Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/4eef1b-c30b-4ed7-af2a-01c356b73f0d/1/JQfjIVuSyGWOv0lfa4fOC6anvSc.mft
File: JQfjIVuSyGWOv0lfa4fOC6anvSc.mft (raw, json)
Hash identifier: QghNstx4BWR8jr3wxCByPHnN+3aO6SW5y+6uzLKnGxE=
Subject key identifier: D9:40:71:45:15:3F:AC:A4:BB:28:6D:4E:1E:99:56:0C:EA:F5:87:E7
Authority key identifier: 25:07:E3:21:5B:92:C8:65:8E:BF:49:5F:6B:87:CE:0B:A6:A7:BD:27
Certificate issuer: /CN=2507e3215b92c8658ebf495f6b87ce0ba6a7bd27
Certificate serial: 0195E00FC83738D057B9570030BE3D5908F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQfjIVuSyGWOv0lfa4fOC6anvSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/4eef1b-c30b-4ed7-af2a-01c356b73f0d/1/JQfjIVuSyGWOv0lfa4fOC6anvSc.mft
Manifest number: 0661
Signing time: Sat 29 Mar 2025 04:01:25 +0000
Manifest this update: Sat 29 Mar 2025 04:01:25 +0000
Manifest next update: Sun 30 Mar 2025 04:01:25 +0000
Files and hashes: 1: JQfjIVuSyGWOv0lfa4fOC6anvSc.crl (hash: 26vs6KTdIR61HRNCc9K/t+HZ+CX/20SYrr7HPsDNZac=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:0f:c8:37:38:d0:57:b9:57:00:30:be:3d:59:08:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2507e3215b92c8658ebf495f6b87ce0ba6a7bd27
Validity
Not Before: Mar 29 04:01:25 2025 GMT
Not After : Mar 30 04:01:25 2025 GMT
Subject: CN=d9407145153faca4bb286d4e1e99560ceaf587e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:81:ed:11:ae:74:80:09:9f:bb:f9:f0:40:fd:
06:76:fa:9a:f7:c1:b5:64:6d:f1:90:2b:30:2e:fa:
c7:11:2f:91:34:d0:fa:82:40:1e:73:80:9b:40:6d:
a7:f0:08:21:c0:03:08:85:e4:83:90:a4:96:82:a5:
3f:26:a8:d6:38:20:72:8b:34:bb:02:84:ff:9e:65:
f2:8d:6d:aa:18:5e:35:7c:d5:70:83:7c:48:2d:bc:
4a:eb:90:45:35:cd:7d:8d:8d:b3:76:9e:43:21:7e:
ca:98:e1:f6:f9:02:98:88:e6:be:79:ee:d8:d2:8a:
d2:a1:69:15:64:7d:aa:10:c8:ed:4e:25:7c:61:dc:
52:b8:61:60:48:81:21:13:6e:06:36:b4:4e:9a:e5:
18:73:f8:19:6d:97:d0:ec:13:51:fd:41:ee:35:40:
fa:d7:b0:7e:32:8f:ec:25:91:8c:89:2c:cf:5d:1f:
4b:e2:01:ba:80:fe:e9:43:c9:8b:8b:8d:d9:a5:52:
bb:77:14:87:9d:2d:56:d2:2c:6c:01:13:13:49:d3:
a1:48:fa:85:86:16:79:a0:23:ef:13:e8:c2:9d:f8:
0f:9f:a2:89:4c:27:02:38:84:df:85:24:40:73:37:
90:5a:fb:b3:8a:6c:22:c4:c4:3c:fe:fc:53:ff:9b:
03:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:40:71:45:15:3F:AC:A4:BB:28:6D:4E:1E:99:56:0C:EA:F5:87:E7
X509v3 Authority Key Identifier:
keyid:25:07:E3:21:5B:92:C8:65:8E:BF:49:5F:6B:87:CE:0B:A6:A7:BD:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQfjIVuSyGWOv0lfa4fOC6anvSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4eef1b-c30b-4ed7-af2a-01c356b73f0d/1/JQfjIVuSyGWOv0lfa4fOC6anvSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4eef1b-c30b-4ed7-af2a-01c356b73f0d/1/JQfjIVuSyGWOv0lfa4fOC6anvSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:fa:a9:a4:b1:2d:e4:f7:45:7c:00:72:fe:69:5a:c0:ee:19:
30:24:33:a2:ec:69:93:fa:7e:bc:90:32:9f:bd:fb:f5:80:b3:
dd:44:02:c6:17:17:65:ee:0f:33:71:0d:5d:43:ed:fc:51:29:
1a:a6:1b:99:12:2d:20:1b:ad:4c:aa:ef:4b:aa:59:e4:51:aa:
f3:f4:5e:c7:6d:50:e5:eb:32:04:5e:21:2d:5b:17:eb:64:7f:
19:67:c7:b9:71:e9:77:ff:7b:b7:f2:e9:0a:56:7f:73:95:c2:
78:f1:d5:45:2d:dd:43:2a:6b:ed:7e:08:5c:5b:04:38:ea:9b:
43:b1:fa:ac:9e:ce:07:ea:44:19:f6:2b:1c:3d:c0:45:b3:7a:
f8:24:d6:7c:70:d2:bd:53:59:bf:78:18:75:90:ba:2c:f8:21:
12:a5:e9:79:70:8c:bc:16:f6:ac:ad:69:dd:a9:72:59:4d:de:
b4:5a:16:1f:4a:bb:ed:73:80:19:a5:a1:5c:85:bd:5a:c2:39:
5c:bb:f6:ba:07:45:66:08:e9:ad:a8:3a:67:58:0a:1b:af:f5:
60:02:a6:56:7e:b4:55:35:c2:ca:fc:c9:79:a8:c5:0e:23:d2:
72:0b:b8:14:0c:a7:67:c3:ac:e0:89:74:e3:3e:ac:45:fa:55:
ac:9a:2e:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:27:10 2025 by rpki-client