Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/10907b-785d-4028-b9a4-a5179699f5c2/1/2uFXoJjtKp6tDQYIPSHA9xIDCQk.mft
File: 2uFXoJjtKp6tDQYIPSHA9xIDCQk.mft (raw, json)
Hash identifier: DNZvxxP/bXr8EEcuZAocVqVOBMjsooantxBq6wKYLfY=
Subject key identifier: 28:F3:52:08:39:3B:2F:F9:B6:EC:04:AC:95:5F:F9:04:E3:02:F6:F3
Authority key identifier: DA:E1:57:A0:98:ED:2A:9E:AD:0D:06:08:3D:21:C0:F7:12:03:09:09
Certificate issuer: /CN=dae157a098ed2a9ead0d06083d21c0f712030909
Certificate serial: 01920872176260C6118C4811F6F408E6403C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2uFXoJjtKp6tDQYIPSHA9xIDCQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/10907b-785d-4028-b9a4-a5179699f5c2/1/2uFXoJjtKp6tDQYIPSHA9xIDCQk.mft
Manifest number: 0CD0
Signing time: Thu 19 Sep 2024 04:02:27 +0000
Manifest this update: Thu 19 Sep 2024 04:02:27 +0000
Manifest next update: Fri 20 Sep 2024 04:02:27 +0000
Files and hashes: 1: 2uFXoJjtKp6tDQYIPSHA9xIDCQk.crl (hash: ABImN2Nw6Ryh9YCpmPh7Bs1OBsgZrHJiv1q/6+xWccY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:08:72:17:62:60:c6:11:8c:48:11:f6:f4:08:e6:40:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dae157a098ed2a9ead0d06083d21c0f712030909
Validity
Not Before: Sep 19 04:02:27 2024 GMT
Not After : Sep 20 04:02:27 2024 GMT
Subject: CN=28f35208393b2ff9b6ec04ac955ff904e302f6f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e7:f0:fb:ff:4f:b0:38:17:bb:de:54:9f:c6:
d1:36:db:75:34:42:d7:61:66:69:5f:53:16:1d:fe:
9a:e5:58:fe:3d:04:fa:80:14:9a:2b:69:19:2a:71:
01:fd:84:93:d3:e3:bb:b2:ff:fc:90:99:49:2c:0a:
6d:11:e8:04:15:db:54:2c:6b:ca:bd:e8:d5:2e:f0:
fd:bd:4d:16:a6:3c:f0:63:41:4d:0b:bb:be:c8:65:
00:2e:56:fe:be:70:ff:3b:40:f6:59:af:b7:87:92:
5e:c5:fe:90:ad:1e:15:64:a3:b6:f5:16:cc:ed:68:
8c:66:2f:be:b9:55:be:34:58:4f:3d:68:8e:ed:d0:
b5:f0:0a:16:b6:6b:08:16:12:d9:00:6a:e3:03:f6:
4b:55:1a:14:a5:50:61:5d:59:24:72:90:94:b7:44:
87:63:09:37:47:ce:5c:87:d5:e2:f6:c5:b0:84:1a:
e1:9c:eb:e1:10:a5:86:fb:a5:71:7a:06:1f:38:bf:
26:85:f0:9c:12:23:92:6b:35:57:88:12:4e:8d:27:
6e:38:25:25:1d:f7:42:b9:3a:ac:1b:bf:46:36:41:
06:55:ea:d7:29:15:eb:18:8c:a7:56:64:c2:be:e2:
04:04:04:8e:4c:78:e4:f3:0c:49:fd:02:9d:ed:0a:
8d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F3:52:08:39:3B:2F:F9:B6:EC:04:AC:95:5F:F9:04:E3:02:F6:F3
X509v3 Authority Key Identifier:
keyid:DA:E1:57:A0:98:ED:2A:9E:AD:0D:06:08:3D:21:C0:F7:12:03:09:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2uFXoJjtKp6tDQYIPSHA9xIDCQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/10907b-785d-4028-b9a4-a5179699f5c2/1/2uFXoJjtKp6tDQYIPSHA9xIDCQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/10907b-785d-4028-b9a4-a5179699f5c2/1/2uFXoJjtKp6tDQYIPSHA9xIDCQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:21:0d:ae:2d:76:bb:4b:db:df:a7:e2:f9:fb:1b:71:62:76:
0d:12:2b:d9:f8:33:b9:97:01:c4:f1:31:ec:20:0c:47:6c:56:
f4:9c:70:b9:5d:13:3d:66:c5:f4:33:e5:75:44:56:7f:34:3c:
a8:31:fc:b4:5f:1e:fe:82:46:93:5d:32:65:68:e5:1f:b1:3a:
3a:2a:3a:16:5a:f2:02:6d:0d:d2:e9:f4:ce:a9:40:70:29:7f:
e5:a8:73:e3:e0:c3:37:00:7e:71:97:b2:f4:10:eb:c9:77:56:
f3:c6:87:b6:c1:56:50:fd:41:60:69:b9:f1:e9:94:cf:71:d8:
eb:73:c8:6e:ff:81:7f:5e:7a:85:39:03:45:b8:86:e2:1e:76:
93:17:c6:87:c7:ba:78:56:3d:ec:cf:38:29:70:02:2a:34:49:
5b:46:db:64:e9:b4:25:2d:38:36:ff:d8:7f:6c:25:84:bd:39:
86:48:09:0a:95:60:7b:b1:21:3b:de:8f:43:7d:38:94:ec:80:
27:c7:4f:a9:71:eb:ea:70:dc:39:fb:1d:6e:74:b4:cd:c4:3c:
84:ba:19:e8:13:4a:bd:47:3b:15:64:5a:0b:5d:79:f9:0d:9f:
47:0e:fe:30:e0:81:79:5f:cd:4b:e1:22:82:b2:ca:4b:95:b8:
08:b5:0c:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 06:46:23 2025 by rpki-client