Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
File: l8OiXUi_gek3G3sOuGjV2i2rkZU.mft (raw, json)
Hash identifier: f7utlo4T/HMGARMJu4URHZW3rl9jXEfhXj/WJ0S4vYU=
Subject key identifier: D1:FB:3F:83:07:F7:BF:63:2B:CE:81:B5:36:AE:1D:1B:74:3C:0E:C3
Authority key identifier: 97:C3:A2:5D:48:BF:81:E9:37:1B:7B:0E:B8:68:D5:DA:2D:AB:91:95
Certificate issuer: /CN=97c3a25d48bf81e9371b7b0eb868d5da2dab9195
Certificate serial: 01955984EAC8F606F1D3D6C6A9013F2EA834
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8OiXUi_gek3G3sOuGjV2i2rkZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
Manifest number: 0482
Signing time: Mon 03 Mar 2025 01:00:37 +0000
Manifest this update: Mon 03 Mar 2025 01:00:37 +0000
Manifest next update: Tue 04 Mar 2025 01:00:37 +0000
Files and hashes: 1: l8OiXUi_gek3G3sOuGjV2i2rkZU.crl (hash: 7gTGiWZtvfHnvp3Co33etDzOPtsTEB9eD5xn9xV2IfI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:59:84:ea:c8:f6:06:f1:d3:d6:c6:a9:01:3f:2e:a8:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97c3a25d48bf81e9371b7b0eb868d5da2dab9195
Validity
Not Before: Mar 3 01:00:37 2025 GMT
Not After : Mar 4 01:00:37 2025 GMT
Subject: CN=d1fb3f8307f7bf632bce81b536ae1d1b743c0ec3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:18:cb:a2:4a:5e:f1:59:cb:3f:9d:ab:ea:69:
a6:90:fd:27:23:94:36:58:dc:a0:c3:ea:a3:1b:ea:
4c:1e:79:d1:cf:d3:d7:51:32:39:5f:e1:77:f1:a0:
33:76:e2:75:88:91:14:ac:e2:83:3e:64:66:ff:ca:
4e:50:10:09:f8:ed:37:8a:1b:c2:e0:32:bb:f2:45:
ae:35:49:f2:4c:f2:94:af:f3:d5:fa:2b:53:9f:70:
95:a4:0a:67:25:f3:78:1e:d1:63:e9:86:e5:14:55:
fa:34:03:8c:7e:c8:bc:f9:95:63:a2:f9:ea:ae:28:
b6:6e:29:fc:23:cb:22:d7:05:a1:74:cf:aa:6f:12:
57:ba:65:e4:38:7b:f4:8f:2a:2f:0b:d6:d8:b6:2e:
b2:61:d9:b8:50:d2:5b:0a:3c:e6:10:85:32:f2:3b:
8d:9c:93:af:cb:b5:81:92:7a:c9:08:b7:a6:a8:7a:
0e:3c:37:1c:7e:6d:7b:6b:e8:f3:1b:b2:4d:ea:89:
aa:d1:bc:d4:45:d8:ce:ef:ec:a5:d0:77:a9:c2:75:
d8:99:57:e6:a9:f6:b7:0d:26:13:09:9e:07:20:65:
c5:58:d2:06:61:c9:26:2e:00:04:f2:f4:bf:0a:af:
21:0c:ac:bf:e2:7c:af:fd:2c:68:6d:a0:cc:77:48:
43:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FB:3F:83:07:F7:BF:63:2B:CE:81:B5:36:AE:1D:1B:74:3C:0E:C3
X509v3 Authority Key Identifier:
keyid:97:C3:A2:5D:48:BF:81:E9:37:1B:7B:0E:B8:68:D5:DA:2D:AB:91:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8OiXUi_gek3G3sOuGjV2i2rkZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/6c992b-bcdd-4203-b524-81a2fc0a0687/1/l8OiXUi_gek3G3sOuGjV2i2rkZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:c5:84:ef:9c:f4:38:22:1b:9a:fb:db:f4:66:af:77:c6:4d:
b5:ea:43:24:af:52:d7:3e:76:70:fa:5b:d6:99:1b:d3:ff:70:
e5:a0:6a:7c:24:25:12:ee:92:f7:4d:21:8f:b3:88:3b:07:a9:
d0:ba:b3:d7:89:2b:ce:ab:d5:55:58:03:72:f5:74:82:a4:f1:
19:57:b7:c5:a9:ac:d6:b5:58:4b:95:35:26:b3:73:4a:46:e1:
9d:a2:43:ae:95:2c:6e:b4:5e:74:e1:37:af:bf:49:57:78:8b:
f4:83:3c:e6:2d:f7:24:fc:ed:69:88:95:ef:46:31:b5:fb:63:
fe:ef:2c:9c:74:e9:c7:ec:1a:be:42:31:49:61:bb:64:69:a4:
d0:be:52:ca:f0:e0:98:e7:db:41:8d:d6:ab:ca:74:c1:fc:7d:
3d:84:ee:c0:b5:24:bd:bc:ff:68:36:df:42:db:23:59:a7:48:
88:e2:44:72:79:b2:13:df:f6:bc:2e:51:97:8c:3b:bb:49:d4:
64:39:21:be:ef:3a:84:88:c5:80:68:c3:e0:39:34:55:de:8b:
bf:fd:c1:7c:70:db:ac:26:ca:43:54:d7:30:f2:c1:53:d3:3d:
32:cf:e8:0a:6e:6f:76:8f:c6:14:92:c7:52:be:df:43:62:ba:
b9:83:a4:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 18:46:19 2025 by rpki-client