Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/68d7a4-4e73-495c-a03e-0e2769aa8ab0/1/QyExQaqTrYz4wmg3eFx4RUzbgYA.mft
File: QyExQaqTrYz4wmg3eFx4RUzbgYA.mft (raw, json)
Hash identifier: V/+Nf8BIvBuqkoxpXHiSyn/nIDvVqGgPeO5nCiDPEEs=
Subject key identifier: 9B:3B:DA:83:E4:ED:59:69:B8:D2:1B:76:2E:C3:F6:A4:6B:16:07:EA
Authority key identifier: 43:21:31:41:AA:93:AD:8C:F8:C2:68:37:78:5C:78:45:4C:DB:81:80
Certificate issuer: /CN=43213141aa93ad8cf8c26837785c78454cdb8180
Certificate serial: 019871F4B480330BE7D638997CCADEAF6D33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QyExQaqTrYz4wmg3eFx4RUzbgYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/68d7a4-4e73-495c-a03e-0e2769aa8ab0/1/QyExQaqTrYz4wmg3eFx4RUzbgYA.mft
Manifest number: 05AA
Signing time: Sun 03 Aug 2025 22:01:59 +0000
Manifest this update: Sun 03 Aug 2025 22:01:59 +0000
Manifest next update: Mon 04 Aug 2025 22:01:59 +0000
Files and hashes: 1: QyExQaqTrYz4wmg3eFx4RUzbgYA.crl (hash: CEPh2qyVZT10rM4d700bkBGemBNt5R7sAzLx8xkIWnQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:71:f4:b4:80:33:0b:e7:d6:38:99:7c:ca:de:af:6d:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43213141aa93ad8cf8c26837785c78454cdb8180
Validity
Not Before: Aug 3 22:01:59 2025 GMT
Not After : Aug 4 22:01:59 2025 GMT
Subject: CN=9b3bda83e4ed5969b8d21b762ec3f6a46b1607ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:42:2b:1d:97:46:b3:11:d9:7b:56:76:bf:37:
cb:60:0f:d2:6f:54:12:dd:83:d9:9d:b0:0d:f1:c8:
5d:cd:3b:8a:51:82:6f:0b:34:dc:df:59:3a:ac:38:
61:37:66:e0:6b:d2:02:bb:43:78:a1:a1:33:24:15:
b5:86:94:20:6d:5a:82:bf:e9:7d:3b:fe:8d:29:5b:
ab:b8:a0:10:d0:dc:88:51:dd:de:0f:81:1d:1c:2e:
b3:30:dc:98:d4:63:a7:b8:7d:6f:15:48:ff:cb:e0:
b8:7a:06:c7:73:b4:bf:d6:8c:aa:70:57:8c:88:97:
e1:84:ae:3f:bc:1c:e0:51:02:58:8d:34:81:f4:b3:
4f:82:eb:04:5d:e6:8e:ea:53:a4:05:bf:2f:c3:1a:
c8:a0:17:59:7c:f9:28:62:5c:9a:94:1d:be:7f:a4:
b1:53:fc:eb:4a:1b:86:8c:b6:de:a0:13:03:08:e4:
44:62:ec:3e:b1:34:67:02:4d:48:e2:07:32:5c:9d:
b8:4b:d2:09:1f:b1:f9:dd:1f:82:a4:a0:72:de:1b:
73:17:5c:8e:92:de:09:13:0f:3f:d1:04:24:33:35:
f6:d7:90:df:61:09:8e:56:f1:ee:6e:c5:d0:9f:73:
4b:35:0a:29:be:7e:a1:a9:6d:a7:f0:ab:9f:48:ae:
1e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:3B:DA:83:E4:ED:59:69:B8:D2:1B:76:2E:C3:F6:A4:6B:16:07:EA
X509v3 Authority Key Identifier:
keyid:43:21:31:41:AA:93:AD:8C:F8:C2:68:37:78:5C:78:45:4C:DB:81:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QyExQaqTrYz4wmg3eFx4RUzbgYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/68d7a4-4e73-495c-a03e-0e2769aa8ab0/1/QyExQaqTrYz4wmg3eFx4RUzbgYA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/68d7a4-4e73-495c-a03e-0e2769aa8ab0/1/QyExQaqTrYz4wmg3eFx4RUzbgYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:e8:28:3f:48:6e:bb:f1:9b:a1:40:49:5c:2a:41:f2:02:8c:
1d:8a:b8:da:5e:56:2c:70:2e:1c:c0:18:90:8b:e2:d9:23:f2:
08:46:fa:a0:6e:4a:e4:f6:df:7c:29:21:28:a0:6c:88:26:20:
9b:4a:a3:18:26:69:f3:e3:04:1a:b6:5a:57:91:5d:d7:55:48:
b2:2d:70:29:d1:2f:64:1a:ee:4e:64:47:18:b1:8f:ba:30:c8:
b1:69:33:e4:f3:43:25:ed:01:2e:e7:41:53:9e:ee:e6:43:d3:
51:18:26:fe:c5:12:a1:35:6b:ad:24:62:0d:b9:90:ce:2c:87:
62:bc:6c:57:50:d5:be:aa:a8:16:29:d8:93:80:d7:da:18:8c:
d6:be:76:49:75:8f:0f:04:7b:6d:50:0d:7d:d5:2f:d2:95:80:
5f:ac:b1:60:89:84:f6:e1:12:71:e2:6c:50:d1:1b:05:2a:6a:
f3:6e:a9:24:ad:7f:14:4d:f3:7e:f4:77:11:58:68:7e:3f:c0:
22:af:47:17:99:e6:90:0d:43:5b:3d:58:b1:79:c0:d7:6c:b8:
75:1d:23:b2:f1:ac:23:1f:86:8d:cd:de:f1:1b:b3:1a:77:6f:
50:a5:43:95:a8:30:67:93:7f:2d:fe:7c:6e:86:e5:d8:3c:1d:
16:a6:13:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 06:09:24 2025 by rpki-client