Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft
File: jTgcV7CbXiZ91UcVDbRVg46si6M.mft (raw, json)
Hash identifier: ggTs5Jec3vk748zmbBocq6/ImGvwbiJnvyw+N5Tx4eY=
Subject key identifier: A6:22:DF:36:65:50:24:BA:A4:57:49:F0:18:0C:3B:E6:7C:F0:20:F0
Authority key identifier: 8D:38:1C:57:B0:9B:5E:26:7D:D5:47:15:0D:B4:55:83:8E:AC:8B:A3
Certificate issuer: /CN=8d381c57b09b5e267dd547150db455838eac8ba3
Certificate serial: 019CD20B30AD32C3958AE376DDEDB0583016
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jTgcV7CbXiZ91UcVDbRVg46si6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft
Manifest number: 05E0
Signing time: Mon 09 Mar 2026 10:01:14 +0000
Manifest this update: Mon 09 Mar 2026 10:01:14 +0000
Manifest next update: Tue 10 Mar 2026 10:01:14 +0000
Files and hashes: 1: jTgcV7CbXiZ91UcVDbRVg46si6M.crl (hash: 2oiKD352KBo9RnoQtDZrtK8+6X/aO350MGVkGcCMIF4=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:d2:0b:30:ad:32:c3:95:8a:e3:76:dd:ed:b0:58:30:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d381c57b09b5e267dd547150db455838eac8ba3
Validity
Not Before: Mar 9 10:01:14 2026 GMT
Not After : Mar 10 10:01:14 2026 GMT
Subject: CN=a622df36655024baa45749f0180c3be67cf020f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d0:c2:8b:92:b3:59:21:08:27:13:c6:2e:0a:
d0:02:8e:0f:c1:4f:64:60:ed:1b:1a:d1:9f:05:e3:
d7:4f:dd:96:0e:28:6d:d8:fb:51:a3:ef:d6:b8:60:
ca:cb:7a:77:36:2e:f4:69:de:a5:30:44:16:5c:b7:
c3:ee:6b:ca:d5:35:5a:f4:7f:b4:c1:cc:d6:a5:96:
1a:7f:58:64:e3:5c:78:6f:aa:2b:c3:b7:15:d2:2e:
55:12:f9:db:b0:5a:b7:7a:55:04:70:c5:82:3f:ec:
24:d0:7a:f4:37:96:f7:f2:76:88:af:ab:c8:70:86:
df:04:b7:5c:c6:bb:91:1a:2c:83:8c:99:33:82:22:
ea:4f:c8:b1:fb:5e:55:23:68:a5:20:4e:67:32:c1:
75:69:d2:9e:02:6c:cb:01:9e:1f:2d:8b:34:1d:99:
b3:99:00:ea:e2:2e:a0:8d:0e:d2:63:49:39:e9:8a:
e6:a9:c7:26:47:70:f9:e9:e1:a7:06:ce:b5:30:c3:
fd:2d:2a:6c:1a:08:91:26:ae:d2:2a:5a:4e:67:56:
cf:b0:98:d7:9a:7a:56:79:37:b4:fc:71:70:6a:ef:
d1:de:c7:cb:90:15:47:95:65:cc:f1:ac:64:2c:a0:
37:39:fc:a0:e5:4b:82:14:fe:17:4d:cb:e9:0c:e9:
9f:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:22:DF:36:65:50:24:BA:A4:57:49:F0:18:0C:3B:E6:7C:F0:20:F0
X509v3 Authority Key Identifier:
keyid:8D:38:1C:57:B0:9B:5E:26:7D:D5:47:15:0D:B4:55:83:8E:AC:8B:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jTgcV7CbXiZ91UcVDbRVg46si6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/b5ee32-c703-494d-89c0-6f830269899b/1/jTgcV7CbXiZ91UcVDbRVg46si6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:8d:ea:3d:88:13:07:99:b0:9f:30:35:71:0c:c8:f4:17:13:
27:ff:b3:dd:5a:b6:ca:d6:23:ad:fa:f8:0e:e8:e4:de:c4:59:
75:f6:5a:88:52:40:6e:db:ff:a2:5b:d5:af:c6:d3:2a:54:f8:
eb:13:74:33:16:b7:80:fb:08:73:98:54:9b:8e:56:1d:40:40:
0c:0c:12:3d:8a:99:96:c1:ee:96:15:f8:62:74:9f:0c:32:52:
a2:d1:3b:21:70:53:33:da:98:1f:08:b6:96:06:28:8b:35:88:
22:7f:d9:19:df:79:c8:9f:c9:0c:39:55:b6:1b:de:0f:3e:78:
77:26:3a:5e:89:77:2f:ba:d0:fe:ab:65:04:81:13:a0:e4:1a:
a2:77:b3:3a:44:99:b2:f9:71:14:67:a7:79:2c:8d:cf:65:f2:
e0:c7:0e:5a:b1:cc:07:c7:63:96:7e:b5:fc:5e:1d:a7:90:af:
6c:11:06:8a:7f:e1:3e:93:18:0b:df:4b:7e:b8:4a:70:03:be:
09:28:7b:08:82:20:bb:7b:3e:8a:12:a5:ab:01:ab:a0:87:4f:
a1:09:18:48:32:a4:f4:c2:4c:5d:fa:52:f4:74:0d:6d:22:11:
c7:d8:50:db:89:ed:85:90:68:04:8b:ec:21:cc:70:56:1f:29:
5c:6a:05:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:43:18 2026 by rpki-client