Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/665d01-3cc7-483e-8e9f-c9243b8374aa/1/g27BEvKGCMthun5cs62BDusT8Wk.mft
File: g27BEvKGCMthun5cs62BDusT8Wk.mft (raw, json)
Hash identifier: Y1YiwT9HIIEBNrjb1anSdZYfvSGPLqSJW3HadVbTeC4=
Subject key identifier: 2A:BD:92:B1:43:C7:48:17:DE:95:97:A2:30:80:C9:24:13:1D:F1:31
Authority key identifier: 83:6E:C1:12:F2:86:08:CB:61:BA:7E:5C:B3:AD:81:0E:EB:13:F1:69
Certificate issuer: /CN=836ec112f28608cb61ba7e5cb3ad810eeb13f169
Certificate serial: 0195CE77DF6F80877071836279FF3FE99D6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g27BEvKGCMthun5cs62BDusT8Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/665d01-3cc7-483e-8e9f-c9243b8374aa/1/g27BEvKGCMthun5cs62BDusT8Wk.mft
Manifest number: 02B2
Signing time: Tue 25 Mar 2025 18:01:57 +0000
Manifest this update: Tue 25 Mar 2025 18:01:57 +0000
Manifest next update: Wed 26 Mar 2025 18:01:57 +0000
Files and hashes: 1: g27BEvKGCMthun5cs62BDusT8Wk.crl (hash: zsJycvkguhfTjr7wg9Vwr661wlJnTkSNQ8EOiZ9MTqA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:ce:77:df:6f:80:87:70:71:83:62:79:ff:3f:e9:9d:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=836ec112f28608cb61ba7e5cb3ad810eeb13f169
Validity
Not Before: Mar 25 18:01:57 2025 GMT
Not After : Mar 26 18:01:57 2025 GMT
Subject: CN=2abd92b143c74817de9597a23080c924131df131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4f:99:29:1e:ac:fb:dd:96:b5:32:cc:04:cb:
ef:46:dc:13:da:37:f1:05:52:60:9d:c8:6f:63:75:
1d:68:b6:c4:47:0b:d1:f5:91:21:a4:9d:1d:8d:86:
99:83:c4:17:ec:a7:76:9b:09:4b:4f:82:78:5e:26:
cd:fd:50:a2:f5:d9:aa:b2:f8:bf:20:c4:bd:1f:02:
0b:84:c6:f9:bf:b2:b5:cb:43:38:b7:1a:e5:49:57:
2a:ff:c9:fd:f1:ee:65:40:83:1e:5e:9a:b1:26:02:
bf:ae:61:b5:b8:20:56:70:6a:8c:30:56:91:f8:11:
c5:af:3c:9c:13:2d:58:f6:3e:c6:4b:88:c1:bf:21:
b7:0c:dc:a5:95:80:56:99:89:48:c3:f5:0e:08:6d:
3e:08:e7:3e:7b:7f:93:0e:2a:d4:e5:13:12:9c:52:
d5:d3:f5:c6:97:15:96:ae:60:c1:24:44:0e:01:93:
0d:8f:ec:ea:da:65:6a:eb:89:4e:8b:f8:6c:d8:93:
dd:fc:ff:73:33:14:27:ac:88:db:52:b4:a6:4d:ee:
7b:b5:ff:3c:0b:9f:4b:ae:66:c4:78:0c:b7:bc:a0:
12:99:b2:99:59:ac:0e:f3:ba:1b:5a:9d:c2:1e:7e:
0a:5d:81:10:23:96:57:8d:a4:7d:d7:2f:0f:50:24:
79:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:BD:92:B1:43:C7:48:17:DE:95:97:A2:30:80:C9:24:13:1D:F1:31
X509v3 Authority Key Identifier:
keyid:83:6E:C1:12:F2:86:08:CB:61:BA:7E:5C:B3:AD:81:0E:EB:13:F1:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g27BEvKGCMthun5cs62BDusT8Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/665d01-3cc7-483e-8e9f-c9243b8374aa/1/g27BEvKGCMthun5cs62BDusT8Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/665d01-3cc7-483e-8e9f-c9243b8374aa/1/g27BEvKGCMthun5cs62BDusT8Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:7b:f8:78:a8:ec:1c:3a:0a:66:32:15:cf:a2:a2:03:c0:8c:
29:36:5e:e2:4c:eb:56:49:fd:4b:8d:50:a7:1b:75:53:2e:a7:
33:d1:4d:c2:19:33:ed:25:74:63:93:8b:f0:e1:23:4e:2d:c8:
d2:ec:7d:01:27:78:d2:50:24:26:c3:32:93:5e:72:86:e0:28:
0e:3c:fe:e7:1c:d4:06:63:e7:b3:44:bd:ed:67:c8:ad:09:8d:
21:cc:3a:bb:91:a3:94:a5:c8:84:52:a2:34:53:09:a7:dc:dd:
56:ac:d4:db:e4:a1:29:d7:29:e7:17:7e:10:ab:48:11:7a:a4:
42:a0:87:ac:3c:8a:f8:55:b3:b2:29:55:5b:33:c7:6d:60:e9:
25:b4:cc:81:7e:b9:56:ce:14:a0:60:65:d5:7e:50:26:b7:e7:
81:93:06:f0:6b:00:ec:fd:93:24:79:f6:76:43:df:8a:3b:f3:
65:44:27:1f:91:13:64:77:53:90:96:14:ad:e1:e8:f1:3c:21:
e2:58:a1:96:6e:3e:ac:48:07:eb:09:37:f1:dd:e6:66:fe:3e:
90:c6:81:80:dd:fd:e2:37:9f:42:98:d9:85:6c:b1:85:85:0b:
02:14:38:fd:5a:27:87:f3:1c:e8:b9:c3:e8:75:71:97:03:a7:
95:1e:bf:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:18:33 2025 by rpki-client