Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
File: dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft (raw, json)
Hash identifier: ZXa9U92y4it5ySaOVK8U1M3gT5BLafPDyLsf7kjx9DM=
Subject key identifier: 5D:F4:F9:76:D2:76:A6:60:24:CA:BA:4E:C0:E6:06:AD:C2:89:0D:81
Authority key identifier: 75:92:3E:C5:46:DF:37:1D:09:E6:8C:6B:06:02:5E:A3:12:61:23:4A
Certificate issuer: /CN=75923ec546df371d09e68c6b06025ea31261234a
Certificate serial: 0195E15A0B0E8956C46532C99FFF03408122
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
Manifest number: 14BF
Signing time: Sat 29 Mar 2025 10:02:09 +0000
Manifest this update: Sat 29 Mar 2025 10:02:09 +0000
Manifest next update: Sun 30 Mar 2025 10:02:09 +0000
Files and hashes: 1: dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl (hash: ntv8RY1fhcsjkl8dsifC0KS/qhcBs12JA9L+2RLubyQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:e1:5a:0b:0e:89:56:c4:65:32:c9:9f:ff:03:40:81:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75923ec546df371d09e68c6b06025ea31261234a
Validity
Not Before: Mar 29 10:02:09 2025 GMT
Not After : Mar 30 10:02:09 2025 GMT
Subject: CN=5df4f976d276a66024caba4ec0e606adc2890d81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d8:2f:fc:70:09:7f:6f:f9:f1:38:39:07:ee:
20:72:f1:1a:8b:e3:a7:05:2a:d9:36:62:2e:11:10:
43:d2:0e:b2:e3:33:4f:d8:de:a3:b9:ac:16:d6:0e:
d4:68:ff:1f:42:b5:7e:2e:03:76:5b:8a:37:70:bc:
04:e4:8f:70:29:44:b1:f6:bf:e1:6a:44:e6:a9:0b:
80:c3:d0:bc:87:cf:ef:68:5c:07:ec:88:ac:3f:22:
98:8a:bf:9e:0c:d2:f8:ce:5a:10:5e:a4:ce:00:e2:
c1:34:41:c5:a9:c3:46:64:18:90:bd:10:bf:f4:17:
22:cd:b9:59:cf:b4:9d:2c:d3:a0:83:9b:77:b8:19:
d9:44:e9:e1:09:0b:f3:c5:af:93:19:11:d4:6c:7c:
7d:59:36:b6:b0:6d:20:ac:79:2c:03:2d:7f:56:06:
8a:39:2e:e4:43:dc:76:ad:8b:25:65:20:a9:76:51:
dd:7e:a2:77:a3:83:b2:16:3a:a6:3c:66:80:2f:36:
38:b6:ee:a9:96:74:72:05:bf:2f:e1:33:70:ad:49:
b2:cc:2e:81:b6:36:71:a8:2b:70:df:02:2f:83:bd:
87:26:7d:f9:cc:fb:b3:b3:e7:6d:ec:a6:25:77:8f:
2a:31:3d:f1:dc:43:42:4c:1c:33:c9:32:38:63:c9:
2a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F4:F9:76:D2:76:A6:60:24:CA:BA:4E:C0:E6:06:AD:C2:89:0D:81
X509v3 Authority Key Identifier:
keyid:75:92:3E:C5:46:DF:37:1D:09:E6:8C:6B:06:02:5E:A3:12:61:23:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:38:bd:1f:4d:17:c9:30:1c:db:d5:7c:4a:ec:92:9c:10:7e:
88:31:bf:8b:03:98:9d:7e:8b:95:8c:0b:19:c5:5a:96:0c:c6:
71:38:32:0a:d7:db:3a:18:a8:63:53:49:6a:41:10:51:5d:05:
c9:76:04:8c:dd:56:83:da:bf:7e:75:63:2a:57:05:c4:f1:13:
29:17:d1:49:5d:4a:08:97:55:83:1f:99:7e:38:c2:94:57:40:
50:7b:66:04:ea:07:60:e8:0d:b8:85:a6:af:c8:a0:20:e8:9e:
75:92:9f:24:3f:55:fb:ef:62:4b:16:8f:0d:e4:64:39:ee:3a:
7c:7d:06:8f:7e:7e:c9:ae:b2:94:1e:ed:f5:47:d6:61:91:c6:
11:82:21:b4:ca:09:b0:5d:fd:2d:52:d7:5f:c7:b6:78:c7:21:
b4:d5:d3:9c:4b:25:3c:7e:8b:db:e5:43:b1:10:30:3d:d7:8e:
91:5b:c3:90:e7:ac:b8:d3:00:80:58:d9:96:d8:c4:d4:c0:92:
00:23:64:55:e9:3e:78:7b:7a:5e:2f:05:08:8a:b3:2b:8b:f8:
21:06:af:ac:43:6b:f5:d3:5a:63:e7:35:86:23:df:c6:38:03:
d6:bd:8f:00:28:69:f4:23:ca:c1:cc:35:a6:12:b1:8b:6c:1f:
f5:47:58:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 18:22:11 2025 by rpki-client