Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
File: 3hgnB8REwxBksYmcWX6e_XNDj5I.mft (raw, json)
Hash identifier: MXCG47ckP7NoIzTlIZJlJKjhY05QUy85fMZ56tjiQoU=
Subject key identifier: 8C:EF:FA:39:BF:FD:B7:66:21:F2:72:E5:A9:C0:9D:2F:77:48:47:81
Authority key identifier: DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
Certificate issuer: /CN=de182707c444c31064b1899c597e9efd73438f92
Certificate serial: 0195E07D6C1AB90755D271435C3F20197E69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
Manifest number: 0429
Signing time: Sat 29 Mar 2025 06:01:10 +0000
Manifest this update: Sat 29 Mar 2025 06:01:10 +0000
Manifest next update: Sun 30 Mar 2025 06:01:10 +0000
Files and hashes: 1: 3hgnB8REwxBksYmcWX6e_XNDj5I.crl (hash: YDIhkbZblcEZUJk7OrRkyXvhWfXwITojTKr6Is7iQvA=)
2: S2et9u3-k4c1RbSQYpZyfZKneKE.roa (hash: Ha/+fD6TOAGH3fDS11rGJPIxFiX3z4IR9RxVgbeKPDM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:7d:6c:1a:b9:07:55:d2:71:43:5c:3f:20:19:7e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de182707c444c31064b1899c597e9efd73438f92
Validity
Not Before: Mar 29 06:01:10 2025 GMT
Not After : Mar 30 06:01:10 2025 GMT
Subject: CN=8ceffa39bffdb76621f272e5a9c09d2f77484781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1d:a3:98:08:32:ec:f6:9d:50:19:06:00:ea:
0b:26:2b:c8:c3:b0:2c:9d:4b:96:5c:7b:df:c3:92:
66:70:3a:88:07:29:52:d9:01:0d:e4:44:9d:ba:ab:
2d:30:b6:a1:b5:8c:a6:64:b4:26:bf:9b:55:66:85:
29:8a:dc:4b:df:55:77:0d:bb:57:89:d5:30:68:7c:
9f:ef:ed:1b:9f:b2:45:4e:31:bf:b9:63:ef:b7:af:
42:c5:84:6b:14:22:03:35:5d:ca:4f:7d:00:ce:6f:
c7:55:95:67:8b:c9:19:1e:55:7a:d7:ea:9a:71:33:
4d:22:81:d2:51:1d:d7:7d:71:88:75:46:02:e9:00:
f8:48:77:a8:0a:c5:79:de:54:8d:84:0d:5a:29:b9:
62:02:56:bb:0e:35:9e:01:af:2e:c9:ef:db:4e:f9:
11:54:61:e0:c9:d9:8b:65:f9:78:d5:72:8f:11:13:
72:af:e7:c6:80:ee:77:57:c7:ae:33:f2:b9:44:e7:
28:32:ee:7b:12:90:bd:42:97:e1:f4:99:29:a6:16:
1b:a3:59:c6:75:67:6f:99:9b:ef:73:2f:e3:bf:50:
01:38:14:17:1f:7b:b8:14:1c:06:04:50:ef:f9:ed:
12:c8:a3:c8:6a:4d:e4:b5:fb:ac:e7:6e:7d:d9:e7:
5f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:EF:FA:39:BF:FD:B7:66:21:F2:72:E5:A9:C0:9D:2F:77:48:47:81
X509v3 Authority Key Identifier:
keyid:DE:18:27:07:C4:44:C3:10:64:B1:89:9C:59:7E:9E:FD:73:43:8F:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hgnB8REwxBksYmcWX6e_XNDj5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/3bf301-d189-475d-95dc-eaae3de8ab58/1/3hgnB8REwxBksYmcWX6e_XNDj5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:82:78:65:43:ff:ae:0c:e8:f9:1f:a3:ea:27:a3:08:42:32:
8a:ce:a5:60:77:60:f4:25:9e:8b:5f:97:22:e5:33:8e:2b:82:
ac:59:16:69:b1:7c:db:e9:67:90:1e:2c:76:57:b0:ce:50:73:
40:6d:f1:0a:c7:96:40:40:d6:52:19:87:0d:a7:c7:77:1c:fd:
70:7d:78:80:01:57:17:52:03:be:b8:40:32:7f:d2:82:c8:8a:
16:00:08:ec:f6:49:22:58:6f:c3:65:07:15:3e:fb:59:bd:37:
f9:f2:51:19:63:a2:c0:01:e3:14:06:93:68:ff:69:31:22:5e:
75:7f:c3:7c:c3:88:e1:02:cb:19:7c:46:dc:ac:70:99:96:03:
6e:f6:9e:e2:1f:ff:25:7b:7b:6d:4e:9f:f0:70:8e:59:b9:3d:
6f:b3:95:19:1e:71:80:87:13:88:ba:7c:7b:b6:a0:26:09:d7:
3a:fc:41:67:a8:00:0a:6d:77:ad:02:a5:78:f1:6c:37:34:09:
3f:90:19:e1:f8:f7:d2:c1:87:f3:f3:ae:78:b5:eb:06:85:e9:
76:7e:d3:75:cd:72:51:62:1e:07:74:65:21:e5:00:01:9d:b4:
d1:c3:51:d9:0c:f7:d1:16:b3:21:18:91:4b:e6:30:a9:4a:ca:
8f:9f:13:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 18:32:05 2025 by rpki-client