Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/356f20-226e-4339-9d40-65de97e2757c/1/z11k85hBuOQkhzhDPDUl0qRHzV0.mft
File: z11k85hBuOQkhzhDPDUl0qRHzV0.mft (raw, json)
Hash identifier: xqtpqnv5zSdGYE25rPp/yZ5/sceelx2uTeSw3J3b3H0=
Subject key identifier: C5:39:90:79:19:2A:4D:67:DE:22:AF:67:BD:EB:1E:A2:9B:A1:DB:33
Authority key identifier: CF:5D:64:F3:98:41:B8:E4:24:87:38:43:3C:35:25:D2:A4:47:CD:5D
Certificate issuer: /CN=cf5d64f39841b8e4248738433c3525d2a447cd5d
Certificate serial: 01943E477A9F9EEFB99260E01CB812E90EDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z11k85hBuOQkhzhDPDUl0qRHzV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/356f20-226e-4339-9d40-65de97e2757c/1/z11k85hBuOQkhzhDPDUl0qRHzV0.mft
Manifest number: 0F4E
Signing time: Tue 07 Jan 2025 01:00:59 +0000
Manifest this update: Tue 07 Jan 2025 01:00:59 +0000
Manifest next update: Wed 08 Jan 2025 01:00:59 +0000
Files and hashes: 1: z11k85hBuOQkhzhDPDUl0qRHzV0.crl (hash: r8SHE8iz9clbMnJlu815jFDNO8xKMmg9tta9rESn0PM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:3e:47:7a:9f:9e:ef:b9:92:60:e0:1c:b8:12:e9:0e:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf5d64f39841b8e4248738433c3525d2a447cd5d
Validity
Not Before: Jan 7 01:00:59 2025 GMT
Not After : Jan 8 01:00:59 2025 GMT
Subject: CN=c5399079192a4d67de22af67bdeb1ea29ba1db33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ec:d4:d8:c5:14:a8:cd:ea:56:7f:2b:55:fb:
47:bc:ca:b7:f5:69:5a:eb:4b:aa:40:d8:59:93:1a:
c3:df:51:7e:c0:96:f2:b1:5b:2c:f3:80:9c:4a:08:
a5:d6:d2:b4:46:6f:d7:38:8a:87:0a:08:2b:bc:2b:
93:23:a0:2e:85:d3:e9:d5:b0:f7:e2:89:fc:ae:39:
8c:5f:08:22:12:b1:45:eb:21:3e:6f:40:6b:b9:0b:
05:5e:7d:da:47:51:74:4b:b2:21:5e:ac:fd:84:d7:
d9:8e:7f:b5:f5:c8:89:89:e4:d6:90:58:ee:cb:48:
f8:c9:3c:ef:ec:bf:c9:be:9e:84:4b:d1:19:7f:73:
ca:09:51:8b:56:4b:cf:82:68:67:81:fa:0c:ab:73:
52:68:1f:65:90:83:f1:1e:7f:d7:c8:d2:1a:ff:84:
82:a2:ad:9d:e3:f1:2a:9e:22:13:68:6d:7c:ef:ab:
c7:b3:77:a1:b4:0c:b2:8b:11:7c:40:71:33:97:a0:
4e:31:04:76:5d:7f:55:6e:39:d5:6e:e6:24:32:5c:
33:ef:37:58:54:26:51:41:fb:fe:d2:64:65:af:01:
74:db:1c:12:bd:03:14:a5:b8:b0:81:8d:0e:51:3b:
b5:91:87:3e:f1:ca:94:cb:c4:d8:53:48:64:24:51:
24:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:39:90:79:19:2A:4D:67:DE:22:AF:67:BD:EB:1E:A2:9B:A1:DB:33
X509v3 Authority Key Identifier:
keyid:CF:5D:64:F3:98:41:B8:E4:24:87:38:43:3C:35:25:D2:A4:47:CD:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z11k85hBuOQkhzhDPDUl0qRHzV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/356f20-226e-4339-9d40-65de97e2757c/1/z11k85hBuOQkhzhDPDUl0qRHzV0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/356f20-226e-4339-9d40-65de97e2757c/1/z11k85hBuOQkhzhDPDUl0qRHzV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:22:ce:4e:42:f0:4f:62:05:9d:1d:91:05:a2:e8:d0:98:06:
43:2a:8d:b1:1f:7f:7c:19:50:2c:ac:6c:38:37:f9:d5:78:f8:
91:73:72:f0:21:62:a9:7d:1b:2b:42:78:95:09:4d:a1:ef:fb:
82:5e:65:e8:f4:3f:d5:b8:c5:55:42:9b:df:3e:90:49:38:12:
55:ea:c5:0f:04:d8:ca:32:fb:fa:4e:ad:33:25:7e:eb:3b:f6:
43:2f:72:d1:8d:96:61:4b:c8:78:3b:0f:e9:1c:b7:70:a9:6b:
df:18:fa:03:85:39:c6:42:79:7c:81:91:da:84:54:23:d1:77:
51:8b:03:c8:66:44:ba:c2:3e:44:9e:2b:08:7c:1e:9d:e6:cc:
66:ee:07:75:7b:f8:ef:a8:c6:72:12:6a:30:83:28:55:69:3a:
cc:ac:16:56:83:6a:d5:1c:63:af:f5:d6:e9:28:9c:b6:3f:60:
17:87:93:e6:fa:6e:2c:ad:15:44:65:e6:68:8c:dd:71:7c:3c:
51:27:07:ec:9e:2f:22:e8:c3:84:0a:2e:f3:83:d1:89:08:7b:
ee:74:bc:36:ca:21:00:28:df:de:d2:64:a7:1b:1f:bc:16:ee:
3c:64:f4:79:81:04:bd:cd:37:91:fb:42:94:1b:12:b6:54:a9:
0e:32:49:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 13:32:01 2025 by rpki-client