Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
File: AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft (raw, json)
Hash identifier: TbUg+MoOMYFLwDlcCGTtCXQtQ7bYyiVOot68V/YNn9k=
Subject key identifier: A5:C8:B7:74:91:5F:4A:66:FE:66:09:33:63:97:C0:7C:F3:69:25:1E
Authority key identifier: 02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
Certificate issuer: /CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Certificate serial: 019D3C423E41FE79D7C347F4161242307A15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
Manifest number: 188D
Signing time: Mon 30 Mar 2026 01:01:07 +0000
Manifest this update: Mon 30 Mar 2026 01:01:07 +0000
Manifest next update: Tue 31 Mar 2026 01:01:07 +0000
Files and hashes: 1: AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl (hash: hTNvv8RM8Ro60dHJVju3TFWktqnURJ7UnEbg9WTwJzU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3c:42:3e:41:fe:79:d7:c3:47:f4:16:12:42:30:7a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0251f6abe0bb26bfe4859e54dee0fdc9a5b78a05
Validity
Not Before: Mar 30 01:01:07 2026 GMT
Not After : Mar 31 01:01:07 2026 GMT
Subject: CN=a5c8b774915f4a66fe6609336397c07cf369251e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b4:b3:3e:ed:4b:1a:f8:f2:e7:c1:cb:87:31:
54:4c:8c:b0:92:62:8d:69:7a:fe:7c:8c:4a:d9:e2:
63:ef:64:19:14:c8:e3:10:34:4a:f7:e1:e0:4a:74:
cd:a3:48:62:a3:31:45:03:71:13:73:71:65:48:dd:
4d:b4:bf:80:7b:a9:f8:8f:4e:8f:5d:e7:c8:0c:05:
89:24:9f:72:78:73:37:20:94:d4:64:80:f3:f0:db:
c0:34:7c:99:52:9c:2a:35:13:83:83:09:89:d7:bf:
c8:79:15:73:03:8b:e8:91:66:92:75:01:dd:f7:4d:
44:4b:51:5b:af:f4:6a:1d:28:5c:49:fc:23:65:3a:
60:f3:43:a0:ae:49:0b:ff:6d:1d:55:03:d2:8f:ff:
23:c1:70:5f:ff:40:13:56:d0:8b:e5:74:49:06:c8:
14:fc:45:22:51:7b:78:ea:99:ac:e0:2b:a9:f3:d7:
f7:67:11:c3:fd:fc:24:ec:4a:03:84:9e:a5:9c:e6:
bc:1f:6f:d3:33:02:0e:ac:17:53:79:c3:40:f8:77:
12:75:4b:4f:63:1f:56:96:6a:b5:e3:7c:ed:5e:e0:
90:b5:96:b5:2c:01:20:47:52:54:af:bd:d3:66:49:
ec:55:e9:be:c1:35:3a:eb:ea:50:50:f2:8c:13:ed:
7d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:C8:B7:74:91:5F:4A:66:FE:66:09:33:63:97:C0:7C:F3:69:25:1E
X509v3 Authority Key Identifier:
keyid:02:51:F6:AB:E0:BB:26:BF:E4:85:9E:54:DE:E0:FD:C9:A5:B7:8A:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlH2q-C7Jr_khZ5U3uD9yaW3igU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/2fabf5-e3ed-4d9a-9cd8-2f4eb9c06035/1/AlH2q-C7Jr_khZ5U3uD9yaW3igU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:a7:97:f2:c8:6f:ec:1e:19:a6:bb:04:a7:0f:00:bf:a9:9c:
6a:bb:40:c6:4f:90:8b:ce:40:88:23:5e:4b:80:83:5f:d2:16:
b6:f7:8c:35:ad:5a:4b:89:50:09:28:91:f1:98:87:e8:2e:4b:
5a:54:f4:d4:0b:cc:bd:f3:6a:00:b6:ee:90:89:28:30:83:5d:
22:f4:74:19:6e:83:23:fd:23:16:d6:73:4b:2a:85:82:ee:2c:
c8:15:86:7a:09:0a:40:3e:a7:9d:12:33:57:b7:f1:da:99:61:
75:8d:73:32:c7:d8:5d:8a:16:11:1f:89:f4:df:f0:ea:93:5a:
89:c1:87:d0:72:23:d2:38:e4:6c:60:c8:f9:41:3f:d1:23:50:
5a:b0:83:d2:95:4b:c5:19:f4:cc:14:a5:06:8a:b0:1b:85:1a:
40:c7:73:69:e1:4a:2a:1c:92:e1:07:87:a3:74:8a:87:7b:36:
e9:56:0e:12:20:48:94:45:01:57:de:f9:cf:21:d2:d5:fd:be:
67:f5:45:a9:f5:75:f4:a2:af:75:1b:ff:ab:e6:62:79:96:ca:
bb:45:34:8e:b0:b9:1b:3a:58:55:46:4b:3d:5c:af:6d:6b:7b:
e8:55:20:f2:9f:ee:4c:fc:ae:42:c1:15:f2:1e:1e:69:41:4b:
7f:23:ec:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:21:42 2026 by rpki-client