Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
File: O_-2BdzjBg37ZtzMqI632grHSvE.mft (raw, json)
Hash identifier: OJdFm2btShOc2APr5q4ffsyLV8m5iE0jt6R2jDxtjwU=
Subject key identifier: FF:1E:65:F2:53:58:48:23:B7:7F:25:AC:41:07:05:BE:BE:C5:EC:CB
Authority key identifier: 3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
Certificate issuer: /CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Certificate serial: 0195E0EB06FF0C7BC41EFDF64E92EE2723DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
Manifest number: 08C1
Signing time: Sat 29 Mar 2025 08:00:53 +0000
Manifest this update: Sat 29 Mar 2025 08:00:53 +0000
Manifest next update: Sun 30 Mar 2025 08:00:53 +0000
Files and hashes: 1: O_-2BdzjBg37ZtzMqI632grHSvE.crl (hash: /Dvh+jgLM7aBjD5uOyLrGSGUet5N+LwuV58/nvqoPGc=)
2: bEP6BpgWEwuDr5XbU9fjHciv2p8.roa (hash: HB6oz88QvFlDq+Znta3S+P5pPZ539cdh6eC3HVLovgc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:eb:06:ff:0c:7b:c4:1e:fd:f6:4e:92:ee:27:23:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bffb605dce3060dfb66dccca88eb7da0ac74af1
Validity
Not Before: Mar 29 08:00:53 2025 GMT
Not After : Mar 30 08:00:53 2025 GMT
Subject: CN=ff1e65f253584823b77f25ac410705bebec5eccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:59:8d:fa:c4:be:14:ae:83:37:dc:4a:7e:0d:
53:27:40:ca:2b:f9:05:ce:77:db:5a:9c:50:98:89:
49:97:12:ee:74:01:e9:bc:ed:6d:a1:72:be:79:ec:
2e:81:b6:dc:c7:4a:1e:f1:ce:9d:87:d2:17:b1:1f:
8e:a0:a9:97:19:b9:93:2b:e3:06:7b:4d:75:62:33:
08:9d:e6:0f:fb:49:35:5e:86:16:d6:bc:2d:e8:da:
fd:75:c5:00:ec:3f:78:a7:7d:c8:98:bd:ae:79:45:
c7:11:58:c1:e4:18:d6:29:d1:47:53:f8:2f:5f:13:
7d:d0:4f:21:e1:e8:ef:46:74:08:03:04:71:14:52:
ef:a2:30:c5:a1:e3:64:7d:0d:54:ef:c3:27:38:fd:
c6:ea:dc:a8:fe:18:81:71:36:c7:a3:88:de:cb:22:
7d:26:4e:71:f2:af:7f:46:bd:4a:f2:17:5d:61:54:
d7:36:35:61:0b:d0:39:ce:d9:17:ca:a9:99:a8:9f:
1a:e4:2d:80:07:cd:0a:a3:c4:ca:ea:9e:7d:41:1e:
ef:13:7e:b3:2b:b0:12:57:a8:48:72:65:fd:b5:60:
e3:9f:63:a6:6b:c0:d7:60:5a:7d:c6:17:0f:5c:b8:
48:58:d3:2c:a8:87:99:f1:47:be:8e:88:fc:58:37:
e0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:1E:65:F2:53:58:48:23:B7:7F:25:AC:41:07:05:BE:BE:C5:EC:CB
X509v3 Authority Key Identifier:
keyid:3B:FF:B6:05:DC:E3:06:0D:FB:66:DC:CC:A8:8E:B7:DA:0A:C7:4A:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_-2BdzjBg37ZtzMqI632grHSvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/0caaeb-287d-4ed5-ad7e-6b1d0714554a/1/O_-2BdzjBg37ZtzMqI632grHSvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:e6:d8:6d:cb:f1:2f:b6:97:9d:82:83:27:7e:af:85:89:5e:
f5:a8:0a:5d:13:45:43:f4:f9:0e:0d:3e:ae:13:71:1c:0b:78:
14:65:71:6f:53:62:29:7f:37:80:8d:50:a4:04:6e:be:40:49:
3b:01:49:f0:d2:8d:68:45:b1:f2:fa:dc:ca:f4:01:94:5d:08:
c3:98:29:d6:eb:c6:aa:13:65:dd:80:95:02:6b:37:d1:42:80:
56:11:0a:f4:a1:68:f1:6a:5c:21:ad:66:5c:24:5c:6f:4c:af:
81:79:03:c7:57:c8:60:5c:a1:56:9f:85:62:39:df:38:33:98:
ef:1a:c9:f9:c0:09:05:d6:7b:c5:c8:05:9f:ce:85:f8:27:ec:
ec:16:02:b2:52:f9:d9:c0:c6:ff:3b:61:c7:6d:38:cf:96:01:
f3:76:6d:57:86:c7:a2:58:72:e1:2f:0b:d5:ce:43:dd:f7:db:
82:85:d0:e0:5e:6d:ca:db:0a:93:59:40:25:d1:8b:f5:9c:a0:
fa:a7:b4:cc:63:28:fd:6f:55:40:c0:1b:72:6b:73:07:aa:af:
87:0b:51:0f:38:bc:0d:4d:d6:e8:3f:39:ae:1e:32:94:44:08:
0d:f2:df:d5:1a:e1:88:d3:6b:a7:03:ae:02:c9:0d:a2:80:c8:
13:82:0e:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 15:25:40 2025 by rpki-client