Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/432623-06b1-4847-9829-ff333fc3c64c/1/NeSwM5oLyzU5SwvNHgMQl8WrPZ4.mft
File: NeSwM5oLyzU5SwvNHgMQl8WrPZ4.mft (raw, json)
Hash identifier: nTHtFGG4l0h+XK2amKH7+dyVuWNoLiL9yAjgchYjMTk=
Subject key identifier: BE:7C:EA:D8:4E:90:8E:11:61:D8:0D:30:48:DB:AC:B9:6D:DE:94:BE
Authority key identifier: 35:E4:B0:33:9A:0B:CB:35:39:4B:0B:CD:1E:03:10:97:C5:AB:3D:9E
Certificate issuer: /CN=35e4b0339a0bcb35394b0bcd1e031097c5ab3d9e
Certificate serial: 0197E2668B72A6E762ECCD5B28AAFE98E3EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NeSwM5oLyzU5SwvNHgMQl8WrPZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/432623-06b1-4847-9829-ff333fc3c64c/1/NeSwM5oLyzU5SwvNHgMQl8WrPZ4.mft
Manifest number: 09E0
Signing time: Mon 07 Jul 2025 01:01:00 +0000
Manifest this update: Mon 07 Jul 2025 01:01:00 +0000
Manifest next update: Tue 08 Jul 2025 01:01:00 +0000
Files and hashes: 1: NeSwM5oLyzU5SwvNHgMQl8WrPZ4.crl (hash: kNSC5OJwN/JJxNWzLYaSXclm6stFp4MpJQHg4FHPxmQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:e2:66:8b:72:a6:e7:62:ec:cd:5b:28:aa:fe:98:e3:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35e4b0339a0bcb35394b0bcd1e031097c5ab3d9e
Validity
Not Before: Jul 7 01:01:00 2025 GMT
Not After : Jul 8 01:01:00 2025 GMT
Subject: CN=be7cead84e908e1161d80d3048dbacb96dde94be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:63:b3:9b:a0:52:04:65:e9:23:f9:be:e9:37:
f3:7d:97:93:d6:43:6c:c7:31:90:2c:c0:96:ef:d3:
36:ea:5f:8a:96:85:3e:e4:84:4c:6e:72:a8:76:7a:
1e:54:ea:05:30:b7:86:32:da:a6:d9:65:74:a2:6a:
35:fb:d9:f9:d1:0b:3a:42:ec:3e:60:c0:d2:79:4f:
34:bd:9d:ec:67:8e:e3:9d:f8:53:69:12:30:d1:9c:
99:ee:5e:da:fd:90:d2:92:b2:55:6b:83:a1:98:8d:
ea:0a:14:11:01:e6:9f:c2:aa:e6:be:17:14:a7:ea:
30:b9:d7:c8:5d:d9:ae:d2:94:92:43:87:7a:1a:72:
9f:48:87:8f:87:f0:95:54:bc:b3:21:75:58:23:e4:
e1:f9:d2:be:ae:9c:fd:ca:ab:5c:0b:4e:44:26:df:
08:4b:44:ae:17:6b:86:84:a6:76:f5:4d:9f:f9:77:
ce:63:34:b2:43:c5:c5:2d:7b:66:a5:3a:a7:67:d2:
20:21:40:45:69:69:3a:60:29:79:26:c5:74:15:f0:
c7:03:c7:57:b2:1a:49:e1:99:2e:93:05:a8:2f:fc:
8b:f7:39:0c:c8:26:2b:9e:6b:41:86:54:a8:26:16:
34:aa:89:7a:6b:be:45:67:d2:5b:ff:42:35:d7:11:
76:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7C:EA:D8:4E:90:8E:11:61:D8:0D:30:48:DB:AC:B9:6D:DE:94:BE
X509v3 Authority Key Identifier:
keyid:35:E4:B0:33:9A:0B:CB:35:39:4B:0B:CD:1E:03:10:97:C5:AB:3D:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NeSwM5oLyzU5SwvNHgMQl8WrPZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/432623-06b1-4847-9829-ff333fc3c64c/1/NeSwM5oLyzU5SwvNHgMQl8WrPZ4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/432623-06b1-4847-9829-ff333fc3c64c/1/NeSwM5oLyzU5SwvNHgMQl8WrPZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:83:3e:cc:68:d9:9e:59:bc:74:eb:d4:6c:63:0e:8c:cc:ae:
28:54:a6:1b:60:34:d2:46:44:2f:30:22:4b:8a:10:4a:3b:61:
90:2b:51:ea:b0:1f:7e:88:6f:e8:ed:51:67:aa:0a:0e:86:da:
a5:8f:f7:13:a3:c7:92:22:85:2a:cd:29:5f:2e:5a:87:8f:8b:
85:bf:36:81:44:18:22:fa:bd:b7:d3:85:8f:ec:3e:60:35:65:
cd:8d:9b:62:21:81:ea:2a:25:ae:d7:d6:1e:fe:4c:97:ac:82:
8a:73:ce:ea:cc:48:b3:69:cb:4e:5c:12:36:38:49:67:03:5d:
af:2e:0d:d2:8c:29:cc:62:94:a9:9d:e9:db:39:e3:8b:ab:de:
e9:91:d3:08:df:56:d3:55:cd:ae:2c:a0:2e:e7:c4:f9:c1:73:
7e:a4:c9:5f:ae:db:cf:36:31:59:04:3c:a2:30:7f:26:5c:20:
b8:94:c0:70:7f:4a:02:07:88:e8:3d:76:bc:e5:4f:97:24:cf:
28:03:b2:a5:a4:85:63:5b:99:87:75:43:25:44:d6:88:bb:ba:
4c:15:d4:d6:6d:ba:b2:1e:44:05:98:ae:57:37:5b:57:2b:b7:
5f:cb:90:74:1c:fe:b1:b5:91:83:8a:ed:d3:19:e7:c3:95:73:
60:e1:ec:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:15:11 2025 by rpki-client