Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
File: LSNrVIulmiq7JYI0HVYMqJP0l2M.mft (raw, json)
Hash identifier: HXn8kycUQsnYyzHsZKIhZPGnTpoHWWbclszibUv+y4w=
Subject key identifier: AF:43:2B:9E:01:C8:AE:B7:FF:26:FB:49:49:22:ED:D1:B7:47:46:F4
Authority key identifier: 2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
Certificate issuer: /CN=2d236b548ba59a2abb2582341d560ca893f49763
Certificate serial: 0195E0B48CD5AF6B8634CDB8F978C0460728
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
Manifest number: 1260
Signing time: Sat 29 Mar 2025 07:01:23 +0000
Manifest this update: Sat 29 Mar 2025 07:01:23 +0000
Manifest next update: Sun 30 Mar 2025 07:01:23 +0000
Files and hashes: 1: LSNrVIulmiq7JYI0HVYMqJP0l2M.crl (hash: OoGq8Ee9eqxsapqDNtCeE1pNUzS07usHjZz7PZlJr00=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:b4:8c:d5:af:6b:86:34:cd:b8:f9:78:c0:46:07:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d236b548ba59a2abb2582341d560ca893f49763
Validity
Not Before: Mar 29 07:01:23 2025 GMT
Not After : Mar 30 07:01:23 2025 GMT
Subject: CN=af432b9e01c8aeb7ff26fb494922edd1b74746f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e5:8a:44:e5:b3:82:0d:21:2a:b6:3f:18:a7:
cd:77:eb:38:c6:7c:be:e2:b6:cd:52:a2:a0:22:17:
52:a0:cf:90:55:29:28:fd:33:4a:4f:38:5b:d2:cb:
fb:ca:a2:d8:9f:79:cd:b3:c4:50:d4:61:6c:e7:51:
99:a4:62:20:94:0c:68:5e:7a:97:01:0c:1c:ac:0f:
09:37:a2:ad:b5:8d:34:f6:d9:b6:2a:26:7b:13:72:
d2:6e:ce:77:1b:2c:51:95:ff:7f:3e:f7:73:8e:a6:
03:e7:49:26:9b:97:2a:60:bd:ed:db:33:71:41:c6:
f8:3a:eb:45:4e:3c:76:ab:e2:c1:b4:16:3e:0a:7c:
48:e8:99:62:b3:9b:f2:69:88:df:3d:bf:fc:db:82:
4d:37:a9:11:13:2c:a3:3a:4a:cb:97:bd:19:93:e8:
ec:1d:44:88:97:44:43:79:8f:6b:8e:d4:03:59:36:
cb:3d:72:d0:8c:d1:73:74:74:64:28:9b:d1:04:a5:
cb:81:f2:8a:ef:49:b4:58:7b:d4:f2:8f:b1:27:89:
f2:7f:72:00:5d:2a:91:e8:45:84:45:5d:fc:26:ad:
3c:a8:3d:ac:46:8e:2a:dd:16:43:6c:00:8f:66:26:
9a:d4:ba:0f:7b:8e:82:c1:f9:88:12:83:4b:b8:99:
3f:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:43:2B:9E:01:C8:AE:B7:FF:26:FB:49:49:22:ED:D1:B7:47:46:F4
X509v3 Authority Key Identifier:
keyid:2D:23:6B:54:8B:A5:9A:2A:BB:25:82:34:1D:56:0C:A8:93:F4:97:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSNrVIulmiq7JYI0HVYMqJP0l2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/871d8b-2219-46c4-a490-2571369c202b/1/LSNrVIulmiq7JYI0HVYMqJP0l2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:26:0c:40:dd:5f:4f:c4:ae:6f:c7:94:9e:c7:65:8c:b3:d4:
25:58:20:c1:71:ba:a9:6f:2d:ce:a7:9a:48:06:18:d4:06:42:
4f:54:73:d3:f1:f0:b4:4e:64:f7:d3:fb:4c:55:40:97:e0:a3:
ac:29:5d:68:6d:4e:ff:05:dc:3f:a4:03:6a:ce:72:c5:30:23:
76:31:4e:e5:fe:65:59:82:71:61:09:04:63:e4:c6:e7:c9:2f:
44:db:b9:4e:56:78:4b:51:6a:05:ee:87:15:f3:e0:14:65:31:
aa:b8:6c:81:dc:96:0e:e8:bd:98:60:d7:71:d5:ad:95:19:38:
6f:76:96:a8:f1:b5:da:f9:90:c4:81:21:a3:e9:78:d6:ce:a8:
b8:28:ee:dc:d7:30:62:d6:a0:f8:ea:20:c8:26:ac:8e:75:d6:
e7:69:2f:7f:e2:bf:fe:24:0e:32:67:d4:5d:da:3c:dd:ee:38:
ea:44:26:87:1c:a1:f6:18:bc:ee:e0:15:7d:40:00:d9:81:c3:
b6:3b:e4:ad:38:6a:61:f4:98:70:7a:29:73:44:0b:83:57:8e:
4e:31:59:7d:bd:f0:50:eb:6a:9f:89:50:a2:a3:32:f6:c7:0c:
1f:df:16:15:e6:e9:ef:b0:f3:77:9f:80:1a:51:02:08:86:a1:
36:10:44:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:16:09 2025 by rpki-client