Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/ab30b2-e32e-466a-b10c-b1005eb1e48c/1/XwMtciPxNqdVKSTWUPV8X9HXzc0.mft
File: XwMtciPxNqdVKSTWUPV8X9HXzc0.mft (raw, json)
Hash identifier: TU1YjiTDAv3yyo2GcHaILvcF8cCcoog/9lmC8kQuGC4=
Subject key identifier: CA:1F:46:84:ED:7E:A6:B7:19:35:33:81:B8:C9:20:17:00:7D:76:F0
Authority key identifier: 5F:03:2D:72:23:F1:36:A7:55:29:24:D6:50:F5:7C:5F:D1:D7:CD:CD
Certificate issuer: /CN=5f032d7223f136a7552924d650f57c5fd1d7cdcd
Certificate serial: 0195B2FFEB9A9CC0A3396173EC82EC3F4E78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XwMtciPxNqdVKSTWUPV8X9HXzc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/ab30b2-e32e-466a-b10c-b1005eb1e48c/1/XwMtciPxNqdVKSTWUPV8X9HXzc0.mft
Manifest number: 0857
Signing time: Thu 20 Mar 2025 10:01:11 +0000
Manifest this update: Thu 20 Mar 2025 10:01:11 +0000
Manifest next update: Fri 21 Mar 2025 10:01:11 +0000
Files and hashes: 1: XwMtciPxNqdVKSTWUPV8X9HXzc0.crl (hash: 06JaFjgOBpoQIdKJHvBg8K05Dfge9ETm5V2/SjRYyMM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:b2:ff:eb:9a:9c:c0:a3:39:61:73:ec:82:ec:3f:4e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f032d7223f136a7552924d650f57c5fd1d7cdcd
Validity
Not Before: Mar 20 10:01:11 2025 GMT
Not After : Mar 21 10:01:11 2025 GMT
Subject: CN=ca1f4684ed7ea6b719353381b8c92017007d76f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:24:e8:e1:1c:b5:92:e0:82:7f:43:fc:65:0c:
3c:29:df:b4:f0:87:e9:55:18:81:05:c2:49:5c:ba:
2d:56:aa:9d:5e:ac:ca:b0:28:78:9d:bd:8a:76:32:
e8:7f:25:e1:3b:07:e0:f2:e1:7c:52:a5:6d:56:d9:
b9:ac:be:85:9d:df:03:da:58:b3:6a:a7:80:92:2c:
cb:43:c0:6c:2c:45:f5:74:89:7e:96:3c:28:32:82:
b4:db:ab:49:8f:c4:6f:10:19:db:f1:66:50:dd:c4:
a7:ae:62:96:07:22:54:88:4b:f1:5f:ee:df:5b:af:
ee:28:f6:0d:1a:35:0b:eb:da:22:06:f4:67:56:88:
2c:4c:27:a1:02:19:3e:0f:0b:41:33:55:35:cf:ab:
0a:c1:87:0c:6b:22:c3:15:20:02:57:a5:64:54:96:
15:b8:24:86:ab:e8:12:22:e6:99:98:9d:09:63:d4:
42:5f:4e:bd:10:f2:e8:fd:0f:20:b4:c4:4a:70:92:
bc:a8:84:15:fd:d0:0e:f5:b4:ff:32:8c:f5:ee:7f:
34:35:9a:7f:be:db:aa:62:10:e7:65:51:59:0b:32:
cd:aa:23:20:92:82:da:ce:e6:fd:cf:21:7a:2a:70:
f5:d8:bd:6b:47:54:d6:bc:d0:fa:e2:2b:ab:1b:19:
35:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1F:46:84:ED:7E:A6:B7:19:35:33:81:B8:C9:20:17:00:7D:76:F0
X509v3 Authority Key Identifier:
keyid:5F:03:2D:72:23:F1:36:A7:55:29:24:D6:50:F5:7C:5F:D1:D7:CD:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XwMtciPxNqdVKSTWUPV8X9HXzc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ab30b2-e32e-466a-b10c-b1005eb1e48c/1/XwMtciPxNqdVKSTWUPV8X9HXzc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/ab30b2-e32e-466a-b10c-b1005eb1e48c/1/XwMtciPxNqdVKSTWUPV8X9HXzc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:e3:48:ee:18:7f:eb:54:ee:89:8b:8c:da:f3:8e:ca:eb:c9:
44:84:4f:4a:7d:83:cf:10:18:ae:c8:ca:94:68:9e:62:93:a3:
30:48:e8:25:2e:d5:74:57:6d:23:d1:5d:3d:be:c1:2d:98:22:
5d:63:15:36:e7:bf:7b:8d:60:32:36:59:d7:ec:a0:34:04:f0:
bb:fa:7a:5e:6f:4b:45:cf:6f:a5:5d:a1:63:c7:ab:4d:f9:4d:
56:29:71:72:68:1d:2a:87:9c:34:e8:1a:1f:a7:6d:6c:4c:69:
0c:26:61:71:09:43:14:83:63:7a:98:cc:3a:e0:a7:68:c2:e0:
c9:16:c3:21:1e:07:16:ca:67:f3:58:5f:02:e9:53:46:b8:01:
95:8b:13:c3:82:e9:da:29:80:d2:d7:50:f1:25:35:95:05:9d:
58:01:19:0b:57:91:b3:ad:1f:d5:57:d4:4d:eb:b4:37:91:2c:
34:01:29:4f:7e:21:3e:71:df:26:36:38:20:d9:21:43:a5:da:
da:0d:01:4e:f4:89:81:b0:9a:ba:98:31:0f:a8:b1:b5:3c:9d:
85:ff:70:1c:a8:75:00:3d:66:b6:be:39:56:82:cc:62:97:3a:
d1:4e:74:fc:db:82:b9:a5:74:5e:49:bd:76:38:7b:83:3e:3d:
b5:21:a1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 01:57:39 2025 by rpki-client