Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/038449-a99b-4e9c-8ed6-46127fd95aaa/1/0kNgnAcZXiAiEHIziNHC5IGAqt0.mft
File: 0kNgnAcZXiAiEHIziNHC5IGAqt0.mft (raw, json)
Hash identifier: UjrYPppcrgmQgeKVBlHffKb3EOqJtRj8dqK4qRGpbSI=
Subject key identifier: A0:A0:26:35:6F:37:1D:37:79:BC:9D:DA:62:DD:1D:72:7E:E2:F1:A9
Authority key identifier: D2:43:60:9C:07:19:5E:20:22:10:72:33:88:D1:C2:E4:81:80:AA:DD
Certificate issuer: /CN=d243609c07195e202210723388d1c2e48180aadd
Certificate serial: 0194A6902CDF76739A259B6A17A01EBD1275
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kNgnAcZXiAiEHIziNHC5IGAqt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/038449-a99b-4e9c-8ed6-46127fd95aaa/1/0kNgnAcZXiAiEHIziNHC5IGAqt0.mft
Manifest number: 08C1
Signing time: Mon 27 Jan 2025 07:00:53 +0000
Manifest this update: Mon 27 Jan 2025 07:00:53 +0000
Manifest next update: Tue 28 Jan 2025 07:00:53 +0000
Files and hashes: 1: 0kNgnAcZXiAiEHIziNHC5IGAqt0.crl (hash: KCUAMBqq5I9NE2KpGuv0VT+e+6mQPuO+PyFNxAUTvno=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:a6:90:2c:df:76:73:9a:25:9b:6a:17:a0:1e:bd:12:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d243609c07195e202210723388d1c2e48180aadd
Validity
Not Before: Jan 27 07:00:53 2025 GMT
Not After : Jan 28 07:00:53 2025 GMT
Subject: CN=a0a026356f371d3779bc9dda62dd1d727ee2f1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:0e:a3:54:78:23:fb:59:bc:a5:f2:5c:ae:29:
75:a7:d0:53:7b:c7:3e:83:a8:50:d7:75:1e:b7:d8:
51:c2:6f:91:b3:8a:a8:c4:e4:d7:79:08:29:a1:87:
39:0b:ec:47:49:94:b7:11:39:f8:0e:91:5c:0c:db:
24:38:83:86:e4:9a:08:74:50:16:02:05:a6:38:bf:
7c:6f:2f:cc:3a:d4:be:9f:e3:81:45:59:82:36:7b:
2e:c9:cb:01:33:7f:d3:56:cb:b1:b6:f8:f8:4e:16:
af:86:e6:69:df:9b:4f:f2:9d:81:8d:05:86:cc:86:
a8:e8:b9:8c:70:39:42:e3:1b:9b:8f:53:ad:4e:a5:
95:43:bb:73:fb:48:6c:e6:62:98:a8:e5:e4:bf:ae:
bc:d5:6d:63:ac:1c:9a:19:69:29:2b:43:a8:dc:68:
4c:52:33:1b:b0:25:b2:57:9b:1b:96:76:0d:6b:81:
f6:c8:1f:da:6c:d7:52:61:23:5a:10:84:23:11:88:
1d:04:a4:11:50:6f:9b:fc:34:cc:ad:8d:8b:9e:a6:
b9:81:82:74:b2:a3:a5:a1:fe:8f:53:8a:e7:be:d3:
df:14:4e:68:29:03:d7:be:76:02:e2:e2:7f:75:f3:
28:8b:c0:54:b6:08:c9:fb:00:38:ef:96:39:dc:14:
af:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:A0:26:35:6F:37:1D:37:79:BC:9D:DA:62:DD:1D:72:7E:E2:F1:A9
X509v3 Authority Key Identifier:
keyid:D2:43:60:9C:07:19:5E:20:22:10:72:33:88:D1:C2:E4:81:80:AA:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kNgnAcZXiAiEHIziNHC5IGAqt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/038449-a99b-4e9c-8ed6-46127fd95aaa/1/0kNgnAcZXiAiEHIziNHC5IGAqt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/038449-a99b-4e9c-8ed6-46127fd95aaa/1/0kNgnAcZXiAiEHIziNHC5IGAqt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:44:a3:dd:1f:00:62:d9:7b:f3:01:07:54:51:0b:b4:0b:22:
fd:35:22:d0:35:e3:55:6c:a1:53:bf:fa:e1:af:e5:08:27:b2:
29:d9:f9:a1:fb:80:df:31:22:d6:d0:04:d8:4a:1b:38:7d:6d:
3b:fb:45:c4:ba:e6:ea:c8:f3:16:1c:43:b5:b4:65:55:bf:83:
7e:d5:4e:70:ea:65:3d:3f:4e:6e:ef:b1:99:c6:b8:e6:6a:fc:
a3:26:7b:55:99:1a:a0:09:5b:20:56:33:16:40:9b:8f:08:56:
8e:dd:09:18:eb:2c:eb:0d:03:7d:da:64:b5:ad:e1:ed:d4:20:
a1:94:58:15:87:e7:95:60:d4:4c:20:a3:ae:98:2b:6e:83:1e:
a5:65:ac:af:12:bc:bf:87:2a:2c:eb:5a:5e:23:21:24:32:3e:
69:4f:ea:f0:ed:6f:60:74:78:83:cc:1a:29:81:dc:e5:f7:96:
e8:ed:f5:b4:cb:1e:8e:28:a9:86:bb:9d:b5:22:0e:fc:6b:4f:
8e:32:c5:13:5f:30:23:84:ff:b7:50:8f:65:5c:57:18:3f:5b:
d9:3a:63:ef:19:5a:1a:3d:df:8a:4a:97:71:73:a8:da:1e:be:
6c:39:de:d2:68:cd:ce:a0:9f:b8:05:f3:62:12:c9:33:f6:c0:
0a:e6:84:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 00:44:43 2025 by rpki-client