Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/yHX3bo-JQkeSPA4nYjTZikw-xcI.mft
File: yHX3bo-JQkeSPA4nYjTZikw-xcI.mft (raw, json)
Hash identifier: 2EIBjjRKpEQ6TyTqXxQTCmjVX/LdwHtubfjKhxOsXiU=
Subject key identifier: F7:8E:C2:90:58:72:77:F6:82:8D:27:AE:82:C0:1C:F3:7F:43:FD:40
Authority key identifier: C8:75:F7:6E:8F:89:42:47:92:3C:0E:27:62:34:D9:8A:4C:3E:C5:C2
Certificate issuer: /CN=c875f76e8f894247923c0e276234d98a4c3ec5c2
Certificate serial: 019C6EB1ADA7C2B3D8746B4D9B7577DBAF16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHX3bo-JQkeSPA4nYjTZikw-xcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/yHX3bo-JQkeSPA4nYjTZikw-xcI.mft
Manifest number: 1827
Signing time: Wed 18 Feb 2026 03:01:03 +0000
Manifest this update: Wed 18 Feb 2026 03:01:03 +0000
Manifest next update: Thu 19 Feb 2026 03:01:03 +0000
Files and hashes: 1: yHX3bo-JQkeSPA4nYjTZikw-xcI.crl (hash: /k2nyVm+Zcp5gP7RH5LMMVupWhlIKK8TVvq/VG+NgTI=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:6e:b1:ad:a7:c2:b3:d8:74:6b:4d:9b:75:77:db:af:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c875f76e8f894247923c0e276234d98a4c3ec5c2
Validity
Not Before: Feb 18 03:01:03 2026 GMT
Not After : Feb 19 03:01:03 2026 GMT
Subject: CN=f78ec290587277f6828d27ae82c01cf37f43fd40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:6b:79:d0:56:16:86:51:7f:a6:0f:08:63:68:
8d:0a:f2:45:db:ac:d3:00:71:8b:39:9d:83:b0:f8:
2d:c6:51:03:4a:bd:60:63:fa:8d:16:db:a4:20:3d:
e0:41:45:e7:79:e0:fd:10:f1:9d:25:51:19:5b:fb:
ce:dd:83:1c:c7:b2:1f:01:15:33:d2:05:f1:c8:8d:
16:7d:d6:92:8d:30:de:3e:4b:1e:0a:9e:b6:51:00:
18:3d:7b:a1:5d:9b:94:e9:b1:f0:ed:e4:57:7a:5c:
ad:61:f2:53:40:79:20:57:73:85:99:51:79:f8:ce:
4a:ee:03:a7:14:f1:e0:a6:8d:18:e0:82:5a:f4:ad:
4c:78:0c:47:28:4f:da:6a:31:ee:13:45:e5:18:7c:
95:bd:ec:c4:5e:5f:38:41:d1:2a:7c:ef:a0:a7:50:
f7:7c:e6:f5:61:43:41:fa:3c:10:c4:9e:f7:38:7e:
ac:4b:ed:53:6c:96:7b:0f:34:19:1c:8d:37:0e:29:
ac:bb:fa:ad:a6:fb:4c:e8:ac:78:4f:04:ac:1c:58:
34:01:89:85:6c:11:7f:79:dd:fc:eb:e8:52:94:d6:
0b:53:90:81:c8:d8:33:96:06:8b:1b:29:e3:22:27:
aa:e9:a1:31:91:4c:bf:90:d8:96:2c:0b:df:a2:2a:
53:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:8E:C2:90:58:72:77:F6:82:8D:27:AE:82:C0:1C:F3:7F:43:FD:40
X509v3 Authority Key Identifier:
keyid:C8:75:F7:6E:8F:89:42:47:92:3C:0E:27:62:34:D9:8A:4C:3E:C5:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHX3bo-JQkeSPA4nYjTZikw-xcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/yHX3bo-JQkeSPA4nYjTZikw-xcI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/e9e798-4ef3-4aa8-81f0-305658f91635/1/yHX3bo-JQkeSPA4nYjTZikw-xcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:e2:d0:73:cd:ce:2a:77:49:71:12:b4:80:60:71:0f:0b:d7:
a6:a6:93:a4:cf:03:fa:ab:08:dd:3b:7a:76:31:0e:a3:e0:ec:
2a:3f:0a:0a:8c:b6:aa:25:a3:02:ae:e0:0f:d3:4d:bf:b2:3b:
b6:65:89:91:5c:c7:eb:10:84:95:8c:11:52:01:84:64:74:b4:
c8:68:d3:ec:96:42:46:f8:7c:0b:4c:20:44:ab:e6:bf:b1:c7:
a3:60:92:9a:b2:7a:cc:28:f9:ab:c2:57:82:a1:c5:07:fe:c5:
cf:69:f9:d4:88:3f:8f:42:4b:6d:5a:01:d7:42:c5:2f:86:d7:
41:86:52:42:19:d1:16:76:a2:95:05:94:3b:e9:6e:37:7d:64:
ef:7a:fd:08:4d:5d:7e:ef:37:00:a8:36:af:65:b3:92:99:29:
4c:52:d4:96:fc:f2:9c:e7:a6:78:81:41:45:91:91:33:ab:29:
f1:c5:fd:f1:1a:6c:f5:a0:27:af:20:70:7c:42:63:b5:b8:ac:
33:90:02:c9:e5:76:d8:d9:75:3b:65:46:65:91:5d:72:42:e6:
d8:65:16:de:0b:f0:d5:2f:6a:cc:31:39:51:15:bf:4c:f4:3d:
11:dc:99:e6:d9:e3:6c:f4:90:16:83:f5:bf:63:d8:da:79:62:
f9:b0:e0:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:52:39 2026 by rpki-client