Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/4f5e7b-14e7-44bc-8d5d-d2957453b844/1/UfsmDqHIG4GxkdCujcNkESHp65Y.mft
File: UfsmDqHIG4GxkdCujcNkESHp65Y.mft (raw, json)
Hash identifier: apSLb8GUAsDpAjsK4Q2ozRFPLLiz2WYHANhhEFPtduY=
Subject key identifier: AD:BD:61:C7:85:7D:37:EB:F5:2C:16:8E:96:67:7A:E2:AA:79:DF:03
Authority key identifier: 51:FB:26:0E:A1:C8:1B:81:B1:91:D0:AE:8D:C3:64:11:21:E9:EB:96
Certificate issuer: /CN=51fb260ea1c81b81b191d0ae8dc3641121e9eb96
Certificate serial: 019C2C9AB63E0250347DD7FBC78DF3462F9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UfsmDqHIG4GxkdCujcNkESHp65Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/4f5e7b-14e7-44bc-8d5d-d2957453b844/1/UfsmDqHIG4GxkdCujcNkESHp65Y.mft
Manifest number: 07A6
Signing time: Thu 05 Feb 2026 07:01:02 +0000
Manifest this update: Thu 05 Feb 2026 07:01:02 +0000
Manifest next update: Fri 06 Feb 2026 07:01:02 +0000
Files and hashes: 1: UfsmDqHIG4GxkdCujcNkESHp65Y.crl (hash: tjrmQfOs66zc2/bQfGajbZXvZ6ryBm3AZ7eqCvrPq1Y=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:2c:9a:b6:3e:02:50:34:7d:d7:fb:c7:8d:f3:46:2f:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51fb260ea1c81b81b191d0ae8dc3641121e9eb96
Validity
Not Before: Feb 5 07:01:02 2026 GMT
Not After : Feb 6 07:01:02 2026 GMT
Subject: CN=adbd61c7857d37ebf52c168e96677ae2aa79df03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:7f:97:84:8e:a8:6e:69:f2:53:80:17:be:b6:
f7:34:8d:1f:e8:a2:89:c3:be:db:7d:f2:f2:14:57:
3c:ff:9f:aa:f8:a4:71:0a:cd:15:2d:95:b8:39:76:
9a:ef:13:a9:5a:eb:56:fb:81:53:26:c9:1f:9b:f4:
e6:36:f3:a9:da:9b:57:32:13:47:97:7a:67:52:03:
30:45:9d:03:a4:79:d7:ce:89:32:f1:34:a4:2e:fb:
91:de:9f:47:98:de:dc:ab:94:d7:2c:1a:33:8d:29:
2e:09:8f:86:09:1c:22:68:c6:c0:b7:bc:8e:0d:5c:
1d:09:4c:0a:79:9d:5d:b3:d5:05:54:8a:7e:a5:77:
f9:14:1f:33:f9:fb:9c:fb:d1:69:7b:63:87:05:a0:
45:e6:82:36:c2:dc:12:ab:45:f5:c9:5e:2f:9c:88:
14:36:23:b7:64:85:56:57:a8:88:07:dc:b2:6a:b9:
d7:58:ab:42:78:59:b0:48:09:96:15:cc:d1:c4:e0:
53:75:62:54:26:60:4d:b3:3a:92:01:a7:01:7c:05:
10:5b:c3:00:71:fa:8c:f7:28:c4:f7:e0:67:00:58:
fd:5d:46:d2:2e:72:4a:f5:50:cd:72:05:47:79:3b:
80:a4:a7:73:d9:a2:1f:66:b1:80:c4:39:d2:f3:35:
54:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:BD:61:C7:85:7D:37:EB:F5:2C:16:8E:96:67:7A:E2:AA:79:DF:03
X509v3 Authority Key Identifier:
keyid:51:FB:26:0E:A1:C8:1B:81:B1:91:D0:AE:8D:C3:64:11:21:E9:EB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UfsmDqHIG4GxkdCujcNkESHp65Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4f5e7b-14e7-44bc-8d5d-d2957453b844/1/UfsmDqHIG4GxkdCujcNkESHp65Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/4f5e7b-14e7-44bc-8d5d-d2957453b844/1/UfsmDqHIG4GxkdCujcNkESHp65Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:ca:3d:e2:03:bb:87:d8:31:f9:9c:bb:db:b3:e8:ba:f6:04:
7a:e9:93:29:23:ae:f1:08:74:ea:c5:73:ad:c6:02:2b:4e:df:
27:39:73:fc:05:7c:5f:9d:a4:17:61:c8:05:bc:ff:96:16:ac:
9e:0d:45:c9:14:94:b5:8a:a1:a8:4e:dd:70:32:29:13:c0:44:
fb:2d:d8:80:3e:73:f0:fa:e1:bf:cd:c6:f4:65:14:7d:a2:22:
1f:12:ab:fa:8c:68:1d:34:d0:cf:1d:57:a1:85:56:4e:5f:24:
65:a9:37:69:fe:8b:9e:e0:c2:57:87:40:3b:8a:d2:a6:bf:64:
0f:49:52:6c:3d:5b:8c:27:56:db:26:6c:dd:e1:01:21:31:bb:
9d:af:3a:6c:01:a5:13:da:06:e1:f1:dc:da:19:4c:31:e9:d6:
38:12:3a:de:bc:bf:d5:21:24:3e:c9:9c:e4:41:72:2e:ca:e9:
91:6c:c6:6e:12:95:25:48:b5:1b:5b:76:5c:81:fd:0e:e1:98:
6d:78:01:9e:70:26:83:90:34:5f:a7:e5:0a:6d:e0:80:63:71:
a7:ee:0f:b7:5c:3d:80:7b:1f:b3:1e:fa:8d:5d:0e:d0:b1:11:
d5:9a:da:0b:cd:49:24:de:7d:2f:92:0c:dc:66:c1:b5:64:00:
2d:28:f2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:39:20 2026 by rpki-client