Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft
File: MFOQl41XlfFI4eYK6c_XKDNIEiw.mft (raw, json)
Hash identifier: Pdiby9ThidfVTfOJIPkWQ/jTEt+6raXm6Z1L1q2dah0=
Subject key identifier: 66:22:D3:3B:7F:62:07:BE:89:12:C5:08:E2:A8:FA:7E:D6:66:54:42
Authority key identifier: 30:53:90:97:8D:57:95:F1:48:E1:E6:0A:E9:CF:D7:28:33:48:12:2C
Certificate issuer: /CN=305390978d5795f148e1e60ae9cfd7283348122c
Certificate serial: 019564ADF4BB16201C66B29483FC70774C85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFOQl41XlfFI4eYK6c_XKDNIEiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft
Manifest number: 0B26
Signing time: Wed 05 Mar 2025 05:01:16 +0000
Manifest this update: Wed 05 Mar 2025 05:01:16 +0000
Manifest next update: Thu 06 Mar 2025 05:01:16 +0000
Files and hashes: 1: MFOQl41XlfFI4eYK6c_XKDNIEiw.crl (hash: A6VMPVMO3OvGwZj12JKwaKTAb0+zr1kX9wGMNtCFq2I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:64:ad:f4:bb:16:20:1c:66:b2:94:83:fc:70:77:4c:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305390978d5795f148e1e60ae9cfd7283348122c
Validity
Not Before: Mar 5 05:01:16 2025 GMT
Not After : Mar 6 05:01:16 2025 GMT
Subject: CN=6622d33b7f6207be8912c508e2a8fa7ed6665442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:57:e9:13:1d:bc:98:5b:b1:f6:c2:f0:2a:10:
12:27:f2:6c:f1:08:5e:7f:7c:57:01:d7:b4:00:47:
f6:6d:98:cd:9c:04:fc:7c:c3:74:bf:73:85:21:60:
f2:fc:d1:d1:8c:64:59:6a:19:ca:2f:e8:c2:97:37:
17:34:87:94:11:89:d7:0a:6a:0d:4e:6c:e7:e6:eb:
6a:dd:9f:4c:7d:9f:fb:47:20:43:37:b6:de:32:32:
80:f8:bd:10:66:89:56:8e:44:bc:e1:02:af:78:7b:
7e:e6:0c:0d:f9:86:70:a3:ef:dc:5c:a0:6b:cb:3a:
2e:f8:19:07:0e:b3:a4:78:76:64:0a:6a:15:a2:bf:
92:2f:aa:b4:be:d0:76:02:4a:4f:01:75:f0:a4:34:
47:a5:49:53:8b:d6:4b:e3:9f:44:51:8f:f6:0b:97:
4b:73:78:df:a6:20:43:cd:7e:2d:ea:53:13:84:f7:
00:07:3e:61:76:bf:6f:d4:79:af:8d:7d:74:54:dd:
5f:6b:a6:ec:7e:7e:64:40:52:c0:2b:fb:8b:3d:b6:
b6:70:43:20:39:52:79:01:17:39:0f:76:5d:cf:c2:
24:10:46:bd:42:e8:42:74:5b:e3:62:a4:ff:a9:3c:
84:01:b5:83:84:d7:8c:6f:34:d3:e5:6b:9d:71:4b:
25:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:22:D3:3B:7F:62:07:BE:89:12:C5:08:E2:A8:FA:7E:D6:66:54:42
X509v3 Authority Key Identifier:
keyid:30:53:90:97:8D:57:95:F1:48:E1:E6:0A:E9:CF:D7:28:33:48:12:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFOQl41XlfFI4eYK6c_XKDNIEiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/18705b-48ac-484c-97bd-ec1a4b9a37b2/1/MFOQl41XlfFI4eYK6c_XKDNIEiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:24:09:31:cf:97:8a:09:b4:df:74:e2:68:c4:10:29:11:6b:
f4:60:fa:f6:6c:16:32:05:eb:1e:4a:14:12:cf:c0:d1:59:c4:
92:62:f2:10:85:14:34:72:be:ed:f6:d1:01:9b:93:64:cb:e9:
4b:98:68:af:78:ea:22:b8:88:fd:c2:50:c1:67:1a:69:18:b4:
1b:35:96:6d:af:09:1b:f2:7f:b2:bd:3b:42:f9:84:d6:12:2b:
17:5d:91:c1:95:7c:70:e5:d9:c6:9a:8a:43:84:62:48:c8:bb:
b6:0f:82:7b:e2:11:97:33:7e:cf:0c:31:58:08:26:60:27:cb:
a6:8b:79:e1:30:64:11:24:f7:aa:be:3a:3e:9f:4e:76:a4:52:
44:ee:2f:39:35:d3:09:3c:eb:5e:ce:9e:82:8b:50:da:29:d1:
77:13:68:ee:58:da:85:ef:18:34:c1:28:f1:ab:d3:4f:e8:dd:
f6:8e:b0:2d:bc:e4:43:2c:04:c6:09:a7:e4:b4:c4:e8:94:1b:
b2:cc:7d:72:b6:42:82:9f:63:4f:19:76:f0:a1:f7:96:3f:e8:
30:e2:e1:ce:35:99:23:a4:c4:3b:a9:fa:07:8d:b1:84:7b:3a:
e5:7b:0c:45:24:27:f9:4c:61:00:41:03:33:b2:1e:7a:ae:24:
8a:1e:96:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 17:36:43 2025 by rpki-client