Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
File: YQy4N7bSF3jkw9u5aWefDxxQtIo.mft (raw, json)
Hash identifier: V7sbV4Wqt49AsY2px67/26BKItVcE6fj3eLExgda39A=
Subject key identifier: A7:47:98:6E:C2:D9:42:08:AC:84:69:69:60:F0:EC:F8:C6:1B:F7:AA
Authority key identifier: 61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
Certificate issuer: /CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Certificate serial: 0195E1598FF6F686D6A8C7B26D37EB753316
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
Manifest number: 0CDA
Signing time: Sat 29 Mar 2025 10:01:37 +0000
Manifest this update: Sat 29 Mar 2025 10:01:37 +0000
Manifest next update: Sun 30 Mar 2025 10:01:37 +0000
Files and hashes: 1: YQy4N7bSF3jkw9u5aWefDxxQtIo.crl (hash: kqyWIxEQNJH7RQxmHmZ5Z3wd5clfZeyv751grgIf4Eo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:59:8f:f6:f6:86:d6:a8:c7:b2:6d:37:eb:75:33:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=610cb837b6d21778e4c3dbb969679f0f1c50b48a
Validity
Not Before: Mar 29 10:01:37 2025 GMT
Not After : Mar 30 10:01:37 2025 GMT
Subject: CN=a747986ec2d94208ac84696960f0ecf8c61bf7aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e8:90:ca:d5:de:95:53:66:83:b5:a1:40:b9:
3c:eb:be:b3:f5:a9:11:4a:1d:9a:30:3f:26:2f:0a:
27:c1:1c:f9:8c:08:ac:8a:93:37:29:7f:c8:1f:a4:
c1:dc:ec:a1:07:6e:5c:30:31:4b:ed:39:28:1f:69:
1b:36:d7:ff:d0:73:a8:5d:fd:62:63:39:49:7f:e7:
df:c3:70:98:a7:33:df:91:db:ea:80:28:8f:d2:ff:
1d:11:7b:4b:ff:5e:36:50:65:9b:df:e8:aa:0b:f2:
89:a6:c8:06:eb:e4:32:47:ba:70:ef:68:a4:95:76:
c1:4a:ff:90:f1:07:33:2c:84:7c:d7:5a:59:ba:9a:
e7:74:7b:e8:de:b4:8d:80:15:ee:91:54:97:6a:1e:
23:2e:20:b9:3b:7a:50:68:82:78:fa:52:fe:5f:1b:
db:73:33:50:8e:50:49:f8:de:8d:53:bb:d6:18:be:
ff:0e:8e:57:f6:24:77:31:10:01:3c:40:23:5d:3a:
f0:31:88:9f:60:a3:fa:c2:c6:aa:3b:65:e0:cd:31:
9b:ac:9d:fd:f1:0e:fe:41:cf:3a:77:29:be:48:06:
d1:64:5b:4d:a0:95:13:c7:ee:50:89:c8:32:fd:95:
cc:6b:d5:d4:db:6d:ac:fe:6b:43:11:00:8d:37:84:
1c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:47:98:6E:C2:D9:42:08:AC:84:69:69:60:F0:EC:F8:C6:1B:F7:AA
X509v3 Authority Key Identifier:
keyid:61:0C:B8:37:B6:D2:17:78:E4:C3:DB:B9:69:67:9F:0F:1C:50:B4:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQy4N7bSF3jkw9u5aWefDxxQtIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/98e825-b58c-456e-af28-7b35a06ab54b/1/YQy4N7bSF3jkw9u5aWefDxxQtIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:f2:b9:30:a8:7d:f0:58:75:f4:cf:f9:b5:fb:62:a5:ba:5f:
10:03:39:85:f8:ae:20:5c:23:35:30:e2:7f:38:c5:d5:3c:94:
87:4d:8b:b8:89:50:0b:b6:07:2a:81:8e:12:6f:84:f3:b8:b2:
4f:46:a5:16:3c:4b:46:8f:33:19:74:19:78:7d:30:10:d4:db:
ea:14:48:44:9c:f4:07:f6:7a:34:06:42:cb:8d:41:ab:9c:22:
c4:2e:36:4f:c0:68:10:fb:86:53:31:9f:f5:79:f5:22:ee:8d:
ff:9f:11:02:ed:10:81:05:45:98:4e:cb:c2:3d:76:8d:0f:00:
8a:e7:c1:07:0d:39:40:6b:02:97:7c:36:17:9b:03:cd:94:d6:
0e:bd:e2:f3:46:d8:9c:f5:77:a1:f0:ef:ba:e4:dc:6d:a4:50:
f2:b9:18:fc:8b:cd:36:6a:57:40:e9:40:2c:2a:f6:de:0f:b4:
ba:81:77:53:b5:5b:6f:4d:8a:28:78:ec:85:35:b1:b7:f9:6c:
f4:50:df:34:c3:45:68:04:8e:a5:4e:68:a0:86:f5:9c:7b:91:
4e:7f:03:67:78:74:7e:69:cf:a4:a6:c3:ef:3d:9f:06:68:90:
aa:a8:6e:ea:68:56:1c:a5:c6:b2:b5:0c:8d:c1:d7:22:ec:2f:
38:8a:16:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:18 2025 by rpki-client