Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/a441c6-aaa8-4250-a7ec-a4a28bfa488e/1/AGXxbaYGeD8wH3CKXmtP1f_UMug.mft
File: AGXxbaYGeD8wH3CKXmtP1f_UMug.mft (raw, json)
Hash identifier: vbt41wuRrhxQvYQp5Qa/PYCxB9Fusg/lHp4CvxrYLyY=
Subject key identifier: 96:1E:66:FE:02:24:3E:85:F9:96:E7:12:D6:91:DE:33:48:25:62:EC
Authority key identifier: 00:65:F1:6D:A6:06:78:3F:30:1F:70:8A:5E:6B:4F:D5:FF:D4:32:E8
Certificate issuer: /CN=0065f16da606783f301f708a5e6b4fd5ffd432e8
Certificate serial: 0199123D67D0BFD11F6172C5071532B2D318
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AGXxbaYGeD8wH3CKXmtP1f_UMug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/a441c6-aaa8-4250-a7ec-a4a28bfa488e/1/AGXxbaYGeD8wH3CKXmtP1f_UMug.mft
Manifest number: 0B05
Signing time: Thu 04 Sep 2025 01:00:37 +0000
Manifest this update: Thu 04 Sep 2025 01:00:37 +0000
Manifest next update: Fri 05 Sep 2025 01:00:37 +0000
Files and hashes: 1: AGXxbaYGeD8wH3CKXmtP1f_UMug.crl (hash: NhvxWizjk+4aZmgxIDjt13LjEJlVpdF7JvERhlSq9TI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:12:3d:67:d0:bf:d1:1f:61:72:c5:07:15:32:b2:d3:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0065f16da606783f301f708a5e6b4fd5ffd432e8
Validity
Not Before: Sep 4 01:00:37 2025 GMT
Not After : Sep 5 01:00:37 2025 GMT
Subject: CN=961e66fe02243e85f996e712d691de33482562ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c8:89:da:77:7d:33:74:ef:4b:7e:17:46:4b:
cf:87:51:be:d0:52:06:fd:e3:2f:c9:d5:f9:6d:91:
30:a9:42:67:d2:45:1a:36:b0:0f:10:b0:5f:8f:d6:
77:68:8a:fd:6f:d6:a5:8f:3f:dd:17:6c:b5:91:84:
fc:74:99:d5:7d:2a:e8:52:66:55:1b:ca:3a:6f:ed:
64:11:54:86:e5:2e:75:18:da:b9:12:56:d1:8c:9b:
ef:db:d0:2f:45:33:5a:a4:72:dc:e6:b7:7c:e8:0e:
a0:45:b8:df:68:fd:32:5c:87:87:02:89:d6:8c:20:
0c:f8:8f:74:da:af:1a:6c:88:a7:c9:7a:71:a0:88:
df:12:5b:6d:40:9a:fe:5e:bc:ac:a9:da:40:3a:32:
42:19:48:11:2b:40:7a:fa:df:c7:74:3f:65:e6:d4:
d9:b5:98:18:94:04:11:66:1d:8f:b6:a5:1d:66:b3:
a1:5f:2e:dd:6b:02:d3:55:4e:10:e3:db:f1:ab:58:
df:12:2a:3a:72:db:69:7c:05:72:5d:02:a9:bb:a5:
08:be:ed:a5:a4:2e:8e:33:89:03:07:d4:3f:64:54:
45:f8:fd:c4:f4:5b:2f:7f:85:9b:5d:55:09:8e:ec:
31:76:f0:3e:20:9b:48:6d:5c:ce:3f:51:6d:99:d0:
ef:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:1E:66:FE:02:24:3E:85:F9:96:E7:12:D6:91:DE:33:48:25:62:EC
X509v3 Authority Key Identifier:
keyid:00:65:F1:6D:A6:06:78:3F:30:1F:70:8A:5E:6B:4F:D5:FF:D4:32:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AGXxbaYGeD8wH3CKXmtP1f_UMug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/a441c6-aaa8-4250-a7ec-a4a28bfa488e/1/AGXxbaYGeD8wH3CKXmtP1f_UMug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/a441c6-aaa8-4250-a7ec-a4a28bfa488e/1/AGXxbaYGeD8wH3CKXmtP1f_UMug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:58:0d:5f:4a:2f:f0:03:7f:39:bd:2b:68:5e:d2:f3:3e:6e:
f4:4c:7f:81:0f:71:b4:d4:15:5d:ee:6c:c4:c7:5f:fa:b8:57:
6b:16:9a:05:a5:ff:38:06:3b:14:8b:46:ec:d7:87:15:b7:41:
31:ba:35:fe:00:1b:8f:71:7c:04:d5:8a:10:41:5d:b0:de:b4:
36:b0:28:df:62:f6:02:35:6e:39:8e:32:e6:55:d1:12:34:1a:
10:1a:eb:7e:78:99:e2:df:db:97:b3:1e:99:dd:5e:5c:3d:e9:
e9:30:c7:51:df:4f:15:c3:43:02:b3:e2:4b:6b:9b:b7:2e:1d:
73:56:4e:e6:d1:22:e6:19:25:7f:2a:42:59:4a:2c:aa:ee:f8:
eb:55:8a:d2:95:08:f8:97:e6:e7:ec:aa:02:aa:52:f6:57:c5:
81:36:5b:5e:f0:51:25:34:92:d6:d8:92:82:3d:71:8b:39:ef:
c8:57:40:2b:eb:26:3e:17:ee:6f:df:d1:0a:dd:fa:6c:00:02:
62:3d:ad:38:95:6b:68:f6:71:bb:df:d1:01:23:d7:1f:aa:53:
40:df:61:1e:6e:31:b7:48:86:f2:76:2e:d3:b2:7e:c0:80:8b:
81:6e:7d:63:81:8d:f6:c2:67:43:5f:9b:61:b5:3f:8f:86:45:
c5:06:e1:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:39 2025 by rpki-client