Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
File: U8DiB45PPrpfh5UD_dgJw4O7dig.mft (raw, json)
Hash identifier: QIs0RVZ2IRaXtyZHoOcW9NGV3fZ6MSZmi7WaMbbWB5w=
Subject key identifier: 14:76:07:D5:3C:03:A7:F8:6D:92:D0:E2:3E:04:FA:45:EA:A3:58:44
Authority key identifier: 53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
Certificate issuer: /CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Certificate serial: 0195DFD8A298F1FA90F4D82A3E1126EC5018
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
Manifest number: 0EBE
Signing time: Sat 29 Mar 2025 03:01:11 +0000
Manifest this update: Sat 29 Mar 2025 03:01:11 +0000
Manifest next update: Sun 30 Mar 2025 03:01:11 +0000
Files and hashes: 1: U8DiB45PPrpfh5UD_dgJw4O7dig.crl (hash: dEYhdTM68lbA6Jugiak4+SfDPg67s2eVf6gZZ/n0fuc=)
2: XOqVL4Qlgd2qj_R2o35sDNSHJkw.roa (hash: Vhjo7o5u3C511AphXSnY5EBALpIpM0HGnrEGYenlVkk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:d8:a2:98:f1:fa:90:f4:d8:2a:3e:11:26:ec:50:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c0e2078e4f3eba5f879503fdd809c383bb7628
Validity
Not Before: Mar 29 03:01:11 2025 GMT
Not After : Mar 30 03:01:11 2025 GMT
Subject: CN=147607d53c03a7f86d92d0e23e04fa45eaa35844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:12:21:e6:01:a4:50:74:cd:1f:08:62:34:da:
7b:a4:c8:a0:9b:ff:66:81:11:74:00:d6:26:be:ac:
39:1f:7e:6b:6d:95:de:98:2f:4d:84:0b:3c:6b:36:
3b:ad:15:41:9e:39:3e:84:c7:34:f7:12:35:03:0f:
9f:9c:b5:fa:43:0b:08:77:2a:11:b9:ea:65:08:93:
b3:d4:62:d0:cf:a3:0d:7f:4b:9f:da:32:1c:8e:4b:
93:48:d3:4b:4e:65:22:38:7d:54:4c:4c:9c:27:c2:
b5:ba:6a:47:ce:3f:c9:6f:da:1b:a8:8b:c1:27:d7:
9b:6c:c2:a8:22:fc:7e:0e:4b:2f:80:0d:b6:b1:13:
99:a8:a1:b3:c4:b2:4a:8c:bc:6a:05:33:43:91:d6:
ff:1d:09:af:1e:15:6a:37:f5:1c:61:4d:24:5d:1b:
9a:f2:5d:9a:eb:db:a7:d4:f4:3f:42:d5:5c:3c:30:
0b:b7:a7:d3:cd:67:ad:5f:38:01:d3:e9:6e:41:e0:
cf:06:29:af:92:e2:37:30:ea:41:88:dd:b5:7c:9e:
5b:24:a1:fc:d9:0c:43:52:1d:ea:0e:17:c9:09:5e:
9a:22:38:35:37:a4:e6:23:42:79:c3:f4:7e:c9:20:
55:21:9f:71:1e:64:f5:62:39:c1:d7:c9:cf:4c:3a:
a2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:76:07:D5:3C:03:A7:F8:6D:92:D0:E2:3E:04:FA:45:EA:A3:58:44
X509v3 Authority Key Identifier:
keyid:53:C0:E2:07:8E:4F:3E:BA:5F:87:95:03:FD:D8:09:C3:83:BB:76:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8DiB45PPrpfh5UD_dgJw4O7dig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b36636-3306-448f-8ecf-56482b390678/1/U8DiB45PPrpfh5UD_dgJw4O7dig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:66:9c:fb:5c:46:1e:47:17:26:62:bb:e7:b6:bf:47:7e:78:
1c:33:00:d6:67:d4:74:8e:cd:b1:7e:1c:8b:f5:14:8e:67:64:
4d:c8:9b:0f:88:96:fa:3f:9b:8c:b2:74:32:f2:f5:9f:78:e8:
8e:49:5a:e7:3b:6b:d1:5d:fb:81:71:f5:7d:f6:64:a5:c7:63:
b5:1e:fe:37:7c:66:5e:44:63:33:88:b8:55:60:69:15:6e:ea:
2d:c3:c8:4d:db:c5:0a:a7:75:29:25:cb:58:86:12:f6:68:44:
ab:7c:4c:49:3c:4c:4f:00:ac:be:33:a3:c7:87:b4:0f:39:f8:
8a:f0:30:a0:18:01:96:11:a2:9a:27:f1:23:3f:af:6c:b3:ef:
96:7b:2d:ac:99:66:8c:c2:6d:4b:b0:b1:d9:62:3b:69:12:65:
ec:00:c9:75:56:5e:eb:bc:5a:8b:2a:41:99:67:6c:7d:4f:05:
53:d6:1a:fb:d6:a6:70:47:14:ba:a0:ad:7d:d3:e9:99:0a:6a:
e2:6f:46:ee:24:42:bd:40:2b:b6:f8:82:46:2f:20:61:4d:aa:
26:cc:57:0d:e6:8e:3a:af:43:dc:99:59:7d:6a:e5:c0:bd:a3:
c1:c8:ce:97:e6:17:47:80:03:be:78:c3:43:70:19:f1:d8:54:
dd:82:ac:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 22:04:13 2025 by rpki-client