Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/8091a2-8a2d-458c-98a4-c6fcbac770f5/1/eiq2IdNR_j8HPogZQO680cht8-k.mft
File: eiq2IdNR_j8HPogZQO680cht8-k.mft (raw, json)
Hash identifier: GwTgOa+mN0UA4sDr/PCpFIpPlcKYQwO18xp0ZvgVWW0=
Subject key identifier: FC:EE:CF:3A:29:4A:33:6F:50:A5:87:02:64:23:A7:82:43:4A:ED:C2
Authority key identifier: 7A:2A:B6:21:D3:51:FE:3F:07:3E:88:19:40:EE:BC:D1:C8:6D:F3:E9
Certificate issuer: /CN=7a2ab621d351fe3f073e881940eebcd1c86df3e9
Certificate serial: 0195E00F3D9F64372077DE455C640D54AAA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eiq2IdNR_j8HPogZQO680cht8-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/8091a2-8a2d-458c-98a4-c6fcbac770f5/1/eiq2IdNR_j8HPogZQO680cht8-k.mft
Manifest number: 14BD
Signing time: Sat 29 Mar 2025 04:00:49 +0000
Manifest this update: Sat 29 Mar 2025 04:00:49 +0000
Manifest next update: Sun 30 Mar 2025 04:00:49 +0000
Files and hashes: 1: eiq2IdNR_j8HPogZQO680cht8-k.crl (hash: fcrmLHQ3+7z/PeJN9rb1snrz4NGRNXMNs25PYVOBYlI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e0:0f:3d:9f:64:37:20:77:de:45:5c:64:0d:54:aa:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a2ab621d351fe3f073e881940eebcd1c86df3e9
Validity
Not Before: Mar 29 04:00:49 2025 GMT
Not After : Mar 30 04:00:49 2025 GMT
Subject: CN=fceecf3a294a336f50a587026423a782434aedc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:60:43:cd:e6:e2:1c:3a:40:b3:2a:23:31:db:
97:ec:be:ea:29:b8:8b:65:d5:dc:ea:ca:fd:69:a5:
eb:5f:43:5c:4f:7e:8c:8b:f1:a3:ef:6c:1d:99:d3:
9c:df:89:e6:8e:20:a1:86:41:4b:9f:ff:39:14:72:
a2:51:f5:db:48:fc:dc:43:ed:fe:af:f4:8d:16:e8:
00:b6:13:b3:8b:bd:c6:4f:e4:fa:cd:b1:b5:3c:6d:
6c:10:4f:af:33:d2:a5:d5:ea:b4:5c:03:22:5f:e9:
48:88:7e:10:84:6f:69:1e:c9:4a:c6:b2:cc:bb:41:
c1:c0:d8:4f:c2:b8:4e:b6:ab:c1:f5:96:3e:69:a4:
88:33:27:ba:5c:03:80:af:9b:01:27:4b:47:6d:6f:
3b:ad:a2:43:3c:7d:01:52:99:f3:fc:74:83:c0:a9:
52:04:e0:80:fc:77:a6:7e:ec:4a:31:48:c0:91:4c:
6b:0c:3b:b9:1a:e2:e8:81:b2:a2:d2:f6:9d:b5:2c:
72:6b:62:07:39:07:56:e6:7e:36:bf:c8:6c:e3:73:
af:8d:3a:d4:87:7d:ec:d6:dd:7d:6b:09:ef:3f:db:
1d:ef:71:31:db:59:9c:8f:c7:90:4a:db:7c:72:e7:
08:78:75:cf:33:da:d4:fb:21:fe:11:64:2b:f7:a2:
cd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:EE:CF:3A:29:4A:33:6F:50:A5:87:02:64:23:A7:82:43:4A:ED:C2
X509v3 Authority Key Identifier:
keyid:7A:2A:B6:21:D3:51:FE:3F:07:3E:88:19:40:EE:BC:D1:C8:6D:F3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eiq2IdNR_j8HPogZQO680cht8-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8091a2-8a2d-458c-98a4-c6fcbac770f5/1/eiq2IdNR_j8HPogZQO680cht8-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/8091a2-8a2d-458c-98a4-c6fcbac770f5/1/eiq2IdNR_j8HPogZQO680cht8-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:9a:b8:80:fe:47:82:99:2b:f1:50:62:fd:57:24:30:4d:17:
2e:44:4d:a3:d6:59:23:59:c2:2f:aa:ea:1a:fe:ae:e0:5a:c2:
45:eb:fa:4c:c6:b8:b0:76:c9:35:f8:d7:38:3e:27:09:73:5c:
a4:55:30:c2:13:0e:21:60:9c:29:25:9f:72:3d:10:dc:4d:a4:
59:37:c6:c2:40:a5:36:92:43:f2:75:b1:8e:2c:11:97:4d:2a:
e9:d1:a5:8f:3a:79:0d:f4:b7:23:57:2f:b2:dc:1a:ae:cf:da:
ab:2a:a4:87:7a:ce:46:cc:91:11:ed:3f:f9:a4:1e:aa:72:51:
a7:42:b9:bd:ad:ca:60:66:b7:b1:a1:b1:9e:46:57:f7:d1:8f:
cc:cb:e5:31:64:e2:11:fa:fe:46:2d:8d:c6:ec:c2:a3:70:d5:
46:e5:b2:61:0e:eb:37:4b:56:a8:9c:34:9f:31:6e:10:e6:86:
66:36:6d:87:0c:a4:07:17:33:73:4e:88:31:8a:e1:55:dc:10:
df:2d:c2:64:62:9d:c4:fc:21:a3:5b:b5:05:c1:40:e0:14:b1:
47:bf:f5:cd:8e:aa:23:24:da:0c:90:f6:15:ff:6d:6e:94:00:
2d:8d:35:60:61:0c:5d:eb:db:a3:9b:6c:d2:6e:ad:cc:95:3c:
dc:aa:67:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:02:35 2025 by rpki-client