Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/be46d4-1172-4b4b-b9f8-3dc306cea591/1/EST0oQ141Lq7esUlnCG3Pv5XetA.mft
File: EST0oQ141Lq7esUlnCG3Pv5XetA.mft (raw, json)
Hash identifier: xF2AfH7D5T88hWy8fzzciRFT7FXzQXcJFd2/RzkTuU8=
Subject key identifier: C8:C2:6B:8B:1A:1F:22:31:37:56:C2:3D:92:3B:D3:0D:D0:E7:F8:A2
Authority key identifier: 11:24:F4:A1:0D:78:D4:BA:BB:7A:C5:25:9C:21:B7:3E:FE:57:7A:D0
Certificate issuer: /CN=1124f4a10d78d4babb7ac5259c21b73efe577ad0
Certificate serial: 019D65E3081C6D61AC2CE78F722D02E402CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EST0oQ141Lq7esUlnCG3Pv5XetA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/be46d4-1172-4b4b-b9f8-3dc306cea591/1/EST0oQ141Lq7esUlnCG3Pv5XetA.mft
Manifest number: 0565
Signing time: Tue 07 Apr 2026 03:01:10 +0000
Manifest this update: Tue 07 Apr 2026 03:01:10 +0000
Manifest next update: Wed 08 Apr 2026 03:01:10 +0000
Files and hashes: 1: EST0oQ141Lq7esUlnCG3Pv5XetA.crl (hash: sD+ydWrJJS1+aCF2bn7YNWEWiO4qSjPdOVwzo90JC9M=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:65:e3:08:1c:6d:61:ac:2c:e7:8f:72:2d:02:e4:02:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1124f4a10d78d4babb7ac5259c21b73efe577ad0
Validity
Not Before: Apr 7 03:01:10 2026 GMT
Not After : Apr 8 03:01:10 2026 GMT
Subject: CN=c8c26b8b1a1f22313756c23d923bd30dd0e7f8a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ad:97:76:97:17:c3:d8:4e:05:43:41:5e:3f:
de:66:1b:2b:9b:3f:a8:eb:dd:3f:58:fa:93:27:4a:
45:98:a7:02:71:6b:07:68:e1:03:17:1f:95:44:c0:
55:fd:47:25:e9:b7:78:d1:b7:1f:be:86:9b:88:b2:
c6:3b:26:82:19:e9:75:c0:d4:75:89:d4:06:46:31:
c4:c2:27:c7:2f:31:dd:e1:be:b8:3b:3d:09:34:6d:
8d:9a:29:93:4b:d4:38:5c:21:6f:e1:73:19:3d:ed:
e5:52:83:02:60:43:64:81:04:ca:5f:c9:b8:10:0f:
f1:4f:de:06:91:e1:eb:78:eb:e2:75:fc:c7:7b:0a:
6f:40:14:c1:48:9f:62:17:60:37:b6:6b:97:67:f2:
bf:8e:a8:d1:12:89:39:45:09:42:00:17:16:de:83:
87:5d:1f:9c:1e:6d:ab:c1:64:d4:9d:04:22:ab:42:
d9:29:fa:2b:53:a2:eb:5c:7d:3c:91:c9:52:fd:db:
b8:aa:44:9e:7b:dc:8e:03:f4:28:8e:d2:5f:ff:12:
63:ef:c9:98:0b:16:c9:64:69:5a:5e:1f:24:bf:c6:
e2:49:6d:50:50:07:b4:e6:61:cf:54:4c:4d:25:a9:
22:b3:83:be:e6:bd:80:6c:2c:b3:55:1d:26:4b:00:
74:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C2:6B:8B:1A:1F:22:31:37:56:C2:3D:92:3B:D3:0D:D0:E7:F8:A2
X509v3 Authority Key Identifier:
keyid:11:24:F4:A1:0D:78:D4:BA:BB:7A:C5:25:9C:21:B7:3E:FE:57:7A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EST0oQ141Lq7esUlnCG3Pv5XetA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be46d4-1172-4b4b-b9f8-3dc306cea591/1/EST0oQ141Lq7esUlnCG3Pv5XetA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/be46d4-1172-4b4b-b9f8-3dc306cea591/1/EST0oQ141Lq7esUlnCG3Pv5XetA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:9f:0e:80:4e:b1:d8:62:55:88:15:f9:43:a3:7e:d7:cd:6c:
28:36:2d:ee:1a:72:8d:a3:56:6d:de:6d:0e:8a:98:9c:e9:ed:
51:84:e8:b8:97:3c:aa:b6:6f:b4:14:af:d4:92:b9:cb:0f:18:
86:83:42:80:7c:93:7f:f0:c6:a8:f7:fb:0e:07:9b:f5:9f:fe:
bf:a4:74:36:0e:c3:25:a0:88:c4:f5:cc:08:17:9c:35:26:80:
62:ac:ae:5c:75:59:1c:8c:47:b4:84:c8:f7:31:c7:37:b2:c0:
c6:ff:70:d2:ba:5d:4c:66:76:76:1d:85:48:2d:42:53:fb:5d:
8a:20:20:25:49:f9:a7:64:e8:4f:ff:66:de:61:aa:2d:2e:a3:
3c:c2:16:0c:45:72:bf:ff:69:08:dc:f0:25:9b:bf:dc:a1:06:
7a:ec:28:c8:49:7a:a2:c7:86:dc:27:80:23:0b:dc:12:a5:de:
61:72:ff:bd:df:5b:82:7c:7b:d9:c7:d3:d8:6f:08:e0:85:e5:
5e:c9:50:56:4b:3c:97:7d:ca:23:4c:4b:d0:c3:c7:ad:f8:f2:
8c:25:6e:ad:68:16:09:1e:74:ab:b1:a3:e2:eb:18:4a:61:49:
70:12:98:90:6b:ca:c8:9b:b6:0d:51:2f:a1:40:5b:90:08:0b:
82:b8:a7:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:15:38 2026 by rpki-client