Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
File: 1GL5scD2-pylMXZOJtOu0hG_7YE.mft (raw, json)
Hash identifier: 5QH4OnDCrmuo/yXhrt916yN2cUFnF8IcUrx2OcHGoOw=
Subject key identifier: AB:E0:50:D5:0F:4F:9C:5B:7F:86:D5:DD:0C:87:7C:B0:16:6E:DF:6B
Authority key identifier: D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
Certificate issuer: /CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Certificate serial: 0195E07D7D5A16BF09565D88433FE05C484C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
Manifest number: 0AE0
Signing time: Sat 29 Mar 2025 06:01:15 +0000
Manifest this update: Sat 29 Mar 2025 06:01:15 +0000
Manifest next update: Sun 30 Mar 2025 06:01:15 +0000
Files and hashes: 1: 1GL5scD2-pylMXZOJtOu0hG_7YE.crl (hash: LynA+8NiynVKDl04mA3gGRskQc4WAfLozXJ6m2AUI50=)
2: CzS60ntrl-ifakYiPMHnNys_2hg.roa (hash: gJEVLSYuR5fsAEatKrGL8Os1DpygWBOtVxsvnHWW9x0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:7d:7d:5a:16:bf:09:56:5d:88:43:3f:e0:5c:48:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Validity
Not Before: Mar 29 06:01:15 2025 GMT
Not After : Mar 30 06:01:15 2025 GMT
Subject: CN=abe050d50f4f9c5b7f86d5dd0c877cb0166edf6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:ab:9d:86:43:c1:3d:ef:a9:9d:b4:61:44:d1:
e1:25:f1:0a:be:96:ac:93:81:db:a3:8b:8d:94:3a:
62:f7:03:e9:49:5e:55:22:e8:54:bb:6e:d0:8e:98:
de:1d:ce:9c:f4:55:71:b9:cd:68:f0:21:27:6c:7b:
41:e4:8d:80:61:96:69:41:7d:a1:7b:d5:a8:0c:4d:
1b:53:f9:1d:81:b6:55:2d:0c:43:b1:46:45:a3:8d:
01:f6:6d:52:a0:68:df:84:75:38:69:bf:a2:c5:6b:
c2:e5:64:e3:02:5b:9e:1c:d4:ab:d9:c2:4e:15:15:
53:38:9f:23:c6:a3:ff:dd:d8:2a:8a:f7:7f:76:e6:
11:9e:66:66:6a:46:9e:6f:c8:fb:e7:74:a2:f6:5b:
07:f2:e5:2e:bf:df:82:97:28:22:ee:21:aa:56:21:
e1:47:b3:ba:fa:87:dc:df:13:05:68:02:69:6c:e2:
7a:15:67:57:cb:7a:91:c8:ee:10:37:1f:9b:43:05:
bd:fa:2b:20:74:b5:f1:96:5b:57:8c:22:69:66:37:
e2:fa:8e:94:ff:7f:ee:9f:29:e5:dc:76:ae:e2:da:
c4:b9:8b:b6:65:3b:02:2e:e4:35:54:5a:f9:8d:d4:
ec:c7:71:ec:d0:e1:88:a1:11:e0:34:24:a6:3a:24:
27:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E0:50:D5:0F:4F:9C:5B:7F:86:D5:DD:0C:87:7C:B0:16:6E:DF:6B
X509v3 Authority Key Identifier:
keyid:D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:4c:b9:3f:21:0d:74:2a:99:c9:4a:12:ed:20:c2:f0:f8:b1:
84:1f:78:6a:b7:51:5e:7b:c4:f1:18:ff:36:88:f0:c2:07:80:
83:7f:b8:a0:e1:fc:16:6f:04:7e:98:dc:45:11:13:9b:fd:7d:
6c:87:e6:25:90:25:25:a3:74:cd:e4:89:7a:bf:47:fb:48:29:
ac:5b:07:66:e8:18:22:df:fb:b1:cb:4a:5a:9e:31:c7:b3:86:
af:79:d6:32:ea:c6:76:1c:e1:1d:fd:d2:c2:e5:e5:b4:dc:36:
9f:87:3c:6c:ae:f9:a5:da:84:1c:56:c1:3e:ba:dd:8f:7a:a8:
a3:93:53:4c:a0:8b:aa:83:54:f5:b4:78:45:3e:3c:4e:d6:1e:
dd:db:24:16:d4:b6:50:92:64:f0:70:8b:f3:21:bc:fc:b5:04:
17:94:8a:32:62:28:19:4a:53:ea:5a:88:bf:43:9d:25:ca:9b:
32:c7:ca:ea:79:08:59:da:37:b3:de:87:70:c1:6e:66:e9:0f:
dc:70:44:a8:1b:d7:5e:dd:b3:07:27:7f:b8:38:ef:3a:cf:d1:
59:eb:17:81:41:51:bb:38:87:8d:87:4d:16:33:c2:c5:10:17:
30:72:c0:66:fb:49:15:74:8e:c5:37:1d:8b:07:0d:95:c8:94:
38:2e:49:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:58:03 2025 by rpki-client