Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/1/F20A9342F5BF4B788A6DA73BF5003344E46047B9.mft
File: F20A9342F5BF4B788A6DA73BF5003344E46047B9.mft (raw, json)
Hash identifier: IipE97WB4T8B0yEbJaTlmkcxJylHpqGCJZf4y30ChrA=
Subject key identifier: FF:AB:2C:D8:5F:1A:06:E4:1A:BA:37:D8:F3:99:0A:83:7E:CA:3B:0A
Authority key identifier: F2:0A:93:42:F5:BF:4B:78:8A:6D:A7:3B:F5:00:33:44:E4:60:47:B9
Certificate issuer: /CN=f20a9342f5bf4b788a6da73bf5003344e46047b9
Certificate serial: 6ED45FA0D9A55D39043989C2F1051818D1F79DC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8gqTQvW_S3iKbac79QAzRORgR7k.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/1/F20A9342F5BF4B788A6DA73BF5003344E46047B9.mft
Manifest number: D7
Signing time: Tue 26 Nov 2024 19:40:01 +0000
Manifest this update: Tue 26 Nov 2024 19:35:01 +0000
Manifest next update: Wed 27 Nov 2024 21:50:01 +0000
Files and hashes: 1: F20A9342F5BF4B788A6DA73BF5003344E46047B9.crl (hash: iBG29nZKTPcYoA/ONYCMG235BDwlvIwdjBKIXtOFQuw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:d4:5f:a0:d9:a5:5d:39:04:39:89:c2:f1:05:18:18:d1:f7:9d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f20a9342f5bf4b788a6da73bf5003344e46047b9
Validity
Not Before: Nov 26 19:35:01 2024 GMT
Not After : Nov 27 21:50:01 2024 GMT
Subject: CN=FFAB2CD85F1A06E41ABA37D8F3990A837ECA3B0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:04:d5:e2:fd:4b:8d:b4:35:5c:06:2d:e8:dd:
e1:66:ae:6e:58:ff:07:aa:1d:17:47:c0:56:b4:db:
8a:a0:b6:22:68:b5:a0:d2:12:08:69:3f:a5:f6:e5:
7d:e7:de:32:5f:1a:1e:f3:37:7d:8c:ac:a9:e0:77:
a9:75:c3:47:da:51:ff:de:68:b8:cc:c4:3b:49:45:
43:bf:36:3e:7c:c6:07:46:85:0d:1b:f3:e7:f9:a8:
d9:88:80:15:f1:e7:a1:20:bc:36:b6:14:8a:7c:79:
8b:f8:88:c2:ba:43:52:56:6a:11:3f:e3:07:e9:d5:
b4:95:5f:3d:64:40:c6:40:61:bb:ac:05:6b:eb:b8:
33:1b:0f:a2:db:eb:32:16:20:c8:3b:52:d9:1e:bd:
70:45:bc:f4:5e:80:07:94:ad:5f:b7:06:d2:9a:0b:
2a:0c:84:b7:e4:7f:51:49:6c:7c:56:6d:6c:4b:48:
3d:0f:73:ac:f7:96:0d:16:e6:da:6f:1c:ca:b2:c6:
e7:42:f2:7b:27:ac:6e:fe:c1:58:83:37:b1:73:6c:
d8:e2:a9:52:95:23:5c:8e:17:bd:17:a1:90:a6:8f:
d1:f7:74:bd:39:5e:af:50:04:e4:9a:0f:78:d6:51:
70:88:2f:1e:2c:88:57:ae:1f:ab:2a:98:dd:cb:b2:
01:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:AB:2C:D8:5F:1A:06:E4:1A:BA:37:D8:F3:99:0A:83:7E:CA:3B:0A
X509v3 Authority Key Identifier:
keyid:F2:0A:93:42:F5:BF:4B:78:8A:6D:A7:3B:F5:00:33:44:E4:60:47:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/1/F20A9342F5BF4B788A6DA73BF5003344E46047B9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8gqTQvW_S3iKbac79QAzRORgR7k.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/855c7d5a-15c4-4589-85fa-b491a071048c/1/F20A9342F5BF4B788A6DA73BF5003344E46047B9.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:cb:f9:a8:a1:07:5d:6e:d0:22:7f:3d:03:35:ef:ed:29:9e:
99:18:c7:9f:91:69:fc:e7:4a:b6:d2:db:be:1d:83:5a:07:27:
15:18:77:72:44:ae:64:3f:e2:f4:7f:d9:48:eb:30:5e:e8:c2:
b5:b4:98:7d:81:ae:81:e0:39:81:f2:72:0e:ae:ec:55:c0:74:
e2:db:aa:5b:61:fb:ed:77:88:ce:e4:b1:00:37:1c:bc:e5:17:
c8:2a:02:f4:c3:37:09:b9:c8:85:ab:23:96:80:97:85:5c:68:
79:81:1b:48:71:ca:f0:46:8b:93:eb:7e:44:48:a7:92:d3:ca:
d2:1f:e9:d1:1f:d4:65:ac:1c:a2:01:a8:06:6c:d5:7e:69:de:
50:45:e0:e9:4b:5e:8b:4f:f7:56:e0:29:b1:37:d0:31:ce:21:
d9:81:05:27:bc:17:86:57:80:cd:22:a2:16:03:36:99:28:07:
90:4e:42:56:cc:32:d4:50:76:65:c2:90:53:4e:cd:97:81:ba:
da:d4:81:ca:13:85:43:09:5d:b8:39:81:fe:2c:9b:90:80:e1:
ba:4f:25:8a:a5:f7:eb:c2:7f:c3:5d:4a:d8:44:7e:f5:4e:11:
2e:a1:b7:03:cd:c2:2a:ae:3a:60:64:e3:a0:f9:1c:7e:17:79:
29:ec:3b:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:51:05 2025 by rpki-client