Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
File: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft (raw, json)
Hash identifier: U05Q7rRSwZil31KBBkiIFV4ZfNDu1hR+JFZL12kznCo=
Subject key identifier: 7D:62:0D:14:B0:CD:44:53:1F:FE:00:7B:5E:D0:58:16:85:33:EC:EF
Authority key identifier: 22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
Certificate issuer: /CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Certificate serial: 019CD166C6AFBF76FBCA3F7CC92BD25F08E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
Manifest number: 0F44
Signing time: Mon 09 Mar 2026 07:01:39 +0000
Manifest this update: Mon 09 Mar 2026 07:01:39 +0000
Manifest next update: Tue 10 Mar 2026 07:01:39 +0000
Files and hashes: 1: Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl (hash: i5iCuBUWVmB9nQJOt+arPiwo+r3EO0e5AhjWdAgAIXI=)
2: R843p-38WteuOkSHzbf3qrehiDw.roa (hash: lL8mH/XViDvpJ3MkMI6sLi0P2Yyq2Vj6DtB1Dgsh4+g=)
3: lz_WC5uJeICfjQzpAPaUtpnLmOE.roa (hash: RYYydhlLpv7/DuyZEPW9/qv3fOSivSmlz/esgSVQG5U=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:d1:66:c6:af:bf:76:fb:ca:3f:7c:c9:2b:d2:5f:08:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fd1b59d5caaf7506bc0d5c34f30c2159b04398
Validity
Not Before: Mar 9 07:01:39 2026 GMT
Not After : Mar 10 07:01:39 2026 GMT
Subject: CN=7d620d14b0cd44531ffe007b5ed058168533ecef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:86:e6:13:a4:33:f1:bb:6d:f3:0b:b3:5f:67:
68:0f:c2:a6:0b:0f:96:72:d8:0f:0b:14:fc:da:58:
62:33:8f:ea:6f:b5:6b:a9:82:16:ca:d1:38:10:5c:
1c:b0:e7:d5:1d:39:57:b3:f3:b8:15:38:cf:be:38:
86:34:c4:0a:f9:d0:27:5e:86:d8:ac:14:6e:ae:3f:
0c:35:f3:2b:75:e5:33:90:ee:ae:bf:01:7c:2d:12:
16:6b:f7:7d:2f:8f:c9:6b:7e:2f:29:ba:e3:64:d9:
68:e1:3e:ce:29:aa:c8:12:1e:d5:25:01:0e:cb:06:
5c:e1:2c:51:f5:55:91:ef:31:03:f7:7e:4f:b9:c2:
75:12:1e:4a:f1:34:f0:51:aa:1f:ba:69:a7:4c:3c:
2c:b0:6c:94:93:a2:ca:0f:1e:5b:d8:82:89:89:3a:
fa:c2:af:63:6c:da:e1:e2:b0:2a:c4:ba:6f:64:50:
2a:7c:52:5c:7b:5c:21:a3:c4:71:e1:09:de:65:a5:
d6:6d:62:10:f3:f2:39:0e:b9:23:b6:ad:34:96:f8:
b6:52:80:3f:a0:88:08:2e:a9:93:9f:7d:f0:cf:2c:
27:0b:27:cb:d2:b0:e3:59:7b:f5:2d:af:c7:60:24:
91:29:5f:94:9c:d4:58:05:e0:9f:6e:01:55:b4:38:
bd:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:62:0D:14:B0:CD:44:53:1F:FE:00:7B:5E:D0:58:16:85:33:EC:EF
X509v3 Authority Key Identifier:
keyid:22:FD:1B:59:D5:CA:AF:75:06:BC:0D:5C:34:F3:0C:21:59:B0:43:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/850e96-191f-4dcb-9edb-cd58fa2014dd/1/Iv0bWdXKr3UGvA1cNPMMIVmwQ5g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:b6:50:3e:ef:22:71:86:cb:f7:44:7d:5e:c2:ff:6f:69:4a:
4e:3a:e1:52:10:b6:54:ed:db:23:d6:b9:7d:cc:7f:29:6b:06:
cb:e0:b4:db:d0:13:7d:86:43:06:69:cb:76:b9:3f:5a:be:99:
4c:29:94:9f:67:56:86:31:67:ef:9a:35:88:9d:b6:ee:cb:cf:
8b:3b:fd:09:99:79:65:37:67:ad:6e:30:fb:24:58:f4:70:98:
8b:71:9f:65:94:44:ee:ea:e7:81:7c:8f:ca:a3:1f:d5:6e:98:
ac:5d:91:64:5e:4e:13:29:e8:c1:db:ac:e1:3f:5a:90:8c:7e:
0d:bc:08:73:e8:4f:f2:48:7b:78:f2:46:cf:18:e8:e2:21:d8:
80:ee:70:a3:32:7d:d4:92:e4:12:e9:cd:59:1b:e5:f8:6e:4f:
32:33:11:31:3a:53:07:1f:5d:12:65:dd:20:73:47:63:a2:7b:
5c:ac:37:aa:21:92:31:12:f4:c2:62:39:8c:7c:48:6a:bf:20:
1c:da:28:04:e6:9c:15:64:23:58:63:24:34:a2:90:ce:c5:96:
05:2d:dd:59:97:bf:c4:d8:34:49:4b:ad:45:ae:63:69:71:0c:
28:fd:ef:0c:a1:73:1a:38:76:85:b9:9d:3b:85:ea:2f:ba:65:
bc:25:66:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzRZsavv3b7yj98ySvSXwjoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyZmQxYjU5ZDVjYWFmNzUwNmJjMGQ1YzM0ZjMwYzIxNTli
MDQzOTgwHhcNMjYwMzA5MDcwMTM5WhcNMjYwMzEwMDcwMTM5WjAzMTEwLwYDVQQD
Eyg3ZDYyMGQxNGIwY2Q0NDUzMWZmZTAwN2I1ZWQwNTgxNjg1MzNlY2VmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIbmE6Qz8btt8wuzX2doD8KmCw+W
ctgPCxT82lhiM4/qb7VrqYIWytE4EFwcsOfVHTlXs/O4FTjPvjiGNMQK+dAnXobY
rBRurj8MNfMrdeUzkO6uvwF8LRIWa/d9L4/Ja34vKbrjZNlo4T7OKarIEh7VJQEO
ywZc4SxR9VWR7zED935PucJ1Eh5K8TTwUaofummnTDwssGyUk6LKDx5b2IKJiTr6
wq9jbNrh4rAqxLpvZFAqfFJce1who8Rx4QneZaXWbWIQ8/I5Drkjtq00lvi2UoA/
oIgILqmTn33wzywnCyfL0rDjWXv1La/HYCSRKV+UnNRYBeCfbgFVtDi9FQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH1iDRSwzURTH/4Ae17QWBaFM+zvMB8GA1UdIwQY
MBaAFCL9G1nVyq91BrwNXDTzDCFZsEOYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXYwYldkWEtyM1VHdkExY05QTU1JVm13UTVnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC84NTBlOTYtMTkxZi00ZGNiLTllZGIt
Y2Q1OGZhMjAxNGRkLzEvSXYwYldkWEtyM1VHdkExY05QTU1JVm13UTVnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC84NTBlOTYtMTkxZi00ZGNiLTllZGItY2Q1OGZhMjAxNGRk
LzEvSXYwYldkWEtyM1VHdkExY05QTU1JVm13UTVnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARbZQPu8i
cYbL90R9XsL/b2lKTjrhUhC2VO3bI9a5fcx/KWsGy+C029ATfYZDBmnLdrk/Wr6Z
TCmUn2dWhjFn75o1iJ227svPizv9CZl5ZTdnrW4w+yRY9HCYi3GfZZRE7urngXyP
yqMf1W6YrF2RZF5OEynowdus4T9akIx+DbwIc+hP8kh7ePJGzxjo4iHYgO5wozJ9
1JLkEunNWRvl+G5PMjMRMTpTBx9dEmXdIHNHY6J7XKw3qiGSMRL0wmI5jHxIar8g
HNooBOacFWQjWGMkNKKQzsWWBS3dWZe/xNg0SUutRa5jaXEMKP3vDKFzGjh2hbmd
O4XqL7plvCVm4g==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:34:39 2026 by rpki-client