Manifest
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e1a3b0bc-c24b-4965-b6fb-5f1c980a2f03/1/214420428AA56E75C6986F3CD74ADC03A1F1FFB2.mft
File: 214420428AA56E75C6986F3CD74ADC03A1F1FFB2.mft (raw, json)
Hash identifier: 7zBlyUDZKm2ZfAVa6OpyZF1G2jEZuXy9qrP32oVURoo=
Subject key identifier: 85:E8:EA:FB:8F:28:59:20:02:EA:E4:11:77:2D:F6:A9:6A:DB:90:8D
Authority key identifier: 21:44:20:42:8A:A5:6E:75:C6:98:6F:3C:D7:4A:DC:03:A1:F1:FF:B2
Certificate issuer: /CN=214420428aa56e75c6986f3cd74adc03a1f1ffb2
Certificate serial: 29814F30EEA2411C208439E35286F52327CD96B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IUQgQoqlbnXGmG8810rcA6Hx_7I.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e1a3b0bc-c24b-4965-b6fb-5f1c980a2f03/1/214420428AA56E75C6986F3CD74ADC03A1F1FFB2.mft
Manifest number: 01
Signing time: Fri 17 Jan 2025 23:39:20 +0000
Manifest this update: Fri 17 Jan 2025 23:34:20 +0000
Manifest next update: Sun 19 Jan 2025 02:57:20 +0000
Files and hashes: 1: 214420428AA56E75C6986F3CD74ADC03A1F1FFB2.crl (hash: tS1Fq/TvDZ5fw8xOAc3LpGGJOsCZrEm2ThjwAepQTSU=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:81:4f:30:ee:a2:41:1c:20:84:39:e3:52:86:f5:23:27:cd:96:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=214420428aa56e75c6986f3cd74adc03a1f1ffb2
Validity
Not Before: Jan 17 23:34:20 2025 GMT
Not After : Jan 19 02:57:20 2025 GMT
Subject: CN=85E8EAFB8F28592002EAE411772DF6A96ADB908D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:02:cc:93:8f:0e:71:81:02:bf:69:73:d1:89:
28:f1:76:cd:bc:e0:a3:34:bb:f4:dc:a2:57:9e:fe:
1b:df:09:c7:e5:03:45:e4:d5:0e:c0:e0:a8:ab:b4:
db:1e:77:df:a9:0d:82:56:bb:9b:fc:98:1d:8c:92:
14:77:5a:85:cd:65:42:4a:1a:2d:af:06:e9:6c:be:
38:3b:52:20:b1:1a:8a:09:92:c9:22:a3:9d:7f:82:
b3:34:d1:a5:68:89:80:eb:33:fe:13:f7:bd:4d:38:
b6:cf:f6:7d:54:36:0b:9f:14:74:6f:a1:ce:77:1b:
2f:75:91:f0:ef:f2:0a:2d:79:85:4a:98:a4:56:d7:
ce:4a:b8:6a:b6:e7:8c:b3:d9:88:f7:fc:cd:1c:3c:
d2:f5:21:37:a3:46:e4:f8:32:3a:b8:8d:a0:d9:6d:
27:60:0d:b7:f1:46:18:e5:f9:00:67:5d:a9:32:87:
50:0f:ac:89:d6:e4:ab:31:6f:71:94:b2:7f:41:55:
61:88:f9:3c:cb:17:13:0b:d9:66:17:ae:29:e9:11:
4b:8c:1b:27:3b:4c:3f:ff:f4:60:12:17:8e:0d:0d:
82:e5:8a:35:c7:55:42:a5:bd:9b:80:22:a5:46:a9:
11:29:06:e3:b4:4d:59:b2:83:54:57:8e:46:97:59:
49:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:E8:EA:FB:8F:28:59:20:02:EA:E4:11:77:2D:F6:A9:6A:DB:90:8D
X509v3 Authority Key Identifier:
keyid:21:44:20:42:8A:A5:6E:75:C6:98:6F:3C:D7:4A:DC:03:A1:F1:FF:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/e1a3b0bc-c24b-4965-b6fb-5f1c980a2f03/1/214420428AA56E75C6986F3CD74ADC03A1F1FFB2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IUQgQoqlbnXGmG8810rcA6Hx_7I.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e1a3b0bc-c24b-4965-b6fb-5f1c980a2f03/1/214420428AA56E75C6986F3CD74ADC03A1F1FFB2.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:7c:13:3d:0b:63:3e:aa:1f:78:16:fc:8f:e1:28:c0:3c:6a:
42:5b:68:c4:ca:42:81:31:e1:a2:01:33:44:a0:9d:3c:18:cd:
b1:0f:3e:60:19:8f:e7:51:63:39:2e:f9:2e:db:ae:7b:d8:66:
00:ff:1f:df:9a:f1:59:99:68:cf:2e:ee:9e:5c:67:e8:de:c7:
76:ba:b8:86:b7:e7:54:05:2a:8f:bd:ea:a2:8a:5d:60:1c:46:
fc:6c:fe:64:1b:fe:25:b4:4a:b6:66:4d:77:cd:45:ad:ee:83:
92:30:5b:6d:a0:3e:22:6f:20:e7:41:71:2c:50:27:5e:23:d6:
3c:e4:b8:5c:d6:6d:33:9e:29:ad:ca:4d:0c:12:cb:37:15:75:
de:d2:93:d9:bb:f5:af:2c:79:0b:b2:3a:41:fb:8e:7d:10:84:
2c:77:96:12:56:93:f0:d5:49:56:46:bd:53:50:d8:94:38:66:
12:67:a2:8a:6c:7f:63:2f:9b:a1:cb:3a:be:c2:7f:9d:cd:50:
21:28:c1:15:59:2e:c0:e9:c8:72:5e:ad:65:e1:86:b3:1e:8f:
a7:0b:25:e8:18:44:02:80:2e:19:e1:2d:c1:06:f3:a3:bf:10:
ac:b5:10:73:d3:3a:bf:33:e8:f7:33:0d:ea:20:9a:d2:42:26:
7f:40:51:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:04:58 2025 by rpki-client