Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
File: O4_iRlhDAxt3i7jYt701oJT8z0g.mft (raw, json)
Hash identifier: uKU1C7bcBzE2sWyyJzfhJ6YpvfU+F2dhDFIOaGY2/eg=
Subject key identifier: 7A:15:FD:7F:37:1D:52:41:83:60:63:50:13:6B:B8:52:0C:65:4D:7C
Authority key identifier: 3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
Certificate issuer: /CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Certificate serial: 0195DFD89791DB712D348F6AFAB796A3CBA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
Manifest number: 0F28
Signing time: Sat 29 Mar 2025 03:01:08 +0000
Manifest this update: Sat 29 Mar 2025 03:01:08 +0000
Manifest next update: Sun 30 Mar 2025 03:01:08 +0000
Files and hashes: 1: 1-Ls4q-ChZ0ZaOTjP1nQ6tqwVR7w.roa (hash: YXXZf8p+XXstJczN+ymTH8ANFDcZF/VCsvvC/wyu2tg=)
2: 3K66fkLdFIhZuPgVnT8dBkSPcIY.roa (hash: jrto9CYh3lf5yVyFB1TxobdXxUZh+GOGoL+a0rSxI8I=)
3: AF6uSBXXjV8m6D8T1L1tDnPI1pQ.roa (hash: 5ngifaMxS9mhHVtoSr7d4Aq0k4gtgdDqeUt6H7Q6K9U=)
4: GJq6jlu04Rm9wa7Cgp8cTcM0nxA.roa (hash: AENchPK3bfQJEdljclR0ie9L+vwumxV2eeigY07rGKw=)
5: O4_iRlhDAxt3i7jYt701oJT8z0g.crl (hash: FOfgcyqa2dKCKQnst542ktW/4y7CdREf0/d7ovt2lO8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:d8:97:91:db:71:2d:34:8f:6a:fa:b7:96:a3:cb:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b8fe2465843031b778bb8d8b7bd35a094fccf48
Validity
Not Before: Mar 29 03:01:08 2025 GMT
Not After : Mar 30 03:01:08 2025 GMT
Subject: CN=7a15fd7f371d524183606350136bb8520c654d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:27:18:ae:e1:c6:8b:7b:7c:db:d0:e7:96:03:
70:32:0c:14:5d:b4:09:1e:ca:c1:ed:c4:a0:03:c6:
e7:7d:31:91:2c:59:bf:5f:0b:01:c1:3d:bf:4b:17:
aa:20:ef:d8:9a:39:dc:67:1b:3d:f3:f2:c6:ad:f8:
4e:5e:22:06:d8:61:72:ed:4c:a5:dd:a3:3c:03:ff:
e2:21:bf:65:f7:6e:83:d1:af:38:78:12:19:9a:a6:
0a:2b:e3:26:fe:2c:97:9f:5d:3a:59:d7:be:f5:64:
32:01:49:42:c3:c7:86:b2:c3:2f:98:ea:6c:aa:9c:
8b:55:8c:ab:b7:5f:0c:ba:29:74:7e:10:d8:66:be:
b3:44:66:f8:8e:62:4a:88:bd:08:ec:5d:b0:d5:d1:
49:a3:e2:f6:3a:34:19:e0:22:49:c6:43:aa:61:48:
7b:ea:53:52:b5:54:ee:64:56:28:0d:a8:fa:10:5d:
b2:2f:48:39:3c:f5:cf:50:e6:89:3a:82:ef:e2:e5:
fa:ac:02:0f:bb:d2:cf:96:3e:4d:8b:52:02:62:19:
c3:2c:b4:83:0c:0a:1a:bc:af:af:3e:51:6d:f9:9d:
21:90:a4:29:20:bb:df:ec:93:7b:66:34:ad:53:24:
45:2a:8a:53:dc:ce:fc:98:59:bc:f7:e9:b2:5c:23:
f3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:15:FD:7F:37:1D:52:41:83:60:63:50:13:6B:B8:52:0C:65:4D:7C
X509v3 Authority Key Identifier:
keyid:3B:8F:E2:46:58:43:03:1B:77:8B:B8:D8:B7:BD:35:A0:94:FC:CF:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O4_iRlhDAxt3i7jYt701oJT8z0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/ef20cf-4c39-4707-857c-7c35006e07a1/1/O4_iRlhDAxt3i7jYt701oJT8z0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:1b:3d:14:8b:e2:60:bd:5b:c9:71:8e:62:48:59:bc:20:7d:
c3:98:61:47:3f:84:2f:f2:24:92:49:84:21:78:b8:28:9a:41:
93:10:4e:a4:20:6e:5c:b1:a0:e2:ef:a8:cd:bc:bb:6d:3b:f5:
d7:9b:92:5c:e2:7c:06:4d:05:ba:95:0d:a4:5a:e7:2d:1a:a2:
b0:d7:83:dd:a2:de:f8:05:f8:6b:0e:a4:7c:59:7a:22:5f:6b:
d9:cc:08:48:80:e5:08:e3:26:ff:12:8f:0f:46:70:d9:71:f1:
a6:32:12:30:a8:24:6e:f5:c3:65:f2:e9:c2:3a:9e:11:50:c5:
96:76:0e:22:47:52:84:df:16:6e:a1:17:a7:02:55:b6:e4:14:
e3:8e:0f:8a:04:42:0a:1e:b3:23:56:1b:17:7c:41:0a:95:c3:
e5:c8:71:55:83:66:97:4f:b1:e8:f2:04:88:c0:af:10:b2:27:
12:5f:51:7b:56:87:9b:8d:eb:1b:ec:64:30:ae:b4:49:2b:2a:
0e:bb:9f:38:a3:83:b9:db:8d:53:3e:e9:b0:38:48:f0:cf:45:
e9:e0:b8:b9:d1:9d:1f:41:58:86:30:d5:46:71:8d:a2:8d:82:
f3:e4:83:56:1c:3c:54:7c:e5:f5:72:25:90:bf:ed:7b:49:38:
36:ed:db:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 05:00:19 2025 by rpki-client