Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/b18080-e3c9-4114-a174-c3d6c7c8ba8a/1/I0AYtVE7d50uHjrBqGpZO92XTKc.mft
File: I0AYtVE7d50uHjrBqGpZO92XTKc.mft (raw, json)
Hash identifier: yJ7JFYv2AL8b2LdQAdoAN+1pYxG/8rOW0zV8d3Td5Q0=
Subject key identifier: F9:9E:68:06:35:2F:11:05:16:C3:E1:84:93:A9:9A:CE:22:51:BB:2B
Authority key identifier: 23:40:18:B5:51:3B:77:9D:2E:1E:3A:C1:A8:6A:59:3B:DD:97:4C:A7
Certificate issuer: /CN=234018b5513b779d2e1e3ac1a86a593bdd974ca7
Certificate serial: 019CB1A3F0B4DA03F9F0F283E179B7B02B01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0AYtVE7d50uHjrBqGpZO92XTKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/b18080-e3c9-4114-a174-c3d6c7c8ba8a/1/I0AYtVE7d50uHjrBqGpZO92XTKc.mft
Manifest number: 042A
Signing time: Tue 03 Mar 2026 03:00:37 +0000
Manifest this update: Tue 03 Mar 2026 03:00:37 +0000
Manifest next update: Wed 04 Mar 2026 03:00:37 +0000
Files and hashes: 1: I0AYtVE7d50uHjrBqGpZO92XTKc.crl (hash: EykP7+qe5/OazehXGMI0lBDBiFqLfWP0vJevpOUdjpA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b1:a3:f0:b4:da:03:f9:f0:f2:83:e1:79:b7:b0:2b:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=234018b5513b779d2e1e3ac1a86a593bdd974ca7
Validity
Not Before: Mar 3 03:00:37 2026 GMT
Not After : Mar 4 03:00:37 2026 GMT
Subject: CN=f99e6806352f110516c3e18493a99ace2251bb2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:a4:d6:93:d3:dc:ba:ef:ef:97:11:ef:cd:9c:
ef:ce:dd:f5:9b:37:06:c5:3d:3a:b4:6b:55:44:fc:
eb:9b:ae:c7:17:f5:03:c7:5b:6a:aa:39:61:bd:b4:
61:f8:36:23:0a:dd:43:3d:7d:ea:b9:4d:d6:3c:43:
f9:8c:6d:49:8d:42:47:35:17:fc:42:62:39:12:9f:
6c:e2:f2:ca:0b:d8:5e:06:51:5b:ef:9b:c4:61:39:
03:bc:56:ad:9d:e5:01:84:cb:fe:d4:c6:1b:ce:89:
2a:73:bc:ad:61:ae:c2:96:57:0a:47:0b:c0:94:32:
8e:51:05:4e:b6:19:8a:6e:ad:26:56:51:17:1b:14:
3a:1a:4b:3e:38:c2:65:9b:fa:b1:d8:27:0e:ea:9d:
a9:ba:82:88:4c:c5:5c:90:af:c8:d4:58:50:aa:b8:
51:a3:08:bd:6a:3a:81:1e:c2:2d:5e:66:ef:ca:a2:
9f:b6:e5:e6:88:f5:e9:20:c5:0b:0e:d1:65:5b:35:
8a:89:0c:e1:c4:13:50:f3:b4:80:1c:f4:bc:2d:1e:
01:8a:23:89:e1:7c:cc:ec:16:46:47:d1:4e:57:82:
c5:ad:42:5d:ca:c1:be:ee:3d:05:eb:ff:0e:a2:28:
c1:f4:8e:a0:1a:c0:b4:8b:fa:32:7f:cd:0b:b8:91:
bf:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:9E:68:06:35:2F:11:05:16:C3:E1:84:93:A9:9A:CE:22:51:BB:2B
X509v3 Authority Key Identifier:
keyid:23:40:18:B5:51:3B:77:9D:2E:1E:3A:C1:A8:6A:59:3B:DD:97:4C:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0AYtVE7d50uHjrBqGpZO92XTKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/b18080-e3c9-4114-a174-c3d6c7c8ba8a/1/I0AYtVE7d50uHjrBqGpZO92XTKc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/b18080-e3c9-4114-a174-c3d6c7c8ba8a/1/I0AYtVE7d50uHjrBqGpZO92XTKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:f5:28:36:cd:59:09:ea:74:aa:62:cc:6c:61:ba:75:94:19:
26:dc:12:38:5d:33:33:d0:f7:ee:84:c3:2a:3b:dc:41:94:48:
83:d2:57:3f:51:85:06:2f:ff:21:fd:30:04:03:99:e0:3e:fa:
1c:0b:3b:4d:db:96:66:dd:b4:50:96:d9:42:d7:86:0e:2c:c5:
ea:7d:33:c2:50:b9:c1:11:bc:7d:6c:1a:86:f8:d6:3a:e6:fc:
27:99:4e:77:75:7f:3d:b2:59:0c:23:3b:30:f5:19:9f:36:48:
d5:fe:59:28:46:31:57:f7:1c:a7:c8:dc:77:28:7c:b2:06:93:
bc:dc:23:2f:7c:81:2d:06:2b:c8:a7:f5:b5:9b:f8:71:41:49:
62:38:30:0b:ea:60:94:77:14:13:93:1a:7b:34:e9:40:b6:51:
87:df:e9:8b:0a:d1:45:ef:99:8b:ce:d9:d7:b0:49:1a:b2:76:
fb:ae:6d:65:9b:72:b6:c5:17:0b:d9:15:50:92:5d:c7:9c:76:
9d:6f:af:bb:e7:c2:0e:37:e9:fa:22:dd:cf:65:78:ef:d9:65:
15:4c:cf:49:e1:a9:29:6b:bf:45:c2:6b:d6:09:b0:03:0a:53:
dc:be:bd:e7:09:da:60:68:28:74:bb:c3:60:b4:d9:2b:8b:27:
8a:30:21:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyxo/C02gP58PKD4Xm3sCsBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIzNDAxOGI1NTEzYjc3OWQyZTFlM2FjMWE4NmE1OTNiZGQ5
NzRjYTcwHhcNMjYwMzAzMDMwMDM3WhcNMjYwMzA0MDMwMDM3WjAzMTEwLwYDVQQD
EyhmOTllNjgwNjM1MmYxMTA1MTZjM2UxODQ5M2E5OWFjZTIyNTFiYjJiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2KTWk9Pcuu/vlxHvzZzvzt31mzcG
xT06tGtVRPzrm67HF/UDx1tqqjlhvbRh+DYjCt1DPX3quU3WPEP5jG1JjUJHNRf8
QmI5Ep9s4vLKC9heBlFb75vEYTkDvFatneUBhMv+1MYbzokqc7ytYa7CllcKRwvA
lDKOUQVOthmKbq0mVlEXGxQ6Gks+OMJlm/qx2CcO6p2puoKITMVckK/I1FhQqrhR
owi9ajqBHsItXmbvyqKftuXmiPXpIMULDtFlWzWKiQzhxBNQ87SAHPS8LR4BiiOJ
4XzM7BZGR9FOV4LFrUJdysG+7j0F6/8OoijB9I6gGsC0i/oyf80LuJG/0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPmeaAY1LxEFFsPhhJOpms4iUbsrMB8GA1UdIwQY
MBaAFCNAGLVRO3edLh46wahqWTvdl0ynMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSTBBWXRWRTdkNTB1SGpyQnFHcFpPOTJYVEtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS9iMTgwODAtZTNjOS00MTE0LWExNzQt
YzNkNmM3YzhiYThhLzEvSTBBWXRWRTdkNTB1SGpyQnFHcFpPOTJYVEtjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZS9iMTgwODAtZTNjOS00MTE0LWExNzQtYzNkNmM3YzhiYThh
LzEvSTBBWXRWRTdkNTB1SGpyQnFHcFpPOTJYVEtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL/UoNs1Z
Cep0qmLMbGG6dZQZJtwSOF0zM9D37oTDKjvcQZRIg9JXP1GFBi//If0wBAOZ4D76
HAs7TduWZt20UJbZQteGDizF6n0zwlC5wRG8fWwahvjWOub8J5lOd3V/PbJZDCM7
MPUZnzZI1f5ZKEYxV/ccp8jcdyh8sgaTvNwjL3yBLQYryKf1tZv4cUFJYjgwC+pg
lHcUE5MaezTpQLZRh9/piwrRRe+Zi87Z17BJGrJ2+65tZZtytsUXC9kVUJJdx5x2
nW+vu+fCDjfp+iLdz2V479llFUzPSeGpKWu/RcJr1gmwAwpT3L695wnaYGgodLvD
YLTZK4snijAhTA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 09:25:00 2026 by rpki-client