Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft
File: PO7GxHlRspnHCAZYPXkdUM2BbF8.mft (raw, json)
Hash identifier: uq1Dv0FDn0VprFPSZ4snMexgatPVby9OfAw9+Yfcugg=
Subject key identifier: 68:88:F4:5A:AA:5D:6B:DD:59:72:6F:1F:97:90:0D:1A:2E:F0:F8:A4
Authority key identifier: 3C:EE:C6:C4:79:51:B2:99:C7:08:06:58:3D:79:1D:50:CD:81:6C:5F
Certificate issuer: /CN=3ceec6c47951b299c70806583d791d50cd816c5f
Certificate serial: 0194BD857368681081D268A74947F96ECAC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PO7GxHlRspnHCAZYPXkdUM2BbF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft
Manifest number: 7A
Signing time: Fri 31 Jan 2025 18:00:27 +0000
Manifest this update: Fri 31 Jan 2025 18:00:27 +0000
Manifest next update: Sat 01 Feb 2025 18:00:27 +0000
Files and hashes: 1: PO7GxHlRspnHCAZYPXkdUM2BbF8.crl (hash: eSvpxTDgpibjEyvXEYJdZ77gvXtgximb0XBA7X78e8I=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bd:85:73:68:68:10:81:d2:68:a7:49:47:f9:6e:ca:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ceec6c47951b299c70806583d791d50cd816c5f
Validity
Not Before: Jan 31 18:00:27 2025 GMT
Not After : Feb 1 18:00:27 2025 GMT
Subject: CN=6888f45aaa5d6bdd59726f1f97900d1a2ef0f8a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:00:e0:87:7e:1f:da:e2:82:ab:c8:29:94:96:
f1:6e:7a:89:e7:e0:83:3d:f1:20:b0:44:a6:7b:02:
0f:bf:e4:80:91:ff:7f:5d:ba:55:7a:c5:b7:f2:b0:
d6:c9:16:a6:e9:36:70:b6:1d:d2:1c:1c:57:d1:c8:
46:e8:ce:a9:22:8c:9b:07:94:d9:c3:0d:64:a3:25:
da:7e:81:22:bb:7b:18:f8:1c:7b:67:fe:02:30:db:
27:a9:e9:28:cf:c3:9c:e9:89:22:23:35:6b:f2:3b:
ef:cf:b8:15:b9:60:e4:43:05:30:cf:b8:16:c5:e7:
3a:f2:c2:d0:86:02:ce:f4:b1:a4:a1:95:0b:bb:ed:
9c:88:43:5b:37:95:f5:c3:32:ba:0a:a1:b5:01:5b:
28:f0:77:77:fb:ae:20:98:f3:59:7e:36:0c:de:0b:
26:e0:a7:a3:f7:41:81:d4:37:12:77:ff:38:20:84:
19:8c:c3:3a:46:cf:f7:e0:67:55:fd:77:9d:13:62:
50:30:79:8b:f8:8f:fa:b4:e2:23:dd:16:5a:36:20:
0f:05:62:23:65:ea:cd:d5:ec:46:c3:a6:1d:87:ac:
fc:35:be:b2:df:2d:6b:4c:bb:9a:9d:ed:05:9e:e9:
ec:3f:c2:42:f3:d4:70:2f:7f:54:63:a5:b5:5e:43:
b5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:88:F4:5A:AA:5D:6B:DD:59:72:6F:1F:97:90:0D:1A:2E:F0:F8:A4
X509v3 Authority Key Identifier:
keyid:3C:EE:C6:C4:79:51:B2:99:C7:08:06:58:3D:79:1D:50:CD:81:6C:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PO7GxHlRspnHCAZYPXkdUM2BbF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/b330c7-fdac-400a-967b-a72ead295325/1/PO7GxHlRspnHCAZYPXkdUM2BbF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:bc:82:dc:17:04:b1:9b:4d:b4:b3:7e:fa:c9:85:13:19:30:
51:62:c0:cd:e2:29:a6:83:d3:1b:33:2b:6d:89:a5:75:dd:f6:
10:d9:3c:0f:36:5b:de:a0:27:94:ff:17:8e:4f:16:71:2a:39:
0c:a8:34:1d:6d:24:b7:13:ad:93:10:58:17:2c:c1:36:7c:ff:
d3:0b:75:f7:8c:fa:36:4e:3b:fd:b9:20:75:1c:30:6d:72:ca:
9b:04:07:91:29:be:4c:11:fb:9e:8b:cc:80:6b:f6:ed:55:17:
fc:14:de:59:6b:44:84:47:92:6c:e3:fd:a6:69:2d:ff:dd:e5:
0d:7b:5c:ea:8a:1f:56:f2:2e:3a:e6:5f:90:03:63:a8:dc:25:
8b:b5:02:31:54:ba:ab:04:66:9b:f7:14:e2:14:7e:27:3e:f0:
49:09:59:4f:9d:8b:33:44:55:19:69:98:ab:c3:cf:cc:a2:51:
9b:55:e9:78:52:40:27:b0:44:4d:55:f3:df:d2:ac:35:dc:ff:
12:69:5b:3b:5c:ef:49:db:3f:83:b4:ef:b4:ea:11:90:18:e0:
5b:27:fe:9b:2c:6a:d9:38:aa:6f:dc:da:f5:d9:b8:f1:05:20:
35:3d:21:30:6d:c7:5e:5d:78:46:f7:0a:b1:b8:06:8f:68:64:
8c:2e:ca:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 09:38:16 2025 by rpki-client