Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
File: 8CDLT5tfebnaa0gnutnFSiqAxTE.mft (raw, json)
Hash identifier: 9/n6lWQAzmH8NZXIeqERAoA6hFEHugKM18624V74Q6Q=
Subject key identifier: 01:36:37:C4:18:55:75:32:BF:AB:98:0A:CB:C6:AD:7A:AB:D4:7F:3F
Authority key identifier: F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
Certificate issuer: /CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Certificate serial: 019935DBE83204D50CA94358702515CA81B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
Manifest number: 0F12
Signing time: Wed 10 Sep 2025 23:00:28 +0000
Manifest this update: Wed 10 Sep 2025 23:00:28 +0000
Manifest next update: Thu 11 Sep 2025 23:00:28 +0000
Files and hashes: 1: 8CDLT5tfebnaa0gnutnFSiqAxTE.crl (hash: 5v0Frlnj5/wtMyzuL8fw+dwgWZD3cVD+93RDAY1JpK8=)
2: amkS5SoIvujCi9yce4d8VftUldc.roa (hash: +cELHuiQeJpKMXecyPF27q6ZAbek7zvwZNYTMIlI2SU=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:35:db:e8:32:04:d5:0c:a9:43:58:70:25:15:ca:81:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f020cb4f9b5f79b9da6b4827bad9c54a2a80c531
Validity
Not Before: Sep 10 23:00:28 2025 GMT
Not After : Sep 11 23:00:28 2025 GMT
Subject: CN=013637c418557532bfab980acbc6ad7aabd47f3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b1:19:b2:14:b5:36:fc:3e:88:29:bb:f5:fc:
75:eb:27:41:3f:9d:ac:42:fa:09:aa:0a:44:07:93:
4e:c7:5b:55:c7:48:93:ac:d9:70:69:a0:40:64:0c:
ab:80:32:f5:67:0b:94:cb:f7:65:2c:0f:b2:ad:2d:
14:10:85:20:89:c9:1b:be:66:52:44:67:32:e8:e0:
7a:85:ea:b5:a3:b1:3b:3a:a3:81:71:28:ec:48:bb:
ff:a2:20:a4:67:7c:41:18:20:59:9f:cc:a1:40:0e:
64:c9:e0:bd:4f:4f:64:85:da:ef:70:af:2e:11:27:
3e:8a:6c:96:1d:bb:73:77:92:41:a2:58:96:38:f2:
7d:e3:b1:6b:e1:df:71:96:84:10:a3:79:d0:bf:5d:
14:2d:bc:9f:d1:ba:2b:8f:f3:0d:61:af:c9:7c:ac:
15:d2:8d:84:0b:07:d5:f2:6c:b1:fe:8d:e6:98:3a:
b8:d5:ae:3f:4d:e2:6a:4b:72:f7:68:18:a5:e2:3c:
72:a1:f3:fc:72:5c:30:15:15:9f:8f:6b:7f:32:51:
e6:11:00:9a:85:1d:32:68:ad:22:51:b0:b0:81:f8:
2b:93:f3:4a:d7:87:aa:44:81:3c:44:17:ea:84:36:
ba:e2:db:29:66:fc:89:23:cf:92:e0:26:19:fe:aa:
23:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:36:37:C4:18:55:75:32:BF:AB:98:0A:CB:C6:AD:7A:AB:D4:7F:3F
X509v3 Authority Key Identifier:
keyid:F0:20:CB:4F:9B:5F:79:B9:DA:6B:48:27:BA:D9:C5:4A:2A:80:C5:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8CDLT5tfebnaa0gnutnFSiqAxTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/7c44c4-eccd-495c-b983-84c90bba9cd4/1/8CDLT5tfebnaa0gnutnFSiqAxTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e6:92:5a:42:59:81:db:2d:be:e6:e7:18:e1:ab:87:95:43:ee:
c5:93:85:d4:59:6c:6d:38:f1:d9:d1:d8:1e:2a:68:d7:3e:4d:
6a:ec:63:49:b0:70:87:f4:0f:19:fa:3c:3b:0a:b1:2e:db:d0:
f7:39:f3:08:d6:23:58:1f:e4:e0:c1:74:e3:fd:13:b4:8a:32:
ef:98:9c:43:ac:c0:72:4b:34:ea:85:5f:38:b9:95:6e:63:d5:
87:dc:3d:8c:ac:b1:2a:6f:82:0b:46:b2:ad:16:8c:4a:ab:47:
43:5f:ad:d4:83:97:ed:f3:e3:13:92:73:8c:af:c5:45:db:f0:
cd:05:58:10:38:05:af:77:ae:a6:e4:73:ba:40:32:f1:af:63:
7b:78:a8:6a:76:df:61:de:58:22:38:3d:a9:90:da:ad:6d:de:
90:4b:17:70:85:08:7e:6e:d7:f6:39:94:ac:cf:77:c9:89:ec:
4b:d7:eb:2c:62:60:d6:ac:97:84:47:71:9a:aa:71:dc:91:e2:
55:cb:8b:28:75:b1:13:0a:cf:d9:99:75:86:40:93:36:c8:1c:
42:b9:a2:40:dd:c1:78:19:e9:39:4f:19:90:53:f8:5f:ba:6b:
a1:e0:e9:4d:d5:63:f5:d4:1e:59:33:95:f5:4b:8b:ef:2b:76:
da:b9:ec:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:46:59 2025 by rpki-client