Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
File: ckWEKSHz0CDU2AReUrsQ_PV-r28.mft (raw, json)
Hash identifier: /bgL0LzeJy3G4VNEiyJZUkFzdaenNXhamjCq8TxgA4Q=
Subject key identifier: 94:ED:B6:1C:31:AC:35:4E:F0:C6:0E:AF:D5:E8:D3:A1:2F:FE:72:0D
Authority key identifier: 72:45:84:29:21:F3:D0:20:D4:D8:04:5E:52:BB:10:FC:F5:7E:AF:6F
Certificate issuer: /CN=7245842921f3d020d4d8045e52bb10fcf57eaf6f
Certificate serial: 019D8FBAB619E3BC62E7EBF4B9E094D262AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
Manifest number: 1238
Signing time: Wed 15 Apr 2026 06:01:11 +0000
Manifest this update: Wed 15 Apr 2026 06:01:11 +0000
Manifest next update: Thu 16 Apr 2026 06:01:11 +0000
Files and hashes: 1: ckWEKSHz0CDU2AReUrsQ_PV-r28.crl (hash: pOFmoIDIDSW/t8Mi12ChJUSGU7X2Az2az9UQzWlGgLs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:8f:ba:b6:19:e3:bc:62:e7:eb:f4:b9:e0:94:d2:62:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7245842921f3d020d4d8045e52bb10fcf57eaf6f
Validity
Not Before: Apr 15 06:01:11 2026 GMT
Not After : Apr 16 06:01:11 2026 GMT
Subject: CN=94edb61c31ac354ef0c60eafd5e8d3a12ffe720d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:bd:5d:32:a6:4f:a7:b6:40:4a:15:72:71:f7:
73:8a:03:6b:61:6e:28:3a:c7:4a:ea:2d:51:c0:e2:
1f:6d:ff:1d:f6:76:52:9e:1b:99:6d:37:27:11:a9:
03:6f:f7:b1:bb:95:28:60:f3:37:3c:22:10:96:41:
8d:a8:0d:98:de:ec:9c:70:00:f5:1b:ad:2f:5c:ee:
71:a1:b9:a6:92:98:12:13:4b:53:ae:5d:9b:e4:54:
09:91:19:ac:c9:a1:40:96:46:ad:73:04:d6:26:84:
cf:98:00:2d:fd:45:ba:d1:e0:f2:3a:2d:7a:1f:4b:
01:2f:4c:34:36:bb:ca:ec:be:2f:d8:0a:97:e4:03:
27:db:b9:f3:5d:05:0f:90:26:d5:1b:b5:7b:93:7f:
47:31:cf:f1:bc:7f:08:a5:dc:09:55:f7:5d:58:84:
55:32:46:a1:91:fa:7b:d4:89:6e:59:c9:9f:80:35:
a8:1b:08:0e:d5:7a:56:73:13:5a:f3:8c:40:b2:9e:
ad:35:0b:7e:1b:92:63:2d:4a:d4:b0:7c:7b:d3:d8:
8c:c9:c6:7c:37:c5:b6:28:1f:04:c6:e4:ab:dc:59:
48:66:53:9e:98:a8:c3:87:a8:b7:c3:42:0b:4f:e3:
f8:56:f3:60:74:98:df:b4:55:63:21:31:1a:8e:63:
ba:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:ED:B6:1C:31:AC:35:4E:F0:C6:0E:AF:D5:E8:D3:A1:2F:FE:72:0D
X509v3 Authority Key Identifier:
keyid:72:45:84:29:21:F3:D0:20:D4:D8:04:5E:52:BB:10:FC:F5:7E:AF:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckWEKSHz0CDU2AReUrsQ_PV-r28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/71f422-e092-4189-8d3c-8e258efedffa/1/ckWEKSHz0CDU2AReUrsQ_PV-r28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:64:cb:8c:5e:3d:83:ea:c6:de:e2:20:b7:a3:c9:ab:83:13:
a2:8c:e0:4b:f4:3e:8f:49:ae:51:51:cd:56:93:8b:1c:fa:c4:
09:c7:d7:23:6b:6b:91:20:c6:bb:e4:8d:38:19:bc:1c:0f:48:
15:06:c7:91:3e:1a:2a:b7:cf:09:64:05:68:13:98:8d:b7:06:
c2:0e:97:ac:68:d7:aa:b7:c8:bd:1d:e3:73:ae:97:d4:dd:d8:
27:c2:53:4e:73:fb:35:31:45:1e:5f:27:08:e1:f9:86:ad:e6:
d5:5c:1c:fd:c0:a6:e4:bf:73:95:41:04:b1:bf:a5:42:da:b2:
7b:96:e1:02:e0:e2:8b:d7:e9:b1:35:ca:fa:62:cc:86:98:7a:
04:ca:fc:9d:5c:ac:a8:33:1d:b0:ee:ac:1e:e3:49:e3:38:00:
6a:bb:05:55:37:9b:c5:dd:a9:65:d1:a0:28:63:05:47:9f:30:
cf:5d:4e:79:de:35:8f:67:88:51:65:21:be:84:54:62:82:7f:
95:ca:c3:f4:bb:20:ac:04:a7:b5:2a:62:57:c7:65:a6:e9:04:
b7:a6:33:10:a6:ad:27:52:0c:11:ab:8d:8b:c4:b2:77:12:1e:
58:88:6c:35:c5:07:a5:51:b0:1b:9f:d7:8f:c5:91:ca:09:1f:
d8:71:36:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:00:30 2026 by rpki-client