Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft
File: 2-DL9NZpKl5OHgHSsRL-pru_90w.mft (raw, json)
Hash identifier: xiNNNsQwm2UxYNzPHnwfujx7S2XMskUE07MYbyXr4FQ=
Subject key identifier: 50:30:56:4C:1D:12:47:83:44:C3:91:E5:7A:45:EA:AE:58:2F:53:8A
Authority key identifier: DB:E0:CB:F4:D6:69:2A:5E:4E:1E:01:D2:B1:12:FE:A6:BB:BF:F7:4C
Certificate issuer: /CN=dbe0cbf4d6692a5e4e1e01d2b112fea6bbbff74c
Certificate serial: 019CD579CFA76534CFB10F01C20ABF3684B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft
Manifest number: 04E2
Signing time: Tue 10 Mar 2026 02:00:55 +0000
Manifest this update: Tue 10 Mar 2026 02:00:55 +0000
Manifest next update: Wed 11 Mar 2026 02:00:55 +0000
Files and hashes: 1: 2-DL9NZpKl5OHgHSsRL-pru_90w.crl (hash: 6aa3l+ESs9f8qoX8zCCdJemm3YkVR4rpfUKnAHmWgEo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:d5:79:cf:a7:65:34:cf:b1:0f:01:c2:0a:bf:36:84:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbe0cbf4d6692a5e4e1e01d2b112fea6bbbff74c
Validity
Not Before: Mar 10 02:00:55 2026 GMT
Not After : Mar 11 02:00:55 2026 GMT
Subject: CN=5030564c1d12478344c391e57a45eaae582f538a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c0:f2:ac:b4:66:90:9d:26:1e:e3:6a:81:fb:
d4:c9:b9:98:7c:1a:c3:da:57:88:5e:57:28:b9:29:
51:b0:4f:77:30:9a:f2:06:a7:d4:44:2a:9e:02:dd:
d0:89:77:8d:94:6f:c0:f2:92:3f:39:d9:ed:40:b8:
1c:5d:38:b7:64:82:1e:35:f8:37:37:d2:fd:55:67:
53:aa:23:ab:32:25:df:78:a9:d7:89:9a:e5:23:09:
55:5c:eb:c7:85:45:e4:17:59:8c:3a:6d:f2:de:b6:
55:23:45:7d:64:80:51:79:95:14:dd:2f:b0:38:fa:
bc:6e:ba:aa:75:95:ea:1e:98:7e:2e:f7:8e:39:4d:
5c:91:05:f9:ea:ad:dc:d7:09:a5:9b:bd:3e:95:eb:
74:ae:48:29:7d:c7:56:05:03:c3:7a:40:09:22:00:
7a:0b:78:2e:5a:1b:06:01:3b:71:0e:30:72:0e:6c:
0d:81:73:29:42:8a:d2:58:6f:19:06:ff:70:e9:6b:
aa:b3:96:06:6d:3b:83:c6:6a:11:c8:86:c0:d6:19:
ec:15:35:e3:d3:43:8b:2a:72:8d:11:7e:90:21:85:
8b:24:d9:60:79:b5:95:d8:45:b3:1d:fb:bf:76:6a:
87:cf:1c:34:4d:a6:9a:ea:ae:b5:32:0f:97:da:81:
e4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:30:56:4C:1D:12:47:83:44:C3:91:E5:7A:45:EA:AE:58:2F:53:8A
X509v3 Authority Key Identifier:
keyid:DB:E0:CB:F4:D6:69:2A:5E:4E:1E:01:D2:B1:12:FE:A6:BB:BF:F7:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2-DL9NZpKl5OHgHSsRL-pru_90w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/ae519c-1690-40bc-b671-927e9cf7b025/1/2-DL9NZpKl5OHgHSsRL-pru_90w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:6e:91:f5:80:58:61:34:3c:5b:e1:1f:4a:64:22:aa:4d:e9:
74:e2:cd:d0:45:a6:a4:b0:11:24:85:77:07:24:30:88:4f:51:
8c:4a:6c:c9:27:fc:d6:26:d4:f5:e5:ff:9c:dc:4b:2f:4a:98:
a6:c0:a2:f6:41:33:90:8d:b4:d8:5d:11:a9:94:99:0a:d7:f1:
04:87:2d:20:a6:01:bd:78:d5:03:42:8f:4a:08:a5:de:59:98:
39:55:d9:a6:65:7c:d2:7a:4c:c2:f8:78:08:31:35:57:7b:68:
a0:fe:47:c1:80:f5:ae:89:a3:65:28:85:ae:0c:bc:02:75:78:
49:87:ff:45:fe:82:d2:c8:f2:e6:7b:6d:eb:c3:7d:f0:0f:da:
74:56:da:58:70:62:f7:60:9a:6f:1c:7a:35:78:3d:60:6e:b5:
00:97:b6:5e:4a:c9:54:9d:fc:85:1b:2b:e3:52:4c:4e:2e:44:
bd:0e:5c:c0:d0:8d:d9:9f:29:8b:4e:ba:19:78:4e:0b:52:36:
3b:ce:e4:54:10:5b:f6:49:eb:29:47:6b:88:38:41:55:e0:af:
9e:c9:c7:35:f3:12:d7:9a:62:8a:0b:1d:8f:cf:63:47:f6:72:
a7:64:b1:75:d0:a3:34:59:06:76:fb:93:09:00:23:71:f4:3c:
53:b0:d2:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:48:40 2026 by rpki-client