Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft
File: YDgxphvIqPTLhYhwIvtvhjlzRdw.mft (raw, json)
Hash identifier: nlcO8EMwbSvz25G6hrv0umPv58AtkigaqMpvfCpW26o=
Subject key identifier: 2D:CD:0B:68:43:C5:74:40:04:2B:5C:57:21:89:E4:F4:3F:3E:B1:0A
Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Certificate serial: 0195E1903B67564F9C03D51881600D622E99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft
Manifest number: 0BD3
Signing time: Sat 29 Mar 2025 11:01:20 +0000
Manifest this update: Sat 29 Mar 2025 11:01:20 +0000
Manifest next update: Sun 30 Mar 2025 11:01:20 +0000
Files and hashes: 1: YDgxphvIqPTLhYhwIvtvhjlzRdw.crl (hash: qT/pdVe7oUnf+TAB8DbMizMTNaKkILy5dtHWKpDvDYk=)
2: _mYolmt2fF0wabxHp1kAcOpFjJQ.roa (hash: Ni2pHhwSkaVczL8tsRRH+ZM9PBph4eSrgcYZ18OoRUY=)
3: ucZk7RPUTaIeSxLkQGWFeSNWVec.roa (hash: 5rWJbfTjArOhmwmwJF8k3Fgre3TIPFtEAx1ngBb1v5c=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:90:3b:67:56:4f:9c:03:d5:18:81:60:0d:62:2e:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Validity
Not Before: Mar 29 11:01:20 2025 GMT
Not After : Mar 30 11:01:20 2025 GMT
Subject: CN=2dcd0b6843c57440042b5c572189e4f43f3eb10a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e2:29:fe:e2:55:ef:1b:33:78:98:06:34:fb:
f5:36:a2:05:d1:8d:4c:11:94:be:c6:54:5e:39:69:
b1:d5:45:8e:af:39:60:1e:7a:a1:d4:cd:44:17:78:
0b:81:76:26:09:f5:a1:01:c4:22:4a:26:a5:d4:ef:
4a:c0:1a:3e:01:c3:68:47:3e:c9:39:47:12:1c:46:
a8:d6:34:f0:26:c5:49:3c:16:55:cc:9e:06:ed:2b:
b5:19:c0:aa:db:c7:a5:7f:11:d1:65:d6:fb:9f:ce:
5d:d2:74:fb:6c:fd:90:0d:d7:a4:6c:7e:ba:fb:9e:
86:9c:a4:f4:28:25:3e:28:76:9e:20:0c:21:03:62:
b1:b7:2e:dd:65:cd:7f:74:05:51:45:62:59:e2:83:
fa:84:e7:c7:12:c3:1f:37:3f:ee:67:9f:be:73:99:
25:c9:a2:55:2d:d6:e5:cc:4b:21:87:e4:86:49:b7:
e9:27:0e:68:fa:f7:35:0d:0b:a5:d8:9b:4e:2f:23:
d7:ae:75:8d:40:a9:88:19:54:c8:ce:ed:0f:b2:c1:
27:b1:bf:b0:c6:4f:11:21:36:20:ef:ff:6a:46:a5:
dd:9d:fd:ba:30:52:2b:06:38:be:70:be:52:38:e5:
9c:20:64:aa:cc:df:f2:23:88:f5:e0:9e:e0:84:20:
91:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:CD:0B:68:43:C5:74:40:04:2B:5C:57:21:89:E4:F4:3F:3E:B1:0A
X509v3 Authority Key Identifier:
keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:8f:8e:b7:af:c2:0e:da:28:9e:94:5d:3c:8c:9f:32:c8:95:
3f:f4:87:aa:cd:13:0b:26:49:24:ae:77:24:8d:2f:08:d9:04:
c1:b1:86:09:3d:d4:ee:17:9d:8d:3a:ae:78:76:1e:38:97:6d:
42:1f:a3:26:5b:db:a2:59:68:ad:36:05:60:2f:9f:bd:17:c2:
3d:8d:73:83:b8:d4:cc:48:2f:66:1c:8b:a6:9f:62:c5:e0:f7:
18:f8:2e:fc:96:11:d8:df:68:d7:06:45:16:fc:39:ae:0b:90:
02:bd:4d:e4:e6:82:fb:87:6d:c1:b3:59:7b:77:0b:50:a7:cd:
6a:74:3f:b8:68:78:4b:16:c1:05:31:6b:ae:8a:2b:3d:56:ca:
f8:0d:82:32:87:46:68:f2:7d:73:8b:3d:62:76:1c:24:f9:be:
bc:80:fb:a7:36:36:95:f9:90:45:96:5a:78:46:a9:a6:6f:c5:
07:ea:d3:1b:14:74:9f:ce:53:f6:b2:b2:ef:fc:16:3d:59:0a:
6d:28:17:ed:a2:4a:76:26:ef:f5:07:3f:56:d7:8b:a8:f0:59:
d0:a3:52:88:3d:f6:a0:b6:80:02:2c:b5:11:b6:51:e4:d7:61:
d4:9a:92:5e:f1:e6:8f:6e:4e:fa:f7:4d:cc:8a:b6:15:01:97:
f3:b4:ff:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:10:41 2025 by rpki-client