Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/e4753c-658b-4d7c-8b3c-b13829a98c57/1/biMhBwGL_QMoH3lexopxGcWA7CU.mft
File: biMhBwGL_QMoH3lexopxGcWA7CU.mft (raw, json)
Hash identifier: jTqNmmYEqYmwxsOS2IJf9S+R1Pf2oHfyP47Eb9TAQPg=
Subject key identifier: 8C:95:62:FA:53:60:D1:9A:C9:58:5B:6A:57:67:19:83:59:BB:E9:5D
Authority key identifier: 6E:23:21:07:01:8B:FD:03:28:1F:79:5E:C6:8A:71:19:C5:80:EC:25
Certificate issuer: /CN=6e232107018bfd03281f795ec68a7119c580ec25
Certificate serial: 01979C7228AF0BC5AEEDEE7D0254B5B175A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/biMhBwGL_QMoH3lexopxGcWA7CU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/e4753c-658b-4d7c-8b3c-b13829a98c57/1/biMhBwGL_QMoH3lexopxGcWA7CU.mft
Manifest number: 15A4
Signing time: Mon 23 Jun 2025 11:00:16 +0000
Manifest this update: Mon 23 Jun 2025 11:00:16 +0000
Manifest next update: Tue 24 Jun 2025 11:00:16 +0000
Files and hashes: 1: biMhBwGL_QMoH3lexopxGcWA7CU.crl (hash: +CvE6Mt4MtEKtEZSSZ/RFvhd81Q2E0QUXxNG2/tUdAo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:9c:72:28:af:0b:c5:ae:ed:ee:7d:02:54:b5:b1:75:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e232107018bfd03281f795ec68a7119c580ec25
Validity
Not Before: Jun 23 11:00:16 2025 GMT
Not After : Jun 24 11:00:16 2025 GMT
Subject: CN=8c9562fa5360d19ac9585b6a5767198359bbe95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3c:e2:15:c0:70:ab:4c:33:9e:93:51:06:ac:
d8:ac:4b:d8:b1:1a:0b:59:77:69:a5:48:58:60:fb:
88:aa:00:4e:0f:cb:52:f6:4a:f1:b7:fa:27:9f:27:
d0:6f:b5:ab:69:04:22:91:d5:80:65:a0:9c:30:80:
b5:fa:02:b4:2f:bb:9a:ee:40:74:07:7d:b0:73:4c:
7b:ee:c9:59:50:bc:fb:3c:ac:f8:e1:fc:4d:a5:f9:
2d:83:17:87:1c:ad:0b:97:89:83:c3:86:9a:c9:23:
a6:aa:5c:d2:64:ac:7c:41:ff:ac:92:01:e6:bc:43:
13:6d:c6:c0:9f:c9:3d:62:b2:32:aa:88:27:a5:ef:
6f:45:63:e3:ca:ad:56:8a:6a:f1:0a:3e:26:ff:f4:
9c:0a:f8:22:54:7e:a8:04:3e:8e:17:c3:e5:18:4a:
34:9d:ec:b1:0a:ea:4a:fa:d8:fb:3a:e0:60:7b:aa:
17:6c:06:d0:b9:c3:79:9a:af:48:53:89:77:fc:fd:
6e:c6:39:9e:cb:cb:5f:94:78:7c:3c:01:c7:fd:ee:
54:16:e0:6a:4e:a0:e9:71:24:fa:cc:92:67:ac:c7:
b4:58:8e:a0:34:e4:ce:cc:62:39:f1:62:dc:fa:ce:
61:b4:bb:d9:15:fa:60:d4:9e:7a:bb:80:ce:a2:0e:
59:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:95:62:FA:53:60:D1:9A:C9:58:5B:6A:57:67:19:83:59:BB:E9:5D
X509v3 Authority Key Identifier:
keyid:6E:23:21:07:01:8B:FD:03:28:1F:79:5E:C6:8A:71:19:C5:80:EC:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/biMhBwGL_QMoH3lexopxGcWA7CU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e4753c-658b-4d7c-8b3c-b13829a98c57/1/biMhBwGL_QMoH3lexopxGcWA7CU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/e4753c-658b-4d7c-8b3c-b13829a98c57/1/biMhBwGL_QMoH3lexopxGcWA7CU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:dd:ab:8b:43:31:29:6b:8e:39:c5:e4:0c:56:95:e1:14:34:
dc:3f:6b:80:fc:36:30:57:83:61:eb:3a:4f:28:30:83:ed:a2:
7d:46:d1:aa:7e:45:9f:f5:84:22:1b:19:90:8a:29:69:c5:ab:
20:d9:0c:b4:66:0a:e3:af:20:c9:34:3e:7a:c4:6f:6a:3d:76:
03:09:74:79:42:a3:ed:34:38:52:25:0b:58:8a:e5:75:38:08:
68:5d:c7:23:c7:51:1a:9b:0e:c8:b7:99:28:2c:7c:0f:c4:43:
49:da:7e:48:9e:59:66:8a:fb:93:0f:f0:2a:ef:c1:52:52:92:
f3:23:88:83:9a:30:4f:d0:2c:e9:9b:6d:9a:a0:56:f4:ad:71:
87:73:cd:74:a3:16:d7:21:2b:73:8b:fe:3c:63:38:c5:ae:c8:
16:34:a3:93:8b:8b:a6:8f:56:fa:f9:55:9a:9d:03:e6:44:ca:
1f:e4:45:bb:67:2e:9c:b8:4d:d5:0a:02:d5:cd:1a:ec:a2:44:
2e:54:44:53:38:52:d3:12:90:d0:9d:2a:6b:0c:36:b1:5c:02:
61:31:9d:22:75:5f:f2:01:c5:e0:ba:c9:5b:b1:ae:cd:0a:b8:
52:36:3d:52:bd:56:cb:9f:0e:83:4a:d1:ee:c0:52:75:13:06:
ed:ac:9e:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 23:53:26 2025 by rpki-client