Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.mft
File: 2DfDMTFrSuUZLvkigRokIlKApjY.mft (raw, json)
Hash identifier: gGuS8xXNun6TMKx2YavRlKPGj+RCBgf3KaLQuuBkVLM=
Subject key identifier: 58:F7:D6:9E:C5:D9:FE:6B:63:23:6E:FB:16:E5:1B:A5:E1:42:21:7D
Authority key identifier: D8:37:C3:31:31:6B:4A:E5:19:2E:F9:22:81:1A:24:22:52:80:A6:36
Certificate issuer: /CN=d837c331316b4ae5192ef922811a24225280a636
Certificate serial: 0190573590D7D5A6687B6E7164BA5D103CA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DfDMTFrSuUZLvkigRokIlKApjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.mft
Manifest number: 0AD7
Signing time: Thu 27 Jun 2024 01:00:46 +0000
Manifest this update: Thu 27 Jun 2024 01:00:46 +0000
Manifest next update: Fri 28 Jun 2024 01:00:46 +0000
Files and hashes: 1: 2DfDMTFrSuUZLvkigRokIlKApjY.crl (hash: Z6CYlKaESVg/t0EXhOmInVgvd3FX1fjfiZncR/gaH40=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:57:35:90:d7:d5:a6:68:7b:6e:71:64:ba:5d:10:3c:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d837c331316b4ae5192ef922811a24225280a636
Validity
Not Before: Jun 27 01:00:46 2024 GMT
Not After : Jun 28 01:00:46 2024 GMT
Subject: CN=58f7d69ec5d9fe6b63236efb16e51ba5e142217d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:49:b6:16:09:68:41:ca:3c:12:74:bb:93:6b:
e3:b8:3c:94:60:bc:eb:98:64:ea:47:af:43:e7:bb:
8a:95:c4:42:c6:14:4e:f9:a8:9a:8e:87:27:d6:51:
d5:d5:ca:a2:53:fe:c3:10:ea:19:94:28:f3:24:26:
54:f0:c8:9f:c8:fb:22:df:3a:49:79:f6:3d:00:af:
24:ea:41:dd:ef:ed:69:fc:63:bc:52:38:98:f8:00:
4e:9b:f2:7c:0e:1f:a2:54:8b:b0:6f:f0:87:ce:aa:
1d:f0:90:29:16:14:fa:3a:65:f5:03:58:69:9a:53:
2d:7d:d5:5c:0f:a0:48:8f:de:86:aa:fd:63:66:f3:
b8:d4:08:c0:eb:4e:a1:b1:3e:e4:27:e2:24:1f:d7:
92:b4:07:b7:de:83:14:5d:e9:32:db:fb:5d:64:84:
e9:0a:78:56:bb:91:e3:16:ac:0b:c7:0f:d7:50:63:
57:b5:e8:c0:44:16:47:69:0b:22:89:e5:b5:13:e2:
39:b0:e0:73:56:b8:7d:b9:f4:61:9b:c4:ae:e6:5e:
6d:a6:ac:9b:72:93:be:35:9a:f4:07:33:a7:f2:52:
6b:0c:ca:f4:15:5b:fb:f2:1c:be:67:df:2d:cc:a9:
c2:a5:f0:6e:cf:b0:e8:0d:7b:b4:35:77:5d:e4:d8:
1d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:F7:D6:9E:C5:D9:FE:6B:63:23:6E:FB:16:E5:1B:A5:E1:42:21:7D
X509v3 Authority Key Identifier:
keyid:D8:37:C3:31:31:6B:4A:E5:19:2E:F9:22:81:1A:24:22:52:80:A6:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DfDMTFrSuUZLvkigRokIlKApjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:b5:5a:4e:5f:74:da:68:91:2c:9d:52:78:95:e9:0b:48:6b:
e8:83:0b:3f:34:09:15:9e:b7:1f:8d:83:53:20:57:97:a0:e3:
20:65:25:59:51:f9:86:4f:48:79:e4:a3:d6:aa:d5:23:29:90:
6e:6c:a7:31:ec:f9:af:45:99:a1:bd:b0:ec:05:c3:dd:2f:93:
2e:62:bb:2e:fb:a7:b6:47:19:a8:bd:77:8b:b5:b1:57:3f:89:
3f:17:38:7d:b2:6f:f3:c0:7f:0c:a2:7f:16:09:29:5e:7a:03:
fd:1a:e9:5a:f7:fd:fe:a4:b8:15:15:ce:50:ad:e0:f5:8c:f8:
34:78:28:c8:c9:49:c1:d7:0e:b3:26:97:8e:39:9b:22:d6:a7:
ab:a5:a7:c5:3a:d6:68:5a:cb:84:42:c3:71:55:0b:a2:e1:24:
e0:f7:d7:d7:24:3d:b3:31:9e:dd:bc:a8:fe:c9:4f:ac:ce:db:
b3:e6:9b:6a:2c:85:31:fc:c5:b4:a3:ff:f3:06:6b:6c:e1:dc:
11:3e:b7:7a:52:89:09:ce:b5:37:17:ab:d3:0d:9b:43:35:26:
0c:60:80:08:22:5f:4e:67:ec:9b:de:28:e1:2f:65:51:ce:7e:
ef:e6:fe:d8:9b:f7:c1:c1:07:34:b0:32:bc:7d:f6:72:17:28:
08:47:c9:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:49:25 2025 by rpki-client