Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
File: KeieDArUFRV01m8rML0dpKqd8Fs.mft (raw, json)
Hash identifier: z6IW6Egc03rf+B3Z2ODfUtjR0myuuToRH8kScqDgcjY=
Subject key identifier: 89:05:EB:78:B5:BD:F9:5E:76:9F:29:01:4B:07:89:61:5F:22:66:54
Authority key identifier: 29:E8:9E:0C:0A:D4:15:15:74:D6:6F:2B:30:BD:1D:A4:AA:9D:F0:5B
Certificate issuer: /CN=29e89e0c0ad4151574d66f2b30bd1da4aa9df05b
Certificate serial: 019CDBB298AFCA5332C3722E6CE1F84A0F5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
Manifest number: 152B
Signing time: Wed 11 Mar 2026 07:00:40 +0000
Manifest this update: Wed 11 Mar 2026 07:00:40 +0000
Manifest next update: Thu 12 Mar 2026 07:00:40 +0000
Files and hashes: 1: KeieDArUFRV01m8rML0dpKqd8Fs.crl (hash: lQsFwLkFUGTos4dMF3VDbL811N2wNfcTR2ssoJ1AnxY=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:db:b2:98:af:ca:53:32:c3:72:2e:6c:e1:f8:4a:0f:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29e89e0c0ad4151574d66f2b30bd1da4aa9df05b
Validity
Not Before: Mar 11 07:00:40 2026 GMT
Not After : Mar 12 07:00:40 2026 GMT
Subject: CN=8905eb78b5bdf95e769f29014b0789615f226654
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5c:59:25:e8:cf:88:4a:51:87:ac:59:69:97:
c8:60:11:9d:a4:de:5b:d7:7d:84:88:d0:b8:cd:80:
2c:5a:81:ef:12:15:19:c1:a4:04:9d:86:04:b1:cf:
b6:b5:98:68:0e:5b:40:c2:28:c6:c7:da:44:93:92:
b9:22:1e:c1:bc:52:8e:52:b9:a1:5e:fa:11:e2:b6:
9f:39:4a:32:80:63:3d:76:a9:bf:0f:6b:a4:65:15:
22:b9:fe:d9:04:2d:3c:8a:eb:36:7a:90:3a:48:c4:
3d:55:cf:8b:97:94:79:10:7a:2b:b7:75:32:2e:6e:
b9:29:b3:72:85:18:bd:85:d1:3a:08:59:53:e2:a2:
3d:4b:4e:0a:b0:a5:53:57:16:44:58:54:9f:5c:e7:
1e:e5:f4:1e:28:22:d2:47:25:f5:2f:74:9e:5a:79:
b5:ef:4c:33:0f:14:7b:3a:55:a0:ce:2e:cf:c8:d6:
1d:cf:12:36:b9:a5:6a:f8:39:c2:4d:06:c9:26:c9:
ba:f1:7d:37:11:bf:96:73:ac:20:69:68:96:5d:73:
18:09:11:79:33:30:91:1f:be:85:3a:dd:e9:55:5d:
31:6e:79:76:9d:f8:2b:66:f7:29:73:d9:08:99:74:
ab:e8:a7:e2:db:03:6d:68:1a:4f:e7:35:74:56:b8:
1a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:05:EB:78:B5:BD:F9:5E:76:9F:29:01:4B:07:89:61:5F:22:66:54
X509v3 Authority Key Identifier:
keyid:29:E8:9E:0C:0A:D4:15:15:74:D6:6F:2B:30:BD:1D:A4:AA:9D:F0:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeieDArUFRV01m8rML0dpKqd8Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/b87c2a-cd03-4538-9dc4-991fae5c9b07/1/KeieDArUFRV01m8rML0dpKqd8Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:ef:b6:0c:d1:ba:6a:31:37:63:2f:3d:e8:7f:ed:13:a4:11:
3a:a7:d2:d7:37:89:3b:84:a7:0e:4f:18:43:4f:3e:95:2d:f9:
fc:c3:0f:76:0b:ee:80:c1:6b:c6:fd:ac:d8:af:b2:f5:83:33:
cd:d1:d6:57:39:34:e7:43:a9:43:3b:dc:77:a1:a7:04:96:0a:
11:3e:04:8c:58:e4:5a:45:b3:8d:2f:d5:b3:7c:0f:43:05:b2:
d5:b2:dd:2f:41:b8:bb:52:f5:b4:79:5a:92:75:21:03:6c:06:
fb:22:2d:56:de:c2:54:fc:4c:eb:08:38:d6:aa:42:87:19:1a:
cf:34:a4:32:a5:54:30:a8:7e:90:62:90:74:2f:56:d2:c3:9e:
d2:fa:95:bb:b8:75:69:e6:44:aa:78:b2:6f:c6:8a:3d:4a:cb:
2f:0d:78:af:f6:aa:6b:dd:77:8c:d9:47:93:2f:8c:e5:36:d8:
46:cb:d7:7b:c1:6e:dd:bd:49:67:0b:72:b9:73:27:68:a5:c8:
e3:51:3a:62:b1:fa:7b:9c:e4:a0:5a:6a:1d:d3:37:b4:cc:d5:
a8:2f:c2:8d:82:69:a1:fc:6e:02:1c:11:83:93:ee:0a:ed:3d:
fa:d9:9f:16:96:37:28:00:50:c4:cd:18:5f:69:2c:06:52:95:
90:2e:82:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:36:48 2026 by rpki-client