Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/4792e1-5b9f-4037-8dcb-21014aefbe5a/1/gPALHfY1r9LKor4te0qW7oede2s.mft
File: gPALHfY1r9LKor4te0qW7oede2s.mft (raw, json)
Hash identifier: ryeVcpkfxqpbutSsxDGvon/ZYaGT6NAJwjA998RkXlM=
Subject key identifier: 92:93:2F:89:33:5A:0F:07:CE:03:9F:0A:FA:81:FE:A3:B9:A6:B8:7E
Authority key identifier: 80:F0:0B:1D:F6:35:AF:D2:CA:A2:BE:2D:7B:4A:96:EE:87:9D:7B:6B
Certificate issuer: /CN=80f00b1df635afd2caa2be2d7b4a96ee879d7b6b
Certificate serial: 0193E3842D18FCD1FBB12FF0D977832B1398
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gPALHfY1r9LKor4te0qW7oede2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/4792e1-5b9f-4037-8dcb-21014aefbe5a/1/gPALHfY1r9LKor4te0qW7oede2s.mft
Manifest number: 0710
Signing time: Fri 20 Dec 2024 10:01:50 +0000
Manifest this update: Fri 20 Dec 2024 10:01:50 +0000
Manifest next update: Sat 21 Dec 2024 10:01:50 +0000
Files and hashes: 1: gPALHfY1r9LKor4te0qW7oede2s.crl (hash: 6fyC4Xf9BzB0rNCmd3nrGgM0X4f6BUhJhid4P95ZRBM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:84:2d:18:fc:d1:fb:b1:2f:f0:d9:77:83:2b:13:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80f00b1df635afd2caa2be2d7b4a96ee879d7b6b
Validity
Not Before: Dec 20 10:01:50 2024 GMT
Not After : Dec 21 10:01:50 2024 GMT
Subject: CN=92932f89335a0f07ce039f0afa81fea3b9a6b87e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e5:6b:3e:bd:17:53:7d:6e:ac:0c:23:bb:39:
b6:52:33:cf:fe:0d:da:64:6c:74:93:46:bb:ec:49:
01:ef:16:4d:db:71:3b:12:38:ee:b7:46:b6:fd:92:
aa:f6:19:fa:8c:4a:bf:ed:52:62:09:f5:92:05:df:
38:87:0f:99:d7:04:8a:8a:6b:cc:6a:e8:57:0b:e7:
82:dd:d3:ed:a6:b3:91:63:03:a5:9d:d2:95:1b:82:
34:da:3e:55:58:00:8b:d4:5f:73:20:76:d0:f3:e8:
42:31:0c:3f:0e:0e:28:1b:f1:e0:4b:21:aa:e2:98:
d3:77:56:52:a5:fd:75:88:55:0d:f6:b5:b5:16:73:
50:d9:46:bf:21:59:22:b6:d6:e6:ed:7c:66:e6:8a:
03:ba:5c:c9:d9:ef:34:1b:f9:23:57:76:b0:cf:d6:
cc:1e:68:59:02:76:8f:ff:c4:73:8c:71:bc:47:0e:
52:8c:37:b2:be:c7:44:2b:ca:9d:9e:49:6a:e1:94:
69:e1:50:6f:ca:92:20:69:fb:4a:b5:cb:3b:bf:85:
63:0c:ee:ac:e0:11:50:73:62:14:ed:61:6e:d0:15:
ea:f1:f0:bb:8c:9d:a0:f2:3b:ee:5f:fc:53:8c:68:
1e:0f:50:5d:0a:9e:44:6b:74:9a:b2:0e:33:82:5c:
8d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:93:2F:89:33:5A:0F:07:CE:03:9F:0A:FA:81:FE:A3:B9:A6:B8:7E
X509v3 Authority Key Identifier:
keyid:80:F0:0B:1D:F6:35:AF:D2:CA:A2:BE:2D:7B:4A:96:EE:87:9D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gPALHfY1r9LKor4te0qW7oede2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/4792e1-5b9f-4037-8dcb-21014aefbe5a/1/gPALHfY1r9LKor4te0qW7oede2s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/4792e1-5b9f-4037-8dcb-21014aefbe5a/1/gPALHfY1r9LKor4te0qW7oede2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:fc:bc:2f:39:73:b0:87:ab:cf:4d:c9:b4:47:ce:9e:9f:94:
1c:86:05:fc:d2:96:0b:83:7b:cc:25:40:c7:b9:46:eb:5b:94:
dd:c1:3f:27:be:91:e0:ef:f8:f2:7e:43:77:e2:35:f2:8f:0b:
6e:3c:50:c6:35:0d:80:e6:7a:72:5c:30:77:f7:6b:7d:a9:b3:
0f:f4:9b:f6:e7:0e:eb:c7:2e:5c:dd:ae:5b:cf:84:52:cd:97:
e5:17:2a:56:a8:1a:b4:12:d6:fe:ad:b3:2a:b6:81:0d:a0:ac:
b2:3c:35:a5:a2:8f:49:01:e1:4d:50:53:4a:34:a7:56:a0:71:
60:d0:d4:bf:0d:01:5a:41:16:6b:a8:b0:bf:b6:23:e0:ba:c7:
58:ca:28:1e:5e:67:0f:2d:b2:dd:96:33:d9:34:60:60:e9:c8:
a6:3c:4f:f4:9b:c9:cb:8f:a6:66:97:17:cd:59:c4:62:f9:9c:
a3:4c:fa:1b:07:e7:62:f6:b7:a1:94:1a:cc:57:5f:93:04:f5:
73:e7:b5:04:9e:d1:47:f7:a7:96:e8:65:6b:70:4a:44:83:8a:
9f:cf:d1:50:0c:80:3b:47:81:b3:d9:a0:b1:d3:4c:c7:2c:9b:
9f:e0:a2:39:06:00:4e:ba:e1:54:af:4e:4f:a3:8f:dc:a9:97:
ee:84:33:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:36 2025 by rpki-client