Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/a5ebcb-f011-4801-94ff-b82e53010597/1/M4YMg3IhmQcJz1rqKduBaJU-feA.mft
File: M4YMg3IhmQcJz1rqKduBaJU-feA.mft (raw, json)
Hash identifier: o6lx7itpMHIjU2+fnKBUBf1WbbE20aX3gPBycuX0Xzc=
Subject key identifier: 62:D4:56:74:EA:2A:0D:36:8A:D0:3D:33:77:AE:2A:2A:DC:3B:52:45
Authority key identifier: 33:86:0C:83:72:21:99:07:09:CF:5A:EA:29:DB:81:68:95:3E:7D:E0
Certificate issuer: /CN=33860c837221990709cf5aea29db8168953e7de0
Certificate serial: 0195DFD961FE0DE1496E7E3A8E5229FADF6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M4YMg3IhmQcJz1rqKduBaJU-feA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/a5ebcb-f011-4801-94ff-b82e53010597/1/M4YMg3IhmQcJz1rqKduBaJU-feA.mft
Manifest number: 05F8
Signing time: Sat 29 Mar 2025 03:02:00 +0000
Manifest this update: Sat 29 Mar 2025 03:02:00 +0000
Manifest next update: Sun 30 Mar 2025 03:02:00 +0000
Files and hashes: 1: M4YMg3IhmQcJz1rqKduBaJU-feA.crl (hash: uET/99Og6D625rfI3XOsXTRfXi2xu0uXKHAmLs3qG48=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:df:d9:61:fe:0d:e1:49:6e:7e:3a:8e:52:29:fa:df:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33860c837221990709cf5aea29db8168953e7de0
Validity
Not Before: Mar 29 03:02:00 2025 GMT
Not After : Mar 30 03:02:00 2025 GMT
Subject: CN=62d45674ea2a0d368ad03d3377ae2a2adc3b5245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f8:1d:5d:27:44:8a:40:bf:0e:81:8d:b1:d7:
e7:78:a9:e6:1f:d2:f8:c8:c9:37:93:7b:bd:3a:be:
6f:0f:6a:ec:52:a0:80:e8:b7:42:f9:d5:e5:56:66:
8b:81:e3:ae:56:7c:96:ca:3d:7c:af:a0:6b:d8:1b:
53:2a:2b:00:8a:ef:fc:fd:38:f8:ac:e6:87:5f:0f:
ad:f3:ca:c3:dd:cc:ec:5f:6a:8a:7b:8d:25:ea:bd:
73:ad:06:c4:b2:2e:a0:f2:30:f9:da:ee:91:11:b3:
dd:4c:e3:aa:03:b3:b8:57:d8:01:82:15:85:d4:34:
04:a5:22:c3:bd:b8:5c:93:24:3f:05:1d:66:be:c5:
e4:06:b8:14:a7:c4:4a:21:39:a4:d0:ea:5f:40:62:
7e:4d:72:c3:0f:0e:a5:6d:62:18:58:55:0a:83:65:
aa:20:20:d9:d7:b2:f4:ca:98:29:9a:c7:9b:4f:0c:
43:60:97:63:19:d6:04:90:23:cd:cd:74:ba:25:76:
70:3b:9e:b1:9a:7b:3e:d8:c2:06:6a:e7:85:3d:85:
22:f4:dd:01:aa:28:2d:09:40:15:22:4f:63:d0:01:
e9:3b:29:70:31:36:2c:6a:39:59:55:79:31:8d:af:
b9:bb:b4:62:40:ec:fe:85:9c:8d:ce:9a:4b:df:36:
c8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:D4:56:74:EA:2A:0D:36:8A:D0:3D:33:77:AE:2A:2A:DC:3B:52:45
X509v3 Authority Key Identifier:
keyid:33:86:0C:83:72:21:99:07:09:CF:5A:EA:29:DB:81:68:95:3E:7D:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M4YMg3IhmQcJz1rqKduBaJU-feA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/a5ebcb-f011-4801-94ff-b82e53010597/1/M4YMg3IhmQcJz1rqKduBaJU-feA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/a5ebcb-f011-4801-94ff-b82e53010597/1/M4YMg3IhmQcJz1rqKduBaJU-feA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:44:f8:cc:77:6c:1f:17:c4:cf:2a:42:29:31:b3:26:72:ef:
bf:b3:69:86:fd:c0:ba:36:05:ee:81:16:b6:0a:a4:6a:f8:97:
99:b2:0d:2d:08:18:90:94:e4:59:66:d3:9e:c8:87:e4:9b:63:
6c:5d:58:2e:ca:a9:bd:dc:a1:d5:f4:15:bf:74:8b:78:f2:2b:
9d:8d:7a:d1:64:5e:61:d0:a1:eb:6c:45:9c:b9:a6:fd:d5:99:
91:27:8d:49:db:06:43:e0:cd:23:5d:84:64:a5:eb:ef:74:25:
d9:97:d9:b9:4d:a2:1d:36:ab:08:34:53:7c:b9:0c:ba:a4:c6:
6a:be:51:0b:6f:59:2d:16:17:ed:e9:71:e8:d5:8c:a4:07:22:
05:e1:90:7d:2c:57:de:b7:b4:2b:55:ed:f7:ed:14:30:87:1e:
6e:63:aa:d8:ec:a5:55:83:3f:de:90:da:ce:51:ab:cb:8f:cd:
f3:2c:38:e1:16:f5:ef:bf:df:af:c9:76:9e:cd:4b:17:af:f1:
20:61:2e:a1:1b:c3:b2:ea:33:53:3c:c9:c4:53:03:33:0a:d7:
44:b3:9f:e9:9c:04:9d:7b:ba:7f:ad:52:37:16:28:14:21:e5:
85:38:78:27:f9:b2:4e:67:62:31:21:06:e0:c6:fc:25:69:4d:
d7:5e:5a:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:09:22 2025 by rpki-client