Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
File: sl2FaYjGKmAgc-wpOFgd1KWG-48.mft (raw, json)
Hash identifier: ro6FbWrV1I3rHOkM96C8Iu37BORhGkBrlUIwfxK1GZs=
Subject key identifier: 1A:A9:57:FD:7A:E2:69:D7:61:A0:63:22:EE:0D:DB:63:E9:A3:D3:A6
Authority key identifier: B2:5D:85:69:88:C6:2A:60:20:73:EC:29:38:58:1D:D4:A5:86:FB:8F
Certificate issuer: /CN=b25d856988c62a602073ec2938581dd4a586fb8f
Certificate serial: 019514DA6090D96071B8032F207951A8A6E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sl2FaYjGKmAgc-wpOFgd1KWG-48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
Manifest number: 1459
Signing time: Mon 17 Feb 2025 17:00:10 +0000
Manifest this update: Mon 17 Feb 2025 17:00:10 +0000
Manifest next update: Tue 18 Feb 2025 17:00:10 +0000
Files and hashes: 1: 7ywY44F6W0hS7hjw1JX0UehS46M.roa (hash: EOy9avDsf7nOFq98ToM6bXsJvV8/Sd2CzZitSl4gKrE=)
2: sl2FaYjGKmAgc-wpOFgd1KWG-48.crl (hash: MY60J/YHs90T7Nj6zZFyaHQMX/s6lgcVKL4cHzpoFCE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:14:da:60:90:d9:60:71:b8:03:2f:20:79:51:a8:a6:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b25d856988c62a602073ec2938581dd4a586fb8f
Validity
Not Before: Feb 17 17:00:10 2025 GMT
Not After : Feb 18 17:00:10 2025 GMT
Subject: CN=1aa957fd7ae269d761a06322ee0ddb63e9a3d3a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e7:bc:75:e1:83:82:7b:53:88:f9:3a:50:31:
2e:91:44:0b:53:66:d9:1a:6a:0c:98:c6:5c:05:21:
42:8c:69:bf:69:e0:c2:5f:94:70:37:ea:a2:a8:93:
c8:55:ea:f1:b7:52:e1:14:4c:e3:24:be:b2:74:75:
93:50:97:80:69:61:ba:93:2c:21:49:e6:99:aa:78:
81:7b:d9:b9:c1:5a:fb:10:f6:3e:17:dd:71:aa:dd:
b5:45:be:a1:10:7e:06:82:35:ea:d9:31:0d:90:b5:
79:66:c8:1c:7e:37:65:ed:ef:f3:ca:8c:72:60:8d:
75:3e:82:16:75:64:39:84:52:8a:f5:26:c3:1c:22:
ba:36:85:08:cd:eb:6b:77:6a:8b:9c:a9:10:2f:6e:
bf:29:ca:22:19:04:e1:da:60:9c:ed:00:f3:f6:2a:
67:de:93:80:80:de:d7:66:37:2b:34:76:6e:f7:b7:
43:f0:7b:a5:cb:11:6a:2e:74:27:96:da:65:68:86:
1a:37:e3:b7:87:db:fa:98:ca:40:ad:1a:6b:bf:9f:
a9:b5:da:e3:c4:dd:68:5e:2f:bc:76:b0:42:ee:27:
7c:b2:bb:85:fd:88:b9:0c:85:25:f1:68:b4:c3:62:
1f:18:97:fa:9d:91:9b:ac:c6:dd:81:7a:8d:90:69:
6f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:A9:57:FD:7A:E2:69:D7:61:A0:63:22:EE:0D:DB:63:E9:A3:D3:A6
X509v3 Authority Key Identifier:
keyid:B2:5D:85:69:88:C6:2A:60:20:73:EC:29:38:58:1D:D4:A5:86:FB:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sl2FaYjGKmAgc-wpOFgd1KWG-48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:8f:fc:28:2c:13:42:04:0f:5f:24:5a:5f:d4:89:03:17:c7:
be:28:8e:28:68:89:bb:a9:0a:40:e9:8c:26:09:2e:01:9d:6f:
3b:92:f5:ce:fe:dc:54:12:51:c9:25:3b:a6:1e:53:52:74:93:
2a:08:46:36:0a:f1:82:7b:3c:20:75:ee:bc:72:d8:b8:1b:5f:
9b:81:21:f8:bb:c9:64:ca:15:8e:3c:9a:25:f2:95:18:23:2f:
b2:a4:8f:e7:50:2a:ea:3e:1a:54:bd:c0:d4:79:e4:03:31:67:
d8:6a:70:17:81:4c:b5:7a:c5:7c:ee:08:2d:66:e7:07:a7:7c:
97:b6:4a:2a:e2:9c:36:27:54:77:48:d3:01:1d:3d:e4:77:1a:
ee:43:fc:e9:1e:6b:a8:2c:9c:b6:c5:b5:41:5e:b8:93:4a:32:
26:99:b9:08:e8:97:a4:1a:00:6b:ae:ce:0c:6f:f1:98:c7:5b:
98:5a:87:bc:c4:76:b9:10:ed:f4:77:04:2d:9d:42:40:99:e2:
f6:8e:6d:76:33:6b:ae:9e:40:39:0c:52:d2:22:2c:f3:1d:f4:
cf:67:74:35:59:18:f8:fe:2f:5b:8e:4c:ab:4d:5f:29:47:25:
13:8e:7a:a3:a8:e0:7a:31:13:7e:df:b1:c5:80:d4:fe:83:6a:
77:da:20:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:44:48 2025 by rpki-client