Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft
File: kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft (raw, json)
Hash identifier: JypBV8ooPM2fYbPHRpj1dmmY/Jem+P+LtsLllUQGhXI=
Subject key identifier: 12:35:A3:F6:E8:72:C8:7F:D5:32:72:D3:98:CE:A0:22:9E:A8:A6:E0
Authority key identifier: 91:53:53:98:EA:57:F6:AC:8C:02:E6:59:E9:2F:18:B1:38:E1:36:19
Certificate issuer: /CN=91535398ea57f6ac8c02e659e92f18b138e13619
Certificate serial: 019BE481492706A7AEF9F65D98744CFFE0DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft
Manifest number: 1547
Signing time: Thu 22 Jan 2026 07:00:36 +0000
Manifest this update: Thu 22 Jan 2026 07:00:36 +0000
Manifest next update: Fri 23 Jan 2026 07:00:36 +0000
Files and hashes: 1: kVNTmOpX9qyMAuZZ6S8YsTjhNhk.crl (hash: 4hzV4cXW00nMmnFmrWTgZM4z7PoeG5QlNeZXEOKs2Cs=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:e4:81:49:27:06:a7:ae:f9:f6:5d:98:74:4c:ff:e0:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91535398ea57f6ac8c02e659e92f18b138e13619
Validity
Not Before: Jan 22 07:00:36 2026 GMT
Not After : Jan 23 07:00:36 2026 GMT
Subject: CN=1235a3f6e872c87fd53272d398cea0229ea8a6e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0d:3f:69:31:ca:9c:75:0e:bd:21:a6:1b:4b:
e0:1b:ea:4e:f3:8a:f0:19:e7:35:51:be:0e:7a:f9:
f3:36:02:b4:7c:0e:b5:94:f0:b8:88:f7:75:6e:00:
0b:d6:3a:c1:53:6d:0a:f5:60:2d:59:5c:9b:9f:a0:
25:27:cf:40:2b:61:4e:d8:14:5b:97:a9:49:55:02:
bd:c8:8b:8b:d2:16:59:5d:96:09:f9:32:43:85:c5:
68:dc:cb:49:e7:24:0a:0e:9c:64:2a:8b:47:83:cd:
32:a3:4a:48:ca:5d:33:c4:ec:2a:c6:8a:95:70:2a:
52:e7:1c:de:74:e5:ea:9a:64:4f:e5:aa:55:ee:01:
47:94:fc:1c:59:a5:a1:29:3b:c8:7f:f4:e6:d9:24:
81:f8:91:b0:1c:10:5e:12:3c:72:76:3b:a1:05:d3:
22:70:47:5b:e9:da:75:f4:30:82:fa:dd:7c:bf:56:
5b:d6:30:2f:d1:9a:19:cc:7f:4e:97:27:43:78:73:
8d:fd:e1:3f:fe:be:e6:ae:5d:d3:bf:89:e1:58:08:
5b:ac:65:5e:8c:74:eb:95:74:bc:f6:cb:82:d0:dd:
75:48:44:5f:d5:55:b8:94:04:7b:64:c6:49:df:52:
1f:25:8f:ab:ee:90:02:cc:35:ab:89:36:36:3f:4a:
6d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:35:A3:F6:E8:72:C8:7F:D5:32:72:D3:98:CE:A0:22:9E:A8:A6:E0
X509v3 Authority Key Identifier:
keyid:91:53:53:98:EA:57:F6:AC:8C:02:E6:59:E9:2F:18:B1:38:E1:36:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0ca175-895a-452a-bad4-c599f09787f9/1/kVNTmOpX9qyMAuZZ6S8YsTjhNhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:69:1e:af:d0:71:75:9b:8e:e0:9b:2b:00:f2:3e:a3:4a:eb:
f6:fb:fd:61:47:6e:63:a5:d4:de:0b:34:6a:4f:95:b0:57:5a:
e1:aa:95:26:a6:5c:97:6d:0a:d0:c3:00:75:4c:dc:57:af:6e:
99:14:5a:7f:50:f6:4d:14:e3:04:97:19:ee:ac:13:68:6d:95:
0b:87:c6:6a:cd:9c:9a:0c:8f:d6:3c:12:06:1a:67:76:b2:66:
39:a4:db:7b:2b:1c:44:ca:80:1d:02:46:31:58:96:67:fd:21:
10:91:16:e3:24:8c:b4:1a:29:9f:65:c5:be:00:09:66:da:78:
70:dc:1f:48:ad:18:b9:ef:ea:8a:7f:ee:ed:0a:a6:d6:8f:97:
bd:06:35:5a:18:72:22:c0:89:8c:24:77:46:b6:6a:7b:48:50:
64:5a:25:d2:f8:1a:94:49:22:e1:2e:f7:63:0e:94:48:9c:18:
6f:3b:a2:f2:c9:e2:65:74:a5:ca:a2:d8:e0:82:57:25:e8:12:
1a:6e:3f:b8:89:47:06:3a:41:23:80:f4:63:b0:98:ab:46:96:
d2:12:c6:9d:59:84:93:4e:e0:71:31:c9:1c:c0:43:d6:2a:68:
65:1d:97:ea:9c:09:d0:4d:65:96:b6:3b:7c:e5:86:c2:62:c3:
a3:ac:df:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:31:13 2026 by rpki-client