Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/615617-092d-4228-a407-77bfa37fa071/1/NWlXUM1GUx3eil-yZyzcgw09DG4.mft
File: NWlXUM1GUx3eil-yZyzcgw09DG4.mft (raw, json)
Hash identifier: ZxTpAWiNqU05cjVg9XZZNwQrSnKTupTj+5hwBweybt4=
Subject key identifier: F7:0E:D0:89:97:36:7C:4D:8A:F0:DD:3B:E8:B2:D9:4A:FD:85:CF:E5
Authority key identifier: 35:69:57:50:CD:46:53:1D:DE:8A:5F:B2:67:2C:DC:83:0D:3D:0C:6E
Certificate issuer: /CN=35695750cd46531dde8a5fb2672cdc830d3d0c6e
Certificate serial: 019CB24958DC868F861B8C268C8E52CC80C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWlXUM1GUx3eil-yZyzcgw09DG4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/615617-092d-4228-a407-77bfa37fa071/1/NWlXUM1GUx3eil-yZyzcgw09DG4.mft
Manifest number: 0666
Signing time: Tue 03 Mar 2026 06:01:17 +0000
Manifest this update: Tue 03 Mar 2026 06:01:17 +0000
Manifest next update: Wed 04 Mar 2026 06:01:17 +0000
Files and hashes: 1: NWlXUM1GUx3eil-yZyzcgw09DG4.crl (hash: ditcageOtYT7sSmyfTcNyom+OXKK/q2n/oe6FXLl3Is=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b2:49:58:dc:86:8f:86:1b:8c:26:8c:8e:52:cc:80:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35695750cd46531dde8a5fb2672cdc830d3d0c6e
Validity
Not Before: Mar 3 06:01:17 2026 GMT
Not After : Mar 4 06:01:17 2026 GMT
Subject: CN=f70ed08997367c4d8af0dd3be8b2d94afd85cfe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7b:87:71:8e:de:81:27:5f:cd:40:93:b4:14:
ab:7b:64:6a:81:ab:90:c7:bc:ce:b8:d4:a8:85:b6:
1c:b7:c4:d0:f9:56:6e:a2:b5:a1:26:5a:9b:68:a6:
23:d3:2c:f1:8a:05:d4:6a:40:90:99:08:3e:da:af:
ac:4f:9e:24:9c:23:c4:95:76:ab:6c:0e:bf:d9:4d:
e6:09:31:18:07:6a:82:7c:45:5c:43:cb:63:58:c1:
77:1c:f8:9e:de:04:72:d6:f4:b6:89:e9:19:84:04:
3e:bb:90:ac:4d:b9:c5:7f:3a:ca:b5:28:64:65:69:
91:79:85:39:9a:99:96:1f:83:ac:32:4e:4b:1f:bc:
be:dd:08:6b:03:0d:67:45:9b:97:d4:3f:d2:f7:b0:
37:4e:7a:fd:cd:e2:6c:01:09:a3:ff:6b:65:c8:54:
99:32:5d:d6:4a:3c:5f:67:67:7f:2f:cf:20:b5:9f:
16:9f:50:3c:8a:07:97:94:67:66:c9:fc:17:ee:f7:
4d:2d:6a:22:e7:0c:42:f6:99:bb:b2:a2:cb:0a:02:
d5:6e:a7:96:8a:4d:6e:c5:b0:d9:c7:ec:52:a1:8e:
4c:a6:ea:59:36:44:d9:89:98:40:fa:1a:85:3b:e5:
a3:81:4c:11:ad:27:c6:e2:39:d1:7e:0a:01:e0:83:
90:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0E:D0:89:97:36:7C:4D:8A:F0:DD:3B:E8:B2:D9:4A:FD:85:CF:E5
X509v3 Authority Key Identifier:
keyid:35:69:57:50:CD:46:53:1D:DE:8A:5F:B2:67:2C:DC:83:0D:3D:0C:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWlXUM1GUx3eil-yZyzcgw09DG4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/615617-092d-4228-a407-77bfa37fa071/1/NWlXUM1GUx3eil-yZyzcgw09DG4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/615617-092d-4228-a407-77bfa37fa071/1/NWlXUM1GUx3eil-yZyzcgw09DG4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:18:b5:46:e1:03:b2:22:6f:16:52:0e:1f:f3:a4:ea:11:b4:
4d:e5:94:25:b1:59:5f:49:ac:49:56:6d:41:52:d3:c2:e7:d2:
62:b4:9d:61:9d:4c:a2:af:22:3f:1a:82:0f:7d:43:86:14:a5:
7d:55:35:df:e4:ca:db:1b:83:31:5d:34:46:a2:32:f0:6d:2c:
f7:40:e4:df:6a:af:50:3a:c9:05:37:aa:68:73:a6:4d:ed:01:
25:1f:ec:0a:2e:d6:02:4c:41:ae:23:e7:55:a2:5d:e7:09:7e:
a3:ea:a1:4c:ee:fa:a8:ee:58:1c:64:5f:c9:79:c8:8a:df:a6:
78:de:c4:25:bf:28:97:bb:6a:75:fd:b9:ae:cc:1d:1a:2c:eb:
8b:9a:3c:92:0f:5e:d7:c6:b4:81:42:8d:ca:de:23:1c:48:5a:
35:a7:6c:d8:f2:b9:cc:66:22:ef:3f:51:ef:61:99:e1:1d:69:
23:d1:b6:0b:45:ce:28:ac:8f:ee:e7:66:6c:bf:d1:6b:0a:c5:
8d:06:eb:1e:49:f1:7a:4d:bd:cd:9e:64:92:00:55:bd:39:3a:
ac:bf:72:0a:6a:fc:65:50:c2:1d:90:1a:b8:ae:54:fa:d5:d7:
56:f2:15:54:e2:bf:f6:6c:8f:db:e7:1b:7e:72:bb:2a:c1:b3:
56:81:65:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:39:06 2026 by rpki-client