Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft
File: JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft (raw, json)
Hash identifier: IAFk4VI2HikFhBdGAy/GOQ+L2WvEA4BZf5VbMYct84c=
Subject key identifier: 8B:51:8F:89:7E:C4:29:D2:9C:8E:33:A8:D0:EC:6C:F5:DB:DA:04:71
Authority key identifier: 25:A2:90:55:9F:72:A7:01:23:1C:02:8E:70:A2:50:69:03:55:A6:39
Certificate issuer: /CN=25a290559f72a701231c028e70a250690355a639
Certificate serial: 0195E15A0A2E1109750BC481F821E4613369
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft
Manifest number: 1201
Signing time: Sat 29 Mar 2025 10:02:08 +0000
Manifest this update: Sat 29 Mar 2025 10:02:08 +0000
Manifest next update: Sun 30 Mar 2025 10:02:08 +0000
Files and hashes: 1: JaKQVZ9ypwEjHAKOcKJQaQNVpjk.crl (hash: Kr9CQq39Pgw9hRZSDHvEjeyCQoqnpfwJm5C2PPBbzbU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:5a:0a:2e:11:09:75:0b:c4:81:f8:21:e4:61:33:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25a290559f72a701231c028e70a250690355a639
Validity
Not Before: Mar 29 10:02:08 2025 GMT
Not After : Mar 30 10:02:08 2025 GMT
Subject: CN=8b518f897ec429d29c8e33a8d0ec6cf5dbda0471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b1:5a:6f:ce:34:6b:74:cc:93:f5:60:de:7f:
c9:48:8b:36:85:88:a3:fb:f9:55:7c:03:7c:a2:8e:
78:c9:93:c3:ce:ea:0d:dc:06:ff:fc:9a:03:7c:e9:
f6:6b:f7:1b:74:21:4b:97:e2:05:c3:60:e9:f1:53:
11:31:56:8a:29:52:b8:12:41:b3:32:b7:64:f1:0b:
6c:d9:38:c7:07:90:6a:48:b6:db:81:03:0d:61:4a:
ab:10:f2:c1:61:a3:db:01:d4:2e:b7:07:0b:1d:f2:
e9:db:12:19:50:de:ba:3e:79:18:d2:13:48:72:c5:
5e:cf:30:2e:84:06:0a:60:0e:ad:6c:15:93:7e:67:
e6:88:d8:70:b7:49:36:b1:2b:0f:cc:f0:8c:21:22:
ba:65:93:b4:0d:a8:29:1f:e8:38:13:a4:14:b2:ed:
6e:5b:c1:9d:62:4c:00:8b:c4:37:ed:15:bd:43:91:
31:e2:23:a8:13:60:fc:21:89:7c:a3:94:ef:6f:78:
7e:b0:d1:76:bb:a3:79:58:91:03:50:28:d8:ac:50:
fd:c8:11:9b:fb:2e:9b:ac:0f:10:70:ae:31:bf:8c:
f3:50:8f:b4:c3:ed:14:85:8e:91:8a:ae:ae:07:4c:
c6:f8:5b:18:d8:88:45:d8:f8:8f:7e:91:c8:eb:64:
99:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:51:8F:89:7E:C4:29:D2:9C:8E:33:A8:D0:EC:6C:F5:DB:DA:04:71
X509v3 Authority Key Identifier:
keyid:25:A2:90:55:9F:72:A7:01:23:1C:02:8E:70:A2:50:69:03:55:A6:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/e7fe06-4d44-430f-9ecb-295fcf87ea27/1/JaKQVZ9ypwEjHAKOcKJQaQNVpjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:de:9b:c6:f4:34:4e:20:d4:b9:0d:45:00:c1:08:e8:66:68:
1a:a8:fa:ca:ab:2c:1c:50:b4:1b:79:cc:d2:af:a5:20:5d:6b:
d6:1d:45:b8:3a:25:e4:74:55:3d:e7:d6:47:a1:32:63:b0:57:
7f:3f:b8:83:16:19:81:f2:0c:05:51:29:91:0e:17:de:1a:35:
f3:df:f8:87:0a:61:4f:66:c7:b2:30:a0:05:93:e5:3e:7e:b2:
91:8f:21:67:77:4e:54:0c:3d:7c:13:88:6c:97:f0:95:5b:7b:
b3:a7:fc:a2:25:b8:30:28:e2:80:71:58:51:52:a8:c8:41:87:
bc:63:73:7e:ce:73:3e:86:43:46:b7:22:3e:8c:01:de:8f:a7:
ba:cc:64:fb:31:19:2f:a6:62:1b:b4:f8:88:71:49:52:d6:fe:
db:e1:58:92:88:e3:12:2d:49:c4:29:b9:6d:89:e5:e5:b3:93:
de:4c:31:53:11:c9:49:d6:d4:3d:4c:b9:aa:48:94:f7:01:b2:
db:a4:bc:3b:82:d2:94:9c:16:1f:00:4d:17:ce:5f:a0:9a:5a:
0d:af:5f:be:01:60:30:84:07:66:4f:f8:14:b3:22:d7:c8:91:
0e:c6:30:12:3b:8b:9a:cf:ed:90:5f:fa:97:9f:c7:75:e9:a3:
74:9a:0f:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:22:42 2025 by rpki-client