Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
File: Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft (raw, json)
Hash identifier: UhIROX7dAWg3NUm9VwAYFB+NdPr2FISAGIK+KKcrW/c=
Subject key identifier: B3:77:93:05:C5:7E:71:CC:8D:AC:64:57:7D:E8:5D:4A:5F:9E:34:81
Authority key identifier: 02:2D:58:0F:4A:06:93:58:F8:FA:57:EF:06:5E:18:F5:FE:93:69:80
Certificate issuer: /CN=022d580f4a069358f8fa57ef065e18f5fe936980
Certificate serial: 019515B66A5188B21EDD3F1DBD9AD81734E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
Manifest number: 0882
Signing time: Mon 17 Feb 2025 21:00:31 +0000
Manifest this update: Mon 17 Feb 2025 21:00:31 +0000
Manifest next update: Tue 18 Feb 2025 21:00:31 +0000
Files and hashes: 1: 7vPaeyI0ln68dhOnAOFd-xv37nM.roa (hash: ZgJ32R2xiY7rG7KLNZLVMbbgQ70wWnVYAoeDmfccZx4=)
2: Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.crl (hash: O34cVi6yreZuQdwhM0xgAfcpRLlwUth/2kU+zwpb97c=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:15:b6:6a:51:88:b2:1e:dd:3f:1d:bd:9a:d8:17:34:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=022d580f4a069358f8fa57ef065e18f5fe936980
Validity
Not Before: Feb 17 21:00:31 2025 GMT
Not After : Feb 18 21:00:31 2025 GMT
Subject: CN=b3779305c57e71cc8dac64577de85d4a5f9e3481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:30:de:9d:a7:42:1b:80:85:c7:09:4d:6b:e1:
7e:17:28:47:f0:95:fc:9c:9e:99:f7:7a:37:fe:91:
f2:3b:fd:d2:a2:c5:db:d1:58:b4:c2:62:68:1f:f6:
af:2c:3b:f9:b4:78:b0:9a:2b:9d:be:e2:53:08:6b:
d7:dd:f4:dc:e2:63:85:a3:69:95:c0:cb:19:8d:4c:
8a:04:da:e4:1f:a2:5b:65:7f:72:f4:a4:0c:7a:d5:
eb:2f:d9:a4:35:0f:b6:8a:0a:14:bf:25:06:62:ba:
2c:1f:ef:b9:b3:87:e7:43:3e:60:b5:d7:32:c2:44:
02:39:6b:06:63:49:74:2a:ca:e1:38:cc:db:7c:ef:
21:1e:0f:f8:3e:b9:2b:31:46:91:b1:83:0e:2c:0b:
86:88:92:f9:58:53:74:c2:c0:22:5f:08:34:78:50:
99:64:2a:17:78:97:5b:e2:b2:71:86:b0:bc:02:3d:
ad:34:b0:ec:a1:29:28:39:b1:95:f9:d3:2b:82:1e:
86:93:c2:eb:24:00:85:9c:91:3f:04:c5:31:c4:b0:
56:9a:87:77:f0:36:9e:da:e1:bf:c6:b4:df:67:64:
8f:a5:44:6d:bf:9d:7b:8e:96:ec:0d:fa:79:a5:85:
6a:1c:88:3b:bd:a2:03:40:51:26:1d:c3:d4:8f:9f:
a5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:77:93:05:C5:7E:71:CC:8D:AC:64:57:7D:E8:5D:4A:5F:9E:34:81
X509v3 Authority Key Identifier:
keyid:02:2D:58:0F:4A:06:93:58:F8:FA:57:EF:06:5E:18:F5:FE:93:69:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/715b05-39d8-4261-9bbb-c4856d48846b/1/Ai1YD0oGk1j4-lfvBl4Y9f6TaYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:13:b5:0f:61:92:6d:ad:62:c4:4a:8f:bc:f3:c1:af:5d:74:
5c:3d:8c:4a:0e:8c:4f:75:f8:6e:cc:f4:00:95:63:88:19:42:
2d:85:11:8e:df:f6:6e:53:85:1c:1f:68:ac:43:a0:ba:0d:85:
4c:ff:b3:c0:a1:e1:90:97:b7:7c:70:79:4d:04:d1:b6:f8:5a:
75:2d:2e:ec:76:45:9e:94:7e:c1:96:d8:fe:c0:33:e2:07:88:
74:1a:28:ee:ba:c2:18:17:0a:f9:0f:b8:9a:4c:41:6b:7c:fb:
a7:96:f7:f3:1f:9e:57:fb:84:dc:d0:c6:4f:bc:72:78:55:68:
7b:c5:e2:29:77:39:81:b7:a6:88:d3:d4:54:24:ec:52:7f:e0:
48:7d:46:7b:ea:30:2d:cc:d6:57:64:f3:63:11:21:c1:48:0c:
fb:8a:24:04:65:62:44:2f:0f:ab:96:2f:f1:dd:78:97:f3:e3:
65:c5:ce:17:8c:12:fd:7c:d3:02:f3:9c:fe:29:c7:4d:af:d5:
ba:7f:ab:3b:f1:14:02:32:58:bb:00:d0:b0:32:dd:52:52:a3:
d3:04:1c:95:57:ba:33:ab:f6:2e:6f:af:59:65:a8:5c:82:20:
39:aa:a8:6b:d3:61:fa:36:c6:30:7e:45:c6:02:a3:69:0a:56:
ca:c9:c3:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:08:31 2025 by rpki-client