Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b47217-3d58-4109-9a18-347b3052b3cc/1/lopFBwJlXLHBL1GJM9k877nt4j4.mft
File: lopFBwJlXLHBL1GJM9k877nt4j4.mft (raw, json)
Hash identifier: sWKSAnfs7i8WJX9RIi4qFYomJymQpTWxls+nkuF5lfg=
Subject key identifier: A5:46:FC:09:AB:A0:6F:C1:9E:62:CB:A3:1D:3E:A9:FF:52:DC:09:06
Authority key identifier: 96:8A:45:07:02:65:5C:B1:C1:2F:51:89:33:D9:3C:EF:B9:ED:E2:3E
Certificate issuer: /CN=968a450702655cb1c12f518933d93cefb9ede23e
Certificate serial: 019736BCBFE0E4169D82CD63B2174905A9B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lopFBwJlXLHBL1GJM9k877nt4j4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b47217-3d58-4109-9a18-347b3052b3cc/1/lopFBwJlXLHBL1GJM9k877nt4j4.mft
Manifest number: 0245
Signing time: Tue 03 Jun 2025 17:00:28 +0000
Manifest this update: Tue 03 Jun 2025 17:00:28 +0000
Manifest next update: Wed 04 Jun 2025 17:00:28 +0000
Files and hashes: 1: lopFBwJlXLHBL1GJM9k877nt4j4.crl (hash: B0wd20C3+b6T+vZ65EdvobvOh4GPkFadnoCom5JZB+I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:36:bc:bf:e0:e4:16:9d:82:cd:63:b2:17:49:05:a9:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=968a450702655cb1c12f518933d93cefb9ede23e
Validity
Not Before: Jun 3 17:00:28 2025 GMT
Not After : Jun 4 17:00:28 2025 GMT
Subject: CN=a546fc09aba06fc19e62cba31d3ea9ff52dc0906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:d3:c3:9e:ed:65:32:bd:29:09:cf:8d:25:2f:
21:38:00:da:bf:c5:39:95:4d:92:91:90:fb:bf:67:
fa:1a:ae:0e:c9:4c:8a:61:a5:72:e3:81:fe:6a:2f:
e2:b6:88:26:4f:af:d7:e0:fd:01:ad:db:e2:92:27:
39:7c:da:85:f4:0f:b2:5d:bb:db:d5:81:34:f4:db:
2d:b4:5a:bc:f2:da:8a:20:12:8c:84:67:d7:55:14:
71:3e:13:ea:cf:ab:10:22:32:bf:50:ec:0f:7d:88:
6e:69:b7:1a:6c:9d:8c:25:42:55:4e:31:83:d4:b2:
44:d5:56:00:e5:c9:f5:d8:0d:bc:17:ca:b3:fa:20:
8a:8a:96:b6:76:d9:9d:04:e9:a2:35:3b:54:0b:26:
ec:48:57:de:37:78:55:73:77:89:9f:67:7d:c2:56:
cf:52:46:5b:5b:38:a2:07:e4:8b:4c:98:44:37:3e:
a6:04:bd:52:7f:84:1a:ef:46:6e:fa:6b:01:63:a8:
84:78:b7:13:63:b3:a9:34:42:5d:e5:bc:a4:f0:45:
f1:3f:6a:03:55:9b:6e:fa:20:01:b4:b7:c5:b3:68:
89:e9:6b:34:01:63:7d:a1:06:08:77:21:c1:1e:37:
d6:fe:95:08:40:8e:95:d4:b0:91:09:42:f3:54:46:
a3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:46:FC:09:AB:A0:6F:C1:9E:62:CB:A3:1D:3E:A9:FF:52:DC:09:06
X509v3 Authority Key Identifier:
keyid:96:8A:45:07:02:65:5C:B1:C1:2F:51:89:33:D9:3C:EF:B9:ED:E2:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lopFBwJlXLHBL1GJM9k877nt4j4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b47217-3d58-4109-9a18-347b3052b3cc/1/lopFBwJlXLHBL1GJM9k877nt4j4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b47217-3d58-4109-9a18-347b3052b3cc/1/lopFBwJlXLHBL1GJM9k877nt4j4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:32:9e:4d:8f:98:8a:c3:81:8f:10:a9:f8:3e:4a:86:21:5e:
9e:5b:13:16:70:26:e4:c4:2c:07:a6:55:90:1a:0c:72:26:2f:
ff:e7:e1:39:cf:ca:cd:be:87:82:b7:c3:85:1a:95:a6:71:8b:
10:e2:4c:69:12:ad:e5:a1:46:73:66:a2:d4:d4:a5:b0:fc:65:
65:57:1b:a1:20:52:81:ee:79:9b:21:4d:87:cf:df:f7:2d:fd:
31:20:9a:47:af:b5:f6:19:60:35:12:af:1a:27:c5:d9:71:a8:
ad:75:82:93:a3:86:95:80:62:84:09:b1:1e:5b:d2:71:d8:bd:
27:63:eb:b6:f0:13:f3:4a:27:93:9c:82:39:92:b9:1e:8e:7a:
d0:07:87:66:b6:4a:10:ca:01:a4:29:e1:4d:aa:66:f0:0b:67:
96:24:af:5a:3a:d8:70:0d:f9:5a:be:f0:e6:4f:d5:a3:5b:b5:
5a:48:ca:55:6c:2c:e8:6e:35:37:22:00:57:35:c1:97:03:5d:
cf:0d:53:d9:e1:bd:04:a7:cd:df:82:d2:f8:47:ad:fa:c3:52:
9c:4e:e0:b7:38:e3:c2:c9:82:f8:d9:4f:af:9f:fd:30:80:33:
da:e3:55:06:ba:be:44:1f:a3:56:88:27:0a:b0:ce:09:e9:0d:
41:a7:3f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:31:54 2025 by rpki-client