Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
File: cHdwf2aXiCaodeuNLrMzvthWlmc.mft (raw, json)
Hash identifier: Sk2ceGc2XE1Np2bDDBaeMGXlZvPH8v9tg/0CvUxGUQY=
Subject key identifier: B3:1A:6E:CA:F0:8A:BA:5D:42:81:B1:3E:65:99:9F:C4:49:35:B0:8C
Authority key identifier: 70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
Certificate issuer: /CN=7077707f66978826a875eb8d2eb333bed8569667
Certificate serial: 0195E159D6E752758BF9C59666C159ECF91A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
Manifest number: 06A8
Signing time: Sat 29 Mar 2025 10:01:55 +0000
Manifest this update: Sat 29 Mar 2025 10:01:55 +0000
Manifest next update: Sun 30 Mar 2025 10:01:55 +0000
Files and hashes: 1: ZBqGiL5Lwt5_4rzPo7SO0cTda9c.roa (hash: KELG75sz8Tw2WawKyeiPVA4v+ezxNcK7f4e9XzFuUUw=)
2: cHdwf2aXiCaodeuNLrMzvthWlmc.crl (hash: u8scBjnuEMNzLHywHbvLxxrQ1hlvvvJA9YJN91/9qwg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:d6:e7:52:75:8b:f9:c5:96:66:c1:59:ec:f9:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7077707f66978826a875eb8d2eb333bed8569667
Validity
Not Before: Mar 29 10:01:55 2025 GMT
Not After : Mar 30 10:01:55 2025 GMT
Subject: CN=b31a6ecaf08aba5d4281b13e65999fc44935b08c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c2:01:25:76:a3:84:41:bb:1e:79:5d:e2:35:
c2:aa:e2:5b:fb:45:cb:a6:b3:23:c6:5c:f3:d3:37:
ae:f8:0c:a7:f4:3a:b2:d9:45:07:ec:2d:b9:c4:2e:
2c:7d:3c:8c:f1:a7:e7:50:bd:bb:7c:d2:5b:44:3b:
df:91:ba:3e:c1:dc:8c:81:a8:60:cf:59:46:18:c3:
bf:26:46:eb:4d:77:6b:ac:a9:22:41:df:c9:d3:34:
4c:2e:6e:ab:61:f2:cf:a4:46:70:35:60:71:10:9e:
1b:1d:6a:a4:44:52:b7:d3:7f:cf:f2:36:0b:28:3e:
cc:03:38:0f:0e:cc:1d:cc:14:75:76:36:5c:23:82:
20:2c:40:e4:49:6e:81:89:ba:02:73:d5:22:ea:cd:
d5:f3:16:49:6c:0c:e1:88:21:f0:03:3d:a2:76:b9:
31:d3:a6:eb:ed:a6:6f:e7:82:c2:b8:23:ac:ac:d4:
82:aa:5c:56:35:6e:c4:47:c3:0c:bf:6c:34:35:da:
7f:c5:1b:de:5c:c0:db:c7:07:1f:12:bb:78:c5:46:
39:90:d3:a2:03:a9:cf:f6:4c:c1:3c:dd:a2:45:ee:
68:f9:32:d7:4e:bb:bd:64:83:c8:6f:8d:28:2f:a4:
d9:a4:1a:40:c2:c3:d0:3c:4f:ff:42:3d:e6:81:67:
12:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1A:6E:CA:F0:8A:BA:5D:42:81:B1:3E:65:99:9F:C4:49:35:B0:8C
X509v3 Authority Key Identifier:
keyid:70:77:70:7F:66:97:88:26:A8:75:EB:8D:2E:B3:33:BE:D8:56:96:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cHdwf2aXiCaodeuNLrMzvthWlmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b9a1a0-6ada-4dde-965b-46ff7ce2c140/1/cHdwf2aXiCaodeuNLrMzvthWlmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:a1:11:0d:06:92:32:08:f0:f9:fb:02:3a:00:79:a9:de:4f:
46:f2:a1:b7:f1:06:40:87:1e:af:f2:5c:f5:e2:a1:3f:56:c0:
ca:1f:4d:0f:fb:5a:b2:86:4b:b7:7f:b2:94:f2:2f:5d:1c:e6:
75:0b:db:93:02:10:09:9d:fd:79:45:1c:fa:7d:13:1c:0e:1a:
42:6f:17:c1:5a:00:a8:9a:3d:5a:6e:b1:f2:2a:c5:44:26:31:
02:d4:31:83:31:30:71:b8:9d:14:40:28:9a:6e:66:c7:cd:45:
fb:de:55:11:3b:2e:c0:2a:22:74:9c:cf:ee:50:3a:71:c2:42:
da:5d:01:bd:20:18:55:81:10:0d:67:3b:ec:77:b4:3d:13:e3:
e1:fa:76:1e:ab:08:c3:70:bd:0b:f6:88:6f:58:0d:31:ce:5f:
f7:12:1f:55:82:27:42:43:f4:4f:b1:4e:4c:6e:0a:9c:f2:6e:
5d:4f:f3:9c:08:98:78:62:c2:c8:58:7c:c1:ba:83:f4:c3:61:
30:c8:92:2b:4a:11:6c:48:89:25:67:ae:08:f2:15:df:75:b8:
26:94:9f:83:26:e7:46:7f:ea:fe:77:15:7b:1c:90:95:6e:07:
6a:d6:8a:78:db:fa:9a:c9:93:da:55:74:ba:e3:0b:b6:6f:bf:
aa:95:7b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 01:05:54 2025 by rpki-client