Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
File: I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft (raw, json)
Hash identifier: p62szeB2FenIQJlgsqGPNtq9UOobp7p9AqLQT6gflJA=
Subject key identifier: B7:FA:0C:40:9C:3C:66:77:06:43:18:0C:B3:93:AC:4A:C0:A3:88:DD
Authority key identifier: 23:51:63:D3:9D:B8:88:16:CD:DC:59:7A:5D:B5:EA:E7:07:D3:DE:39
Certificate issuer: /CN=235163d39db88816cddc597a5db5eae707d3de39
Certificate serial: 0195E1908036F9A724B8ED83B7F413A3D2D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
Manifest number: 14C8
Signing time: Sat 29 Mar 2025 11:01:38 +0000
Manifest this update: Sat 29 Mar 2025 11:01:38 +0000
Manifest next update: Sun 30 Mar 2025 11:01:38 +0000
Files and hashes: 1: 0w9FBc0vTYSPsjAWKJJCnffXw-k.roa (hash: jLDk0IcPs8Pb9A807RQu6H+l6FnV9GFyw8DjOzzYbaA=)
2: I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl (hash: Ka8RI17BVw0VDpTHf5ezv3NrApv/ndlpWJjl3i5fVhQ=)
3: gKeAQqo6LHoqnf4Vl-8HYj5MieI.roa (hash: SOGNQLrBgWGkjZGYc/wKjLGsnvGnOrdebSHsTRsYQCw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:90:80:36:f9:a7:24:b8:ed:83:b7:f4:13:a3:d2:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=235163d39db88816cddc597a5db5eae707d3de39
Validity
Not Before: Mar 29 11:01:38 2025 GMT
Not After : Mar 30 11:01:38 2025 GMT
Subject: CN=b7fa0c409c3c66770643180cb393ac4ac0a388dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d2:be:9f:7d:34:f3:7e:65:50:36:4e:86:fc:
71:4a:50:7f:81:20:71:db:d3:77:f3:05:3a:7c:30:
5a:c3:7e:23:a8:28:73:1e:75:be:24:c3:50:64:6d:
00:a9:7b:9a:56:fd:f0:d5:21:b1:9f:d8:58:01:7d:
3e:2c:19:f0:73:86:bf:e4:60:3b:e6:6a:5e:01:5e:
56:fa:ec:19:17:c0:c8:4b:2d:a1:35:b6:3d:54:98:
60:c0:40:df:0b:02:8b:c4:60:fe:a3:8a:9b:95:cd:
8a:2f:7f:1c:51:16:9f:10:0e:98:04:7b:c8:20:f1:
a6:ed:04:ea:ef:98:5b:94:6c:3a:1f:02:d1:a1:07:
09:2a:d0:ea:7c:bd:06:45:49:11:e8:d1:6a:ab:60:
6c:75:2a:06:66:bc:45:00:9c:3e:6b:b8:74:f0:21:
bb:c5:c3:13:46:44:db:40:bc:d8:1a:39:9e:e8:89:
90:be:ed:3f:b6:39:aa:7f:8d:30:cd:5c:45:16:a8:
1a:fc:f7:e9:a2:b8:bf:52:51:5f:6a:09:59:d1:5b:
34:c1:71:8a:de:b8:ba:6d:a7:e0:02:69:c4:8f:22:
73:86:e7:f9:8b:0a:95:5d:49:92:59:08:c2:cf:25:
44:aa:8a:bf:fd:dd:66:86:d5:53:b2:70:74:94:ac:
15:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:FA:0C:40:9C:3C:66:77:06:43:18:0C:B3:93:AC:4A:C0:A3:88:DD
X509v3 Authority Key Identifier:
keyid:23:51:63:D3:9D:B8:88:16:CD:DC:59:7A:5D:B5:EA:E7:07:D3:DE:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I1Fj0524iBbN3Fl6XbXq5wfT3jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/d7558e-9a6c-4711-8ef8-9150296daa0a/1/I1Fj0524iBbN3Fl6XbXq5wfT3jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:f6:e8:4e:4a:32:04:e2:be:70:11:f0:e2:70:4c:ad:68:df:
f1:11:f4:ed:d9:cf:e4:a0:5a:c9:b5:0e:57:01:81:2f:61:f7:
7e:1d:b2:0e:07:09:e8:2d:da:82:93:86:b4:63:6a:9b:d9:3f:
fa:d4:67:d2:1b:fa:ee:58:8c:52:52:42:5b:89:59:4f:e3:87:
b3:e7:88:38:b2:ad:b2:39:7c:a2:01:14:cb:91:93:1c:ec:13:
ba:ae:91:f2:ba:91:e1:ae:dd:ec:7d:7b:a9:55:e8:31:88:69:
d4:b7:97:e0:ba:2a:2f:66:5e:11:0c:00:99:d4:b5:be:8f:80:
29:3e:0e:ca:09:ef:aa:f3:cc:ac:61:e2:7d:f0:e1:5f:0f:7b:
87:a3:f7:85:09:ba:b5:11:30:b3:4f:c4:60:1c:5a:c3:16:93:
e8:e6:8f:03:e6:bf:1b:7a:ac:fc:f3:3e:88:bf:54:c0:90:2e:
98:54:bc:86:e9:0f:96:18:e2:46:46:6f:5c:e0:57:45:5d:eb:
93:5d:48:6c:71:70:48:7c:26:42:f4:b7:ed:13:0d:3f:7b:af:
94:b8:a3:e3:53:68:9c:b8:c9:86:9d:64:04:0f:0b:c2:d6:60:
f9:dd:86:5f:b4:2c:60:07:e9:82:c0:15:e7:08:e3:f3:6a:4c:
c8:ce:09:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:02:51 2025 by rpki-client