Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft
File: KY60_lwZ8pLyiSTL8VVaj1do2CY.mft (raw, json)
Hash identifier: e56E9Ferb6xk1OJKWs6U4MYcJktHcXsUDO4FO4Ryr0Q=
Subject key identifier: CF:FD:C4:11:72:9E:4E:72:53:50:18:7C:1A:52:13:FF:29:33:48:1A
Authority key identifier: 29:8E:B4:FE:5C:19:F2:92:F2:89:24:CB:F1:55:5A:8F:57:68:D8:26
Certificate issuer: /CN=298eb4fe5c19f292f28924cbf1555a8f5768d826
Certificate serial: 0195E15973E737BA336C3121B4D1258A5C6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft
Manifest number: 14BF
Signing time: Sat 29 Mar 2025 10:01:30 +0000
Manifest this update: Sat 29 Mar 2025 10:01:30 +0000
Manifest next update: Sun 30 Mar 2025 10:01:30 +0000
Files and hashes: 1: KY60_lwZ8pLyiSTL8VVaj1do2CY.crl (hash: nyeCw+jEkzFKSSkoOO6K4flLOqoGCq+5WjQz9a17TyM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:73:e7:37:ba:33:6c:31:21:b4:d1:25:8a:5c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=298eb4fe5c19f292f28924cbf1555a8f5768d826
Validity
Not Before: Mar 29 10:01:30 2025 GMT
Not After : Mar 30 10:01:30 2025 GMT
Subject: CN=cffdc411729e4e725350187c1a5213ff2933481a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:79:26:c2:73:ae:a0:d3:ca:80:f0:21:c4:3d:
f9:96:b0:1a:08:8c:2f:db:12:32:de:30:e6:89:99:
5c:b5:63:7d:f8:fc:b3:38:db:27:08:17:a1:72:9e:
05:74:be:0a:09:25:d9:09:95:79:d9:d7:0e:27:52:
e8:60:d2:38:99:60:fe:14:87:e2:bb:8c:99:71:f3:
ea:ca:34:e2:d9:3c:45:8e:13:70:c8:86:14:14:1d:
d8:34:ab:82:36:05:e8:b6:2c:8e:15:52:c9:9e:03:
cc:46:ef:03:12:7d:48:c3:7a:eb:c7:35:89:0e:8a:
18:04:af:71:41:0f:3c:88:39:49:0a:b9:16:5b:31:
f8:0d:46:f5:ba:b6:6d:f6:a2:45:49:83:f1:6e:42:
89:b0:28:4c:99:66:14:0d:e4:ac:2c:74:02:98:e4:
08:85:ff:62:a5:3e:fa:65:e0:61:43:16:82:6c:d1:
e4:48:42:33:22:ec:83:05:10:a0:24:d0:78:dc:82:
d6:d4:06:51:0d:ae:28:6d:1a:74:48:1b:06:c1:e3:
49:5d:97:78:98:1e:41:d5:55:fa:c9:a9:b7:5c:ea:
c3:68:a1:11:0c:ce:bf:2b:4c:a9:a5:d2:92:cc:c1:
b6:7a:3b:91:d0:56:31:4d:30:94:ec:7f:35:61:25:
f9:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:FD:C4:11:72:9E:4E:72:53:50:18:7C:1A:52:13:FF:29:33:48:1A
X509v3 Authority Key Identifier:
keyid:29:8E:B4:FE:5C:19:F2:92:F2:89:24:CB:F1:55:5A:8F:57:68:D8:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:e7:13:93:88:ef:9d:6a:3f:8b:51:4c:bc:d5:54:f1:72:e0:
45:53:5c:df:3e:58:c7:a5:b3:ee:13:c5:45:7d:e2:c8:45:a2:
d9:19:f1:d3:40:46:6b:5a:58:56:7a:4b:cd:5b:c5:6d:a7:20:
52:ee:39:7d:9a:1a:57:3c:a7:64:a4:69:f8:0a:41:42:96:03:
10:99:22:21:56:66:bb:7f:43:a8:6a:70:99:31:73:d0:14:1f:
82:eb:d8:b9:1a:3f:5c:8f:b4:db:be:32:2d:dd:2c:f2:f6:10:
46:71:d0:3b:37:14:d8:3e:4e:10:2f:b8:4d:29:2e:9e:06:a0:
b8:82:38:b6:2d:b2:ca:de:65:f8:59:c2:59:09:40:7c:01:97:
fc:d2:30:8b:7c:cc:7b:ae:8e:bc:c9:f8:00:04:9e:5c:4a:ad:
20:7d:57:c8:9e:57:2b:5f:7d:11:47:c6:ad:71:40:db:2e:e1:
ce:42:dc:00:a2:5d:8d:6b:1e:81:de:b4:61:4a:ac:8f:b0:d8:
68:d4:d1:ba:f3:55:d6:28:dc:f0:10:b7:35:80:f9:f7:7f:91:
c8:6d:5d:6e:c2:00:50:a6:3a:a6:e5:97:46:21:be:fc:fd:d9:
0d:4b:c2:7e:7b:7f:49:2b:0e:ac:92:14:87:6f:0f:41:99:3f:
61:66:31:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZXhWXPnN7ozbDEhtNElilxtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5OGViNGZlNWMxOWYyOTJmMjg5MjRjYmYxNTU1YThmNTc2
OGQ4MjYwHhcNMjUwMzI5MTAwMTMwWhcNMjUwMzMwMTAwMTMwWjAzMTEwLwYDVQQD
EyhjZmZkYzQxMTcyOWU0ZTcyNTM1MDE4N2MxYTUyMTNmZjI5MzM0ODFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAonkmwnOuoNPKgPAhxD35lrAaCIwv
2xIy3jDmiZlctWN9+PyzONsnCBehcp4FdL4KCSXZCZV52dcOJ1LoYNI4mWD+FIfi
u4yZcfPqyjTi2TxFjhNwyIYUFB3YNKuCNgXotiyOFVLJngPMRu8DEn1Iw3rrxzWJ
DooYBK9xQQ88iDlJCrkWWzH4DUb1urZt9qJFSYPxbkKJsChMmWYUDeSsLHQCmOQI
hf9ipT76ZeBhQxaCbNHkSEIzIuyDBRCgJNB43ILW1AZRDa4obRp0SBsGweNJXZd4
mB5B1VX6yam3XOrDaKERDM6/K0yppdKSzMG2ejuR0FYxTTCU7H81YSX56wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM/9xBFynk5yU1AYfBpSE/8pM0gaMB8GA1UdIwQY
MBaAFCmOtP5cGfKS8okky/FVWo9XaNgmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1k2MF9sd1o4cEx5aVNUTDhWVmFqMWRvMkNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi85NzExMWMtMmU2MS00MzU5LTg3NjYt
NmJlZGYyZmJkY2UyLzEvS1k2MF9sd1o4cEx5aVNUTDhWVmFqMWRvMkNZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi85NzExMWMtMmU2MS00MzU5LTg3NjYtNmJlZGYyZmJkY2Uy
LzEvS1k2MF9sd1o4cEx5aVNUTDhWVmFqMWRvMkNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgOcTk4jv
nWo/i1FMvNVU8XLgRVNc3z5Yx6Wz7hPFRX3iyEWi2Rnx00BGa1pYVnpLzVvFbacg
Uu45fZoaVzynZKRp+ApBQpYDEJkiIVZmu39DqGpwmTFz0BQfguvYuRo/XI+0274y
Ld0s8vYQRnHQOzcU2D5OEC+4TSkungaguII4ti2yyt5l+FnCWQlAfAGX/NIwi3zM
e66OvMn4AASeXEqtIH1XyJ5XK199EUfGrXFA2y7hzkLcAKJdjWsegd60YUqsj7DY
aNTRuvNV1ijc8BC3NYD593+RyG1dbsIAUKY6puWXRiG+/P3ZDUvCfnt/SSsOrJIU
h28PQZk/YWYxSg==
-----END CERTIFICATE-----
Generated at Tue Apr 8 00:00:36 2025 by rpki-client