Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f50320-fb81-4d72-892a-84afea8ebe5a/1/qSLK1G6tETX2TAWVGAe29y9xrfI.mft
File: qSLK1G6tETX2TAWVGAe29y9xrfI.mft (raw, json)
Hash identifier: r1askOsoYW/P9MhrXpp3pV+zYqkxuHTCgWSAGUsnBkg=
Subject key identifier: 3C:CA:B9:D9:8B:ED:DF:3D:6D:82:38:31:8F:BA:0B:1C:F0:14:E5:FF
Authority key identifier: A9:22:CA:D4:6E:AD:11:35:F6:4C:05:95:18:07:B6:F7:2F:71:AD:F2
Certificate issuer: /CN=a922cad46ead1135f64c05951807b6f72f71adf2
Certificate serial: 01957EDC1954800C66ECB50C85E38CD7D5C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qSLK1G6tETX2TAWVGAe29y9xrfI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f50320-fb81-4d72-892a-84afea8ebe5a/1/qSLK1G6tETX2TAWVGAe29y9xrfI.mft
Manifest number: 1078
Signing time: Mon 10 Mar 2025 07:01:48 +0000
Manifest this update: Mon 10 Mar 2025 07:01:48 +0000
Manifest next update: Tue 11 Mar 2025 07:01:48 +0000
Files and hashes: 1: qSLK1G6tETX2TAWVGAe29y9xrfI.crl (hash: FByJNQz/tcfleN7MfDOtFZJTRzIjqqRJb+ojpZTrew4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:7e:dc:19:54:80:0c:66:ec:b5:0c:85:e3:8c:d7:d5:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a922cad46ead1135f64c05951807b6f72f71adf2
Validity
Not Before: Mar 10 07:01:48 2025 GMT
Not After : Mar 11 07:01:48 2025 GMT
Subject: CN=3ccab9d98beddf3d6d8238318fba0b1cf014e5ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f3:3c:e6:6d:59:79:06:66:83:0d:7c:93:73:
5c:7b:96:48:cf:90:ef:59:14:63:6e:3e:f6:0b:0b:
58:41:15:e8:be:79:0f:ab:4b:83:8d:57:76:19:5a:
86:69:11:e7:6b:a8:ad:c9:ca:d5:58:bb:d6:f3:30:
29:90:a1:cc:34:8e:61:25:69:aa:5c:7e:3c:5f:ee:
3b:b9:3d:2e:ba:a8:91:ea:e9:46:46:fe:d1:6b:9f:
18:45:fc:89:23:31:5e:26:41:64:9e:bd:d1:6e:7c:
d9:6d:74:ef:2e:a9:c9:ed:0c:f3:19:67:80:08:bd:
48:65:3e:79:97:ee:11:d9:07:98:91:3c:72:56:b2:
96:71:59:35:44:7b:4a:5f:92:24:42:a3:0d:29:30:
dd:bc:b3:60:35:b5:03:10:32:86:0b:aa:0b:d6:05:
80:31:1d:17:f8:5a:bb:7a:62:8a:69:af:1c:fd:3a:
e7:3a:e6:46:a9:f0:f9:58:63:01:82:3a:16:b8:8e:
28:8f:37:a0:da:cb:8b:4b:b3:d6:84:c6:b1:3e:ae:
1b:17:5c:b1:9b:7e:a6:3d:67:6e:ae:21:b0:e0:76:
dc:c4:58:e1:61:86:71:d8:2c:52:29:43:84:88:3d:
79:00:31:1f:0e:9b:0a:41:6f:1c:f2:6d:a2:0a:d4:
07:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:CA:B9:D9:8B:ED:DF:3D:6D:82:38:31:8F:BA:0B:1C:F0:14:E5:FF
X509v3 Authority Key Identifier:
keyid:A9:22:CA:D4:6E:AD:11:35:F6:4C:05:95:18:07:B6:F7:2F:71:AD:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qSLK1G6tETX2TAWVGAe29y9xrfI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f50320-fb81-4d72-892a-84afea8ebe5a/1/qSLK1G6tETX2TAWVGAe29y9xrfI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f50320-fb81-4d72-892a-84afea8ebe5a/1/qSLK1G6tETX2TAWVGAe29y9xrfI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:54:ae:66:2f:9d:8b:c3:69:9c:cd:f8:0b:e8:ad:8f:eb:6c:
1f:85:41:f5:0a:6f:99:51:13:2d:45:64:1c:c4:10:c7:0d:2b:
3f:21:43:1e:6b:0b:71:a1:7e:0d:99:6e:18:eb:63:09:5d:3a:
a1:c3:f1:17:9f:dc:c1:ba:fd:4d:83:40:19:8f:5a:46:49:7b:
6d:38:4b:15:3c:12:6b:77:54:69:a8:9e:af:90:c4:95:66:60:
e8:5a:89:e9:54:fe:0a:9c:23:93:b7:3a:50:3a:77:e7:85:82:
52:e3:e5:c0:08:05:9e:af:29:fc:70:f5:ef:b5:ad:81:5e:b9:
b6:94:90:86:7f:be:d3:b5:28:8a:af:b8:2f:a1:57:1a:60:c7:
d3:93:d4:22:a6:d1:13:d2:05:3a:c2:33:f2:79:5c:31:f8:b8:
e5:00:97:e6:ff:e1:41:f0:32:9d:4c:12:c7:68:b9:8c:bc:d8:
4e:9a:ae:7b:64:9f:04:9a:31:f2:76:bc:81:28:00:a4:5a:c6:
3d:30:58:60:42:4f:28:44:92:26:e8:a9:2a:4b:0a:90:4b:dc:
0d:57:c4:1e:cd:f5:bb:5c:06:f3:67:ab:17:3a:6b:e0:af:68:
05:6b:aa:82:e8:33:da:a6:2c:67:b0:f9:69:88:4a:6e:d4:37:
12:13:52:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 03:01:16 2025 by rpki-client