Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
File: MU0IhXjsDimwS0PpAUk1hnJjZP0.mft (raw, json)
Hash identifier: o2vtKl6ulQZjs7FWXbmqEMApjMl/d0SNrfGz/en0ST0=
Subject key identifier: A4:53:E4:49:02:BB:37:7B:EA:A5:33:3D:A7:58:D2:AF:AC:36:D7:5A
Authority key identifier: 31:4D:08:85:78:EC:0E:29:B0:4B:43:E9:01:49:35:86:72:63:64:FD
Certificate issuer: /CN=314d088578ec0e29b04b43e901493586726364fd
Certificate serial: 019D85A55DFA27A6A3531AE8821A8AB215D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MU0IhXjsDimwS0PpAUk1hnJjZP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
Manifest number: 15EF
Signing time: Mon 13 Apr 2026 07:01:40 +0000
Manifest this update: Mon 13 Apr 2026 07:01:40 +0000
Manifest next update: Tue 14 Apr 2026 07:01:40 +0000
Files and hashes: 1: MU0IhXjsDimwS0PpAUk1hnJjZP0.crl (hash: W6u48iy18LP2LqCskv8z3uK0yDtZ4/gZXf5ulmHvfEA=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:85:a5:5d:fa:27:a6:a3:53:1a:e8:82:1a:8a:b2:15:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=314d088578ec0e29b04b43e901493586726364fd
Validity
Not Before: Apr 13 07:01:40 2026 GMT
Not After : Apr 14 07:01:40 2026 GMT
Subject: CN=a453e44902bb377beaa5333da758d2afac36d75a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:86:84:b3:1f:df:44:50:cd:10:ef:ef:7c:48:
df:dc:86:72:f9:e0:c7:c7:ab:fb:be:1d:9e:65:e8:
1e:4e:79:d9:fa:a7:b6:9f:98:f0:5c:ff:a4:52:22:
03:df:74:75:d4:62:d4:d3:c0:72:b5:86:d6:20:99:
4d:c9:ba:e8:89:20:38:c6:c8:ab:14:9a:aa:e0:94:
ce:ad:bb:e6:21:47:af:ad:63:87:9a:25:b1:59:81:
7e:f3:5f:4a:02:8c:01:ba:d1:e3:bf:a3:14:9d:e6:
8d:5e:1f:d3:76:a1:87:cd:fd:04:87:45:b5:d8:ca:
65:d3:32:21:dc:95:03:99:e5:c6:ec:27:6a:59:b8:
68:c3:f3:b1:28:b6:64:51:b5:12:13:ee:29:c8:22:
28:bf:f3:67:7b:a4:ec:b7:f9:a0:e4:c7:51:68:c5:
67:74:a3:43:80:dc:cb:69:0b:1f:d6:c3:4c:4d:cd:
e2:a8:11:87:10:54:66:fb:cc:30:16:11:68:42:c7:
36:7a:03:3c:73:da:b6:11:68:d7:89:5e:26:d8:71:
a8:ef:ef:3b:03:cc:24:0b:38:c0:8b:30:97:4c:1f:
32:a1:31:d5:4a:23:57:14:26:32:ad:00:5c:b1:59:
ab:e0:e8:e5:42:e5:bf:61:69:42:91:50:ff:79:fb:
f9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:53:E4:49:02:BB:37:7B:EA:A5:33:3D:A7:58:D2:AF:AC:36:D7:5A
X509v3 Authority Key Identifier:
keyid:31:4D:08:85:78:EC:0E:29:B0:4B:43:E9:01:49:35:86:72:63:64:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MU0IhXjsDimwS0PpAUk1hnJjZP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/373874-34fd-4e64-b6a9-18006b6643af/1/MU0IhXjsDimwS0PpAUk1hnJjZP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:34:0c:b4:da:0e:30:5f:b1:42:5f:09:38:d6:8f:18:ab:06:
4d:36:4b:7b:be:cc:07:66:d1:14:38:3d:a1:a3:18:3e:0e:9a:
c7:7f:dd:00:14:5e:ca:c7:79:97:72:89:83:df:eb:54:53:94:
fa:29:53:68:9c:0f:ee:1f:b3:ab:7d:53:78:c7:55:85:0b:91:
2c:e6:be:cd:88:e0:66:dc:8c:0c:8f:ca:02:ce:fb:3e:a6:e4:
d5:82:c4:33:83:22:4d:8b:3e:87:10:61:2e:5d:bd:ff:7c:9f:
85:27:7d:f7:e6:66:af:ff:75:bf:5d:43:bd:f4:80:7b:e0:ca:
5e:ad:0b:30:20:6b:f3:4f:c3:81:4c:97:ba:d0:12:36:d3:1e:
1e:60:6a:2e:62:d6:2e:6f:64:59:e1:40:22:bc:82:a8:ea:82:
76:b1:59:de:23:e3:87:4e:fc:31:f7:56:3b:c0:df:41:49:05:
be:18:ac:74:69:9f:17:4f:0f:07:ad:29:d4:a3:a6:a9:1f:a3:
83:b9:63:78:70:f2:99:6d:01:a4:81:bb:38:54:4c:71:d7:d7:
1c:4b:48:0d:a7:72:d1:eb:8b:ee:89:67:ec:9a:5c:05:3a:c8:
68:df:6f:8f:68:90:ed:b5:c4:32:db:3d:e0:87:1e:74:0f:8f:
3b:14:ab:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:50:12 2026 by rpki-client