Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/0689ab-d8e4-4a4e-8793-481d075e62c3/1/K33FrWYAWqG23GCT-xHzWBp5UzU.mft
File: K33FrWYAWqG23GCT-xHzWBp5UzU.mft (raw, json)
Hash identifier: xCNjBmnJF4aU5HRTaCgPJHLrRS5bWyAu/6IMpEmzBII=
Subject key identifier: 4B:67:02:58:7C:75:2A:DE:75:A9:EC:BD:F4:3D:36:7B:27:1D:16:9E
Authority key identifier: 2B:7D:C5:AD:66:00:5A:A1:B6:DC:60:93:FB:11:F3:58:1A:79:53:35
Certificate issuer: /CN=2b7dc5ad66005aa1b6dc6093fb11f3581a795335
Certificate serial: 01959374A8D878BA9DC66E47AA352B9A764E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K33FrWYAWqG23GCT-xHzWBp5UzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/0689ab-d8e4-4a4e-8793-481d075e62c3/1/K33FrWYAWqG23GCT-xHzWBp5UzU.mft
Manifest number: 07E3
Signing time: Fri 14 Mar 2025 07:00:50 +0000
Manifest this update: Fri 14 Mar 2025 07:00:50 +0000
Manifest next update: Sat 15 Mar 2025 07:00:50 +0000
Files and hashes: 1: K33FrWYAWqG23GCT-xHzWBp5UzU.crl (hash: dWvOcX/1w4WYTxIZXx0Krzgk47U1MQdCCxKUtMfoeAo=)
2: bAAmYgSXJxW7DuOUs2kynICa5oQ.roa (hash: RwPSxGBIhdwvIJE2F5CHSeY9R8DODbrp6TJgxLwH+vc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:93:74:a8:d8:78:ba:9d:c6:6e:47:aa:35:2b:9a:76:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b7dc5ad66005aa1b6dc6093fb11f3581a795335
Validity
Not Before: Mar 14 07:00:50 2025 GMT
Not After : Mar 15 07:00:50 2025 GMT
Subject: CN=4b6702587c752ade75a9ecbdf43d367b271d169e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:44:68:a9:c9:29:ee:62:37:90:50:8e:f7:81:
80:f9:5c:a7:ea:c5:26:78:93:65:29:b4:3b:11:c1:
97:a4:05:ee:03:01:6a:8f:f0:34:8f:06:c6:3b:72:
f8:ab:a8:d0:cc:37:83:6a:8c:c8:3b:f9:20:0a:4c:
ae:1e:75:df:22:ba:79:e7:14:47:af:51:ef:4d:e2:
58:ef:3b:bd:30:14:25:95:88:a1:02:36:4c:01:30:
d6:12:94:53:fb:00:ed:30:78:af:e2:a9:a1:bd:20:
eb:2e:ec:1b:eb:f9:07:cc:2b:08:ca:82:f6:49:22:
be:f6:d8:82:5a:dd:6a:d6:03:11:9d:f1:ae:dc:80:
6b:e9:a1:2b:18:ee:81:a3:81:75:c5:e7:2f:b2:17:
1e:f3:f1:6f:f2:14:2b:c0:c3:94:19:d9:1a:bf:fc:
ee:a4:5b:41:be:03:56:e4:07:c5:e8:77:0b:6f:4c:
b2:a0:00:37:12:92:46:3e:f8:bb:77:c9:b5:ce:73:
10:b4:06:e1:52:46:59:7c:cb:d9:cc:3d:11:a1:1c:
24:3f:ba:53:0f:73:aa:51:be:83:9c:05:5b:cc:4e:
94:7d:a7:a7:30:4b:cc:90:68:35:d4:32:8b:27:75:
b4:66:78:50:12:80:7c:ec:8b:cc:12:63:2c:75:fd:
e8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:67:02:58:7C:75:2A:DE:75:A9:EC:BD:F4:3D:36:7B:27:1D:16:9E
X509v3 Authority Key Identifier:
keyid:2B:7D:C5:AD:66:00:5A:A1:B6:DC:60:93:FB:11:F3:58:1A:79:53:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K33FrWYAWqG23GCT-xHzWBp5UzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/0689ab-d8e4-4a4e-8793-481d075e62c3/1/K33FrWYAWqG23GCT-xHzWBp5UzU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/0689ab-d8e4-4a4e-8793-481d075e62c3/1/K33FrWYAWqG23GCT-xHzWBp5UzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:e7:e5:34:0e:d0:6f:b0:57:79:8b:2a:84:34:a9:f6:05:61:
9a:13:3f:be:39:14:83:37:9b:4d:bf:05:7a:b4:57:ef:c4:ce:
f0:32:94:e2:05:0b:a6:e9:c5:9c:7a:30:95:94:e2:a6:8d:0c:
c0:a3:74:19:80:55:af:52:28:09:55:1f:75:b9:11:c0:a5:2a:
fd:7f:f5:37:1b:74:ce:6d:d8:14:f2:1f:a2:fa:c3:22:11:ae:
8d:9a:a5:11:cb:7f:0a:3f:82:60:69:34:87:86:68:56:0d:2a:
2e:8b:37:c7:59:92:d8:ae:1b:29:54:2c:6a:c8:e1:5c:db:e9:
e4:12:60:5a:fc:e7:b1:d2:28:36:99:41:a0:d2:29:19:fb:07:
bb:79:a5:58:70:30:43:a0:f2:af:53:69:cc:e0:2a:4f:2d:a0:
6b:78:e1:04:85:dc:34:65:2e:80:6c:87:25:c8:7e:a8:4f:6c:
b4:b6:d3:00:df:16:7d:68:99:f0:da:bf:0e:54:a9:d7:75:5a:
1d:24:37:01:c8:c6:1e:e4:11:16:f1:d4:4b:59:14:6b:ee:27:
a2:10:32:f6:0a:99:b1:b1:4c:9a:12:c2:02:82:2a:7b:e7:7f:
0f:77:4f:d6:49:09:f1:6f:39:de:c2:50:bd:8d:3e:5c:ac:02:
43:c4:84:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:21:38 2025 by rpki-client