Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
File: 21LN5wkMV9jpwx1Rh0jfkiueBM4.mft (raw, json)
Hash identifier: MN/fylw/DERlw1gBt4tA4Dpw5GWWxhI/NGKjBVb0BfU=
Subject key identifier: 3F:E8:E7:73:B6:69:FE:55:82:57:0B:8B:2E:23:99:73:C6:0F:34:21
Authority key identifier: DB:52:CD:E7:09:0C:57:D8:E9:C3:1D:51:87:48:DF:92:2B:9E:04:CE
Certificate issuer: /CN=db52cde7090c57d8e9c31d518748df922b9e04ce
Certificate serial: 019CD7315444DFD687F72D95A8D3F12EFC52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
Manifest number: 16D0
Signing time: Tue 10 Mar 2026 10:01:00 +0000
Manifest this update: Tue 10 Mar 2026 10:01:00 +0000
Manifest next update: Wed 11 Mar 2026 10:01:00 +0000
Files and hashes: 1: 21LN5wkMV9jpwx1Rh0jfkiueBM4.crl (hash: 3jLlhcF5bQ9oJjnPMIgpcBwFSUyPYgp5LtZ+PyS+9Tk=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:d7:31:54:44:df:d6:87:f7:2d:95:a8:d3:f1:2e:fc:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db52cde7090c57d8e9c31d518748df922b9e04ce
Validity
Not Before: Mar 10 10:01:00 2026 GMT
Not After : Mar 11 10:01:00 2026 GMT
Subject: CN=3fe8e773b669fe5582570b8b2e239973c60f3421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:37:f7:4c:7f:43:a9:fb:15:b5:b4:0d:94:fa:
a4:56:cd:c2:ba:c0:c3:5c:e7:b1:00:c6:ad:45:3a:
0f:8e:43:dd:6b:09:cf:35:ba:6c:14:7e:40:6c:42:
92:9e:0c:0f:00:02:fd:57:7d:9f:7b:8c:d1:26:b9:
c9:3d:03:9a:52:46:4a:95:7d:ea:dd:08:e4:51:fe:
15:cb:bf:0d:b5:f1:cd:a7:a8:0b:a2:8d:69:39:b7:
b3:de:ff:e7:ae:31:c2:60:f1:96:f3:14:f6:78:f5:
d9:70:2e:d5:7e:cc:98:cb:68:09:e4:94:62:78:a9:
8c:c6:58:c5:6a:33:b5:12:67:75:02:e8:fd:85:48:
cd:b0:74:4d:56:f6:ea:59:e7:ce:a9:7a:11:80:d2:
66:95:28:38:2b:e2:78:ec:ca:c0:99:19:92:32:52:
9d:c5:66:4a:5c:db:31:3b:05:48:9b:72:dc:ed:8c:
ac:68:76:ad:0a:db:63:d9:3a:86:4a:91:cb:bd:e7:
9d:44:b7:9b:13:c3:58:10:3c:31:84:1f:06:ec:4c:
a5:38:16:09:85:e4:83:4e:27:a2:4b:1b:7e:16:6a:
5b:67:4f:00:8a:bf:98:bb:bb:cf:87:f3:56:cc:b8:
40:9e:be:88:3c:12:75:41:1b:e5:07:41:60:5a:a1:
8a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:E8:E7:73:B6:69:FE:55:82:57:0B:8B:2E:23:99:73:C6:0F:34:21
X509v3 Authority Key Identifier:
keyid:DB:52:CD:E7:09:0C:57:D8:E9:C3:1D:51:87:48:DF:92:2B:9E:04:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:0b:c0:f9:df:1c:d4:20:c6:4a:b0:54:1e:01:9d:8e:47:9e:
a6:3e:dd:4c:5b:75:23:3b:6b:a8:97:95:e7:fa:d6:a9:e3:eb:
34:93:49:fd:74:18:4d:8a:54:79:85:a4:48:ff:78:0b:4d:62:
9d:e6:14:b7:12:4a:da:9a:b5:f9:82:de:88:5c:24:75:37:1e:
f7:f4:84:45:26:89:1e:b8:e8:5f:28:66:7b:fa:b5:ab:15:22:
50:6c:86:d2:91:d1:e0:69:0b:ac:ad:e7:7f:8d:27:91:ef:7b:
c7:46:b5:4f:40:cd:6a:96:44:e6:1c:e7:26:9a:a6:1f:19:ae:
11:ae:a4:a2:cd:0e:89:e7:77:49:ca:7f:c7:9a:f4:c8:b0:d7:
76:74:d7:ed:59:53:0a:85:be:59:6b:5f:83:55:97:21:e2:3f:
22:37:e1:ba:97:ef:39:25:7f:04:a5:ed:b9:c0:a4:d5:59:09:
23:01:2a:46:f5:d5:c3:bf:08:9a:7d:83:55:6e:9f:4d:d2:76:
e2:cf:81:b8:7b:12:22:db:d7:85:87:86:ef:cd:f9:7d:19:db:
ce:eb:87:73:ab:b0:d0:01:5c:8e:8f:00:2f:7c:37:d1:6b:b6:
38:15:22:aa:ec:d6:72:99:9f:39:c7:45:dd:e1:a6:ce:1d:ff:
64:71:70:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:19:39 2026 by rpki-client