Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2094b0-5a57-4a36-b5fb-a5ff176d61d0/1/OFYFj7mk9--XizgCGuFSwk6_zkA.mft
File: OFYFj7mk9--XizgCGuFSwk6_zkA.mft (raw, json)
Hash identifier: sf9mXqjIPa0Jq3VQIwGu/XlJJICq1qP0V1UKwMa8swI=
Subject key identifier: CB:EB:AE:79:3E:D4:99:18:67:AF:5F:96:91:5D:1C:D7:D0:27:24:42
Authority key identifier: 38:56:05:8F:B9:A4:F7:EF:97:8B:38:02:1A:E1:52:C2:4E:BF:CE:40
Certificate issuer: /CN=3856058fb9a4f7ef978b38021ae152c24ebfce40
Certificate serial: 019999A302719EB16561E7517BFFA399BA9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OFYFj7mk9--XizgCGuFSwk6_zkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2094b0-5a57-4a36-b5fb-a5ff176d61d0/1/OFYFj7mk9--XizgCGuFSwk6_zkA.mft
Manifest number: 03B5
Signing time: Tue 30 Sep 2025 08:00:21 +0000
Manifest this update: Tue 30 Sep 2025 08:00:21 +0000
Manifest next update: Wed 01 Oct 2025 08:00:21 +0000
Files and hashes: 1: OFYFj7mk9--XizgCGuFSwk6_zkA.crl (hash: f6WUuVDnwrwvYRSVw9MXOKx7dFhjsk1D0l5+117ngos=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:99:a3:02:71:9e:b1:65:61:e7:51:7b:ff:a3:99:ba:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3856058fb9a4f7ef978b38021ae152c24ebfce40
Validity
Not Before: Sep 30 08:00:21 2025 GMT
Not After : Oct 1 08:00:21 2025 GMT
Subject: CN=cbebae793ed4991867af5f96915d1cd7d0272442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:97:06:3d:0d:1c:e0:4e:e0:92:68:f3:0b:f1:
04:6b:a0:b3:49:44:41:84:1e:09:55:1a:a5:a6:ec:
25:42:98:d7:21:ce:d6:d8:88:ee:d1:bf:b3:83:20:
a1:fc:ca:8d:cf:cb:4d:34:c4:12:25:fb:71:8e:9a:
f9:2f:60:31:28:51:f5:4a:a2:9a:58:bc:bf:6e:0a:
35:dd:c8:72:2d:3e:26:78:28:00:7d:79:a7:3a:30:
bf:84:f1:1e:53:a8:82:e0:a8:f1:da:26:77:19:51:
b8:24:f0:fd:93:b4:02:c4:53:b8:47:c1:7f:cc:e2:
fe:25:52:df:df:31:9f:ca:93:87:0e:0b:92:65:14:
98:90:74:4c:3a:30:df:db:d1:b8:bd:63:21:f7:55:
4a:c0:c5:b1:02:21:70:ae:d7:84:c3:d8:4d:0c:a3:
06:42:e2:04:b8:55:b2:4c:c5:1d:70:c4:4e:e3:11:
2f:58:27:e5:4b:96:1a:ec:04:95:7d:44:a7:e3:8e:
8b:00:61:2c:10:2a:4a:d8:5a:54:6c:d2:ab:17:d1:
4e:75:58:64:7d:9f:d0:86:2c:c1:51:db:4b:ba:72:
1c:88:0c:4c:cd:01:e4:25:45:d9:64:ce:48:e6:fe:
c3:b7:f5:b9:2a:9e:9b:9d:a7:64:f0:63:ac:76:81:
72:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:EB:AE:79:3E:D4:99:18:67:AF:5F:96:91:5D:1C:D7:D0:27:24:42
X509v3 Authority Key Identifier:
keyid:38:56:05:8F:B9:A4:F7:EF:97:8B:38:02:1A:E1:52:C2:4E:BF:CE:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OFYFj7mk9--XizgCGuFSwk6_zkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2094b0-5a57-4a36-b5fb-a5ff176d61d0/1/OFYFj7mk9--XizgCGuFSwk6_zkA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2094b0-5a57-4a36-b5fb-a5ff176d61d0/1/OFYFj7mk9--XizgCGuFSwk6_zkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:f1:08:82:a3:1b:56:a2:f2:19:bb:1c:a6:fe:fa:9d:c0:c0:
74:d8:f5:9a:93:03:e4:9e:79:d9:5c:75:2c:b0:c6:ca:a7:3d:
0e:76:c1:c4:d8:29:f0:c9:8b:91:8c:85:7e:ee:39:99:9a:b6:
6b:90:6a:9c:7c:25:66:fe:a4:06:0c:1f:e1:d8:3f:4b:a1:e7:
5f:bf:01:0e:b0:57:82:a5:e6:82:b5:89:b7:91:c3:4d:b7:2c:
6a:7f:c8:16:84:30:e5:c6:ea:be:29:7e:39:63:77:ae:97:d6:
c0:82:a2:6c:18:f4:b9:0f:42:de:b8:a0:5b:b7:22:f1:e0:7b:
b4:0f:d9:ba:16:b0:95:9d:43:f2:e9:3c:7d:3c:0e:29:8a:71:
41:d6:7b:89:1f:6c:83:72:91:89:cb:8f:59:f2:ee:7e:dd:df:
cd:75:8a:56:a8:bf:24:a0:52:a7:c5:52:55:f1:09:29:a4:86:
b2:52:6e:21:0e:52:ae:13:b9:b1:49:88:03:96:53:c9:1b:7d:
b6:a7:81:eb:24:68:c1:c1:96:d1:2b:85:5e:2a:8e:c7:06:ac:
4b:03:75:ab:e4:cc:9c:50:85:ef:99:86:25:66:a8:03:83:9d:
c4:7d:73:c5:8d:d7:84:aa:2b:1e:42:18:57:73:42:69:4e:a6:
01:1c:53:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 22:15:32 2025 by rpki-client