Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
File: ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft (raw, json)
Hash identifier: 5uuA/vFkiVU+JN+n+zOWbWZmcw4VvnMEwKU/R1J4BjA=
Subject key identifier: 3A:29:01:CC:2F:3D:DC:B7:2B:E5:E8:57:99:5D:82:B0:21:9D:4B:3B
Authority key identifier: 65:28:2B:F5:2B:FB:80:F1:10:6B:3C:0E:CD:FA:1A:54:33:30:50:86
Certificate issuer: /CN=65282bf52bfb80f1106b3c0ecdfa1a5433305086
Certificate serial: 0196D21A26F4DA8FB0262509068C48410037
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
Manifest number: 121F
Signing time: Thu 15 May 2025 04:00:51 +0000
Manifest this update: Thu 15 May 2025 04:00:51 +0000
Manifest next update: Fri 16 May 2025 04:00:51 +0000
Files and hashes: 1: ZSgr9Sv7gPEQazwOzfoaVDMwUIY.crl (hash: zJXV5Gs20W8rMzNnBP5pgpAn7aMxzn5Dr4cgSCjPns0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d2:1a:26:f4:da:8f:b0:26:25:09:06:8c:48:41:00:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65282bf52bfb80f1106b3c0ecdfa1a5433305086
Validity
Not Before: May 15 04:00:51 2025 GMT
Not After : May 16 04:00:51 2025 GMT
Subject: CN=3a2901cc2f3ddcb72be5e857995d82b0219d4b3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:45:fe:1a:b5:f1:9e:2c:65:bb:91:c4:7d:3a:
fd:b0:3c:d5:87:f2:24:01:84:8c:51:b3:55:ac:d3:
c6:6f:e1:cd:db:37:24:31:56:04:41:25:c6:24:0e:
69:15:2a:fa:a1:ec:4b:eb:0a:ca:1f:ca:61:2f:65:
e0:ab:88:8d:00:a9:48:4e:d8:29:9d:6a:72:48:7b:
86:2a:d7:6f:f1:10:54:21:37:fa:95:55:b7:e0:58:
d3:29:37:4e:b2:1f:27:2f:97:9f:98:fa:49:1f:28:
fb:ad:53:2a:1a:f8:2c:18:35:d2:5f:f6:9a:09:04:
d3:4b:08:6d:93:f1:b8:a5:3d:00:ea:02:40:85:11:
d1:a9:4d:1f:dd:e7:38:a3:fe:1c:d7:dd:0b:b6:d7:
c0:e1:68:18:d7:af:6d:96:3a:77:6c:b6:da:ee:63:
8c:09:9b:5d:a4:23:a9:4f:f6:a8:03:2a:ac:04:ff:
f0:6d:c0:cb:b5:84:61:18:3f:51:e8:00:78:fc:77:
8b:b4:22:b3:5a:1d:29:e4:d1:c8:8f:00:83:ef:6c:
05:b1:6d:f4:f5:cd:89:13:09:71:e3:b6:23:aa:36:
d1:82:4a:43:40:83:75:b2:fd:b3:96:ee:08:5d:b1:
d5:15:00:c4:09:a8:4e:d2:c6:60:ad:cd:30:17:74:
20:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:29:01:CC:2F:3D:DC:B7:2B:E5:E8:57:99:5D:82:B0:21:9D:4B:3B
X509v3 Authority Key Identifier:
keyid:65:28:2B:F5:2B:FB:80:F1:10:6B:3C:0E:CD:FA:1A:54:33:30:50:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/dc7e65-9b3b-4135-9db9-0c1e4fdfac5a/1/ZSgr9Sv7gPEQazwOzfoaVDMwUIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:a8:e4:4c:70:ce:81:4d:a6:15:e6:86:a5:67:8f:5a:03:2b:
b4:b5:58:6e:d5:86:ee:d1:7f:68:16:88:92:99:52:13:e1:3f:
37:2a:ff:fa:07:15:e4:f3:54:11:7f:77:4a:00:06:cb:4d:c6:
6d:89:e8:1a:c9:01:7d:33:38:b0:28:04:7e:0b:f3:49:0e:01:
a6:92:ed:f6:0a:17:d4:c6:8b:32:ea:6e:96:c7:48:8a:ff:ad:
fb:c6:0d:41:30:a1:6e:ad:99:9b:14:91:7d:23:93:0b:54:90:
13:67:e8:5e:d2:7b:0e:43:40:15:5f:28:09:51:5c:3a:f5:a4:
73:63:a9:9e:56:ba:26:33:af:e9:5e:f2:bc:91:44:28:d4:ea:
25:44:ab:cd:74:08:49:08:1e:42:6a:4f:00:52:fe:31:1b:1b:
e8:86:8d:75:ad:22:89:a2:23:f1:85:8a:7f:3f:6e:20:e3:9c:
9b:69:35:eb:55:ad:74:c6:8f:c2:3e:9f:a3:7d:20:94:85:68:
40:97:24:a0:72:fa:39:e6:a7:71:d2:64:a9:9e:b4:ae:c2:c4:
7e:57:80:43:df:58:6e:87:20:e4:ad:fe:b3:86:09:bf:e9:ef:
00:cb:02:fa:a9:c7:0e:6e:8e:5f:d8:60:6a:87:3e:2b:96:d6:
6b:7a:d9:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:56:07 2025 by rpki-client