Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
File: OTba8DdWuvg7pPONvl1oy5us7_k.mft (raw, json)
Hash identifier: DD0UYKhKBNjzakdLqv7ECLqmgoC6oIGKZDJ/lpv+XUk=
Subject key identifier: 19:98:91:51:1D:E4:74:36:18:64:BE:EB:44:E9:42:92:21:86:8C:44
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 0195E046DBF977B6262E2FCEEC9A25EDC601
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
Manifest number: 0679
Signing time: Sat 29 Mar 2025 05:01:34 +0000
Manifest this update: Sat 29 Mar 2025 05:01:34 +0000
Manifest next update: Sun 30 Mar 2025 05:01:34 +0000
Files and hashes: 1: 1ZMKCjtoyUotW5zL6d-I3qOaSBE.roa (hash: 5gJp0s5iC22SH9q8M0EDrUjpQSDzsUFawVisJiKFG6A=)
2: 2DDfXUiH85YC1X3PgfdtyKVgjPw.roa (hash: IX38bNkkduAXN8SBzl133Uzin5uXQV9chMH9hhrcGco=)
3: OTba8DdWuvg7pPONvl1oy5us7_k.crl (hash: 8xD0ywiwWHGZYW9lShRLOKROulqVZpoSzJshYVMmDa4=)
4: XAC3MTIDy2Wt50Hn1LPVCPZj6e0.roa (hash: Dwx9RqPqD8/O5XTxZSeNq9SNO+JNCNDt1UlVOS13grg=)
5: wwYS773eF8f5hV4ohepyOO-ifB0.roa (hash: dVUhq/eAJdu372f2XZI+TaIvLid8//8pFvKUxAiEBzM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:46:db:f9:77:b6:26:2e:2f:ce:ec:9a:25:ed:c6:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Mar 29 05:01:34 2025 GMT
Not After : Mar 30 05:01:34 2025 GMT
Subject: CN=199891511de474361864beeb44e9429221868c44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:83:de:19:8a:a8:0e:fe:89:3e:f6:c9:fc:40:
3f:6e:8e:49:2a:6c:af:32:64:91:23:6e:ce:d1:22:
ef:13:6e:b9:53:36:a7:3d:26:94:a0:70:f2:f7:6c:
1c:fc:84:5b:58:46:20:8f:8e:a7:0c:23:fb:56:49:
fd:c0:7e:53:f5:20:3c:41:5f:3a:fa:b5:96:e2:ab:
8a:7e:5b:d8:82:9d:77:10:f3:91:1a:97:11:c5:4d:
5d:72:61:72:11:55:5e:ff:09:60:d9:fd:0f:8b:71:
8f:0f:c4:ff:38:38:86:3e:4b:63:0a:ff:df:da:fa:
6d:1b:d7:7d:69:45:2e:07:a3:a3:06:43:8e:1b:4c:
c9:05:ea:c6:7a:fc:5a:43:6f:e7:62:1c:ce:fe:88:
f9:67:84:62:b6:35:9a:e0:79:c4:e6:87:e3:97:fe:
69:cf:d1:84:07:c1:3c:c1:46:95:78:75:95:42:b4:
ef:a3:9c:4d:2e:23:ed:e2:5d:86:d9:5d:8a:34:25:
5a:4c:a8:21:d6:80:cf:78:2e:c8:4e:2b:2e:80:2e:
e2:3e:3a:52:0d:02:ce:26:13:c5:86:7b:b2:e6:8f:
c7:ca:a0:03:a8:d4:80:6e:16:35:03:45:95:7f:08:
f1:7a:df:8c:22:13:cf:20:80:c1:65:62:57:4f:e8:
95:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:98:91:51:1D:E4:74:36:18:64:BE:EB:44:E9:42:92:21:86:8C:44
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:63:c9:69:25:69:dd:dd:4e:31:fd:90:45:c5:33:5e:97:d0:
63:bc:54:8e:fd:9e:41:01:ec:42:36:ea:ea:29:9b:3d:cd:55:
b3:05:c1:cd:ef:af:fc:d6:a9:33:8a:f8:c1:b1:d4:56:f5:1c:
06:ba:6d:f2:e7:76:fd:e9:72:6d:91:fd:af:f1:39:97:0d:95:
b6:4e:0b:9c:05:72:12:7c:de:67:a3:c1:64:4b:7f:7d:d9:ba:
ef:5e:80:28:c9:bb:5f:da:9e:78:33:91:39:28:3a:20:93:d0:
2c:d2:83:e6:63:d4:f0:3e:53:37:99:8f:d8:62:85:6f:4d:c0:
00:03:d7:1a:22:34:16:6c:ca:ab:b2:9c:c1:4f:d6:3c:a4:68:
e1:96:bd:f1:52:1a:2e:c8:97:af:c5:1e:86:a0:4c:0b:7d:4a:
f0:cf:c5:2d:a7:d7:e8:81:26:37:52:da:a5:05:7c:20:03:d9:
b6:ac:b0:ce:46:0f:c1:b1:5a:0a:ac:ce:b8:ea:4d:0d:9e:b2:
c8:17:e1:4b:72:4a:a5:3e:be:aa:f1:04:33:ec:1b:2c:e4:8c:
94:79:66:ea:17:88:c3:46:67:97:c4:fa:fd:e4:8c:4d:5a:9a:
2a:c8:46:70:46:08:08:f3:6b:94:48:ad:1a:6c:fb:79:94:d5:
24:76:89:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:37:05 2025 by rpki-client