Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
File: B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft (raw, json)
Hash identifier: Yyn9WY8dP4kpSxwa6N3yqkxBKHnzB5dN3/12YQY0g/E=
Subject key identifier: 09:AC:21:47:28:B2:7F:51:37:4D:46:FE:6B:73:C5:44:60:09:19:4B
Authority key identifier: B8:28:8E:A9:E3:D6:7D:C3:D3:8F:A7:75:18:1C:4B:2C:87:72:9B:DF
Certificate issuer: /CN=b8288ea9e3d67dc3d38fa775181c4b2c87729bdf
Certificate serial: 181B07776B87FE7D4D5475593A35B24BDB05471D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uCiOqePWfcPTj6d1GBxLLIdym98.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
Manifest number: C9
Signing time: Fri 07 Feb 2025 08:38:18 +0000
Manifest this update: Fri 07 Feb 2025 08:33:18 +0000
Manifest next update: Sat 08 Feb 2025 10:46:18 +0000
Files and hashes: 1: B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.crl (hash: L3kR/TBxX6Xu6QnQtZWCY+hH8dQrwS5P5D/bMKO3PT0=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:1b:07:77:6b:87:fe:7d:4d:54:75:59:3a:35:b2:4b:db:05:47:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8288ea9e3d67dc3d38fa775181c4b2c87729bdf
Validity
Not Before: Feb 7 08:33:18 2025 GMT
Not After : Feb 8 10:46:18 2025 GMT
Subject: CN=09AC214728B27F51374D46FE6B73C5446009194B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:64:e7:1b:a3:93:32:99:82:de:0a:be:24:7a:
46:48:55:e9:c3:03:6c:46:20:75:fa:96:f5:ba:7b:
5d:c0:2b:21:2d:ba:3e:5a:8e:11:e1:49:9d:bd:df:
38:0e:67:a6:6e:c4:2f:54:5f:8a:a7:ab:a9:db:43:
08:69:61:1e:7a:1a:ef:10:50:f8:e4:d5:88:86:cb:
42:fe:af:a7:24:46:a2:89:2b:6a:eb:a7:c5:52:09:
8d:c4:e6:84:eb:c0:fe:22:62:af:00:0e:71:8c:ea:
77:4b:a1:ed:91:13:b6:c9:a4:e5:66:07:f7:18:6a:
e2:e7:e4:9a:82:6e:7d:5f:48:ae:cf:f8:16:34:a3:
8d:65:53:b7:e9:c0:cc:68:16:3b:c5:3f:f2:6a:86:
2d:dd:3d:7d:31:62:5e:60:67:6e:fb:6b:f3:37:e8:
64:fe:a6:19:da:dc:de:01:7c:90:aa:1c:b1:02:c9:
d8:e3:7f:7e:77:20:30:aa:ad:cd:37:81:fb:07:c7:
09:85:f0:89:46:06:72:22:d9:b7:94:29:21:09:d5:
ce:13:96:3f:78:96:04:f7:7c:ff:fa:db:41:dc:63:
ea:f8:24:57:2b:fc:08:53:2e:e6:6c:c7:11:bd:d3:
2d:0d:d5:74:59:d2:b6:56:5c:1e:1f:98:0e:bf:05:
bc:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:AC:21:47:28:B2:7F:51:37:4D:46:FE:6B:73:C5:44:60:09:19:4B
X509v3 Authority Key Identifier:
keyid:B8:28:8E:A9:E3:D6:7D:C3:D3:8F:A7:75:18:1C:4B:2C:87:72:9B:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uCiOqePWfcPTj6d1GBxLLIdym98.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/3c8e4e11-3aca-4305-acd4-f05e6c909115/0/B8288EA9E3D67DC3D38FA775181C4B2C87729BDF.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:36:d6:29:21:38:20:ea:14:7f:0f:73:b8:63:60:ed:b2:eb:
a8:57:9a:9c:6f:94:fc:33:a3:e5:75:74:a8:95:d1:41:73:18:
7f:c1:83:bd:ff:bb:80:9d:2a:d8:c1:b8:0f:84:81:39:06:b5:
b6:a4:54:4c:20:70:43:b6:b7:31:18:0d:df:52:ac:5e:b0:22:
bb:25:e0:e4:f2:dd:3f:3e:88:e6:2e:4d:ca:27:3a:5a:d5:4f:
12:81:06:ba:27:ef:30:8e:c4:5b:99:b2:16:5d:30:d1:26:d5:
43:e0:ff:d0:2c:73:c3:02:47:89:26:50:f6:d2:f4:36:86:cc:
21:2d:7c:eb:dc:1f:b2:57:24:d2:a3:d4:44:56:26:d7:71:12:
73:3c:27:98:6f:ab:28:53:90:60:3c:52:83:cf:5b:46:8f:ed:
df:6d:0c:4e:ac:01:ea:1c:bf:05:24:35:31:e7:e4:7d:da:8b:
9b:53:61:6a:5c:55:89:99:18:31:8f:66:1c:62:97:a4:6d:2c:
fa:9c:5a:42:e3:ab:40:c8:18:ae:79:a5:be:6e:41:d2:70:cd:
16:b7:80:4a:f2:7e:fb:d4:86:b0:1e:15:df:b6:b4:9d:44:10:
1e:f4:04:7d:2a:c8:d4:f9:b4:bc:66:dd:69:a0:5b:2e:21:56:
28:be:0a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:59:27 2025 by rpki-client