Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
File: CEGOlpDQ-3Eavzh04cUApidpPAo.mft (raw, json)
Hash identifier: //oIsCllunnTL1s5qgFBUl29MepZNJnmIS3RiY4r5JQ=
Subject key identifier: BA:3F:5B:40:DF:7A:8E:59:44:63:BC:D4:F0:C6:3A:BC:D8:BF:E0:6C
Authority key identifier: 08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
Certificate issuer: /CN=08418e9690d0fb711abf3874e1c500a627693c0a
Certificate serial: 0194BCE0C89DAD9B9F5CDD335E4B76B6E901
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
Manifest number: 0D3E
Signing time: Fri 31 Jan 2025 15:00:35 +0000
Manifest this update: Fri 31 Jan 2025 15:00:35 +0000
Manifest next update: Sat 01 Feb 2025 15:00:35 +0000
Files and hashes: 1: CEGOlpDQ-3Eavzh04cUApidpPAo.crl (hash: SLNqI62UKB0lm2bbSA27sck78YKMdUHivPDNIAU0978=)
2: WXokG7cKriDfqWoaHraaATikOZM.roa (hash: l03IsJpcA1hZ2SxrPxTFFWqboVv9JIckV/GXuLQrkcI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bc:e0:c8:9d:ad:9b:9f:5c:dd:33:5e:4b:76:b6:e9:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08418e9690d0fb711abf3874e1c500a627693c0a
Validity
Not Before: Jan 31 15:00:35 2025 GMT
Not After : Feb 1 15:00:35 2025 GMT
Subject: CN=ba3f5b40df7a8e594463bcd4f0c63abcd8bfe06c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:10:dd:ef:3c:b0:ae:c9:2b:ba:e0:c8:c7:6f:
11:f9:a4:34:2f:84:36:0f:ec:06:78:68:35:1d:3e:
8f:aa:6e:61:83:2d:89:e3:3c:84:f5:3a:37:31:07:
0b:bd:5a:22:2f:7a:90:a3:dc:40:bd:69:00:d6:64:
94:3a:30:1e:ad:1e:7c:8e:41:eb:dd:90:e4:13:2d:
03:61:18:83:49:ad:ef:b5:3c:13:7b:6c:86:25:f5:
f9:08:fd:28:45:82:4f:7c:43:a6:01:48:48:28:08:
5a:61:c1:da:b6:57:54:98:c5:69:ad:7c:48:a5:cd:
8f:e6:fb:d2:a4:6c:ac:05:a1:21:54:e4:9a:82:5a:
f9:1e:9f:c1:70:f9:7a:f3:89:07:6c:12:f0:4a:f3:
76:16:46:9d:f2:9a:f0:31:37:c1:2b:f4:bc:d3:e8:
23:1c:4f:6d:ed:ee:94:04:01:f6:8d:e0:1a:4b:05:
b7:b6:01:9a:59:fa:77:e6:02:e2:10:ae:0d:67:da:
6d:a3:57:3b:4b:e0:86:bb:34:2e:ab:4d:9d:7d:6d:
80:b0:00:46:bb:5e:bd:dd:3d:e8:40:93:1c:0b:99:
57:48:cc:27:ee:03:30:2b:7b:7f:b8:f8:28:72:14:
17:c5:6c:ce:6e:5c:d8:9a:fc:6e:30:49:dd:dc:6c:
37:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:3F:5B:40:DF:7A:8E:59:44:63:BC:D4:F0:C6:3A:BC:D8:BF:E0:6C
X509v3 Authority Key Identifier:
keyid:08:41:8E:96:90:D0:FB:71:1A:BF:38:74:E1:C5:00:A6:27:69:3C:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CEGOlpDQ-3Eavzh04cUApidpPAo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/e97563-c7e5-4036-a796-22c0ca213380/1/CEGOlpDQ-3Eavzh04cUApidpPAo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:98:be:b2:a5:3a:1f:96:46:fb:1f:b8:78:26:99:95:c5:78:
bc:4c:a1:1f:46:e4:aa:cc:71:7c:50:ce:08:f1:85:a3:86:33:
fc:d6:df:09:09:48:b0:d1:aa:59:ca:36:cb:ce:2e:e6:5f:35:
c6:1b:64:98:a9:6f:87:78:5f:04:af:d6:30:1d:1f:fe:4f:08:
ea:9a:2a:95:a4:76:ed:13:f9:c4:01:f7:36:4c:d6:6f:e9:eb:
cc:f9:37:56:0e:21:2a:7b:29:b5:16:9b:fb:d0:1e:3d:94:d9:
e9:16:38:91:c6:49:f5:24:ff:31:fe:0b:76:90:be:96:71:e7:
c9:29:0e:7a:bc:da:ce:c1:f2:3a:d0:64:02:aa:a8:de:2a:3f:
9a:14:77:a9:14:a1:2a:b2:ca:98:3b:ff:2b:4c:70:f8:b6:b9:
82:5f:fc:2e:55:85:7d:6e:1b:b3:69:66:bb:2b:d2:07:97:0c:
db:bc:e8:82:5c:a3:1a:83:5f:7e:a5:d4:52:9b:6e:c8:03:30:
50:f7:5b:c2:8e:93:7d:aa:88:87:53:b4:cb:f6:42:3f:08:24:
de:17:d6:c8:7b:0c:74:0e:19:23:11:f1:fc:fb:3b:e8:56:fa:
53:4a:82:9f:60:2f:30:d6:8f:3d:74:af:f5:13:c5:29:b2:c2:
e5:6a:65:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 21:44:47 2025 by rpki-client