Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
File: oynU0nVy71pqbb7NeS7vmM6QcW0.mft (raw, json)
Hash identifier: SM40s6kRya+lneOiv+2PJwvDHwUxHTFZXZfMijK/uu4=
Subject key identifier: A9:78:BE:72:03:01:C2:B9:A7:13:FC:6D:70:3B:05:BF:13:F1:A6:13
Authority key identifier: A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
Certificate issuer: /CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Certificate serial: 0195E07D99388944BB05E2AACC76E46161F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
Manifest number: 14C3
Signing time: Sat 29 Mar 2025 06:01:22 +0000
Manifest this update: Sat 29 Mar 2025 06:01:22 +0000
Manifest next update: Sun 30 Mar 2025 06:01:22 +0000
Files and hashes: 1: blse6v5EH2fVrElwGZmlrK99XJk.roa (hash: otAVsYT9s6hCs6g9uAr3ovy061yRH8/KdKxwyyD5qvk=)
2: oynU0nVy71pqbb7NeS7vmM6QcW0.crl (hash: BOr3jQM3w1Z8ZSZFXxN/GC9xUbUl7Vu47a6hVnBo3J8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:7d:99:38:89:44:bb:05:e2:aa:cc:76:e4:61:61:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a329d4d27572ef5a6a6dbecd792eef98ce90716d
Validity
Not Before: Mar 29 06:01:22 2025 GMT
Not After : Mar 30 06:01:22 2025 GMT
Subject: CN=a978be720301c2b9a713fc6d703b05bf13f1a613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:69:91:c6:4b:83:ee:27:86:b2:f3:07:9b:58:
1b:0a:19:65:b4:49:01:cb:f8:5a:8c:1d:7a:ad:28:
33:5c:c2:9e:42:f5:b5:38:19:84:bc:0f:92:25:a0:
09:4a:21:44:24:16:a9:0d:b1:c9:4a:72:28:d3:cd:
49:0a:b9:2f:be:18:68:5a:e3:e4:10:e8:e1:50:8c:
6a:fa:9f:a2:f8:8c:13:9d:e4:bf:ad:32:32:9d:44:
96:2a:4e:b0:55:b7:3c:cc:4d:79:37:a2:04:7d:38:
ad:65:8a:a8:45:11:63:53:7f:bb:46:d2:0b:99:ef:
23:8b:80:fb:19:73:26:36:82:26:98:d4:e6:cb:cc:
fd:a1:b9:37:3f:c6:16:9f:4b:5a:26:23:2d:3d:06:
d6:d9:4a:1f:12:a5:94:99:9c:f9:98:9c:c0:d0:21:
ec:66:5c:29:a3:ab:6a:9a:8b:38:0c:77:b9:0d:05:
2c:ba:89:e8:e0:c5:b5:3f:e1:8a:c4:05:ed:fb:89:
4b:a9:c2:5e:b8:a9:07:bf:88:df:ca:29:66:99:00:
b6:ac:b1:f2:6c:3e:e8:95:9e:b6:11:03:5f:cd:86:
6c:5a:94:8e:51:58:b3:1b:2a:a8:5b:b9:df:66:9d:
78:15:9d:34:ec:33:db:69:51:e2:87:72:64:f2:de:
07:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:78:BE:72:03:01:C2:B9:A7:13:FC:6D:70:3B:05:BF:13:F1:A6:13
X509v3 Authority Key Identifier:
keyid:A3:29:D4:D2:75:72:EF:5A:6A:6D:BE:CD:79:2E:EF:98:CE:90:71:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oynU0nVy71pqbb7NeS7vmM6QcW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/0f3d8a-a430-4b27-8f95-ee178578dcb5/1/oynU0nVy71pqbb7NeS7vmM6QcW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:e7:94:af:fe:d7:d2:27:e3:71:95:03:b5:bb:2c:26:d1:be:
f4:de:7b:4e:e6:9e:fd:af:f6:e4:8e:79:02:48:09:c4:5f:8e:
ac:ef:21:81:4f:f7:ea:7a:4a:8e:26:60:99:0a:7d:ec:5f:2d:
56:21:9f:3a:92:a1:33:f3:b1:6e:c7:bd:5f:82:dd:31:f7:a9:
c9:5f:2f:a7:3e:d1:91:7a:19:70:97:52:e9:00:fa:24:24:3b:
76:78:d7:56:af:d1:de:c7:e8:a6:ce:51:19:83:8f:43:d0:98:
69:a5:29:40:ff:ae:2f:6d:c2:9d:42:f3:16:36:ee:82:e6:c5:
0f:30:58:d4:37:b0:ca:06:8b:82:b2:d3:08:94:59:65:ab:ca:
cc:d5:85:1e:d4:fa:5e:e4:0c:c2:63:3b:42:29:05:20:98:6e:
37:bd:74:bd:e8:6d:26:b2:ca:89:11:a1:e0:b4:0c:af:dd:02:
b8:92:95:15:1c:22:22:2f:4f:15:17:e6:94:ea:0c:92:03:5d:
0e:6e:67:36:be:d6:38:b4:50:bd:40:c2:17:5e:44:61:10:c6:
69:4c:62:e7:da:e6:df:fc:e3:e5:61:1d:eb:14:75:98:4e:6a:
bf:1c:11:4c:5d:89:1f:70:16:1c:37:cd:89:86:82:38:cb:ca:
52:b6:31:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:29:32 2025 by rpki-client