Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft
File: kYaHyFQkQhcMxR71MW05Y2CXCNw.mft (raw, json)
Hash identifier: OpBnOCt/dVKsaDLpXMI87XkRUWZ4d5zgpFXQUtA3iGQ=
Subject key identifier: 09:82:15:F0:3D:CE:7D:70:5F:5E:70:27:FF:8A:8A:FC:4F:0A:D6:A1
Authority key identifier: 91:86:87:C8:54:24:42:17:0C:C5:1E:F5:31:6D:39:63:60:97:08:DC
Certificate issuer: /CN=918687c8542442170cc51ef5316d3963609708dc
Certificate serial: 019514A4274A08AD4877AD0ED1300EEBBE33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYaHyFQkQhcMxR71MW05Y2CXCNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft
Manifest number: 1064
Signing time: Mon 17 Feb 2025 16:00:57 +0000
Manifest this update: Mon 17 Feb 2025 16:00:57 +0000
Manifest next update: Tue 18 Feb 2025 16:00:57 +0000
Files and hashes: 1: kYaHyFQkQhcMxR71MW05Y2CXCNw.crl (hash: rRflXlM7fCTh+HoaUGGyVZl2ZQ6jcmHfesnkub7HbaM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:14:a4:27:4a:08:ad:48:77:ad:0e:d1:30:0e:eb:be:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918687c8542442170cc51ef5316d3963609708dc
Validity
Not Before: Feb 17 16:00:57 2025 GMT
Not After : Feb 18 16:00:57 2025 GMT
Subject: CN=098215f03dce7d705f5e7027ff8a8afc4f0ad6a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:9f:b6:5f:d9:9f:4d:3f:8c:b2:1c:5a:45:3f:
1c:46:f2:bd:d6:82:09:c6:58:30:c9:1d:50:44:63:
a6:95:5b:7a:e9:ae:db:df:d4:2c:c4:be:85:47:88:
d2:7c:c6:a4:2e:32:7e:8e:95:07:f2:a4:97:25:3e:
fa:24:69:53:95:b7:6f:bb:5a:4e:b9:70:02:62:fe:
bd:d7:3e:c7:d5:55:d7:85:bf:07:c8:e6:0b:5c:50:
4b:4c:06:52:0b:d9:1b:d5:d8:73:2d:e4:72:23:36:
6b:78:4f:f4:a2:e9:24:c9:74:d8:2d:b6:2d:59:ab:
85:d6:67:cb:85:8f:f2:8f:7e:25:37:e5:ed:d7:36:
8d:4c:34:e5:e8:55:0f:fe:fa:e7:ad:06:97:70:18:
b9:05:ad:52:5b:d9:02:77:d1:7c:b8:6a:b5:e0:64:
ab:49:34:ff:47:c1:74:ca:3c:a1:03:6d:8a:81:8f:
14:87:2f:60:1c:91:c1:9f:5b:98:b7:35:c5:cf:fb:
28:a2:cd:2b:50:20:07:be:75:2a:4f:af:3d:b3:26:
f3:f9:6f:8b:83:d3:f7:e1:7e:01:e1:01:6c:9d:25:
49:f6:c2:1d:f1:e9:7b:67:33:a5:3e:d9:61:c4:bc:
91:27:b1:dd:32:05:7c:d1:b2:46:24:04:2f:fe:ff:
43:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:82:15:F0:3D:CE:7D:70:5F:5E:70:27:FF:8A:8A:FC:4F:0A:D6:A1
X509v3 Authority Key Identifier:
keyid:91:86:87:C8:54:24:42:17:0C:C5:1E:F5:31:6D:39:63:60:97:08:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYaHyFQkQhcMxR71MW05Y2CXCNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/83226a-4291-4f03-9be3-89e39ac1ed81/1/kYaHyFQkQhcMxR71MW05Y2CXCNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:a2:22:9e:de:df:59:ab:91:de:0b:dc:78:04:40:ac:1a:e0:
f6:04:5a:90:33:5e:4d:5a:8e:72:e8:2a:69:83:84:cb:f7:58:
eb:4a:90:49:b1:c0:d7:6c:17:52:0a:31:a5:4b:1a:e8:7e:ec:
d5:71:b5:73:24:87:74:c2:c4:02:ac:82:54:4d:43:b9:28:7d:
72:dc:cc:fe:c8:70:e5:9b:68:a6:0f:9f:6b:b5:80:9b:f3:47:
43:58:f0:98:0f:f4:b2:33:26:64:bb:7d:a4:2a:04:64:07:c1:
7a:b6:88:f6:e0:72:a8:88:e0:9a:56:26:94:d1:9f:88:e2:02:
71:5a:f0:2d:ce:8d:d2:cf:eb:25:1b:2b:ee:64:56:3c:3e:a2:
02:2c:9f:2c:3e:07:de:1f:0c:f6:cc:90:2b:1e:27:ca:46:47:
ce:65:0f:ea:cd:bd:80:b4:75:a6:3f:ca:20:30:11:b9:7b:2a:
28:4e:b0:ee:bd:80:1a:79:7f:b8:17:ec:57:9d:54:3f:fb:6d:
5c:62:94:21:b8:94:68:b6:c3:f1:1c:79:ff:b9:5f:38:39:40:
bf:48:f4:c9:bb:3e:2e:93:55:c0:fb:ef:18:3b:4c:71:45:af:
72:b2:16:82:fa:fe:33:ee:ed:4e:0a:30:47:01:84:42:62:53:
b0:ba:ff:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:31 2025 by rpki-client