Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft
File: NXwbu7IW2REwR2H6ezE3hHDKtpw.mft (raw, json)
Hash identifier: eAHfdw10bss/qXYsMboIKOLfJkvd0QZecvwA3xvIBT0=
Subject key identifier: 80:8B:D0:E1:18:FC:C9:7B:5F:38:31:25:68:DE:FD:2C:D2:E3:4C:02
Authority key identifier: 35:7C:1B:BB:B2:16:D9:11:30:47:61:FA:7B:31:37:84:70:CA:B6:9C
Certificate issuer: /CN=357c1bbbb216d911304761fa7b31378470cab69c
Certificate serial: 01966518FDF7B3439A1031C4D38DB36EED12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NXwbu7IW2REwR2H6ezE3hHDKtpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft
Manifest number: 1506
Signing time: Thu 24 Apr 2025 00:00:58 +0000
Manifest this update: Thu 24 Apr 2025 00:00:58 +0000
Manifest next update: Fri 25 Apr 2025 00:00:58 +0000
Files and hashes: 1: E9pk0ZllttDZKXJOg-IRuSUOGuI.roa (hash: iZIfCGoic6nKxXYncNFRzeFxubwStFv6Tsp9EcrF68g=)
2: NXwbu7IW2REwR2H6ezE3hHDKtpw.crl (hash: fpJcQf0aDwh8Zvpp/vPT3wixycj85xesoCn4oJYFRnA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:65:18:fd:f7:b3:43:9a:10:31:c4:d3:8d:b3:6e:ed:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=357c1bbbb216d911304761fa7b31378470cab69c
Validity
Not Before: Apr 24 00:00:58 2025 GMT
Not After : Apr 25 00:00:58 2025 GMT
Subject: CN=808bd0e118fcc97b5f38312568defd2cd2e34c02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4e:eb:e5:22:bf:d4:4a:f0:92:e9:b0:33:64:
f6:dd:39:4d:9f:eb:df:3e:cc:b3:62:19:d2:2b:c1:
79:d8:a3:f6:77:c4:d9:79:14:a8:d8:95:aa:ee:20:
79:86:44:80:6e:de:dc:b3:24:d7:06:db:0e:6f:f3:
9b:89:2b:b3:4f:64:f8:14:40:11:0f:5b:27:fc:a9:
17:a5:4c:20:f5:22:d5:e3:be:69:ff:c3:93:c9:d8:
b6:8d:0d:65:90:0b:2d:89:68:b8:45:19:cb:2b:37:
1b:25:24:71:8a:95:c3:9c:6d:d3:6a:c0:18:f8:96:
11:f2:9d:f0:46:8d:76:f4:3a:85:1d:2a:dc:c1:d7:
29:11:6e:b5:43:8c:5b:3c:c0:9e:35:96:45:65:10:
7d:f7:47:b5:82:3a:04:b9:b7:40:05:0f:50:5d:23:
19:d9:bb:ff:df:03:76:40:07:fa:06:d3:4d:d0:18:
91:c9:5f:d9:2e:7c:49:8e:46:94:52:f6:c1:e4:4a:
9d:4f:44:ed:3c:57:ab:54:80:6b:2e:77:20:d4:6a:
13:03:70:74:c5:ac:a1:43:94:13:69:6e:32:dd:df:
c2:c5:c3:36:8f:7d:38:60:c2:fa:98:05:9d:2e:06:
f9:a0:1a:02:d9:37:3e:a8:b5:88:d7:81:42:2d:dc:
13:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8B:D0:E1:18:FC:C9:7B:5F:38:31:25:68:DE:FD:2C:D2:E3:4C:02
X509v3 Authority Key Identifier:
keyid:35:7C:1B:BB:B2:16:D9:11:30:47:61:FA:7B:31:37:84:70:CA:B6:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NXwbu7IW2REwR2H6ezE3hHDKtpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72cba3-6051-4218-88c2-50861eeb5d5d/1/NXwbu7IW2REwR2H6ezE3hHDKtpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:1a:88:54:9e:19:0c:e0:b1:73:f9:c7:38:1a:70:51:2d:bf:
42:79:c4:b3:ce:4a:39:2f:ae:76:3f:22:7d:d9:09:5e:7c:91:
04:2d:58:27:18:6d:6d:60:e4:e5:27:0d:16:9e:cf:f8:bb:01:
10:19:65:7e:10:f8:1b:bb:95:dd:e8:9b:de:31:c7:06:68:eb:
04:d6:13:38:d1:51:c0:ff:8e:2c:0b:d5:6e:87:a1:f8:0b:10:
6e:95:8a:f0:12:c7:db:ed:34:54:3d:29:c5:51:9e:a7:db:39:
18:9a:20:6e:42:2c:d5:ea:bc:b3:f9:ae:af:2d:fa:76:06:10:
72:6a:34:14:f5:35:e2:86:8a:d3:29:ef:eb:45:c1:10:e9:89:
38:cf:7e:a4:36:10:d9:09:a0:50:f3:a5:a8:7a:0d:a8:21:36:
68:e6:ae:59:a2:91:bd:a2:65:43:47:b3:fa:a0:90:98:8f:33:
ac:98:e6:9c:be:59:9f:4a:3f:52:b5:52:c4:fe:84:01:cf:7c:
ed:28:9e:08:4f:fc:2a:f6:7f:f6:a7:0a:19:81:97:45:ec:2e:
d8:51:24:b3:12:29:ab:97:f6:4e:33:38:9a:91:c7:ac:09:2a:
d4:7e:79:25:30:8d:a6:12:bc:62:fb:70:76:af:ad:f6:25:17:
04:3d:e8:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 10:26:26 2025 by rpki-client