Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/289567-937a-402b-b1bc-2c555c9e911d/1/Su3gwav6sSsMyZTOsd2_LA2t-iY.mft
File: Su3gwav6sSsMyZTOsd2_LA2t-iY.mft (raw, json)
Hash identifier: gupFY4kBdnfEsgrxlMTRGib6gK5JtFEiDE1gMUeIYVs=
Subject key identifier: D9:54:87:41:94:34:1C:55:AB:F4:6E:B2:23:39:3E:6F:85:6B:D5:EE
Authority key identifier: 4A:ED:E0:C1:AB:FA:B1:2B:0C:C9:94:CE:B1:DD:BF:2C:0D:AD:FA:26
Certificate issuer: /CN=4aede0c1abfab12b0cc994ceb1ddbf2c0dadfa26
Certificate serial: 0195A38CD67405E4989C9AE2370BBF1CC30F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Su3gwav6sSsMyZTOsd2_LA2t-iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/289567-937a-402b-b1bc-2c555c9e911d/1/Su3gwav6sSsMyZTOsd2_LA2t-iY.mft
Manifest number: 0A93
Signing time: Mon 17 Mar 2025 10:01:10 +0000
Manifest this update: Mon 17 Mar 2025 10:01:10 +0000
Manifest next update: Tue 18 Mar 2025 10:01:10 +0000
Files and hashes: 1: Su3gwav6sSsMyZTOsd2_LA2t-iY.crl (hash: VULRV7k3T88VuGQJC/EG7uMMYNNcWk867Ay646cu/gI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:a3:8c:d6:74:05:e4:98:9c:9a:e2:37:0b:bf:1c:c3:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4aede0c1abfab12b0cc994ceb1ddbf2c0dadfa26
Validity
Not Before: Mar 17 10:01:10 2025 GMT
Not After : Mar 18 10:01:10 2025 GMT
Subject: CN=d954874194341c55abf46eb223393e6f856bd5ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f1:b5:d0:c7:48:34:ef:68:29:0d:1e:65:3a:
0a:89:fd:f4:c8:f3:3c:67:0a:4a:ed:7d:71:94:bf:
ce:85:8f:bb:f2:89:d5:8e:57:eb:3c:4b:6e:30:be:
2f:14:63:57:48:56:08:8e:3a:b1:3f:2a:a9:08:ae:
22:1d:c7:a3:20:1e:8c:62:0d:78:f4:3e:1c:b8:90:
4e:f7:29:f0:7a:dc:d8:bb:53:09:3e:47:be:b3:ea:
b5:76:ac:bc:d3:75:9b:ac:30:20:4b:cc:e3:ac:f7:
7a:32:f6:48:2d:69:92:59:0e:aa:1c:c1:05:f7:bd:
9b:4f:c3:e5:3c:cb:a0:3c:4e:dc:03:e1:fe:eb:09:
0f:b8:7c:ef:28:81:18:5b:5b:b5:55:cf:38:a3:3c:
a1:b3:4c:f9:69:ab:df:89:7b:c2:7b:3d:93:80:8b:
6c:d0:bd:e6:0f:7d:c6:0b:ea:30:fb:2a:9c:9f:02:
1b:07:62:68:a6:45:71:e9:3f:d7:87:ab:ce:bc:69:
59:a1:27:3d:2c:95:21:db:7f:82:74:a8:8a:88:ab:
43:df:2e:e0:f9:07:56:3d:6f:d8:93:52:05:fc:ad:
9e:81:71:c9:2f:ca:f5:b4:2b:ce:e2:36:f9:cf:6d:
9f:54:24:9f:a5:cf:a5:b6:1d:47:62:84:38:11:f6:
6f:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:54:87:41:94:34:1C:55:AB:F4:6E:B2:23:39:3E:6F:85:6B:D5:EE
X509v3 Authority Key Identifier:
keyid:4A:ED:E0:C1:AB:FA:B1:2B:0C:C9:94:CE:B1:DD:BF:2C:0D:AD:FA:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Su3gwav6sSsMyZTOsd2_LA2t-iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/289567-937a-402b-b1bc-2c555c9e911d/1/Su3gwav6sSsMyZTOsd2_LA2t-iY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/289567-937a-402b-b1bc-2c555c9e911d/1/Su3gwav6sSsMyZTOsd2_LA2t-iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:f9:be:7b:7e:5c:8d:c5:2c:01:6c:88:22:ae:f6:b3:b6:2f:
09:26:44:3e:b0:2f:9a:3f:b2:0d:36:87:1b:83:e9:0e:1f:49:
fa:2e:47:a5:47:6c:61:81:f1:7d:c9:99:f9:ad:76:a7:a7:e5:
98:ae:ef:9e:c5:7f:10:27:f7:ae:a2:67:91:0c:0c:4d:6f:58:
f2:f5:3c:97:07:4d:17:4e:67:5a:ac:7d:96:05:67:a2:67:93:
6b:6f:29:57:f8:03:5c:98:ac:3d:2a:37:26:29:e7:3b:e8:c9:
07:4e:54:b3:d9:35:6c:13:dd:db:77:d3:c0:f1:ba:c3:bc:86:
75:82:ee:43:92:0d:fc:29:98:c3:7b:6a:7a:5a:37:80:d0:3c:
bb:37:a7:6c:6e:d2:a9:48:26:e3:b4:bd:b7:23:3b:1c:95:42:
ca:ff:9e:8f:70:a0:00:f8:f9:55:f0:61:ae:cb:c7:32:cd:3c:
8a:9c:3a:91:67:36:16:f1:d0:b7:b3:27:20:87:03:95:d3:64:
2c:8c:7e:f9:25:d9:e4:a7:db:e5:48:fe:16:23:1e:bd:84:9a:
03:e1:ac:4b:59:a1:ac:d6:c8:33:56:bb:c3:37:5f:fb:83:e6:
9e:25:db:5c:24:1b:df:ad:ac:e6:96:c7:f0:c9:33:a3:4e:a7:
77:7c:cd:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 8 08:38:15 2025 by rpki-client