Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/4b48f3-8808-473d-a7e6-186b286854be/1/pNOAQa5OcxV3JKqfPuBDBeXxKDQ.mft
File: pNOAQa5OcxV3JKqfPuBDBeXxKDQ.mft (raw, json)
Hash identifier: hvSE78aJ4RaQYr2K+Adcek2BowfSpwcVNNICGGw6Zc8=
Subject key identifier: FA:AF:DA:2A:24:B1:67:53:22:79:03:5D:44:29:26:6E:20:D7:01:6C
Authority key identifier: A4:D3:80:41:AE:4E:73:15:77:24:AA:9F:3E:E0:43:05:E5:F1:28:34
Certificate issuer: /CN=a4d38041ae4e73157724aa9f3ee04305e5f12834
Certificate serial: 0194BBCE0682B33943928F6AB9BC80F35DAB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNOAQa5OcxV3JKqfPuBDBeXxKDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/4b48f3-8808-473d-a7e6-186b286854be/1/pNOAQa5OcxV3JKqfPuBDBeXxKDQ.mft
Manifest number: 13FA
Signing time: Fri 31 Jan 2025 10:00:28 +0000
Manifest this update: Fri 31 Jan 2025 10:00:28 +0000
Manifest next update: Sat 01 Feb 2025 10:00:28 +0000
Files and hashes: 1: pNOAQa5OcxV3JKqfPuBDBeXxKDQ.crl (hash: RI2A4O2WXRG5s3A5QyabURydmwryhw6qfy6liPeqkYc=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:ce:06:82:b3:39:43:92:8f:6a:b9:bc:80:f3:5d:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4d38041ae4e73157724aa9f3ee04305e5f12834
Validity
Not Before: Jan 31 10:00:28 2025 GMT
Not After : Feb 1 10:00:28 2025 GMT
Subject: CN=faafda2a24b167532279035d4429266e20d7016c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8f:c8:00:68:51:10:0c:d4:d7:b2:e6:d8:25:
9f:04:de:ed:53:70:90:99:e3:28:ed:91:3d:de:04:
10:e9:d4:f6:66:58:c1:a7:c8:59:20:2f:70:7b:e8:
cf:a0:ff:a0:c4:6c:68:50:bc:62:72:8a:7a:ed:1b:
9e:5f:d0:dd:04:e0:ca:12:a9:b2:df:c7:90:1e:06:
57:5e:1a:76:25:87:56:aa:01:a8:0c:49:a9:cf:ad:
29:0e:c3:05:16:48:b0:b1:fa:b9:67:27:d1:14:42:
36:1c:68:95:f7:46:8f:e0:47:f4:98:b6:66:15:ea:
6c:31:3a:44:93:31:06:4e:0d:1d:95:5a:6e:80:af:
0a:62:a7:5d:5a:aa:bd:93:07:b5:5d:79:b4:bd:2b:
b5:8c:4a:ad:b5:85:eb:94:05:58:75:fa:29:5d:0b:
b7:81:73:d2:73:0f:be:fe:06:a3:e2:8e:1c:7a:61:
97:5a:91:6f:0f:c0:96:f3:1d:57:f0:92:4a:33:ab:
f2:e5:df:a7:2a:fc:38:85:86:c0:48:40:7a:6c:12:
c1:e8:85:c6:43:e4:79:a5:29:c5:2f:66:c0:50:01:
35:72:6b:41:90:51:20:f8:24:c2:28:c1:90:79:5c:
af:d4:ec:c3:69:8c:35:3a:38:93:32:0e:1a:91:42:
5d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:AF:DA:2A:24:B1:67:53:22:79:03:5D:44:29:26:6E:20:D7:01:6C
X509v3 Authority Key Identifier:
keyid:A4:D3:80:41:AE:4E:73:15:77:24:AA:9F:3E:E0:43:05:E5:F1:28:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNOAQa5OcxV3JKqfPuBDBeXxKDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4b48f3-8808-473d-a7e6-186b286854be/1/pNOAQa5OcxV3JKqfPuBDBeXxKDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/4b48f3-8808-473d-a7e6-186b286854be/1/pNOAQa5OcxV3JKqfPuBDBeXxKDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:77:4f:74:3e:29:4e:1b:d6:be:65:2b:b0:9b:fb:39:28:af:
42:36:fa:99:06:c6:99:a4:f5:01:ff:7e:62:a2:46:8e:c3:71:
68:d2:c1:ed:d7:a9:1b:06:d8:10:2f:d0:ea:7f:77:50:d6:38:
dd:41:ea:c7:c9:b0:38:03:65:bf:3d:f8:c2:2a:63:0d:38:11:
68:35:c7:fe:41:5d:c1:3a:c1:9a:7a:9a:20:00:14:08:d4:8e:
8b:22:76:08:c5:e1:26:38:26:55:1d:8f:fe:dc:aa:96:34:76:
f2:21:76:c3:6a:f2:c2:21:07:91:e0:92:5e:2f:c5:81:be:6d:
40:e5:6f:24:5c:4c:85:07:77:13:6b:01:16:72:92:80:35:72:
8b:6a:31:00:50:2b:45:a9:43:b3:27:c0:15:b8:b4:7c:13:86:
55:cb:b9:b1:0a:ce:3a:2b:30:b9:b3:bf:36:7a:01:9f:5a:87:
b6:cb:6b:d8:7f:90:d6:10:ed:77:ea:c0:5c:8f:c1:3d:d4:93:
7f:7d:6a:ba:13:19:65:cb:ef:fc:61:bd:b1:51:0e:59:5a:fc:
10:b5:f3:8b:6a:e7:53:54:9b:21:f5:79:7a:c7:ce:69:03:57:
96:e5:4d:c1:7e:13:40:6d:d0:9f:8c:5c:51:3a:6a:f0:99:be:
b6:2d:eb:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:46:58 2025 by rpki-client