Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
File: mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft (raw, json)
Hash identifier: kp4hf6PtqZnynLm7AuUDzJb5kMkYR9gZQHVRVDTm2ns=
Subject key identifier: FF:2E:7A:FD:F4:51:D4:2E:86:AC:4A:3B:20:B7:E9:D4:64:C5:5D:26
Authority key identifier: 99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27
Certificate issuer: /CN=996f903f91a85a60c546ee1141348cc3c8036927
Certificate serial: 0195E07D2850E5832928BF66A54138FE0623
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
Manifest number: 1154
Signing time: Sat 29 Mar 2025 06:00:53 +0000
Manifest this update: Sat 29 Mar 2025 06:00:53 +0000
Manifest next update: Sun 30 Mar 2025 06:00:53 +0000
Files and hashes: 1: mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl (hash: qmsoEAeMVlUks6tAjDXgWlSIfoImCEd9PrcWPhuqgU4=)
2: oGPLcgnT5_jMQFeXtQh3bXaXriM.roa (hash: QUvCaj08Q2TK+WnTDqsu5pyPq9XzMOcObz9WAotvcYU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:7d:28:50:e5:83:29:28:bf:66:a5:41:38:fe:06:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=996f903f91a85a60c546ee1141348cc3c8036927
Validity
Not Before: Mar 29 06:00:53 2025 GMT
Not After : Mar 30 06:00:53 2025 GMT
Subject: CN=ff2e7afdf451d42e86ac4a3b20b7e9d464c55d26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c3:b7:22:a5:d1:b5:f8:6b:5b:e1:45:7c:aa:
e1:a1:e6:d6:1e:2d:ed:9d:99:88:d0:f0:78:00:5e:
8a:ac:42:f5:e7:62:24:08:8d:dd:38:69:9a:bb:a0:
ae:36:1c:8a:aa:85:ad:f5:99:88:59:8e:5c:b6:0a:
9e:d0:6f:d3:cf:41:c2:ef:a2:a7:3b:40:95:45:ab:
3e:41:e8:d5:de:aa:77:58:f8:3a:e0:98:98:eb:2e:
a9:68:15:88:27:5e:89:09:81:d1:04:85:f9:29:1e:
f4:85:83:07:98:92:e0:aa:aa:13:44:65:64:6b:7a:
40:c3:92:a9:04:01:2f:6d:df:40:0e:4c:da:e5:2c:
87:3a:e8:e7:aa:c9:68:38:55:bf:80:bd:2f:66:e9:
15:96:57:3d:10:be:7a:08:a6:18:9e:83:22:7f:db:
d2:57:4c:66:24:2f:6f:6f:07:a8:76:d8:09:b0:0f:
42:51:ba:9b:75:40:09:70:e6:d9:89:0b:5d:23:b1:
dd:a2:0a:44:46:1a:de:98:9a:20:eb:ed:85:b3:a6:
be:27:4b:1c:d6:81:df:c2:1a:15:74:e9:20:ed:fc:
4b:e5:6c:d8:13:eb:bb:1f:13:31:c0:61:be:26:f4:
24:10:88:2d:c0:03:b6:54:19:62:4c:3c:3d:73:87:
b2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:2E:7A:FD:F4:51:D4:2E:86:AC:4A:3B:20:B7:E9:D4:64:C5:5D:26
X509v3 Authority Key Identifier:
keyid:99:6F:90:3F:91:A8:5A:60:C5:46:EE:11:41:34:8C:C3:C8:03:69:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mW-QP5GoWmDFRu4RQTSMw8gDaSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/a20101-1c9f-44c5-8077-5190f7869a7f/1/mW-QP5GoWmDFRu4RQTSMw8gDaSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:fa:4f:d4:d7:5c:33:7c:f5:11:d6:81:52:c5:86:42:23:b5:
9d:e6:44:09:9b:a1:14:29:a1:83:5e:dd:13:87:fe:14:c2:6f:
9d:46:36:82:75:97:a2:6b:56:a3:4d:da:23:12:2d:8d:5d:24:
c5:0f:f6:99:d0:02:b5:89:c2:7c:63:f2:0e:6a:e9:b0:df:12:
1a:5d:4f:b5:9e:29:bf:d0:53:2d:17:76:f3:cd:c2:54:a6:89:
f2:6e:87:13:43:6a:88:ac:7a:75:ef:ce:18:1c:9b:9a:75:12:
59:9e:89:b4:e6:ca:9a:95:4b:89:de:48:8d:9a:ba:58:bb:5b:
06:fb:7f:90:5e:8a:a6:e8:10:68:e6:b6:10:f2:01:49:dd:04:
ab:6f:3f:53:57:7f:ca:41:bf:55:d7:96:3a:aa:19:0d:c4:7e:
59:ab:92:78:e3:db:b9:70:a2:25:c1:be:64:ce:af:52:6d:ee:
c3:15:79:fd:17:66:9c:f3:44:a0:1f:e4:fc:d6:7e:b5:e8:da:
9a:cf:ef:1d:3f:4f:ff:16:d3:b9:d1:62:e1:e4:19:f0:04:20:
df:1e:1d:21:61:40:04:cf:2d:e3:10:65:56:10:1b:db:98:18:
f1:13:e5:db:e9:b4:bd:af:96:6b:cf:6b:3c:6b:af:89:3a:c6:
82:c8:0a:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:31:58 2025 by rpki-client