Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.mft
File:                     2DfDMTFrSuUZLvkigRokIlKApjY.mft (raw, json)
Hash identifier:          gGuS8xXNun6TMKx2YavRlKPGj+RCBgf3KaLQuuBkVLM=
Subject key identifier:   58:F7:D6:9E:C5:D9:FE:6B:63:23:6E:FB:16:E5:1B:A5:E1:42:21:7D
Authority key identifier: D8:37:C3:31:31:6B:4A:E5:19:2E:F9:22:81:1A:24:22:52:80:A6:36
Certificate issuer:       /CN=d837c331316b4ae5192ef922811a24225280a636
Certificate serial:       0190573590D7D5A6687B6E7164BA5D103CA1
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/2DfDMTFrSuUZLvkigRokIlKApjY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.mft
Manifest number:          0AD7
Signing time:             Thu 27 Jun 2024 01:00:46 +0000
Manifest this update:     Thu 27 Jun 2024 01:00:46 +0000
Manifest next update:     Fri 28 Jun 2024 01:00:46 +0000
Files and hashes:         1: 2DfDMTFrSuUZLvkigRokIlKApjY.crl (hash: Z6CYlKaESVg/t0EXhOmInVgvd3FX1fjfiZncR/gaH40=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:90:57:35:90:d7:d5:a6:68:7b:6e:71:64:ba:5d:10:3c:a1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d837c331316b4ae5192ef922811a24225280a636
        Validity
            Not Before: Jun 27 01:00:46 2024 GMT
            Not After : Jun 28 01:00:46 2024 GMT
        Subject: CN=58f7d69ec5d9fe6b63236efb16e51ba5e142217d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:49:b6:16:09:68:41:ca:3c:12:74:bb:93:6b:
                    e3:b8:3c:94:60:bc:eb:98:64:ea:47:af:43:e7:bb:
                    8a:95:c4:42:c6:14:4e:f9:a8:9a:8e:87:27:d6:51:
                    d5:d5:ca:a2:53:fe:c3:10:ea:19:94:28:f3:24:26:
                    54:f0:c8:9f:c8:fb:22:df:3a:49:79:f6:3d:00:af:
                    24:ea:41:dd:ef:ed:69:fc:63:bc:52:38:98:f8:00:
                    4e:9b:f2:7c:0e:1f:a2:54:8b:b0:6f:f0:87:ce:aa:
                    1d:f0:90:29:16:14:fa:3a:65:f5:03:58:69:9a:53:
                    2d:7d:d5:5c:0f:a0:48:8f:de:86:aa:fd:63:66:f3:
                    b8:d4:08:c0:eb:4e:a1:b1:3e:e4:27:e2:24:1f:d7:
                    92:b4:07:b7:de:83:14:5d:e9:32:db:fb:5d:64:84:
                    e9:0a:78:56:bb:91:e3:16:ac:0b:c7:0f:d7:50:63:
                    57:b5:e8:c0:44:16:47:69:0b:22:89:e5:b5:13:e2:
                    39:b0:e0:73:56:b8:7d:b9:f4:61:9b:c4:ae:e6:5e:
                    6d:a6:ac:9b:72:93:be:35:9a:f4:07:33:a7:f2:52:
                    6b:0c:ca:f4:15:5b:fb:f2:1c:be:67:df:2d:cc:a9:
                    c2:a5:f0:6e:cf:b0:e8:0d:7b:b4:35:77:5d:e4:d8:
                    1d:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                58:F7:D6:9E:C5:D9:FE:6B:63:23:6E:FB:16:E5:1B:A5:E1:42:21:7D
            X509v3 Authority Key Identifier:
                keyid:D8:37:C3:31:31:6B:4A:E5:19:2E:F9:22:81:1A:24:22:52:80:A6:36

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DfDMTFrSuUZLvkigRokIlKApjY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/389ae4-25e3-42fa-9c72-250a7fb63fc8/1/2DfDMTFrSuUZLvkigRokIlKApjY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         83:b5:5a:4e:5f:74:da:68:91:2c:9d:52:78:95:e9:0b:48:6b:
         e8:83:0b:3f:34:09:15:9e:b7:1f:8d:83:53:20:57:97:a0:e3:
         20:65:25:59:51:f9:86:4f:48:79:e4:a3:d6:aa:d5:23:29:90:
         6e:6c:a7:31:ec:f9:af:45:99:a1:bd:b0:ec:05:c3:dd:2f:93:
         2e:62:bb:2e:fb:a7:b6:47:19:a8:bd:77:8b:b5:b1:57:3f:89:
         3f:17:38:7d:b2:6f:f3:c0:7f:0c:a2:7f:16:09:29:5e:7a:03:
         fd:1a:e9:5a:f7:fd:fe:a4:b8:15:15:ce:50:ad:e0:f5:8c:f8:
         34:78:28:c8:c9:49:c1:d7:0e:b3:26:97:8e:39:9b:22:d6:a7:
         ab:a5:a7:c5:3a:d6:68:5a:cb:84:42:c3:71:55:0b:a2:e1:24:
         e0:f7:d7:d7:24:3d:b3:31:9e:dd:bc:a8:fe:c9:4f:ac:ce:db:
         b3:e6:9b:6a:2c:85:31:fc:c5:b4:a3:ff:f3:06:6b:6c:e1:dc:
         11:3e:b7:7a:52:89:09:ce:b5:37:17:ab:d3:0d:9b:43:35:26:
         0c:60:80:08:22:5f:4e:67:ec:9b:de:28:e1:2f:65:51:ce:7e:
         ef:e6:fe:d8:9b:f7:c1:c1:07:34:b0:32:bc:7d:f6:72:17:28:
         08:47:c9:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:57:05 2025 by rpki-client