Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
File: 670ir7gN-togA9QOVG2v03_4af0.mft (raw, json)
Hash identifier: RNFgOMBeRk3nUqftY+tpJGYKU92QrrMC7jk6FcmKJn4=
Subject key identifier: DA:D5:00:02:1E:B5:86:0D:15:07:D9:99:3C:72:8D:DC:B5:54:D2:42
Authority key identifier: EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
Certificate issuer: /CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Certificate serial: 019D751F8F4D744C7ED84BCB25A0F5CD8C89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
Manifest number: 07A3
Signing time: Fri 10 Apr 2026 02:01:35 +0000
Manifest this update: Fri 10 Apr 2026 02:01:35 +0000
Manifest next update: Sat 11 Apr 2026 02:01:35 +0000
Files and hashes: 1: 670ir7gN-togA9QOVG2v03_4af0.crl (hash: AAm3NWyMEjtIeTKxjYWCUmCjmAFnocGbQx46dOipNJs=)
2: euUp3-ezlCpILlf7qWV0a93H1yQ.roa (hash: kzeXchF7R0DCrCVUSaQcyQotUqQoTUlPfhRZvehXMko=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:75:1f:8f:4d:74:4c:7e:d8:4b:cb:25:a0:f5:cd:8c:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Validity
Not Before: Apr 10 02:01:35 2026 GMT
Not After : Apr 11 02:01:35 2026 GMT
Subject: CN=dad500021eb5860d1507d9993c728ddcb554d242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:16:ec:9f:e3:89:d3:ba:2a:a4:09:16:28:10:
3b:8b:e4:d9:43:da:15:64:6b:3d:78:db:12:0a:15:
50:c9:1d:f4:88:d6:61:98:5e:19:da:a9:d3:a3:ea:
02:d5:16:86:7b:22:4a:a9:99:9c:08:63:94:cc:00:
1f:4e:a8:d5:e8:b3:52:91:6e:fb:ce:50:9e:c6:27:
1c:1c:53:2b:13:f7:04:3a:15:37:fd:12:21:26:36:
ad:eb:84:39:97:c8:03:78:8b:4c:04:29:9e:b2:00:
a0:55:5f:97:e1:b0:be:c1:ab:9b:9f:6e:b1:2f:d8:
5b:62:00:03:3e:c7:40:61:9a:20:08:e1:46:21:6a:
f8:7e:83:00:48:00:3c:5c:69:05:f0:f8:75:ae:5e:
47:ce:50:9a:5d:42:a3:e4:2c:03:26:c5:d1:ca:9a:
89:19:00:01:17:64:34:6d:79:9f:d3:71:ba:2a:df:
1a:1a:dd:c2:60:96:22:11:91:4d:a2:94:ab:ca:d2:
81:f7:b2:4f:45:43:d1:4b:fb:9a:8c:1c:ca:06:f2:
f6:b7:49:a9:06:e3:52:0d:2c:c9:f0:e9:bd:c8:24:
ef:b8:a1:4b:56:7e:7d:a8:37:43:1e:45:ea:94:62:
65:8c:99:ba:f0:ad:b3:5b:01:64:82:cf:8e:c3:bc:
f2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D5:00:02:1E:B5:86:0D:15:07:D9:99:3C:72:8D:DC:B5:54:D2:42
X509v3 Authority Key Identifier:
keyid:EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:49:95:50:bb:9c:fe:d8:d9:3c:a8:59:b4:ee:2f:c3:8e:97:
0b:d9:8b:6c:12:f4:e1:de:98:ff:5e:a3:a5:2f:6a:34:94:5d:
d1:c6:d6:2e:b0:a8:8b:93:4e:c8:7d:9c:34:db:aa:77:e5:b9:
d4:d5:d6:a9:d9:13:5c:c7:88:d5:73:eb:63:0a:f0:9b:e8:5a:
df:3a:73:fa:f4:56:dc:7e:d1:c8:c9:61:c3:48:0a:5a:61:39:
63:8c:4b:d6:14:97:36:f0:f7:26:ca:45:a2:2a:5f:7f:18:f6:
5e:b5:e7:ec:53:a6:3c:8d:b1:b4:f4:4a:00:4d:5a:6a:1e:26:
3a:39:7e:37:d4:e5:77:a7:bc:bd:5e:bd:f2:51:7d:c4:6e:47:
c3:65:da:70:fa:d4:c3:e5:f8:a5:61:2c:d6:ef:71:21:d6:2b:
25:59:ef:8e:72:9c:6a:4d:52:b7:99:e0:9b:44:03:2d:ee:0e:
e8:89:45:e7:62:81:02:b0:0b:34:37:41:ab:2f:6d:9e:18:79:
70:84:16:15:6d:98:b8:37:84:d6:2a:08:ce:bd:b4:a8:c3:65:
f0:be:f4:2b:15:62:48:17:8e:65:9f:57:1f:a1:31:a9:05:68:
32:25:bd:3f:c7:6e:6e:5d:7c:f6:6d:b1:32:dc:94:48:f9:bb:
1d:87:cf:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:45:12 2026 by rpki-client