Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/973a9c-19a3-4448-9e6b-4d45ab641655/1/CpywsnmGsNq0gTKBBQN_kKR91vk.mft
File: CpywsnmGsNq0gTKBBQN_kKR91vk.mft (raw, json)
Hash identifier: bTLZFLIeYku2Vib26qQtG4nMEIgdwkPjtyDe2eQ3OS8=
Subject key identifier: 04:B6:08:4F:C5:AC:04:27:38:0A:89:FF:0E:67:61:00:09:79:4D:BA
Authority key identifier: 0A:9C:B0:B2:79:86:B0:DA:B4:81:32:81:05:03:7F:90:A4:7D:D6:F9
Certificate issuer: /CN=0a9cb0b27986b0dab481328105037f90a47dd6f9
Certificate serial: 018FBD5C6DA56555AB5A86DFB23588EDF7AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CpywsnmGsNq0gTKBBQN_kKR91vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/973a9c-19a3-4448-9e6b-4d45ab641655/1/CpywsnmGsNq0gTKBBQN_kKR91vk.mft
Manifest number: 08CD
Signing time: Tue 28 May 2024 04:01:42 +0000
Manifest this update: Tue 28 May 2024 04:01:42 +0000
Manifest next update: Wed 29 May 2024 04:01:42 +0000
Files and hashes: 1: CpywsnmGsNq0gTKBBQN_kKR91vk.crl (hash: gRtk3pvU4p2rzFTJEKJPU/oKfPUZwN/RatM7MmxqNEw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:bd:5c:6d:a5:65:55:ab:5a:86:df:b2:35:88:ed:f7:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a9cb0b27986b0dab481328105037f90a47dd6f9
Validity
Not Before: May 28 04:01:42 2024 GMT
Not After : May 29 04:01:42 2024 GMT
Subject: CN=04b6084fc5ac0427380a89ff0e67610009794dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:68:55:f5:dd:b4:05:3e:9a:1f:35:6c:b7:a4:
95:f8:9e:38:f9:eb:ee:36:a0:c6:24:d2:1b:71:51:
bf:1b:ce:71:00:3c:73:7b:70:09:ae:8a:76:6a:4e:
2d:07:ab:e9:41:05:10:f3:97:f2:15:21:68:22:b7:
e8:25:39:8a:69:1c:ff:8d:2c:00:a1:56:a8:9f:f2:
9a:1d:87:02:4d:28:eb:f0:8e:05:13:a3:61:30:b8:
01:fa:32:26:73:cc:2f:ca:2e:2c:72:76:a5:3a:b3:
80:91:e3:97:9b:67:69:74:6e:41:21:cb:24:df:72:
23:89:3d:0e:6b:12:2a:3b:e2:cd:b9:34:14:41:5c:
15:0c:db:6a:1b:71:91:e7:34:85:56:8f:ba:31:6f:
c4:b0:cc:ee:95:82:7f:32:89:a2:b4:0a:11:02:cd:
24:22:47:91:83:94:5e:36:29:c5:c2:3c:72:34:c7:
0c:99:47:94:14:6d:4f:8e:a0:1f:1c:9b:19:31:36:
8e:54:9d:45:64:f5:ee:62:f7:95:b2:8e:38:9f:aa:
f8:c6:a7:d0:9e:19:0b:29:4e:9e:d2:24:bd:f0:0d:
aa:fd:81:2b:81:1a:12:ae:05:89:c3:1b:15:5d:d6:
58:0a:5e:cd:1f:2d:b9:e4:de:8d:aa:5a:fa:bc:89:
0f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B6:08:4F:C5:AC:04:27:38:0A:89:FF:0E:67:61:00:09:79:4D:BA
X509v3 Authority Key Identifier:
keyid:0A:9C:B0:B2:79:86:B0:DA:B4:81:32:81:05:03:7F:90:A4:7D:D6:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CpywsnmGsNq0gTKBBQN_kKR91vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/973a9c-19a3-4448-9e6b-4d45ab641655/1/CpywsnmGsNq0gTKBBQN_kKR91vk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/973a9c-19a3-4448-9e6b-4d45ab641655/1/CpywsnmGsNq0gTKBBQN_kKR91vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:ab:a3:a7:2f:9f:5e:3c:83:42:fc:b4:76:d2:74:d9:08:6b:
0a:26:d3:7f:12:79:9e:5d:a4:9b:4d:ee:c2:47:cf:0e:b1:df:
6d:e4:e6:c2:f0:1d:78:2d:65:a4:5d:cf:91:d5:f4:07:5f:cf:
a7:40:02:c6:5a:60:ff:05:e6:cb:b5:29:3c:00:3e:68:f9:72:
a2:ee:6e:23:63:3f:e9:9b:15:f5:c6:0a:d7:d1:85:a1:5b:f4:
92:cc:9e:97:32:b9:27:dc:74:d8:a7:74:e1:d7:30:79:8b:84:
e2:f2:34:5a:c5:23:13:ff:17:7a:fe:7c:6c:17:27:2d:da:40:
aa:ab:f3:1a:20:36:ee:00:94:8c:2d:aa:6f:3d:3a:dd:33:16:
63:11:49:71:aa:6c:f6:d2:46:ac:6d:39:6e:35:b2:1a:21:9a:
8d:c7:8b:a7:84:b4:cb:a1:4a:22:2b:0e:2d:57:80:1d:c3:f0:
4b:0f:5c:aa:56:09:52:0f:e4:66:85:cb:d9:51:d1:65:26:3e:
aa:84:cb:c8:21:b7:ce:6f:fc:30:c4:99:07:82:46:eb:9d:51:
c1:fa:45:b3:ee:e8:88:15:b6:d5:36:50:c3:1d:8f:60:d5:08:
d5:77:86:de:2f:cc:4a:21:e2:31:2f:f0:62:af:ab:f5:6b:3d:
e4:3c:bc:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:30 2024 by rpki-client on console-fra.rpki-client.org