Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
File: 8KSyRplUYkr0JKVO8WdhwhWLJIM.mft (raw, json)
Hash identifier: diQIxv4O62FiruUx4iM5hUSwjlEiF6jLmO0KConobK0=
Subject key identifier: 75:73:79:3A:00:36:78:9E:DB:EA:3E:0E:5C:8D:02:A9:94:B5:F8:2E
Authority key identifier: F0:A4:B2:46:99:54:62:4A:F4:24:A5:4E:F1:67:61:C2:15:8B:24:83
Certificate issuer: /CN=f0a4b2469954624af424a54ef16761c2158b2483
Certificate serial: 0198C00E8BF7AC085C16A4695C3769A41456
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
Manifest number: 159B
Signing time: Tue 19 Aug 2025 02:00:35 +0000
Manifest this update: Tue 19 Aug 2025 02:00:35 +0000
Manifest next update: Wed 20 Aug 2025 02:00:35 +0000
Files and hashes: 1: 8KSyRplUYkr0JKVO8WdhwhWLJIM.crl (hash: BcEvZZCReOxZfxcpjgc0dR0oCVZZ/mfaKd10x/nC9X8=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:c0:0e:8b:f7:ac:08:5c:16:a4:69:5c:37:69:a4:14:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a4b2469954624af424a54ef16761c2158b2483
Validity
Not Before: Aug 19 02:00:35 2025 GMT
Not After : Aug 20 02:00:35 2025 GMT
Subject: CN=7573793a0036789edbea3e0e5c8d02a994b5f82e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b8:04:3b:a1:c2:61:21:25:90:50:92:4d:e9:
b8:b4:b6:a0:12:74:7a:8a:d1:9c:77:25:16:24:00:
d1:59:0d:9b:d9:c5:d7:34:a0:46:c2:60:41:ea:27:
29:34:ca:1d:81:a3:f5:a0:7d:9f:96:ad:58:63:a0:
11:d7:97:f0:c0:65:be:88:2f:3f:90:1a:67:57:b6:
eb:3e:f5:d4:b2:52:5c:81:fd:23:61:d3:3f:96:57:
f2:a4:47:6d:00:9a:c6:c5:9b:80:ea:84:ec:71:c1:
a9:3b:6c:db:da:08:91:6f:8c:20:d7:d4:26:ac:c7:
d0:17:57:42:b7:e5:92:6f:68:92:c6:e4:54:64:d6:
c0:5d:16:91:2e:8e:d0:9b:34:81:3c:f8:33:99:72:
eb:73:f2:b8:be:86:31:d1:82:53:0c:bc:51:f3:25:
76:e4:5a:2b:79:00:c2:64:35:16:72:ab:2a:70:ed:
72:aa:16:ed:cd:0a:e5:1d:f1:48:cc:4d:7f:05:db:
eb:59:e7:19:11:6a:c0:8b:c1:33:29:68:aa:0a:86:
01:82:5f:24:70:d1:6f:d0:b6:9f:e1:86:d3:d0:19:
5c:46:22:a9:9d:00:9d:75:ba:19:30:27:f3:27:ed:
df:8b:55:d9:60:39:34:ba:5b:d3:d9:35:15:98:f9:
5e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:73:79:3A:00:36:78:9E:DB:EA:3E:0E:5C:8D:02:A9:94:B5:F8:2E
X509v3 Authority Key Identifier:
keyid:F0:A4:B2:46:99:54:62:4A:F4:24:A5:4E:F1:67:61:C2:15:8B:24:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KSyRplUYkr0JKVO8WdhwhWLJIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/52c916-fd6f-41c0-8f3a-58559a94c426/1/8KSyRplUYkr0JKVO8WdhwhWLJIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:68:46:86:fe:90:62:21:73:21:ef:a3:05:c5:49:11:45:e8:
bc:e7:cb:a3:8e:4e:4d:a4:a5:93:1d:e4:99:eb:70:07:8e:75:
a6:52:db:0d:2c:b0:2b:f3:dc:2f:73:a4:49:da:09:c2:73:fd:
6b:cd:bc:37:e5:e6:41:d1:1f:79:56:1a:3f:08:92:d0:34:e1:
8a:7a:0a:ba:b9:b5:b7:ee:26:69:e3:01:62:3f:c2:10:21:84:
58:61:9d:53:be:8a:3a:52:a3:7c:09:b8:dc:fe:66:22:1e:9e:
5a:10:3c:9e:67:44:c6:7e:c3:70:50:bf:a7:c3:12:40:4e:66:
aa:7c:7d:99:44:5b:db:5a:e8:62:7d:86:0f:db:65:fe:e5:05:
91:29:9a:01:3b:69:4c:6a:c8:b1:c3:5d:dc:aa:3f:1e:b5:d4:
f5:fc:7a:e9:9d:91:a0:cc:1e:51:80:68:bb:7f:a5:f0:08:40:
3c:9d:1f:59:2c:11:11:22:62:7d:69:35:83:96:bc:be:e8:9e:
36:24:3a:72:a4:19:33:07:d4:bc:69:71:5d:6b:6f:36:e3:52:
af:5c:fc:67:75:7c:1b:4a:bc:7d:c4:0a:d2:36:61:a0:f5:36:
5e:f3:4b:9c:ec:73:98:d0:f5:54:c4:5f:22:c3:d4:38:fd:f9:
dc:74:99:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:35:37 2025 by rpki-client