Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/3bf430-00b1-4853-a239-2f165418eb68/1/hmdXn-dB-sMpnUGRvAONcQxDg3g.mft
File: hmdXn-dB-sMpnUGRvAONcQxDg3g.mft (raw, json)
Hash identifier: uzIYj5+ZBCy8SEPC45FareogpnJoWtIF7SjCPULbOx8=
Subject key identifier: 95:B3:32:7B:7E:91:D0:85:A7:69:27:CC:A8:4E:F9:A9:52:47:E3:CA
Authority key identifier: 86:67:57:9F:E7:41:FA:C3:29:9D:41:91:BC:03:8D:71:0C:43:83:78
Certificate issuer: /CN=8667579fe741fac3299d4191bc038d710c438378
Certificate serial: 019582B83EA27D770E35C96A41BCC941EA87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hmdXn-dB-sMpnUGRvAONcQxDg3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/3bf430-00b1-4853-a239-2f165418eb68/1/hmdXn-dB-sMpnUGRvAONcQxDg3g.mft
Manifest number: 0699
Signing time: Tue 11 Mar 2025 01:01:07 +0000
Manifest this update: Tue 11 Mar 2025 01:01:07 +0000
Manifest next update: Wed 12 Mar 2025 01:01:07 +0000
Files and hashes: 1: hmdXn-dB-sMpnUGRvAONcQxDg3g.crl (hash: 149ocNUe7qcwgs3fOk1tBSw4E5h8KYW3CslsbXX1ql4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:82:b8:3e:a2:7d:77:0e:35:c9:6a:41:bc:c9:41:ea:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8667579fe741fac3299d4191bc038d710c438378
Validity
Not Before: Mar 11 01:01:07 2025 GMT
Not After : Mar 12 01:01:07 2025 GMT
Subject: CN=95b3327b7e91d085a76927cca84ef9a95247e3ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a4:26:0c:6a:5c:95:29:6a:2a:24:5a:36:2e:
aa:4e:e8:4b:c0:5c:33:09:41:10:62:51:6f:1e:d8:
10:a9:ce:34:16:ee:d7:01:f9:10:83:7a:df:c3:ab:
96:b9:29:63:a3:54:dd:ae:0e:df:d9:24:42:4a:2c:
b1:f4:ab:98:a1:be:e7:1c:fa:15:ab:0b:c3:4f:05:
c0:6a:f7:82:f0:f8:e2:eb:bf:49:7b:04:eb:c9:26:
7d:ea:ed:e4:4d:1b:29:86:e0:a8:b3:bb:eb:22:a8:
36:fa:a8:68:75:42:f0:e4:50:4b:65:8b:9d:ec:f8:
f9:56:74:c2:a6:d9:d2:29:0c:ce:5d:33:47:1b:c9:
15:55:eb:a4:d0:30:a1:80:84:0d:5a:50:a3:48:f6:
05:ad:81:71:7a:44:9b:a0:41:ee:c9:2d:bb:0a:34:
76:8b:9d:af:da:98:5d:01:53:6d:df:06:3a:20:61:
90:18:46:56:09:ae:a5:8f:89:b6:e3:d1:7b:40:b9:
ca:86:d7:2f:db:79:98:cc:fe:8d:37:04:2c:47:43:
8c:14:d6:f8:97:0c:a4:cb:74:af:bd:cb:a9:b0:95:
f0:64:e0:c9:75:1d:f6:86:fd:78:e7:f8:11:4c:98:
42:8f:1e:25:1e:b3:1c:1b:26:aa:d8:e6:c2:75:aa:
c0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B3:32:7B:7E:91:D0:85:A7:69:27:CC:A8:4E:F9:A9:52:47:E3:CA
X509v3 Authority Key Identifier:
keyid:86:67:57:9F:E7:41:FA:C3:29:9D:41:91:BC:03:8D:71:0C:43:83:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hmdXn-dB-sMpnUGRvAONcQxDg3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3bf430-00b1-4853-a239-2f165418eb68/1/hmdXn-dB-sMpnUGRvAONcQxDg3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/3bf430-00b1-4853-a239-2f165418eb68/1/hmdXn-dB-sMpnUGRvAONcQxDg3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:bd:04:06:0e:64:e2:1b:39:27:44:b0:7d:20:8c:5b:b0:b7:
9f:45:e1:28:15:5c:74:1d:f4:2c:fd:51:a7:0b:0d:5c:b5:10:
f6:00:5e:26:b0:6c:ff:5f:00:56:b7:b2:b3:23:9f:6c:69:d7:
26:bc:8c:ee:b4:7a:19:af:8b:e6:12:9d:7f:ec:b4:b9:6f:fb:
94:16:45:28:2e:70:74:54:9d:00:f4:67:da:f8:fc:8a:60:8d:
5d:00:0a:76:8d:d2:26:6b:37:1c:ae:1a:5a:31:99:7e:62:39:
25:08:95:01:1b:6c:c1:f9:c7:a8:e5:b2:14:db:5b:8e:a3:9a:
b1:e8:66:ae:0c:2c:c5:72:e9:c5:71:66:4c:91:d9:d3:c1:c8:
0f:4e:8c:8a:fb:52:06:0b:df:2d:e9:17:48:0d:6d:1e:f2:d2:
1b:33:ef:93:83:d9:7f:4d:de:12:95:2f:a5:7f:23:88:30:c9:
4d:1e:5b:2a:63:c7:fb:88:9e:9a:f2:b4:e1:cd:28:20:ca:5d:
2b:f2:3a:a4:cc:a1:e4:4e:68:21:32:07:2c:a4:0e:00:46:af:
79:36:13:2e:68:e1:08:a8:48:86:0c:74:5a:3d:df:fb:e0:db:
c7:98:34:8c:84:bb:30:d5:86:17:43:fb:4d:f1:1f:2b:c1:1f:
7c:85:5e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:39:41 2025 by rpki-client