Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
File: ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft (raw, json)
Hash identifier: yIQG4xz5LCMOCwT03uionN9c/9XR7qvJKXaGyTfelII=
Subject key identifier: E9:9B:67:EF:6D:22:CC:83:D3:C1:4F:3B:B8:C8:85:A9:DC:C1:F4:B8
Authority key identifier: B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
Certificate issuer: /CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Certificate serial: 0195E0B45BB7D4EEE775A0CC6AECFB75F6A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
Manifest number: 0691
Signing time: Sat 29 Mar 2025 07:01:11 +0000
Manifest this update: Sat 29 Mar 2025 07:01:11 +0000
Manifest next update: Sun 30 Mar 2025 07:01:11 +0000
Files and hashes: 1: 9qqw5-kT_WV_X39A7wZIImdbzHo.roa (hash: /+5dGBlEHLXX+0YtcqdadMo/w6B/YFbkAqy9tbmNdEg=)
2: D-sLa7SP7XelLhZGOPS-ls06iHQ.roa (hash: O/tqtREZzKy5oPDokpycb2qRKRocKJlF54vVhaheJr4=)
3: XI8GYNvzBktqANN3ULY6yNPZsp4.roa (hash: 0Mxp84Xa3ZGuCVESuvLHwIOTltEO7ZBfIp1LcrOP0ho=)
4: eRUACPCXV-4Ib9JOJdpUbWI_TYw.roa (hash: h9bviEq7QynmkHeqFVqOAhXJmtcEK3L94GyVb2n9ZXc=)
5: hJkdSoDXpzIKTUPp93OLm4_CfgM.roa (hash: GAALV0VthJPoxa0vb/cdFv6fAU1JjHbthL2uNWZeyCc=)
6: ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl (hash: ZrjWn1LP8dL+TcYNp+31GOAI/2umWkuj7ZDjsSwfaB4=)
7: yLW-Wxb-WEK3SlgHfRgcFULgwtU.roa (hash: 47c/8wbrDeeCgPSJoS7prqWBSvhn47quuwVKT8eb4AA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:b4:5b:b7:d4:ee:e7:75:a0:cc:6a:ec:fb:75:f6:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b0d33432eca77c054e8fa8707248da4e47db0b
Validity
Not Before: Mar 29 07:01:11 2025 GMT
Not After : Mar 30 07:01:11 2025 GMT
Subject: CN=e99b67ef6d22cc83d3c14f3bb8c885a9dcc1f4b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:96:42:c2:3a:da:f0:cc:12:e9:4d:9d:7f:c9:
d6:5e:35:88:29:b1:4b:e0:43:84:f5:83:e2:33:1e:
6b:f6:79:42:4e:73:90:71:43:a3:8f:14:5e:dd:f0:
84:42:61:78:a0:a4:07:24:8f:b0:88:94:74:74:48:
95:3c:11:80:2e:06:ab:07:e5:76:a3:c1:16:f5:62:
45:c1:3e:ac:30:94:83:91:f2:c5:a0:92:6a:13:df:
0c:3f:2e:f3:b0:4e:e1:f9:83:e9:a3:49:fd:24:61:
ef:31:39:4c:5c:ed:c5:c5:b4:0a:de:95:85:6a:94:
82:00:4b:37:ea:8c:40:fc:40:d0:0e:d2:99:92:3c:
12:f1:0e:42:b5:fb:38:3e:b0:35:d1:13:aa:5a:da:
38:fd:6f:ee:93:7a:0a:97:04:40:b7:78:57:3f:a4:
ad:6e:c3:c7:00:1d:ff:7a:dc:8e:84:e8:8c:35:5d:
26:e7:f6:88:ef:57:66:4f:cb:b9:85:49:45:7b:f3:
de:49:b2:18:45:41:70:99:29:18:dc:8f:4f:17:f9:
74:b9:2c:9f:2d:94:20:3e:65:aa:b4:ed:b7:2c:c8:
d8:3d:2b:de:f3:b7:fb:ac:a8:ae:7f:6a:7d:5b:b8:
52:c9:19:99:9a:61:e8:d1:13:78:8e:b8:55:3f:cd:
a0:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:9B:67:EF:6D:22:CC:83:D3:C1:4F:3B:B8:C8:85:A9:DC:C1:F4:B8
X509v3 Authority Key Identifier:
keyid:B9:B0:D3:34:32:EC:A7:7C:05:4E:8F:A8:70:72:48:DA:4E:47:DB:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubDTNDLsp3wFTo-ocHJI2k5H2ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/b431ca-5275-42b5-8d54-d196f9291732/1/ubDTNDLsp3wFTo-ocHJI2k5H2ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:8c:03:7f:86:5a:f4:55:7f:a2:87:72:9a:ed:68:7b:ac:9a:
ee:91:bb:23:e2:36:83:cd:58:23:7a:7e:15:31:a4:7d:47:19:
5d:02:9e:c2:8e:ef:75:9a:4f:40:0c:e4:0d:7c:94:52:6c:0e:
84:05:91:37:97:47:42:f2:c4:53:54:c7:5b:9f:97:35:4a:a6:
f3:28:ca:56:cb:72:db:01:65:16:16:31:14:ca:06:8d:36:d7:
a9:f5:b9:ce:4b:4a:5e:72:a7:1d:ac:d8:b0:15:3f:eb:4e:c1:
ca:20:cc:a3:d9:1a:ea:b1:69:97:ec:36:5c:0a:dd:c5:f8:7d:
34:8b:bc:ac:36:a5:79:cb:c8:25:cd:ba:1d:69:5c:86:d6:b7:
69:3e:d7:93:cf:25:13:c1:b5:fd:ac:8e:3b:80:57:cf:4e:d7:
83:90:08:1c:9b:46:60:88:f3:07:77:4f:97:c7:f6:2d:0c:79:
e9:2a:25:9d:d0:e1:8f:42:99:28:7a:bd:db:a8:4b:46:40:03:
e4:0f:9f:e0:41:2f:e9:3a:0c:6a:5f:d1:3c:02:59:78:1d:06:
14:26:a9:6a:09:90:df:85:e5:d8:bb:b3:5b:a7:72:ea:fc:72:
37:b3:56:b4:37:fe:0f:e3:ce:20:a3:28:d7:11:f8:91:15:11:
d5:cf:28:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:41:17 2025 by rpki-client