Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/72ac58-a9f1-4516-861f-7dbf50d7428c/1/0qJGL3IIsJcBO18hbWNDf6QB-3I.mft
File: 0qJGL3IIsJcBO18hbWNDf6QB-3I.mft (raw, json)
Hash identifier: o8dF9PaDds0ba5Ov7D0NVlSiIoZuCn8+VfnMAZtiDIQ=
Subject key identifier: BB:1E:B0:2B:E1:58:22:28:43:A7:01:D1:97:D4:E1:EC:ED:FC:BD:4F
Authority key identifier: D2:A2:46:2F:72:08:B0:97:01:3B:5F:21:6D:63:43:7F:A4:01:FB:72
Certificate issuer: /CN=d2a2462f7208b097013b5f216d63437fa401fb72
Certificate serial: 019B4693D1D42EA88525EAC85FDF40464DCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0qJGL3IIsJcBO18hbWNDf6QB-3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/72ac58-a9f1-4516-861f-7dbf50d7428c/1/0qJGL3IIsJcBO18hbWNDf6QB-3I.mft
Manifest number: 0B00
Signing time: Mon 22 Dec 2025 15:00:51 +0000
Manifest this update: Mon 22 Dec 2025 15:00:51 +0000
Manifest next update: Tue 23 Dec 2025 15:00:51 +0000
Files and hashes: 1: 0qJGL3IIsJcBO18hbWNDf6QB-3I.crl (hash: hX4hYQOM4sWHjEp4VURd7f2nNFGTFhW7u+XHX1PnEGo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:46:93:d1:d4:2e:a8:85:25:ea:c8:5f:df:40:46:4d:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2a2462f7208b097013b5f216d63437fa401fb72
Validity
Not Before: Dec 22 15:00:51 2025 GMT
Not After : Dec 23 15:00:51 2025 GMT
Subject: CN=bb1eb02be158222843a701d197d4e1ecedfcbd4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:48:e9:44:d9:90:54:94:f7:de:6f:e8:e0:2c:
7a:57:e1:cf:41:8b:74:ce:97:62:6e:28:1d:c4:79:
08:d0:bd:85:bc:f7:f7:29:de:1e:36:9f:72:91:34:
e6:8b:a2:26:52:29:9e:b9:ab:0f:00:1e:c1:b3:90:
63:dc:c7:da:77:f6:65:97:d3:cd:fe:dd:86:f5:34:
89:9b:ce:c1:c2:63:6b:7f:c7:3b:c1:91:69:41:51:
2e:82:6b:5a:d5:33:79:29:ef:9a:63:ba:83:3f:1f:
a1:b3:cf:01:d3:65:54:e2:d8:ec:0f:ed:7e:df:44:
79:a7:3d:a8:7e:67:ee:3e:b6:c7:96:01:77:f4:61:
7b:1c:0f:fd:a4:5f:ea:67:f8:2b:52:2f:18:f8:c8:
61:da:3c:f8:31:b4:56:e5:40:c1:8c:6c:79:9c:49:
2a:73:fd:47:fc:7c:7f:f9:25:49:32:e3:36:fa:19:
ed:93:a6:39:59:ad:e3:13:07:4c:bb:71:ee:76:92:
16:da:8c:8a:19:c9:03:54:79:1a:e1:b5:83:ef:39:
8a:60:56:52:7b:42:d7:98:12:42:f1:78:72:e7:5d:
44:e5:3c:2b:10:f6:84:01:df:58:9d:03:b6:a7:c9:
e5:a9:cf:2f:88:9c:78:20:17:25:22:67:cd:a6:0c:
e7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:1E:B0:2B:E1:58:22:28:43:A7:01:D1:97:D4:E1:EC:ED:FC:BD:4F
X509v3 Authority Key Identifier:
keyid:D2:A2:46:2F:72:08:B0:97:01:3B:5F:21:6D:63:43:7F:A4:01:FB:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0qJGL3IIsJcBO18hbWNDf6QB-3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72ac58-a9f1-4516-861f-7dbf50d7428c/1/0qJGL3IIsJcBO18hbWNDf6QB-3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/72ac58-a9f1-4516-861f-7dbf50d7428c/1/0qJGL3IIsJcBO18hbWNDf6QB-3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:c5:22:7c:d4:50:23:6a:b4:ea:1b:d5:7b:f5:65:ff:cb:d1:
68:88:26:b6:2c:00:81:37:2c:12:a3:fe:00:ae:06:48:d1:ee:
66:4a:e8:75:de:4f:9f:f5:96:d6:9d:57:60:e2:7a:51:23:2f:
7f:ca:0c:74:ab:34:27:89:bd:63:88:f1:f2:d1:03:49:fd:cd:
73:7b:99:05:f2:02:d6:10:eb:3b:fc:9c:3f:96:89:6a:ff:1f:
9f:07:e3:a8:c6:53:9f:bd:8d:e6:91:63:f3:71:f5:8d:01:cb:
1e:3e:fa:81:09:70:17:eb:88:14:44:bb:4f:79:2a:48:08:72:
09:34:e8:86:0c:f6:71:88:25:78:34:f8:c1:49:c0:bf:a9:e6:
77:ce:87:dc:3b:d1:41:b2:16:34:c4:a1:e9:a5:58:30:83:23:
d5:f6:98:78:9f:53:20:75:ad:35:16:f7:18:49:7a:7e:e4:05:
ce:0b:a2:df:20:d2:ec:e3:03:68:30:a7:41:60:12:26:f2:e7:
ab:f3:e3:40:eb:c5:1c:e0:4b:52:df:51:c5:09:3f:92:83:33:
d4:9d:55:f2:26:ef:cd:5a:69:55:f9:10:4a:9c:bc:35:31:0c:
8c:25:a6:6e:6f:3d:8f:49:7c:25:73:97:2b:f4:23:03:d1:d3:
07:32:fa:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:08:25 2026 by rpki-client