Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
File: 0c0c1HQkGQk2se35qYScPjBYfzo.mft (raw, json)
Hash identifier: O4K7u6G7e0eEqUnBvjNJoK4Pp+S3YsMcx/PO3IJfXSU=
Subject key identifier: 4D:04:F3:CD:BF:2F:B2:0D:5F:73:E7:7F:B8:75:6B:A2:74:C1:F2:DF
Authority key identifier: D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
Certificate issuer: /CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Certificate serial: 0195E159ACD25AE2B04B5D5372D7433CD293
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
Manifest number: 0C22
Signing time: Sat 29 Mar 2025 10:01:45 +0000
Manifest this update: Sat 29 Mar 2025 10:01:45 +0000
Manifest next update: Sun 30 Mar 2025 10:01:45 +0000
Files and hashes: 1: 0c0c1HQkGQk2se35qYScPjBYfzo.crl (hash: idlfnIohlp4Z/jtwxKQS/VQhLq/xeihaM9MG5sFVX/E=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:ac:d2:5a:e2:b0:4b:5d:53:72:d7:43:3c:d2:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1cd1cd47424190936b1edf9a9849c3e30587f3a
Validity
Not Before: Mar 29 10:01:45 2025 GMT
Not After : Mar 30 10:01:45 2025 GMT
Subject: CN=4d04f3cdbf2fb20d5f73e77fb8756ba274c1f2df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1d:8f:9a:c5:2b:78:96:8b:ad:07:60:2d:25:
d7:ec:e4:40:38:7b:41:ef:10:86:66:08:9e:f8:8b:
f2:87:5d:f3:72:37:67:7d:72:9b:ea:5c:e3:9c:76:
f6:08:d7:37:96:c0:9d:bc:ee:af:96:85:83:45:8d:
c9:a7:e6:16:ea:6c:f2:39:86:df:9e:72:e0:4f:9f:
5c:c0:91:b6:ef:3b:0d:60:0d:a0:08:a5:00:b3:74:
aa:c5:7b:2f:ef:cd:84:3c:34:6a:a9:53:0f:a7:ba:
88:13:12:60:21:28:e3:b1:74:1e:60:f2:31:01:0c:
1b:53:9c:3d:9c:50:42:4d:b2:23:36:e0:bd:35:e1:
b0:03:d2:3f:30:ad:78:5d:46:16:7f:5f:22:49:0d:
68:53:02:f6:6c:27:87:74:d6:6b:89:b0:e1:0a:4e:
78:2d:82:ae:b5:a8:fb:0b:c3:b5:30:59:98:16:f3:
3d:91:75:61:1d:35:99:5a:e6:cc:8b:36:d0:24:7f:
9e:9e:25:95:e8:da:e3:1c:ce:84:01:73:c5:48:4d:
2e:64:47:71:ff:bc:54:20:3c:f7:a7:fc:30:ad:30:
e5:f1:51:26:fb:10:0f:39:2d:06:ea:2f:c4:2d:38:
74:c7:2c:da:2f:ff:7f:93:a5:4a:1a:a8:3b:c2:28:
1c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:04:F3:CD:BF:2F:B2:0D:5F:73:E7:7F:B8:75:6B:A2:74:C1:F2:DF
X509v3 Authority Key Identifier:
keyid:D1:CD:1C:D4:74:24:19:09:36:B1:ED:F9:A9:84:9C:3E:30:58:7F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c0c1HQkGQk2se35qYScPjBYfzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/14aafd-d5bb-4644-bed7-b4533a088dc4/1/0c0c1HQkGQk2se35qYScPjBYfzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:08:3d:c2:36:02:10:36:95:a8:53:6b:9d:ad:ec:ce:d8:55:
3f:d0:71:f9:10:20:5d:0d:92:fe:8f:a5:81:d0:f4:9a:f3:bd:
ed:15:9a:53:2b:40:0b:7d:d6:e8:79:e5:89:ea:13:ac:7d:ba:
bd:a7:77:a4:60:76:10:3d:e2:32:2e:4e:9e:cf:73:b8:ca:68:
3b:0d:22:67:38:73:d7:4f:c2:57:0e:27:11:1c:f4:10:1f:3c:
31:04:87:44:e2:80:35:1d:e2:8c:6c:b6:7e:8f:b1:b4:ff:33:
3c:47:8e:79:2b:26:08:8f:5b:7e:37:71:78:a3:0d:b3:45:c8:
da:32:6b:7c:63:8e:35:78:ce:67:52:87:ab:fe:07:42:d2:d7:
d2:86:82:08:a6:1d:72:6e:f8:6c:0f:bd:c1:3c:3a:c5:be:e6:
57:88:c4:f8:6b:df:8d:ab:6b:8e:1d:9c:f6:bf:b5:39:13:ef:
59:e5:c4:7d:7a:57:e0:cf:50:b2:16:de:4a:ae:19:61:1e:96:
48:59:2d:59:c6:77:7d:bb:d9:a7:00:8d:a2:1e:12:ef:6c:cd:
dc:b8:e7:ad:d2:68:9a:93:f2:d0:c4:b0:5a:ed:9c:88:51:d4:
b9:87:7c:a5:5f:77:b2:28:75:2b:a8:00:66:12:96:d2:7a:ee:
19:88:d2:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:08:01 2025 by rpki-client