Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft
File: yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft (raw, json)
Hash identifier: kM+QBdFe4f7+j8XNj6pLFIw2ACo4NdFtKu7fYZ2Tp8w=
Subject key identifier: E8:30:4A:90:00:27:46:75:6B:59:04:7C:DF:91:DC:FA:02:3E:4A:CA
Authority key identifier: CA:1A:1A:62:C8:0B:0F:33:34:C5:DC:18:DC:64:B7:BF:97:88:90:13
Certificate issuer: /CN=ca1a1a62c80b0f3334c5dc18dc64b7bf97889013
Certificate serial: 019BF8ACF154947AA70BC6B249C916423B78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft
Manifest number: 0B01
Signing time: Mon 26 Jan 2026 05:00:42 +0000
Manifest this update: Mon 26 Jan 2026 05:00:42 +0000
Manifest next update: Tue 27 Jan 2026 05:00:42 +0000
Files and hashes: 1: yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl (hash: /RUvpYTJGkl8b7pCiIIbXXeopNEDJ/pyetOmw3/b9yI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:f8:ac:f1:54:94:7a:a7:0b:c6:b2:49:c9:16:42:3b:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca1a1a62c80b0f3334c5dc18dc64b7bf97889013
Validity
Not Before: Jan 26 05:00:42 2026 GMT
Not After : Jan 27 05:00:42 2026 GMT
Subject: CN=e8304a90002746756b59047cdf91dcfa023e4aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1d:e6:d6:ad:71:a6:ce:8f:9b:1d:e6:b3:cf:
30:16:07:40:46:5c:de:a8:67:ed:05:49:3d:23:86:
60:0d:8f:44:d1:b9:0b:8b:f0:73:e8:32:15:c3:11:
43:3b:41:65:bf:55:9e:d0:d0:11:21:07:20:5e:98:
b6:cd:d0:1a:1f:93:5d:2b:5d:60:85:0c:5a:79:ef:
51:6a:53:8a:f4:ef:58:d1:ab:80:39:32:94:f4:3e:
93:21:01:e2:ec:bd:2a:2d:2d:50:63:7f:77:fa:28:
09:af:ee:93:39:65:00:3b:2e:d4:88:58:c8:3a:9b:
9d:d3:45:ca:81:62:e6:4e:8e:d8:a7:7a:32:d2:bc:
99:17:74:e2:d2:4c:fe:b2:df:86:96:b7:b8:bd:40:
55:7e:ba:d9:f3:75:0b:25:cb:ea:48:e2:a6:20:95:
18:c1:25:de:d3:19:ce:c0:15:51:03:6e:90:77:6c:
b3:ca:62:b6:f1:9e:0a:79:b5:4d:1f:d3:7b:ae:f4:
07:14:3b:0e:fc:e3:ae:1e:b0:03:e7:77:70:21:65:
6b:b9:92:db:d6:60:83:3e:0e:a4:7c:00:bc:de:cf:
9f:9f:38:32:8a:c1:18:06:8a:18:9e:49:8e:1a:00:
6e:b5:8e:de:10:e9:0f:ae:5b:ba:95:52:aa:d4:c1:
f3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:30:4A:90:00:27:46:75:6B:59:04:7C:DF:91:DC:FA:02:3E:4A:CA
X509v3 Authority Key Identifier:
keyid:CA:1A:1A:62:C8:0B:0F:33:34:C5:DC:18:DC:64:B7:BF:97:88:90:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhoaYsgLDzM0xdwY3GS3v5eIkBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ddbdc-5e22-4945-bdcd-a09854ab65a2/1/yhoaYsgLDzM0xdwY3GS3v5eIkBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:24:a5:3a:38:0a:39:f9:eb:cd:97:a6:6e:1b:ae:2a:8b:a9:
f7:60:d8:84:d4:1c:83:d5:fd:d1:fd:ee:47:30:2c:68:76:e3:
92:00:a3:c2:76:b5:9f:85:86:8b:1f:ff:cd:60:f8:65:d3:13:
dd:22:6c:f7:cc:ba:99:c1:4a:36:b9:45:e9:f0:2d:5a:e0:d7:
91:76:5a:fe:0d:7b:8e:29:df:53:5d:79:3e:16:72:56:9f:e5:
be:3d:18:7b:b5:60:ad:1f:c2:f8:b8:ea:53:62:dd:ea:ef:29:
32:9f:a8:8c:81:d0:21:af:0e:11:ef:7f:70:b0:34:b2:bf:58:
b7:e3:16:31:2b:23:d1:d4:6f:6b:8a:a5:02:16:25:4a:2c:61:
17:3d:4a:c3:a9:f3:5e:c2:ab:a4:dc:8b:6b:98:2a:5e:0a:d8:
f6:10:58:af:9c:02:98:25:b1:3a:88:c2:d0:07:5c:8f:aa:c0:
59:b4:bf:a3:65:17:e6:af:4d:1c:6a:31:e3:d1:de:41:72:72:
70:5e:00:df:59:08:14:e8:d6:49:a1:0d:e7:14:8f:ca:ae:df:
38:ab:37:c0:d2:ee:af:de:0c:20:c5:e5:63:95:64:fb:a1:55:
56:ca:a5:0e:52:a7:05:ca:a0:49:6e:68:f0:a8:f5:43:32:7b:
a1:e7:81:13
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZv4rPFUlHqnC8aySckWQjt4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMWExYTYyYzgwYjBmMzMzNGM1ZGMxOGRjNjRiN2JmOTc4
ODkwMTMwHhcNMjYwMTI2MDUwMDQyWhcNMjYwMTI3MDUwMDQyWjAzMTEwLwYDVQQD
EyhlODMwNGE5MDAwMjc0Njc1NmI1OTA0N2NkZjkxZGNmYTAyM2U0YWNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzR3m1q1xps6Pmx3ms88wFgdARlze
qGftBUk9I4ZgDY9E0bkLi/Bz6DIVwxFDO0Flv1We0NARIQcgXpi2zdAaH5NdK11g
hQxaee9RalOK9O9Y0auAOTKU9D6TIQHi7L0qLS1QY393+igJr+6TOWUAOy7UiFjI
Opud00XKgWLmTo7Yp3oy0ryZF3Ti0kz+st+Glre4vUBVfrrZ83ULJcvqSOKmIJUY
wSXe0xnOwBVRA26Qd2yzymK28Z4KebVNH9N7rvQHFDsO/OOuHrAD53dwIWVruZLb
1mCDPg6kfAC83s+fnzgyisEYBooYnkmOGgButY7eEOkPrlu6lVKq1MHzXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOgwSpAAJ0Z1a1kEfN+R3PoCPkrKMB8GA1UdIwQY
MBaAFMoaGmLICw8zNMXcGNxkt7+XiJATMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWhvYVlzZ0xEek0weGR3WTNHUzN2NWVJa0JNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS8wZGRiZGMtNWUyMi00OTQ1LWJkY2Qt
YTA5ODU0YWI2NWEyLzEveWhvYVlzZ0xEek0weGR3WTNHUzN2NWVJa0JNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS8wZGRiZGMtNWUyMi00OTQ1LWJkY2QtYTA5ODU0YWI2NWEy
LzEveWhvYVlzZ0xEek0weGR3WTNHUzN2NWVJa0JNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhiSlOjgK
OfnrzZembhuuKoup92DYhNQcg9X90f3uRzAsaHbjkgCjwna1n4WGix//zWD4ZdMT
3SJs98y6mcFKNrlF6fAtWuDXkXZa/g17jinfU115PhZyVp/lvj0Ye7VgrR/C+Ljq
U2Ld6u8pMp+ojIHQIa8OEe9/cLA0sr9Yt+MWMSsj0dRva4qlAhYlSixhFz1Kw6nz
XsKrpNyLa5gqXgrY9hBYr5wCmCWxOojC0Adcj6rAWbS/o2UX5q9NHGox49HeQXJy
cF4A31kIFOjWSaEN5xSPyq7fOKs3wNLur94MIMXlY5Vk+6FVVsqlDlKnBcqgSW5o
8Kj1QzJ7oeeBEw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:49 2026 by rpki-client