Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
File: B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft (raw, json)
Hash identifier: MOW74AmjBiHM7xnYL/QE6u94xl34fP/tja1L5pNZqzo=
Subject key identifier: 59:C8:5A:53:6A:41:5C:14:E6:53:ED:F0:66:56:67:E4:0A:37:E1:2D
Authority key identifier: B8:28:8E:A9:E3:D6:7D:C3:D3:8F:A7:75:18:1C:4B:2C:87:72:9B:DF
Certificate issuer: /CN=b8288ea9e3d67dc3d38fa775181c4b2c87729bdf
Certificate serial: 5744EB39F72D1C6DC0C7D56168C12102B11CD9EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uCiOqePWfcPTj6d1GBxLLIdym98.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
Manifest number: CB
Signing time: Sat 08 Feb 2025 17:08:06 +0000
Manifest this update: Sat 08 Feb 2025 17:03:06 +0000
Manifest next update: Sun 09 Feb 2025 20:23:06 +0000
Files and hashes: 1: B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.crl (hash: 0IsKc8KEj8aBxuGh9l5xDhxqLczAYRKLgKElzr+cTBM=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:44:eb:39:f7:2d:1c:6d:c0:c7:d5:61:68:c1:21:02:b1:1c:d9:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8288ea9e3d67dc3d38fa775181c4b2c87729bdf
Validity
Not Before: Feb 8 17:03:06 2025 GMT
Not After : Feb 9 20:23:06 2025 GMT
Subject: CN=59C85A536A415C14E653EDF0665667E40A37E12D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:05:3f:ee:16:e9:63:a8:d0:7e:49:50:43:0e:
13:74:6b:52:ee:35:f8:a0:db:b6:42:cf:56:d1:9a:
c3:15:4c:e3:4f:9f:a0:04:05:a6:b1:3a:57:d8:41:
20:6f:21:1b:56:f1:dc:7d:9a:ea:ff:1c:b1:1c:b5:
a5:27:3c:0e:6d:7f:fc:0c:1d:c7:c1:60:aa:12:f2:
45:2e:eb:70:fe:53:99:71:e9:1a:59:ec:c5:aa:a6:
73:83:ff:e2:fb:73:a4:b7:f1:0f:fc:3f:91:e2:61:
f9:7d:00:01:3a:26:d5:b3:f8:3a:4a:1a:50:84:40:
ff:2c:bb:98:4f:22:fe:ab:55:fe:80:2b:59:44:4d:
32:ca:33:2c:7f:22:9b:6d:9d:29:b6:a5:45:b8:2c:
82:12:36:16:4f:36:44:e6:a3:84:24:5d:85:d5:8f:
d8:d4:46:53:3a:83:e2:d2:b3:f2:a1:1a:49:df:28:
06:59:aa:b6:e8:ce:75:0d:19:63:27:c2:05:b4:5c:
6e:02:e5:be:ae:40:5e:75:ea:de:00:c1:d7:02:81:
f1:a5:e3:f3:87:98:8d:4e:62:13:1a:92:6f:20:74:
19:5c:3e:a9:06:26:5e:d8:20:79:5f:1c:ba:23:91:
b8:c0:b0:e3:d4:f8:d8:f3:b6:ff:73:71:08:1f:2a:
ce:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C8:5A:53:6A:41:5C:14:E6:53:ED:F0:66:56:67:E4:0A:37:E1:2D
X509v3 Authority Key Identifier:
keyid:B8:28:8E:A9:E3:D6:7D:C3:D3:8F:A7:75:18:1C:4B:2C:87:72:9B:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uCiOqePWfcPTj6d1GBxLLIdym98.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:ca:31:2e:5f:1e:59:ca:97:73:cd:3c:a3:68:ff:c0:64:f3:
92:73:e1:e9:3a:d9:33:64:b1:c9:96:3b:bf:3b:84:2d:67:3f:
e7:7e:aa:4d:56:f6:b3:48:bc:62:d3:96:1f:c5:14:ad:cf:e7:
c6:a9:93:ec:ea:c9:37:b9:45:a1:4d:ce:6b:88:c6:28:5a:cb:
8a:9d:b9:ff:e9:fc:60:a3:48:22:e8:74:1b:13:1e:28:9c:d2:
b6:50:ac:bf:27:6f:f6:95:f6:d4:34:b5:82:5b:f9:98:61:c1:
84:cc:70:d1:6d:c4:c8:5e:f8:c8:a7:6f:ce:3e:87:5d:ef:c9:
e5:ac:7f:50:cc:cc:9d:cf:50:dd:35:6a:98:c2:f5:60:82:7f:
e1:68:f3:2d:76:62:41:73:9b:b4:d3:94:61:20:ee:bd:a8:f3:
33:9f:82:48:a9:c3:8e:30:d4:25:e0:c4:70:21:b6:36:c1:67:
6a:51:ab:c1:5d:ca:ec:8f:71:dd:80:9b:bb:d1:fd:10:aa:a8:
dd:00:34:c9:b9:6e:b4:6d:92:4c:33:2a:5c:e9:97:c1:e4:c7:
65:4f:55:10:ce:dc:c3:71:cd:96:16:11:dd:55:53:e7:30:24:
4c:16:a1:b5:63:3f:5d:3f:ff:3a:b4:69:f2:b7:00:21:46:73:
eb:0c:aa:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 08:50:35 2025 by rpki-client