Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
File: 9xPX34BXC8z7JzeT8ApdRshT5Jo.mft (raw, json)
Hash identifier: upMAiF1q84fXCu/xKFyFrGpS6Nvhsw0Yf48TMNBYVgo=
Subject key identifier: 0F:CB:2A:27:2C:AD:31:09:B1:8C:14:50:06:11:F7:45:3B:FF:BE:7F
Authority key identifier: F7:13:D7:DF:80:57:0B:CC:FB:27:37:93:F0:0A:5D:46:C8:53:E4:9A
Certificate issuer: /CN=f713d7df80570bccfb273793f00a5d46c853e49a
Certificate serial: 019C8D614710F8ACA7DB89FAC50DF3C0B252
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
Manifest number: 0759
Signing time: Tue 24 Feb 2026 02:01:28 +0000
Manifest this update: Tue 24 Feb 2026 02:01:28 +0000
Manifest next update: Wed 25 Feb 2026 02:01:28 +0000
Files and hashes: 1: 9xPX34BXC8z7JzeT8ApdRshT5Jo.crl (hash: cGCoDxWYwosPhhhxfWb+KSh6YUTw85aNMBoLosFPhdo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:8d:61:47:10:f8:ac:a7:db:89:fa:c5:0d:f3:c0:b2:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f713d7df80570bccfb273793f00a5d46c853e49a
Validity
Not Before: Feb 24 02:01:28 2026 GMT
Not After : Feb 25 02:01:28 2026 GMT
Subject: CN=0fcb2a272cad3109b18c14500611f7453bffbe7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b4:50:a0:a6:bb:be:cf:a5:a3:de:b0:3f:c1:
33:4d:e4:7d:f6:5a:05:0b:90:6d:6b:8f:59:f0:72:
0c:e2:2a:b7:ea:3d:f7:29:fb:6b:a3:fd:c2:70:73:
e1:8e:31:a0:c6:58:50:15:13:7f:56:a9:43:eb:f1:
20:61:31:47:b6:d9:f2:74:c3:b1:ec:ff:55:63:71:
67:57:2e:3b:fb:18:a3:83:b9:b9:16:f8:54:91:ad:
92:60:64:e5:c9:05:1b:97:c0:a5:2a:6f:e0:d0:95:
7c:31:66:81:c4:93:c3:86:fb:b5:ed:ea:18:c4:97:
22:87:72:04:51:1c:58:e9:e8:c7:d4:a5:f1:14:18:
5c:b4:ca:da:be:f2:9f:bf:4e:44:96:ff:45:83:de:
5b:72:5d:9d:7e:15:de:67:a9:08:19:fa:b9:9d:bd:
09:28:13:a9:44:1f:47:9a:5f:9e:49:1b:97:4b:f1:
63:21:8c:46:ac:f9:32:ac:3d:0e:25:66:fb:7c:63:
fa:a9:5a:55:1f:13:d3:7a:34:5c:7a:b4:4d:f5:82:
ef:ee:e2:ec:4f:65:2b:8d:fa:4b:16:53:6a:7c:e5:
45:43:77:43:57:b8:23:4b:c1:56:e5:9a:31:36:50:
7e:2f:27:b8:5b:6c:ed:3d:28:16:6d:99:40:71:12:
e2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:CB:2A:27:2C:AD:31:09:B1:8C:14:50:06:11:F7:45:3B:FF:BE:7F
X509v3 Authority Key Identifier:
keyid:F7:13:D7:DF:80:57:0B:CC:FB:27:37:93:F0:0A:5D:46:C8:53:E4:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9xPX34BXC8z7JzeT8ApdRshT5Jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/23a19a-30db-4872-ab73-5287afc10e68/1/9xPX34BXC8z7JzeT8ApdRshT5Jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:23:ba:29:fa:a6:bb:b4:df:3f:19:7e:dc:e6:dc:8f:e9:ec:
c3:b7:f5:a6:cd:46:25:71:2c:75:41:9f:0f:36:ed:4c:dc:91:
a9:ca:8d:95:7f:e0:61:a5:0f:57:3e:ad:5b:2e:ad:7c:dd:cf:
51:bb:8f:9b:ec:6a:79:9e:83:e3:88:b1:4f:ae:b1:09:8b:17:
8c:6a:7d:d0:cd:42:40:40:ba:17:3d:35:a2:e4:e9:fb:49:f2:
aa:26:7d:b2:72:49:9c:8f:47:fc:31:1e:d0:96:8f:7f:5b:a2:
a7:71:e5:3d:5d:d6:51:38:f1:cc:dc:9a:82:8c:e2:89:6c:b3:
47:0e:34:87:b4:72:0f:0a:e1:76:0b:be:5f:78:20:5a:86:94:
c9:5c:71:91:a1:a9:51:46:90:12:56:5f:57:62:32:02:dc:06:
e4:a2:d6:69:06:d6:20:4f:78:29:18:88:1f:67:4f:a0:27:24:
66:82:e6:e3:a6:47:f1:14:fa:bc:19:df:2b:50:50:07:2c:57:
8c:51:58:bd:9e:f4:44:bc:65:34:dc:65:11:5c:3f:70:39:6c:
eb:f5:59:aa:e1:05:77:6c:9e:1e:af:b5:97:4b:02:36:f3:c8:
50:d0:8c:37:56:bc:de:6e:bb:76:f5:06:97:a2:52:05:71:ce:
b9:85:4c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:19:01 2026 by rpki-client