55 +0000
Manifest this update: Sat 29 Mar 2025 06:00:55 +0000
Manifest next update: Sun 30 Mar 2025 06:00:55 +0000
Files and hashes: 1: 0LO0qT2-0L6mWDwJ3dVrGvaEEOA.roa (hash: m3gjbEV2ZPpf1SrIWWEpb/lM9m2SeM9EF+s0bK96n04=)
2: CXLJsfdv2mQYEw_nRCBRyHgGrls.roa (hash: gIlLTUkZL/5+bXwsRESHghLIgWvhwbD5U5vB0n4lI0k=)
3: GZyq4JhiMN6IbDxHDi387ilVO3Q.roa (hash: RAmDxoFTdOQGRBWibMySEyO1+N/egEhlrBt73Hj0G1U=)
4: XPMa_DbLaVUAf-l-1KXjGF0icbo.crl (hash: R7IMGHkxt6Fuoix9OwpWR5vzwx+kz5yo7LFXetyNA3Q=)
5: XsnL58BowN54P94Hq8ZFELardLk.roa (hash: HNbFuOKPa1T82T8LpW7Qm3FZ0tR+dmMImgYgvtx3m4g=)
6: Zz42OKsTm8e7N4-UL7iAE7WQUo8.roa (hash: 5tp1DE1mgaUL43CN7zGdBuvgS2VFLrFuAK++O/dGYog=)
7: eGwOE8lbraIFP9l-UBBCUyjN8_w.roa (hash: E3bGB9caMn035nPuIHCWLooaKqDnHxrQ+ZG/yfDBfXc=)
8: obqfL4R2IKMApxxeeUPFE0sW9OQ.roa (hash: 7Ovq+/kB1PpmG+7SGcAWS7Jl70fuixev1vRb1jw0DXk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:7d:30:33:42:43:7d:12:86:13:86:27:36:68:54:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf31afc36cb6955007fe97ed4a5e3185d2271ba
Validity
Not Before: Mar 29 06:00:55 2025 GMT
Not After : Mar 30 06:00:55 2025 GMT
Subject: CN=14e32deab80c7862d1e3f18dab787281fbe76e7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cb:6c:63:f7:e9:7d:31:24:1a:c0:42:62:a3:
be:49:e2:06:94:6c:57:dc:70:7d:25:e2:d6:61:0e:
7b:af:f5:cd:a0:14:3a:e8:39:35:a6:96:2c:6f:d6:
be:73:de:26:0f:19:74:af:f5:c5:12:fc:78:7a:23:
1e:c7:1b:0c:3e:e0:ba:ce:5c:3d:4e:d3:22:f9:cc:
5c:f9:bd:e6:5b:fb:61:82:0b:8f:81:94:6b:26:75:
03:5e:75:10:22:7c:e3:5e:e6:7f:92:61:27:aa:15:
18:85:84:8d:d0:b2:93:78:bf:3b:3b:09:e3:fd:a1:
98:09:95:11:f1:28:02:6b:fb:97:6d:16:97:b7:9b:
b6:0b:4f:43:27:0d:5d:07:79:6f:0f:93:a1:b7:4d:
7b:12:51:b5:b8:04:12:05:ac:55:44:6a:cc:a4:e6:
b9:77:78:e5:b6:95:21:b1:1b:b3:ae:cf:58:1f:b4:
0c:7f:00:c4:ac:f6:c1:8a:0a:05:14:6a:9d:12:8e:
b1:1c:92:ce:8a:05:40:20:d3:fc:ca:e9:5e:77:69:
f3:c8:c7:fc:13:0f:80:19:55:26:db:3b:2a:f5:26:
91:02:39:e9:a0:1c:13:bb:7a:d0:18:83:69:77:75:
90:ef:f1:b1:7d:b8:bc:94:0b:96:f4:bf:04:be:d7:
f2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E3:2D:EA:B8:0C:78:62:D1:E3:F1:8D:AB:78:72:81:FB:E7:6E:7F
X509v3 Authority Key Identifier:
keyid:5C:F3:1A:FC:36:CB:69:55:00:7F:E9:7E:D4:A5:E3:18:5D:22:71:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPMa_DbLaVUAf-l-1KXjGF0icbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/458ec3-0451-4e41-9a34-736d12888ca8/1/XPMa_DbLaVUAf-l-1KXjGF0icbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:bd:ee:31:1d:a8:9d:24:71:ab:69:71:7b:f3:7d:7a:78:ff:
2f:26:d6:7b:d8:ed:8b:f6:64:5f:cf:66:f8:10:27:fb:8c:50:
35:bc:9c:40:07:5c:0d:51:ce:c8:fa:93:d2:b1:b1:07:c5:d4:
a3:36:69:41:fc:b8:17:50:44:e6:d1:e3:f0:63:3d:01:3d:6c:
19:32:26:32:ac:08:27:1f:71:57:51:9f:e2:ee:d6:60:73:48:
c5:46:19:bf:52:c6:0a:fe:3e:b0:1f:f4:d8:3c:49:cb:01:a3:
33:e8:e6:06:5b:12:c1:9a:f5:15:37:1d:7b:17:9a:c3:bc:d8:
e6:7e:f2:3f:28:16:94:e6:57:00:9f:63:27:da:92:ca:90:d9:
c6:b4:7d:05:c4:ce:ad:99:f4:86:8d:23:ef:79:e2:55:ea:16:
02:1a:0e:06:72:40:fd:17:46:62:ca:93:4c:04:46:cb:6e:43:
2d:09:9b:a9:b4:0e:f1:50:2c:f5:d5:86:55:3b:d3:29:3a:95:
03:bd:29:a7:15:03:6c:f4:7e:bc:5a:0f:dc:34:0f:67:37:73:
3d:39:8a:bd:2c:b5:1a:a0:c6:e1:4d:d6:96:5b:c5:59:0d:c8:
7d:f1:38:21:22:38:5a:d1:48:d7:f9:6a:54:a3:22:b7:c9:62:
30:81:a2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 07:42:07 2025 by rpki-client