Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/ac5e83-8add-4f56-b73b-829cf0f825e9/1/XzCAHjNozz9wYMjyHMy5ta3b5rc.mft
File: XzCAHjNozz9wYMjyHMy5ta3b5rc.mft (raw, json)
Hash identifier: ASSqciV/WhLB8vin5MYjkX4cVXpV+jwgrCeqX+77wfY=
Subject key identifier: BE:19:2B:4B:55:EF:E1:2E:6E:2D:6A:35:7D:A3:7A:F5:56:B4:D1:3B
Authority key identifier: 5F:30:80:1E:33:68:CF:3F:70:60:C8:F2:1C:CC:B9:B5:AD:DB:E6:B7
Certificate issuer: /CN=5f30801e3368cf3f7060c8f21cccb9b5addbe6b7
Certificate serial: 01917D670C1403F9561DCAEECE94DF640F87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XzCAHjNozz9wYMjyHMy5ta3b5rc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/ac5e83-8add-4f56-b73b-829cf0f825e9/1/XzCAHjNozz9wYMjyHMy5ta3b5rc.mft
Manifest number: 0ACD
Signing time: Fri 23 Aug 2024 04:03:10 +0000
Manifest this update: Fri 23 Aug 2024 04:03:10 +0000
Manifest next update: Sat 24 Aug 2024 04:03:10 +0000
Files and hashes: 1: XzCAHjNozz9wYMjyHMy5ta3b5rc.crl (hash: aNarsCGDF68P03EGaSLW0odz2rCLtGBkwsY72K1Kmq4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7d:67:0c:14:03:f9:56:1d:ca:ee:ce:94:df:64:0f:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f30801e3368cf3f7060c8f21cccb9b5addbe6b7
Validity
Not Before: Aug 23 04:03:10 2024 GMT
Not After : Aug 24 04:03:10 2024 GMT
Subject: CN=be192b4b55efe12e6e2d6a357da37af556b4d13b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6e:55:ca:55:f6:1a:7e:90:90:ad:88:2d:5a:
e6:89:70:ca:89:a4:37:77:9d:de:fd:cd:25:a9:07:
3d:30:e7:b3:34:ac:62:b5:ac:25:ca:a9:6a:d4:c8:
ca:e3:da:20:d6:d5:d8:f8:07:38:35:bb:f6:03:66:
f7:bf:f9:50:44:f1:48:7d:eb:d5:48:08:05:9a:8c:
67:ea:04:2f:a6:23:57:57:0f:6e:2a:74:d8:18:41:
af:f1:b4:6c:53:31:d6:14:54:60:28:59:ba:62:18:
aa:de:3e:7e:43:f6:a8:50:d6:5b:2d:ec:f1:80:2f:
de:89:a0:11:96:9a:d5:68:4d:57:2b:85:0d:a5:18:
31:14:c4:dc:6e:22:1b:49:60:7b:4f:c5:d1:97:5d:
10:ee:1a:bc:4e:1b:91:2a:a9:e2:dd:16:68:70:f3:
6b:0f:3b:ff:05:fc:3f:0f:aa:84:8a:9e:68:c3:08:
0d:2c:3a:5f:f6:d0:8a:1f:de:ee:e3:2d:1f:15:f4:
a3:11:3b:b7:f3:4e:c2:62:1d:57:06:b3:19:63:0c:
bc:f2:78:3f:03:73:1b:e3:63:10:81:f0:37:06:e1:
3f:a3:3b:55:aa:79:3e:f5:a4:07:2a:56:b4:ce:82:
ae:c7:c8:2c:15:19:a9:fd:8e:86:22:a5:76:16:e5:
7d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:19:2B:4B:55:EF:E1:2E:6E:2D:6A:35:7D:A3:7A:F5:56:B4:D1:3B
X509v3 Authority Key Identifier:
keyid:5F:30:80:1E:33:68:CF:3F:70:60:C8:F2:1C:CC:B9:B5:AD:DB:E6:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XzCAHjNozz9wYMjyHMy5ta3b5rc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ac5e83-8add-4f56-b73b-829cf0f825e9/1/XzCAHjNozz9wYMjyHMy5ta3b5rc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/ac5e83-8add-4f56-b73b-829cf0f825e9/1/XzCAHjNozz9wYMjyHMy5ta3b5rc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:5b:be:11:8c:6f:de:2f:54:92:11:47:6e:89:df:f8:fd:6a:
61:80:f4:21:21:d0:14:82:e2:fd:a6:b6:06:34:b5:f7:b9:3d:
db:08:b7:16:22:e4:23:34:0a:4b:be:48:39:42:ee:8e:6f:2a:
b3:dc:74:9f:ee:f1:2d:b5:d5:a3:15:bd:13:95:95:bd:e8:76:
6f:e5:13:7b:cc:c4:6a:65:ce:f7:3f:34:04:8d:c8:d0:b8:de:
9d:4d:e5:43:66:f3:52:46:e0:2b:d5:31:a3:3b:c3:32:8a:ed:
22:30:0b:a3:0b:ee:1e:57:1f:d2:ec:77:b7:dc:7a:c9:ed:4a:
7c:96:39:79:4d:0b:0b:17:47:34:41:a5:7d:fc:1a:f4:35:f4:
1e:c2:04:ca:45:d6:80:db:f2:e6:3c:e9:24:71:f0:df:bf:eb:
a5:da:03:2d:23:21:27:e6:d1:bd:fb:dc:d6:f6:38:ad:32:d3:
5b:8b:f5:24:ee:83:d5:4f:3f:98:28:c6:c8:b3:cf:3e:e1:3a:
0c:62:84:8e:48:5b:25:d3:89:44:7a:fb:7b:62:0f:42:71:96:
4c:be:98:16:15:ee:ff:aa:c2:75:d2:be:cc:75:8f:1d:63:da:
8b:91:2a:81:44:95:d7:aa:e6:26:8a:7b:fe:e7:b2:1c:32:6d:
5d:32:5a:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:09:57 2025 by rpki-client