Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
File: owjczEdYTD-oJh23kmouQBcrP3k.mft (raw, json)
Hash identifier: 5xzk8xyjVxZqLjtFy+4CIY2IPpe3dBcF2k4rWwC8MFs=
Subject key identifier: 19:82:E9:4F:51:DE:AA:F2:FA:2C:3D:61:8D:51:88:C5:FC:C9:FC:D4
Authority key identifier: A3:08:DC:CC:47:58:4C:3F:A8:26:1D:B7:92:6A:2E:40:17:2B:3F:79
Certificate issuer: /CN=a308dccc47584c3fa8261db7926a2e40172b3f79
Certificate serial: 0195E0B419FF0E4329C3D7ACE43D89A6CFB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
Manifest number: 0193
Signing time: Sat 29 Mar 2025 07:00:54 +0000
Manifest this update: Sat 29 Mar 2025 07:00:54 +0000
Manifest next update: Sun 30 Mar 2025 07:00:54 +0000
Files and hashes: 1: owjczEdYTD-oJh23kmouQBcrP3k.crl (hash: g9m3v8CPl8HmVmx0JgQ6q5bBmnCq1B9fNGxB439kmjM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:b4:19:ff:0e:43:29:c3:d7:ac:e4:3d:89:a6:cf:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a308dccc47584c3fa8261db7926a2e40172b3f79
Validity
Not Before: Mar 29 07:00:54 2025 GMT
Not After : Mar 30 07:00:54 2025 GMT
Subject: CN=1982e94f51deaaf2fa2c3d618d5188c5fcc9fcd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:05:de:d2:7f:04:11:5b:1d:7f:42:0e:6f:b2:
7e:c0:36:eb:fe:fc:a4:1d:65:e2:1c:66:48:65:67:
32:47:49:d4:7e:c2:5a:6a:a0:0a:c6:27:e5:fa:7e:
06:78:90:d5:8b:55:d6:62:d7:5b:75:d0:6a:cb:49:
63:4a:14:11:c7:e2:ad:e3:c5:16:04:31:5d:7d:ba:
d6:33:34:4f:08:cf:36:72:17:fc:b2:a0:29:6c:c3:
f1:db:33:95:0e:7b:d0:34:0b:8c:6f:05:46:b2:39:
8f:fd:ce:25:76:30:6a:d7:7c:7e:eb:74:29:f7:fd:
20:b9:d8:6f:90:79:b5:57:b9:aa:17:6a:61:64:29:
e4:29:ad:3a:62:5a:79:0c:49:6d:b4:a3:3b:84:0b:
29:1d:f3:24:2b:e0:62:f0:a0:90:d1:c8:2e:38:df:
84:fc:d8:40:34:1a:4c:c7:0a:1b:77:f0:14:78:5d:
46:79:49:be:ac:ca:91:c1:37:b8:c6:9f:8e:b5:f2:
cf:9b:b5:d1:5e:fe:d2:88:0f:27:eb:68:b8:65:c0:
e5:ae:e6:92:e9:d0:ac:f8:45:26:30:a7:d1:18:05:
13:e0:f6:6d:4f:c4:88:bc:5a:bb:b5:a0:4f:75:51:
49:96:e6:1f:34:71:fc:7e:f4:7b:0c:ab:f4:0c:25:
09:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:82:E9:4F:51:DE:AA:F2:FA:2C:3D:61:8D:51:88:C5:FC:C9:FC:D4
X509v3 Authority Key Identifier:
keyid:A3:08:DC:CC:47:58:4C:3F:A8:26:1D:B7:92:6A:2E:40:17:2B:3F:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owjczEdYTD-oJh23kmouQBcrP3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/a20258-6dff-4295-9dc1-0afeb14524be/1/owjczEdYTD-oJh23kmouQBcrP3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:50:1e:f6:5a:d8:50:06:92:f6:fd:9c:4a:39:2f:96:c1:51:
d5:f6:4f:d2:8e:14:b8:9b:49:b5:fe:93:0e:6e:07:60:44:8b:
01:f9:30:69:ee:e5:7c:ac:3e:91:c9:65:3c:cb:bf:06:98:a3:
8f:0e:fe:61:7b:5b:3e:cf:f9:08:72:59:0d:b5:46:35:4f:56:
b2:18:ec:09:b4:6d:42:3a:8e:98:61:dd:c8:69:f4:98:d0:fb:
da:11:66:8c:e8:3a:09:68:93:5a:ba:a0:f5:d6:97:76:6d:74:
52:76:98:a3:93:51:94:a9:51:84:5a:c2:96:75:1d:dd:24:2c:
20:86:02:c4:b7:a9:8b:ee:c7:7d:4c:15:1d:79:f4:39:3b:13:
af:83:36:e5:65:1d:bc:0b:d2:3d:ef:db:1b:98:73:5e:cf:98:
0e:cc:47:bc:77:00:45:eb:1c:4d:1e:e4:f4:6c:ec:61:f5:68:
e3:3c:0a:6d:a8:d3:84:34:4c:4a:16:bf:eb:ec:6d:ba:18:74:
87:7c:d3:59:e1:e8:84:15:c5:e2:2d:0f:bd:9e:ef:2b:7c:e2:
7a:48:7a:8f:49:3e:42:bd:5f:e5:9e:11:66:52:5a:9e:bc:f6:
03:d9:d0:c2:f6:1b:ec:ca:9e:f4:55:b5:93:11:55:46:ec:80:
b0:f9:41:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:14:35 2025 by rpki-client