Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
File: aweCDo1ADzwl3dC-G0bFTpVZYKE.mft (raw, json)
Hash identifier: jWo2t2Na/kAFiNBQSJctx2HGOhGIR2iGH8azHzqBNPQ=
Subject key identifier: 46:47:12:C7:56:B6:4E:CE:00:5B:00:9B:53:5A:A4:9F:AE:7E:DD:07
Authority key identifier: 6B:07:82:0E:8D:40:0F:3C:25:DD:D0:BE:1B:46:C5:4E:95:59:60:A1
Certificate issuer: /CN=6b07820e8d400f3c25ddd0be1b46c54e955960a1
Certificate serial: 019D4C5A0E400B8EDC204A20D7CDAD1EC6E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
Manifest number: 0FB3
Signing time: Thu 02 Apr 2026 04:01:03 +0000
Manifest this update: Thu 02 Apr 2026 04:01:03 +0000
Manifest next update: Fri 03 Apr 2026 04:01:03 +0000
Files and hashes: 1: aweCDo1ADzwl3dC-G0bFTpVZYKE.crl (hash: 9md/OVe/3Xy0GpwV0cOFuocA5qfLb1kzHdl4LIZGuYM=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:4c:5a:0e:40:0b:8e:dc:20:4a:20:d7:cd:ad:1e:c6:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b07820e8d400f3c25ddd0be1b46c54e955960a1
Validity
Not Before: Apr 2 04:01:03 2026 GMT
Not After : Apr 3 04:01:03 2026 GMT
Subject: CN=464712c756b64ece005b009b535aa49fae7edd07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:25:ef:04:ae:2f:42:4b:6d:c3:57:45:ff:4e:
36:ad:f0:aa:d2:45:62:06:65:b1:9d:ba:60:5b:bd:
69:90:d6:be:1f:a7:1f:fc:5c:5d:b5:d8:b6:df:93:
f5:d0:67:a7:ac:89:43:36:8a:a8:65:a1:25:55:ee:
b7:59:02:e6:87:b0:47:08:05:57:70:01:25:65:4d:
51:c5:a3:9c:2e:56:40:b0:0f:2b:a0:d0:62:0c:cd:
51:f5:3c:49:82:27:11:7b:47:73:3c:62:84:01:cb:
4e:ff:98:20:4e:e0:c3:20:34:1f:88:a4:70:ef:08:
d7:09:c5:9a:16:42:f7:9d:d0:92:f0:74:2e:c1:24:
52:65:07:ed:61:ef:b0:3d:1d:1a:39:d5:ca:14:2b:
c4:99:1b:b5:c4:1a:77:bc:76:d9:56:ed:52:da:f1:
a9:4c:0d:99:8d:69:af:8c:83:65:08:b9:41:89:1b:
9c:62:65:11:65:fd:02:e0:c9:e1:d4:b7:6f:43:0e:
78:7f:07:ba:a2:8e:f1:52:78:44:14:07:54:75:17:
8b:3f:ab:88:04:0a:ac:94:5c:c8:d4:99:c7:47:91:
8d:38:32:d5:00:05:b9:76:51:e8:7c:46:8b:38:be:
cc:12:74:0a:df:9f:61:c1:8d:46:50:39:7f:49:d9:
46:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:47:12:C7:56:B6:4E:CE:00:5B:00:9B:53:5A:A4:9F:AE:7E:DD:07
X509v3 Authority Key Identifier:
keyid:6B:07:82:0E:8D:40:0F:3C:25:DD:D0:BE:1B:46:C5:4E:95:59:60:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aweCDo1ADzwl3dC-G0bFTpVZYKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/bfc6b1-02af-4cb1-a06d-4d493082da1c/1/aweCDo1ADzwl3dC-G0bFTpVZYKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:d8:7b:e8:20:6e:53:ec:df:f5:70:99:fb:7c:a1:de:70:1e:
5a:d8:bb:14:16:7c:7e:5c:21:04:ad:5b:b9:bd:a0:a9:56:09:
6d:e8:09:6a:db:57:03:c1:9f:1d:62:f2:8c:35:74:6f:0e:ab:
42:2e:5f:4a:10:77:8c:aa:54:31:54:b8:48:da:43:e6:61:bc:
df:c9:3c:4f:e9:a4:1e:2a:72:68:7b:a9:0d:12:d6:6b:ef:80:
b7:70:ab:46:99:b1:30:ac:fc:3d:c3:e3:ab:6d:f5:7c:b1:08:
79:d1:4a:cf:06:c9:b9:2c:f8:4b:d9:d1:89:ad:45:08:00:72:
80:88:5e:c2:81:18:1d:e6:6c:52:10:4a:d5:ea:e1:1c:c7:19:
7e:69:6f:00:4f:da:5f:e7:25:9d:c7:48:12:3a:b0:b4:6b:b5:
0c:bb:e2:7e:50:6d:44:6f:a7:92:33:5d:5b:44:13:86:19:e7:
a9:65:65:e2:81:c0:75:27:da:1a:73:72:43:e2:a0:f5:09:79:
c2:f9:7e:61:98:e7:00:a6:e1:52:74:d8:88:3d:cc:61:85:17:
e8:1a:de:a3:4f:5c:17:c6:9e:d4:0d:1e:39:e4:03:41:46:2e:
d5:db:ec:b1:b6:bb:00:5f:41:7f:76:e2:98:01:0d:f2:34:95:
fb:cc:cd:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:41:19 2026 by rpki-client