Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
File: D-qK4ZBhrMVImsJxkIKs6lovxdM.mft (raw, json)
Hash identifier: QviQz/QeSN4/aAk63OQOemugvHJooaocno7ayXvWEWg=
Subject key identifier: FD:EF:13:78:BA:DF:3F:5E:F7:1C:61:E7:FD:50:9C:30:1E:48:D5:3C
Authority key identifier: 0F:EA:8A:E1:90:61:AC:C5:48:9A:C2:71:90:82:AC:EA:5A:2F:C5:D3
Certificate issuer: /CN=0fea8ae19061acc5489ac2719082acea5a2fc5d3
Certificate serial: 0199A31493E1518A02499765A18EF1BF20B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D-qK4ZBhrMVImsJxkIKs6lovxdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
Manifest number: 097D
Signing time: Thu 02 Oct 2025 04:00:58 +0000
Manifest this update: Thu 02 Oct 2025 04:00:58 +0000
Manifest next update: Fri 03 Oct 2025 04:00:58 +0000
Files and hashes: 1: D-qK4ZBhrMVImsJxkIKs6lovxdM.crl (hash: s5g76g/3fAAJOxl7V7bjmwlE02BGCiUghDutpKOmDec=)
2: M10vf4QxH5-zWTvsa4ILhkuyN0k.roa (hash: ddpmJOxtLixoYeVKM1qcWIIFhN7ghewh8wxesIUHdzI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:a3:14:93:e1:51:8a:02:49:97:65:a1:8e:f1:bf:20:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fea8ae19061acc5489ac2719082acea5a2fc5d3
Validity
Not Before: Oct 2 04:00:58 2025 GMT
Not After : Oct 3 04:00:58 2025 GMT
Subject: CN=fdef1378badf3f5ef71c61e7fd509c301e48d53c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:69:ce:47:b8:0f:66:fb:49:d8:5c:a6:68:59:
81:84:1f:2b:21:29:4f:23:56:89:ae:57:c3:08:ef:
7f:a6:cd:ff:ef:f0:7c:c8:a8:0a:cd:2d:04:4f:ab:
5c:61:fb:ee:9e:a9:a7:51:24:12:c3:f5:38:8d:48:
79:40:84:dc:d6:4c:34:20:95:23:39:71:8f:b3:5c:
31:ca:e0:a4:57:d5:c6:32:39:2a:47:22:1b:3d:07:
91:9b:94:26:f9:b2:68:5d:bf:41:75:f5:3c:7e:72:
1c:aa:0c:2a:11:63:f7:fb:99:bd:37:23:52:ce:cc:
34:54:db:a3:53:99:1d:9f:0b:06:f0:c6:c3:66:1a:
63:3f:b0:fe:eb:0f:1a:80:ed:8c:be:da:cb:09:28:
e2:5e:f6:5b:8f:62:a5:0b:2f:5f:96:47:d5:4d:11:
cc:67:c0:a1:c6:6b:65:bc:7d:ac:87:5a:99:b2:8e:
db:45:2f:4e:ef:ad:ef:1b:29:6c:88:20:0d:1f:78:
fc:d4:46:f1:7f:51:ea:fc:5c:32:a2:92:c4:2a:95:
7c:40:59:59:38:8b:f5:02:9f:c0:85:9e:b2:cf:b0:
a2:c2:ea:3a:3f:58:a8:d3:04:31:ad:91:50:f5:41:
bd:aa:85:cd:32:29:a2:e3:21:13:bc:b3:1b:65:0d:
9b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:EF:13:78:BA:DF:3F:5E:F7:1C:61:E7:FD:50:9C:30:1E:48:D5:3C
X509v3 Authority Key Identifier:
keyid:0F:EA:8A:E1:90:61:AC:C5:48:9A:C2:71:90:82:AC:EA:5A:2F:C5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D-qK4ZBhrMVImsJxkIKs6lovxdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/6160c9-d2e5-439c-a25a-5d8700f65a38/1/D-qK4ZBhrMVImsJxkIKs6lovxdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:3d:f5:75:36:ff:f5:5d:df:90:24:ca:a6:91:8c:13:21:f2:
17:55:34:15:e5:49:fd:ae:10:a3:51:1a:20:53:ff:35:2b:86:
ef:94:98:6b:25:a5:64:a9:d0:7e:8b:19:55:b8:b4:88:fe:18:
32:44:90:df:4d:aa:31:5c:44:d5:8d:db:33:ab:6f:20:3d:13:
87:22:33:4d:84:cf:9a:5a:b8:10:ba:34:ce:22:af:a3:f6:19:
50:eb:69:e4:08:74:43:1a:ad:00:c8:ce:04:47:a7:52:e7:dc:
ed:02:e3:2c:cb:1a:03:07:2f:c9:1c:c5:8c:69:8d:d2:13:55:
22:10:8e:16:c8:0e:26:79:7e:9b:71:6c:ab:40:52:9c:5e:1c:
68:3c:d7:18:30:c3:b0:31:81:10:9a:76:9e:ec:42:45:db:6a:
f3:47:f0:1e:65:1c:3e:49:79:6d:c6:7a:45:15:83:89:40:db:
9c:41:87:83:8f:8c:66:e2:9b:7a:df:0f:77:29:d8:81:d1:67:
9d:24:e9:66:8b:8b:a3:4a:aa:39:3b:ca:db:e8:fb:76:0d:e0:
33:03:ad:36:e7:52:4a:93:ee:e7:00:4f:6d:29:9a:79:56:92:
6c:71:b1:5d:09:3e:2a:00:09:4e:80:67:ab:2a:05:89:82:50:
36:33:a2:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:47:24 2025 by rpki-client