Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
File: 43HOIIaAX5EvhRK3nF5mqcn01NI.mft (raw, json)
Hash identifier: /mxKxcGUv/hsx6Y5SLXaK/Fwz6Yki/ZLrwCm7XQiDgQ=
Subject key identifier: 71:15:AF:BE:C2:57:0D:D4:BE:BD:3C:18:7E:DA:AC:C4:11:06:3C:5A
Authority key identifier: E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2
Certificate issuer: /CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2
Certificate serial: 0195E1901CA3624696158C69B69BAD01D3C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
Manifest number: 091B
Signing time: Sat 29 Mar 2025 11:01:12 +0000
Manifest this update: Sat 29 Mar 2025 11:01:12 +0000
Manifest next update: Sun 30 Mar 2025 11:01:12 +0000
Files and hashes: 1: 43HOIIaAX5EvhRK3nF5mqcn01NI.crl (hash: k3EcUdHvNYk6C++BA94/hAr/jxMVYFsdQq3n98OGkAE=)
2: oNzr7e9N0_nB7NG8uVVH1YFW8SA.roa (hash: E5UVvjB7YIozDhZ03PLtgPckm/pTCCT/ml1aJ8kENsM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:90:1c:a3:62:46:96:15:8c:69:b6:9b:ad:01:d3:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2
Validity
Not Before: Mar 29 11:01:12 2025 GMT
Not After : Mar 30 11:01:12 2025 GMT
Subject: CN=7115afbec2570dd4bebd3c187edaacc411063c5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8c:c3:3b:53:56:3b:68:35:a3:47:16:14:e6:
9f:17:be:f1:f6:4f:67:6a:49:fa:41:c2:3c:4d:68:
6b:c3:4f:d2:8a:40:ae:83:66:00:31:c7:f1:61:6a:
ac:8c:48:98:f3:f3:48:35:54:da:b8:a8:1a:a5:9c:
fe:9f:61:69:14:03:2d:65:1f:8b:54:a1:6a:45:09:
7e:05:73:a1:38:c3:37:cf:f0:8a:e8:7e:22:32:d3:
57:0e:27:23:11:56:79:e1:d0:e0:9a:db:2b:a7:d0:
a9:4f:84:b3:93:da:f2:54:63:72:98:0e:b0:8f:70:
62:48:86:82:57:70:13:b2:9b:26:05:a3:2f:38:65:
62:5d:ff:8e:45:aa:db:2b:90:08:83:35:90:01:fd:
48:3f:de:06:dd:ef:da:30:98:55:a1:c8:28:cc:ba:
5c:ed:8a:95:bc:6c:ba:d7:3d:5b:7b:cf:38:58:f1:
b5:dc:df:10:5b:5a:76:1c:a1:7b:af:bc:64:cc:b1:
67:08:1a:0f:77:dd:b2:c5:1a:7c:c0:b1:ad:0b:1c:
a9:34:39:5d:f5:a6:73:07:03:02:1a:bd:4d:74:c7:
ed:48:36:2e:84:b5:b7:86:16:d6:44:38:4c:31:7b:
43:fd:c3:0a:aa:59:93:54:c0:b6:3a:4a:4b:86:1f:
a5:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:15:AF:BE:C2:57:0D:D4:BE:BD:3C:18:7E:DA:AC:C4:11:06:3C:5A
X509v3 Authority Key Identifier:
keyid:E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:34:6b:f7:07:6a:48:00:ec:44:8e:ab:f5:90:a5:91:19:b1:
a0:d0:79:80:54:0f:f2:cb:9b:58:1f:e2:99:83:a1:bf:48:3c:
c0:fa:53:35:48:02:aa:2d:94:68:87:bd:29:3b:27:21:f1:c6:
54:f4:ab:8b:7b:30:13:99:e5:43:55:17:fd:67:0c:dc:04:ca:
10:66:8c:d1:f0:7a:20:a0:a5:08:29:82:50:6e:fc:ba:16:f0:
c9:90:ec:5d:86:77:93:e6:42:4e:03:28:34:f2:be:2e:3f:49:
99:c2:86:00:7a:f1:db:1b:b4:6d:a7:7c:43:40:eb:6a:b5:30:
fd:73:90:31:77:6d:02:ac:79:31:c1:42:a6:28:b1:0c:e2:08:
f6:8b:49:83:0e:01:61:5f:4f:05:fa:53:b8:ee:27:14:61:2c:
65:43:e3:95:2c:c2:6a:40:c6:10:c0:fd:5a:4d:ea:3d:7f:de:
8c:87:f4:8a:dd:38:1c:c0:30:97:54:83:2f:fc:42:a1:23:c1:
0b:7c:50:78:3e:7a:fa:13:f3:67:66:0b:d2:96:e3:fe:24:1f:
a6:ff:15:3f:1a:1b:17:bc:d1:3f:b7:ca:80:94:61:8c:b7:35:
7d:89:f4:7c:f6:d4:f0:8d:d3:60:70:b1:b1:3c:06:ba:c0:f4:
88:1d:19:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 03:45:45 2025 by rpki-client