Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/028975-78bc-45c5-9915-28170cf939c6/1/hPOAUNM24lcAb2jCTNDWRND1oTE.mft
File: hPOAUNM24lcAb2jCTNDWRND1oTE.mft (raw, json)
Hash identifier: /1fDRdvMRsH5tUeL/54gfHzXT69XuB2IAr3DfnwL2Ms=
Subject key identifier: 06:9B:EF:6F:02:6D:CB:28:64:64:89:20:46:95:AF:C9:3F:D2:3F:1A
Authority key identifier: 84:F3:80:50:D3:36:E2:57:00:6F:68:C2:4C:D0:D6:44:D0:F5:A1:31
Certificate issuer: /CN=84f38050d336e257006f68c24cd0d644d0f5a131
Certificate serial: 01955F50351F32EDC65DD9E180C3C8FBB8C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hPOAUNM24lcAb2jCTNDWRND1oTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/028975-78bc-45c5-9915-28170cf939c6/1/hPOAUNM24lcAb2jCTNDWRND1oTE.mft
Manifest number: 0297
Signing time: Tue 04 Mar 2025 04:00:46 +0000
Manifest this update: Tue 04 Mar 2025 04:00:46 +0000
Manifest next update: Wed 05 Mar 2025 04:00:46 +0000
Files and hashes: 1: hPOAUNM24lcAb2jCTNDWRND1oTE.crl (hash: pHTIY4hu2hbXIhCiRaCoYwBXSzVebZ0VCfcg6HyBadk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:5f:50:35:1f:32:ed:c6:5d:d9:e1:80:c3:c8:fb:b8:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84f38050d336e257006f68c24cd0d644d0f5a131
Validity
Not Before: Mar 4 04:00:46 2025 GMT
Not After : Mar 5 04:00:46 2025 GMT
Subject: CN=069bef6f026dcb28646489204695afc93fd23f1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:4d:97:62:6e:ae:c2:db:a3:00:30:61:a9:13:
84:23:a1:68:67:5c:03:d1:f5:6b:cd:23:f0:cf:8b:
8f:1e:d6:61:24:e6:f5:5a:0e:ae:82:8c:36:d8:a7:
3b:e5:8a:fa:51:2a:c1:5e:80:37:b1:c4:e2:93:e2:
0e:9c:26:82:b9:6b:ae:89:fb:c5:04:08:e6:d9:ec:
83:89:4f:2f:f4:a4:79:e2:e8:1b:90:19:6c:18:4c:
94:97:9b:40:f2:f8:d9:c2:00:9b:bc:26:52:97:27:
f1:23:dd:c4:06:d2:8f:4f:19:5b:21:c0:29:bf:9d:
8c:f7:9f:0b:37:d7:94:63:79:b2:83:ee:85:00:ec:
4c:f1:ee:f1:bc:14:5d:b4:af:55:41:41:b6:e3:23:
1a:4f:c5:c4:8e:ec:14:b4:1f:70:0c:8f:36:70:a0:
86:11:11:89:58:f0:eb:07:23:8b:27:6a:32:7c:61:
e1:4a:0d:73:cd:fb:a2:77:de:5b:d0:4b:94:e5:69:
3e:9c:fa:46:8c:d2:cd:6a:b8:86:72:b4:3e:8b:13:
54:71:a3:9b:c1:95:2d:09:a7:76:22:e8:2c:74:4a:
2a:af:d3:da:97:15:c5:bb:fa:5b:13:02:51:83:29:
35:11:7c:fb:a8:b4:e6:93:3c:75:1e:10:25:5e:b4:
0b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:9B:EF:6F:02:6D:CB:28:64:64:89:20:46:95:AF:C9:3F:D2:3F:1A
X509v3 Authority Key Identifier:
keyid:84:F3:80:50:D3:36:E2:57:00:6F:68:C2:4C:D0:D6:44:D0:F5:A1:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hPOAUNM24lcAb2jCTNDWRND1oTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/028975-78bc-45c5-9915-28170cf939c6/1/hPOAUNM24lcAb2jCTNDWRND1oTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/028975-78bc-45c5-9915-28170cf939c6/1/hPOAUNM24lcAb2jCTNDWRND1oTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:3f:50:02:f7:3e:1c:09:f2:ad:8e:ea:26:dd:65:be:84:b8:
67:03:97:96:10:a2:54:26:16:bd:d0:f0:37:a7:f2:48:eb:d7:
c3:36:bc:35:64:e0:3f:25:5e:87:85:1b:36:f4:1a:67:ff:53:
df:55:ce:90:7a:bb:da:c3:15:72:f9:98:34:c2:cf:87:ba:3e:
0e:26:6e:f9:c6:b1:16:ad:22:3d:79:34:4b:66:bf:37:f8:4c:
aa:be:1f:af:9b:e3:b8:32:b7:36:2a:b6:50:df:ab:f6:b3:44:
e2:f6:66:94:d1:d8:5e:c4:af:07:07:cf:6e:57:5c:6d:53:ea:
bf:c9:e1:16:59:2e:d9:02:8b:84:ca:93:4a:28:43:e7:fe:7a:
e3:9a:55:ea:24:64:db:fd:d0:10:48:9f:a7:07:6c:54:35:db:
7b:49:77:62:02:4a:15:e6:ad:ea:a2:32:b7:c8:fb:18:ad:66:
3d:f3:c5:90:3f:92:77:d7:39:3f:5e:c6:60:00:09:c6:6c:80:
0f:47:31:69:94:b3:45:2a:ac:7c:8e:8a:a2:77:38:8b:b6:b9:
ca:08:a2:2f:15:48:f8:4f:77:12:0a:46:51:dc:f3:9a:61:45:
ff:ec:2a:80:f6:c1:34:24:de:d5:ce:f2:3a:a6:44:86:6d:64:
f4:80:ce:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 06:25:49 2025 by rpki-client