Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
File: MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft (raw, json)
Hash identifier: fi0WpnUPj/edkTN1ZUsNUzfAr0RFpbrYpJ+hAHSX8f0=
Subject key identifier: ED:90:4F:8F:C3:93:03:05:F6:CD:F4:51:5E:81:6A:E3:80:89:85:0B
Authority key identifier: 30:D6:6B:66:A3:98:2D:20:A8:1E:F2:01:DC:75:5E:D3:35:3B:16:A4
Certificate issuer: /CN=30d66b66a3982d20a81ef201dc755ed3353b16a4
Certificate serial: 019A2AB162D9982E7D54D10E071948AE084B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
Manifest number: 1070
Signing time: Tue 28 Oct 2025 12:00:59 +0000
Manifest this update: Tue 28 Oct 2025 12:00:59 +0000
Manifest next update: Wed 29 Oct 2025 12:00:59 +0000
Files and hashes: 1: MNZrZqOYLSCoHvIB3HVe0zU7FqQ.crl (hash: Tnq4vDd65kvOimBHmKdvVNyAbjPvvMrMcI9+cpmQLSE=)
2: hfNN3XiVLhZTBEzmZ9kxsFWjtgU.roa (hash: rdvuWCnmeSdDSQrFfaBCbjsr2zsTzqKaLeEHczQ6fHw=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2a:b1:62:d9:98:2e:7d:54:d1:0e:07:19:48:ae:08:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30d66b66a3982d20a81ef201dc755ed3353b16a4
Validity
Not Before: Oct 28 12:00:59 2025 GMT
Not After : Oct 29 12:00:59 2025 GMT
Subject: CN=ed904f8fc3930305f6cdf4515e816ae38089850b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:5d:32:2a:98:8f:f0:1f:39:aa:ce:44:6d:f2:
6a:b8:41:04:74:24:6d:45:34:67:dd:17:77:22:a0:
31:0f:d1:61:e2:98:a1:06:d5:0d:d8:b0:86:be:90:
9a:9f:23:00:cb:d3:99:ba:ef:bd:0a:79:62:93:09:
f9:d9:51:15:d9:e1:5b:f9:05:fc:5b:d7:9e:cb:c2:
ff:42:91:6c:a3:8f:11:60:0a:d7:07:0e:d9:a3:e1:
3c:bf:78:c8:97:8d:6d:93:96:bf:27:86:d1:9d:eb:
62:1f:e2:ba:d7:a3:56:7c:4f:ec:cb:95:8d:d5:9f:
66:f1:0b:9f:56:ae:f5:de:a6:68:b0:f6:41:0d:24:
68:88:da:5f:81:a8:6d:e5:5e:2a:a1:5a:a4:1b:8f:
63:d6:ce:a2:61:3a:b4:78:fa:6c:9f:01:73:2a:66:
97:3b:60:c6:9f:41:cd:1a:ca:38:fe:22:aa:16:1c:
e9:17:0a:c9:e7:06:7e:65:67:7e:19:5c:67:83:9b:
a2:fd:12:26:30:2b:0c:1b:e0:a1:86:56:ff:8c:6b:
79:60:96:12:7a:ed:4b:88:fb:16:8b:40:42:30:ca:
58:c8:2f:4f:bf:73:62:4e:3a:a3:a6:1e:9e:e3:a9:
e5:1c:31:46:a0:90:0e:f1:97:e1:ba:5a:6b:c9:de:
3f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:90:4F:8F:C3:93:03:05:F6:CD:F4:51:5E:81:6A:E3:80:89:85:0B
X509v3 Authority Key Identifier:
keyid:30:D6:6B:66:A3:98:2D:20:A8:1E:F2:01:DC:75:5E:D3:35:3B:16:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/88e482-8277-4280-9f5b-8144b140edf9/1/MNZrZqOYLSCoHvIB3HVe0zU7FqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:fa:ce:1c:04:27:b4:6b:51:03:99:53:c5:a8:ae:f1:5e:e1:
26:e9:f3:1d:b0:ca:16:e9:e9:70:6d:36:20:2d:ad:5e:8e:f9:
a4:04:82:2e:6b:86:fe:64:df:c6:3d:69:9d:60:8d:35:a1:9e:
8a:33:a0:59:00:b0:4e:90:e7:5e:6a:a9:04:a4:6d:d7:b7:38:
1b:54:a3:00:b5:7f:e6:fb:26:fc:f6:56:47:e5:57:29:c7:76:
12:51:b4:62:b7:37:47:a1:a6:6a:5b:58:ed:7e:12:d3:8a:c1:
7a:a5:06:13:24:1c:02:a0:3d:8f:0f:f7:87:32:63:eb:22:62:
3d:c8:f3:ba:67:fa:8c:53:9b:f0:0e:13:88:99:e3:21:29:9e:
15:99:e1:c7:17:83:fc:e7:fe:8c:c5:e7:93:e2:76:06:d9:3a:
e5:fe:7d:4b:82:46:3e:00:4a:f9:0f:3f:68:3b:cd:18:7f:57:
9a:51:28:39:65:2a:8d:10:ad:05:4a:1f:68:2a:07:19:f3:16:
0c:41:70:b4:18:43:0b:4d:56:28:3b:05:dd:1f:77:ba:ab:72:
bd:48:8a:6e:5a:33:40:a9:0e:64:87:0d:54:31:aa:6b:68:80:
69:fb:bc:eb:73:4a:29:56:57:bb:db:ac:17:98:55:59:4e:02:
6e:d7:60:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:08:09 2025 by rpki-client