Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
File: tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft (raw, json)
Hash identifier: VAhyFIEJy2PFtNt/GTvRN3y5FLAcN5mVhok9Jcrndkw=
Subject key identifier: DE:53:F1:56:28:A1:F9:99:55:4B:54:39:63:AB:BA:E6:53:F1:1C:41
Authority key identifier: B5:7C:8A:C0:55:C5:74:D8:CF:13:52:2B:96:4B:92:31:4D:21:1E:AE
Certificate issuer: /CN=b57c8ac055c574d8cf13522b964b92314d211eae
Certificate serial: 0195E046F3E4D336C9BCF105108F95E208FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
Manifest number: 120E
Signing time: Sat 29 Mar 2025 05:01:41 +0000
Manifest this update: Sat 29 Mar 2025 05:01:41 +0000
Manifest next update: Sun 30 Mar 2025 05:01:41 +0000
Files and hashes: 1: tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl (hash: 4RzUBsTXzmmJ93XKcKxvS4GDNZ4b8etUJAZGQQKfMzs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:46:f3:e4:d3:36:c9:bc:f1:05:10:8f:95:e2:08:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b57c8ac055c574d8cf13522b964b92314d211eae
Validity
Not Before: Mar 29 05:01:41 2025 GMT
Not After : Mar 30 05:01:41 2025 GMT
Subject: CN=de53f15628a1f999554b543963abbae653f11c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:d4:8e:f3:48:6a:3f:05:db:33:cd:77:02:7a:
b1:f9:5e:6c:4e:e5:de:61:a3:dc:57:6d:0a:ce:b0:
c3:58:61:73:4f:86:9c:d9:74:52:f9:33:cd:b5:54:
8e:fb:6d:99:cf:e2:c5:31:bc:aa:7f:7c:b2:4d:22:
b3:af:b0:53:fc:18:67:b0:62:cf:c4:c0:8c:1e:76:
24:ae:da:6f:ce:e6:e7:2f:fa:99:f8:69:26:b2:3a:
1a:cc:e8:1b:2c:8c:50:0f:cc:04:23:e8:75:a1:20:
bc:f1:d6:14:e9:a1:8f:d1:66:04:f7:bf:41:37:0d:
22:3d:a5:5d:87:2d:ba:2d:14:60:7c:4d:5e:f8:2f:
69:31:cf:bd:61:a0:b9:33:b5:54:1c:c9:61:be:ad:
e6:71:f9:8d:2b:b9:5b:f2:c9:4a:2c:93:02:d8:a3:
80:6d:98:c0:15:29:ac:b4:41:fc:d9:1b:a1:16:e8:
6e:de:be:e2:8c:ea:37:a6:1d:92:40:b9:bd:3b:75:
91:40:45:e8:b4:36:32:24:c0:aa:4a:04:40:c8:99:
40:aa:b6:d5:b6:20:f7:fa:cd:88:68:7d:e2:8a:af:
5d:8d:2a:c7:ac:c2:ca:2d:31:79:0f:ca:c8:49:2c:
3e:6c:cd:fb:1b:cf:08:ea:1e:ea:cb:a7:bc:da:57:
b5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:53:F1:56:28:A1:F9:99:55:4B:54:39:63:AB:BA:E6:53:F1:1C:41
X509v3 Authority Key Identifier:
keyid:B5:7C:8A:C0:55:C5:74:D8:CF:13:52:2B:96:4B:92:31:4D:21:1E:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:8a:fe:a0:6c:4d:17:67:e2:87:3b:9f:f8:5d:1b:ff:1b:d1:
68:fe:c0:c0:49:81:5e:09:2a:81:2d:e3:14:4a:23:0c:f4:1a:
ba:e4:d1:21:eb:80:6c:f8:3b:44:dc:ad:28:9a:28:42:5f:c8:
96:86:72:49:d8:78:10:70:73:6c:46:ff:94:a4:d8:1b:b3:3f:
87:3d:9f:ac:85:18:4a:33:38:11:d5:1e:ca:01:45:23:bc:31:
b7:0f:58:ca:18:5a:f9:d1:cc:ff:48:09:dd:c1:5d:21:ce:62:
37:1d:95:f5:4b:2c:f0:4d:bf:d0:5e:6c:ec:de:dc:92:93:0c:
08:7a:7c:f5:15:d8:4b:d0:1e:3a:ef:0c:b4:c8:a6:5a:6c:7c:
9a:13:61:b4:69:23:2d:d4:d2:6f:b9:8c:71:7d:53:7f:fc:f8:
aa:fd:20:95:66:b1:e7:1d:05:d1:28:70:bc:32:a4:71:96:31:
68:8d:59:ae:ad:95:c3:90:b4:ec:f7:30:e2:3f:6d:44:7b:0b:
aa:cf:d4:91:99:e1:0b:52:b0:42:7d:38:1e:3a:0b:41:2c:89:
06:84:17:4d:36:bb:a5:ac:f3:8a:59:44:ff:bf:cb:2a:2a:4a:
31:90:a2:e5:9d:98:53:b1:fd:8d:f2:2b:20:b9:8d:09:72:ed:
6a:e2:ce:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:00:44 2025 by rpki-client