Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/8f50aa-5456-4159-8840-b01d8f295c19/1/Z6upr6N9m85Af-I8eRmJLZ2cCTk.mft
File: Z6upr6N9m85Af-I8eRmJLZ2cCTk.mft (raw, json)
Hash identifier: kxYABKO5PcWg+4z4HwzxtJBz+U2aoHu2vMREkmB2VQ0=
Subject key identifier: 94:8C:6D:F6:DC:45:94:99:FD:8A:AC:D0:EE:FA:81:2F:F9:18:D1:97
Authority key identifier: 67:AB:A9:AF:A3:7D:9B:CE:40:7F:E2:3C:79:19:89:2D:9D:9C:09:39
Certificate issuer: /CN=67aba9afa37d9bce407fe23c7919892d9d9c0939
Certificate serial: 0196A27703F058FBAA8FE71F807C80DABFD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z6upr6N9m85Af-I8eRmJLZ2cCTk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/8f50aa-5456-4159-8840-b01d8f295c19/1/Z6upr6N9m85Af-I8eRmJLZ2cCTk.mft
Manifest number: 061F
Signing time: Mon 05 May 2025 22:00:30 +0000
Manifest this update: Mon 05 May 2025 22:00:30 +0000
Manifest next update: Tue 06 May 2025 22:00:30 +0000
Files and hashes: 1: Z6upr6N9m85Af-I8eRmJLZ2cCTk.crl (hash: +mleaKxseAJglN7wzU28s3IIBICOWFc4dSAVTY8nxkg=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:77:03:f0:58:fb:aa:8f:e7:1f:80:7c:80:da:bf:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67aba9afa37d9bce407fe23c7919892d9d9c0939
Validity
Not Before: May 5 22:00:30 2025 GMT
Not After : May 6 22:00:30 2025 GMT
Subject: CN=948c6df6dc459499fd8aacd0eefa812ff918d197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ba:46:a4:f6:5c:be:a6:c0:3b:86:d6:dd:b0:
ba:9e:a9:68:a6:3b:da:40:89:8f:22:55:28:b0:d4:
34:44:86:8b:80:80:58:7d:e8:19:07:41:ba:26:c4:
11:8a:e1:f0:5a:50:e3:db:71:6e:76:c8:ee:af:85:
5d:02:ab:0c:db:dd:11:c2:09:98:07:e5:c0:c4:0c:
4b:5a:49:f2:a4:c1:12:ea:a6:61:dd:8e:83:f2:79:
1d:30:bd:d1:d8:64:a8:89:b5:b4:31:9f:a6:2e:80:
fc:4a:87:cd:d8:b1:ce:d7:74:3f:a8:35:a7:40:ba:
64:94:ca:b5:05:53:b6:30:ed:51:f9:ca:c9:e6:d9:
b9:37:a7:45:16:e0:b2:af:c1:91:be:41:89:93:0d:
c1:a4:e2:66:7e:aa:cd:28:87:ec:25:12:91:93:1e:
89:a8:d4:e9:f6:c5:e2:6c:74:13:a0:64:7d:69:4a:
7d:57:42:e0:02:dd:5b:ba:29:0c:35:fa:cc:df:39:
27:33:38:e6:b7:e8:13:06:3a:ed:4d:43:7e:cf:72:
30:cc:f3:62:2c:b7:a8:fb:ca:dc:23:03:83:98:e7:
e7:dd:58:78:1f:6f:a3:a0:53:c6:10:09:97:e9:01:
67:75:23:48:98:dc:f2:0a:36:45:0d:b8:83:29:61:
81:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:8C:6D:F6:DC:45:94:99:FD:8A:AC:D0:EE:FA:81:2F:F9:18:D1:97
X509v3 Authority Key Identifier:
keyid:67:AB:A9:AF:A3:7D:9B:CE:40:7F:E2:3C:79:19:89:2D:9D:9C:09:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z6upr6N9m85Af-I8eRmJLZ2cCTk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/8f50aa-5456-4159-8840-b01d8f295c19/1/Z6upr6N9m85Af-I8eRmJLZ2cCTk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/8f50aa-5456-4159-8840-b01d8f295c19/1/Z6upr6N9m85Af-I8eRmJLZ2cCTk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:13:34:45:fc:8e:70:89:15:c7:63:9a:33:65:5e:6e:2f:44:
d8:72:28:c1:24:ab:bb:e1:49:07:5a:c4:b3:7c:23:98:b2:6e:
43:3f:6d:e6:46:9e:91:40:98:26:68:5e:9f:2b:c8:56:3c:e0:
84:ca:c7:61:fb:93:59:6b:5c:12:2e:cc:cb:8e:03:37:0a:c6:
74:82:2c:6c:78:d5:d2:6c:25:7f:3a:5c:a8:b7:72:61:b9:5d:
eb:17:a8:c4:68:9e:b0:68:b8:18:ff:61:67:2e:58:7c:e5:dd:
47:45:ae:08:e4:3b:fd:9e:db:67:ea:13:39:de:a2:d6:0b:b5:
25:db:1f:7e:e5:04:29:5c:0e:06:a4:e6:28:cd:c8:60:c0:de:
76:f3:fe:4f:25:89:0a:92:2d:b3:2f:7b:b6:de:0a:cb:1c:f4:
2f:bb:a6:65:64:f5:c3:1a:5d:29:b3:98:3b:87:06:03:47:a2:
43:30:aa:68:9e:20:fc:33:ee:20:de:b1:fe:cc:0b:06:3f:3d:
74:47:ca:56:3a:4d:42:02:9a:f7:d6:fc:12:01:f2:27:68:41:
7c:3c:54:ea:00:e0:b4:9e:3e:52:21:a8:dc:b3:8e:f1:8f:ff:
e0:26:0e:1d:bb:07:87:1b:38:4d:a5:46:7d:c2:ac:57:b2:6a:
0a:c8:38:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 09:08:22 2025 by rpki-client