Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
File: ny83TJpzj63o-FDKq11507kARYQ.mft (raw, json)
Hash identifier: YNhJsBWm+4d6FRwphsYmUKron+pt4r5vnj71/4pbKlA=
Subject key identifier: 09:CD:AF:F1:29:63:DB:36:10:AE:84:C8:5C:29:E3:6B:61:3D:95:B4
Authority key identifier: 9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
Certificate issuer: /CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Certificate serial: 0195E159131F45D733356EE7C70099CCEB34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
Manifest number: 14BE
Signing time: Sat 29 Mar 2025 10:01:05 +0000
Manifest this update: Sat 29 Mar 2025 10:01:05 +0000
Manifest next update: Sun 30 Mar 2025 10:01:05 +0000
Files and hashes: 1: ny83TJpzj63o-FDKq11507kARYQ.crl (hash: 743ZJmrtS7fIIQBZK+XTvquqdpjPgYwB4pGGzrMbxhc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:13:1f:45:d7:33:35:6e:e7:c7:00:99:cc:eb:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f2f374c9a738fade8f850caab5d79d3b9004584
Validity
Not Before: Mar 29 10:01:05 2025 GMT
Not After : Mar 30 10:01:05 2025 GMT
Subject: CN=09cdaff12963db3610ae84c85c29e36b613d95b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3f:b8:e4:05:e5:33:c9:5a:e9:56:83:5b:e6:
6d:f8:bc:3d:cb:26:49:99:9d:85:6e:7d:a0:52:7e:
3d:3a:29:52:0e:65:6e:0c:4a:c0:3b:e4:66:21:dc:
a4:06:03:a4:f1:ef:a8:a9:dd:1b:21:d4:19:12:57:
5e:95:47:84:b3:b2:49:04:85:e5:b0:13:4e:c1:2c:
53:b7:e9:36:94:41:a0:94:69:84:d9:83:dd:ea:69:
20:25:0e:8a:1f:66:2c:37:95:df:03:89:89:54:d8:
ff:40:5e:88:38:4d:e7:31:ce:d7:b1:50:39:aa:b2:
30:8d:14:62:77:68:63:ee:64:8d:04:2b:82:8f:87:
7e:e3:89:99:dd:8c:1a:e1:2b:cb:12:87:9a:78:70:
a8:37:27:cd:60:5a:bb:10:de:d8:59:35:83:e9:c2:
3c:83:c3:63:dc:80:53:25:d0:09:7d:47:cd:9b:4c:
47:d9:71:6d:a3:e0:cf:de:b6:b0:74:75:06:58:6c:
c5:b6:a4:9e:6b:5a:99:a3:d8:24:80:7c:8f:62:e8:
16:f7:37:66:70:bb:91:49:7c:37:68:4e:2c:02:b5:
98:bf:b2:ef:92:19:73:bf:96:85:a5:89:3a:c4:39:
81:35:d5:6e:87:2f:c2:65:be:ce:ad:5d:d0:14:96:
9b:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:CD:AF:F1:29:63:DB:36:10:AE:84:C8:5C:29:E3:6B:61:3D:95:B4
X509v3 Authority Key Identifier:
keyid:9F:2F:37:4C:9A:73:8F:AD:E8:F8:50:CA:AB:5D:79:D3:B9:00:45:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ny83TJpzj63o-FDKq11507kARYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/634e76-5c5f-44c4-b8a4-524e930e5fd1/1/ny83TJpzj63o-FDKq11507kARYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:10:b4:a6:c3:31:57:fc:4a:90:91:54:90:51:26:64:c1:fc:
70:70:f1:e5:e3:15:88:30:d7:10:fc:bc:b4:81:a6:d3:cc:24:
4b:2c:ac:96:c5:9d:9b:8d:87:57:63:68:bc:85:c4:e0:a3:7e:
cf:ed:e9:1b:6e:58:c0:99:e4:b6:49:40:96:82:26:84:09:35:
b2:1b:00:5f:3a:a1:56:ef:1b:ca:b8:aa:0a:42:17:4b:92:9d:
07:02:d4:b2:3a:0f:d4:f4:aa:60:9f:0c:20:2d:2a:3a:ba:5c:
e8:ae:20:64:4e:3d:a8:e1:ea:98:f9:d4:9d:88:e9:6b:b6:d4:
67:79:4b:2a:5c:81:d5:f6:c9:12:d2:f9:8a:36:82:b9:66:63:
5f:ea:92:67:36:0c:f9:1b:79:cd:2e:27:45:6e:98:0c:b4:52:
d7:df:5e:d4:f4:28:7a:b2:59:c6:cd:e6:53:e2:d4:f8:8d:cf:
49:ed:fb:63:93:56:75:c9:89:77:91:c5:85:94:a1:88:98:c5:
bb:f8:61:98:75:07:a1:97:fd:b0:bc:23:ad:43:ca:e2:07:42:
e7:dd:c8:8b:27:e7:b6:1c:62:f3:24:d0:24:ba:79:88:f2:17:
4b:13:9c:ba:13:89:5d:1b:73:74:ce:38:4a:29:0d:33:96:3b:
d2:ab:ea:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 11:16:15 2025 by rpki-client