Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
File: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft (raw, json)
Hash identifier: h3zXVaVZsvE4IZzsboKUcLa4vd80i8zIRaX72IvS0eA=
Subject key identifier: F1:82:F7:E4:E2:CC:B0:3F:B6:19:BC:F0:18:E1:EE:75:D5:F8:EA:7C
Authority key identifier: 40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
Certificate issuer: /CN=4092c47db8a21931154605d576c3b7341d06b4b4
Certificate serial: 0195DFD920091CAC04B85C63BE30195AECB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
Manifest number: 124A
Signing time: Sat 29 Mar 2025 03:01:43 +0000
Manifest this update: Sat 29 Mar 2025 03:01:43 +0000
Manifest next update: Sun 30 Mar 2025 03:01:43 +0000
Files and hashes: 1: QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl (hash: w+oltrnI5+y1NYH61lUR8xiDzTpp/bBOT4VkTQe4zyM=)
2: knkqtZcmX5gSTiCaXxHQZfriQgw.roa (hash: E9ZLKfrMdp8ZIK1kQ0GbAJkgNgAmhxZR6M5lJ1uXi1w=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:d9:20:09:1c:ac:04:b8:5c:63:be:30:19:5a:ec:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4092c47db8a21931154605d576c3b7341d06b4b4
Validity
Not Before: Mar 29 03:01:43 2025 GMT
Not After : Mar 30 03:01:43 2025 GMT
Subject: CN=f182f7e4e2ccb03fb619bcf018e1ee75d5f8ea7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0a:d3:f0:07:75:a4:57:e8:ba:4f:cf:a2:ff:
b5:fa:d0:f8:23:c0:27:7b:48:3d:2b:fd:83:0b:8a:
19:7f:9d:5a:c2:ee:25:d3:b7:09:b7:7e:a2:39:18:
d7:df:0f:62:c8:7a:fd:65:fb:51:9f:30:c6:80:d8:
5d:1c:41:96:5d:72:81:a6:da:af:db:ad:ed:a6:c0:
4a:9a:51:87:44:c3:49:29:30:6c:a7:d2:90:08:c4:
40:eb:32:39:23:fc:26:e2:24:63:6c:cd:40:50:65:
be:6b:29:93:dd:99:24:e6:9c:e9:29:bb:b6:72:02:
5a:2c:14:2a:7a:3a:a8:1b:1c:f3:12:90:5d:2d:df:
8e:6d:01:43:ec:f0:49:45:58:7c:dd:90:7f:54:a1:
e8:66:e8:3e:05:1f:e3:41:04:c1:d5:d8:2b:9c:a7:
d7:d8:3e:db:7b:9c:25:bb:ce:f2:2c:2a:e3:03:49:
9c:12:ed:9a:66:34:44:ff:6c:ef:a6:f0:1f:2c:04:
ce:af:82:10:05:4d:2b:b3:90:6c:f4:eb:69:b8:42:
92:ff:ac:e7:3e:ce:23:39:c0:90:57:df:05:30:af:
1a:72:bb:d9:2a:3c:91:75:1c:54:cd:f9:28:f1:82:
35:88:31:5b:6e:bd:09:1e:21:14:3e:11:6c:13:35:
81:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:82:F7:E4:E2:CC:B0:3F:B6:19:BC:F0:18:E1:EE:75:D5:F8:EA:7C
X509v3 Authority Key Identifier:
keyid:40:92:C4:7D:B8:A2:19:31:15:46:05:D5:76:C3:B7:34:1D:06:B4:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/b228d9-7ff3-4c40-95a6-8a36a6facd50/1/QJLEfbiiGTEVRgXVdsO3NB0GtLQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:b5:02:67:e2:e4:87:95:89:88:a0:24:f3:4c:30:46:46:2a:
47:78:a1:f6:f2:ef:21:ee:57:8f:9d:12:c7:78:2b:68:2f:ad:
6c:cc:d1:11:2c:f4:6b:d9:52:cd:08:b5:f5:77:99:65:50:9a:
aa:17:79:8d:ec:70:b2:31:9c:b9:41:39:d7:d5:9b:50:89:44:
c4:80:f0:db:66:db:86:29:1e:b7:ef:93:c3:44:ec:af:b8:4a:
22:f2:83:0c:f4:6e:c2:e6:c6:4c:85:99:7b:0c:ce:4b:f5:31:
d1:69:ae:ee:d5:91:7d:6e:af:52:35:af:b9:2c:40:5c:8e:93:
71:80:c2:80:69:70:b3:7b:d3:66:a3:19:20:b2:9c:32:47:09:
fc:45:cb:26:0b:3f:9e:4a:ba:a4:f8:ad:6f:00:1a:ad:58:06:
da:28:fe:ed:ed:d2:3e:5e:ec:a1:e1:22:25:75:92:70:3a:11:
de:01:15:74:a4:b7:86:62:4b:9f:db:f9:3c:ec:c2:0e:e9:12:
96:fe:65:6c:ae:db:7c:60:cf:7e:b2:3a:43:c0:1f:83:2a:72:
55:65:55:d2:7f:e9:20:2a:86:fd:96:51:cd:96:92:5e:fe:c3:
39:71:f6:f5:f4:42:9d:9e:27:e6:a0:2a:5d:8e:ba:34:ed:a1:
bc:42:bc:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 05:41:58 2025 by rpki-client