Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/fb5ddb-db3d-4b57-9a6f-b53589a5f9aa/1/2DZCm5upPLpYJ3661wmzfnYDzdk.mft
File: 2DZCm5upPLpYJ3661wmzfnYDzdk.mft (raw, json)
Hash identifier: jDGCWAM1VOTBq+ay47A4lUFoEEB9O6zkRaOjTOxMPGU=
Subject key identifier: 2B:83:63:6B:75:F3:50:E0:9A:56:51:92:AD:53:97:71:5B:AF:8B:50
Authority key identifier: D8:36:42:9B:9B:A9:3C:BA:58:27:7E:BA:D7:09:B3:7E:76:03:CD:D9
Certificate issuer: /CN=d836429b9ba93cba58277ebad709b37e7603cdd9
Certificate serial: 019514A37259404180617F6F0DF9CF49BEAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DZCm5upPLpYJ3661wmzfnYDzdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/fb5ddb-db3d-4b57-9a6f-b53589a5f9aa/1/2DZCm5upPLpYJ3661wmzfnYDzdk.mft
Manifest number: 0D53
Signing time: Mon 17 Feb 2025 16:00:10 +0000
Manifest this update: Mon 17 Feb 2025 16:00:10 +0000
Manifest next update: Tue 18 Feb 2025 16:00:10 +0000
Files and hashes: 1: 2DZCm5upPLpYJ3661wmzfnYDzdk.crl (hash: lk8TgEPBEO9HodKdF6h4rwKEj6xodmSVqZd4jROJ5YE=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:14:a3:72:59:40:41:80:61:7f:6f:0d:f9:cf:49:be:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d836429b9ba93cba58277ebad709b37e7603cdd9
Validity
Not Before: Feb 17 16:00:10 2025 GMT
Not After : Feb 18 16:00:10 2025 GMT
Subject: CN=2b83636b75f350e09a565192ad5397715baf8b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:40:be:66:83:0d:39:10:38:bb:8b:1e:51:ea:
6d:fc:85:74:6e:a3:07:be:39:45:7d:17:fe:fb:cd:
53:44:b3:26:40:32:eb:43:14:6d:9d:74:a3:99:2e:
46:5a:21:ca:2f:b4:c0:06:f9:10:9e:66:55:b1:b3:
44:74:24:38:9a:2f:23:b4:dc:d5:a8:94:3c:c4:de:
1b:c0:7c:1b:7c:b2:6a:43:0a:cd:90:6d:63:cb:99:
12:4d:0a:59:88:cf:13:9b:e1:a8:28:c1:44:68:05:
82:32:38:eb:bf:48:c8:e2:ef:a8:39:fd:c8:03:41:
49:2a:43:3e:37:3a:17:b4:68:24:7b:50:9b:b4:a5:
f0:ad:24:74:15:47:17:c8:4a:5a:e6:37:f1:54:0f:
5b:cc:d1:11:d6:ae:3b:30:61:7c:cf:11:dc:3b:f2:
11:0f:dc:27:f0:bf:03:e6:7a:3d:9c:a6:8d:4e:6f:
20:8d:d1:fb:7c:5a:2d:d5:b4:d7:70:ff:2b:be:17:
79:7e:37:27:66:d6:8a:27:ca:1b:84:86:86:0d:09:
34:28:7b:d3:70:cd:b2:60:95:ad:e7:28:69:c5:3f:
3f:95:0b:bd:a6:e8:e7:46:b3:10:e5:2a:37:59:6e:
f9:32:e5:1f:15:18:f2:cb:9b:f0:e8:ad:1e:82:04:
fe:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:83:63:6B:75:F3:50:E0:9A:56:51:92:AD:53:97:71:5B:AF:8B:50
X509v3 Authority Key Identifier:
keyid:D8:36:42:9B:9B:A9:3C:BA:58:27:7E:BA:D7:09:B3:7E:76:03:CD:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DZCm5upPLpYJ3661wmzfnYDzdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/fb5ddb-db3d-4b57-9a6f-b53589a5f9aa/1/2DZCm5upPLpYJ3661wmzfnYDzdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/fb5ddb-db3d-4b57-9a6f-b53589a5f9aa/1/2DZCm5upPLpYJ3661wmzfnYDzdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:be:a8:86:e3:46:da:fc:e6:3f:0e:da:38:0a:6e:95:cd:00:
80:cf:e1:8c:24:11:42:38:36:f9:80:26:ff:44:a5:8b:e8:2d:
4f:4f:07:2f:60:04:b2:b1:c4:7c:50:a9:dd:99:30:92:d0:9f:
d0:84:9f:82:d0:33:5d:48:05:81:fa:1a:5a:17:68:fa:09:12:
16:2d:b1:1e:ee:b5:a1:13:51:51:08:ce:3e:55:ea:66:46:14:
7b:39:b5:5f:f4:8b:f2:e1:5c:d0:6d:42:1d:33:dc:25:e3:78:
ba:6c:34:f4:8c:20:87:f4:2d:6d:47:90:ee:c2:f2:78:a4:fe:
24:1d:95:88:43:22:2c:aa:33:7a:36:06:55:5d:ec:17:f3:0f:
5a:f1:62:27:97:e8:98:d5:6b:57:73:6f:2e:3a:ba:3e:0e:9d:
c5:88:96:c6:e6:29:05:fb:27:bb:15:4c:ae:12:d3:12:7e:8d:
29:e9:3c:93:ee:a7:82:24:8c:4d:2b:04:b6:db:d9:38:e8:e2:
f1:0c:48:0a:f2:4a:51:b4:3e:ac:94:0b:af:cb:69:36:94:4d:
5d:bb:d9:0b:58:5d:da:f7:92:af:7a:f9:d5:df:dd:9f:87:f7:
cb:36:81:ee:78:da:58:3a:ed:8b:8e:9b:66:af:38:ca:3f:2d:
95:51:ec:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZUUo3JZQEGAYX9vDfnPSb6rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4MzY0MjliOWJhOTNjYmE1ODI3N2ViYWQ3MDliMzdlNzYw
M2NkZDkwHhcNMjUwMjE3MTYwMDEwWhcNMjUwMjE4MTYwMDEwWjAzMTEwLwYDVQQD
EygyYjgzNjM2Yjc1ZjM1MGUwOWE1NjUxOTJhZDUzOTc3MTViYWY4YjUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0C+ZoMNORA4u4seUept/IV0bqMH
vjlFfRf++81TRLMmQDLrQxRtnXSjmS5GWiHKL7TABvkQnmZVsbNEdCQ4mi8jtNzV
qJQ8xN4bwHwbfLJqQwrNkG1jy5kSTQpZiM8Tm+GoKMFEaAWCMjjrv0jI4u+oOf3I
A0FJKkM+NzoXtGgke1CbtKXwrSR0FUcXyEpa5jfxVA9bzNER1q47MGF8zxHcO/IR
D9wn8L8D5no9nKaNTm8gjdH7fFot1bTXcP8rvhd5fjcnZtaKJ8obhIaGDQk0KHvT
cM2yYJWt5yhpxT8/lQu9pujnRrMQ5So3WW75MuUfFRjyy5vw6K0eggT+KwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCuDY2t181DgmlZRkq1Tl3Fbr4tQMB8GA1UdIwQY
MBaAFNg2QpubqTy6WCd+utcJs352A83ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkRaQ201dXBQTHBZSjM2NjF3bXpmbllEemRrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9mYjVkZGItZGIzZC00YjU3LTlhNmYt
YjUzNTg5YTVmOWFhLzEvMkRaQ201dXBQTHBZSjM2NjF3bXpmbllEemRrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9mYjVkZGItZGIzZC00YjU3LTlhNmYtYjUzNTg5YTVmOWFh
LzEvMkRaQ201dXBQTHBZSjM2NjF3bXpmbllEemRrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjb6ohuNG
2vzmPw7aOApulc0AgM/hjCQRQjg2+YAm/0Sli+gtT08HL2AEsrHEfFCp3ZkwktCf
0ISfgtAzXUgFgfoaWhdo+gkSFi2xHu61oRNRUQjOPlXqZkYUezm1X/SL8uFc0G1C
HTPcJeN4umw09Iwgh/QtbUeQ7sLyeKT+JB2ViEMiLKozejYGVV3sF/MPWvFiJ5fo
mNVrV3NvLjq6Pg6dxYiWxuYpBfsnuxVMrhLTEn6NKek8k+6ngiSMTSsEttvZOOji
8QxICvJKUbQ+rJQLr8tpNpRNXbvZC1hd2veSr3r51d/dn4f3yzaB7njaWDrti46b
Zq84yj8tlVHsoA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 13:09:39 2025 by rpki-client