Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
File: uqWupvGAqaitmEU17S5kvPyz_ho.mft (raw, json)
Hash identifier: odlMpNtB/qiA/8SUjgat8CJqT6VkGS1dAK6OM0NaUaE=
Subject key identifier: FC:DD:13:39:42:90:38:6A:0A:7B:ED:CC:85:12:5A:16:4B:DE:32:A8
Authority key identifier: BA:A5:AE:A6:F1:80:A9:A8:AD:98:45:35:ED:2E:64:BC:FC:B3:FE:1A
Certificate issuer: /CN=baa5aea6f180a9a8ad984535ed2e64bcfcb3fe1a
Certificate serial: 019B7DB9377B80EF7190F8DB6D2445605E7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
Manifest number: 0F9E
Signing time: Fri 02 Jan 2026 08:00:48 +0000
Manifest this update: Fri 02 Jan 2026 08:00:48 +0000
Manifest next update: Sat 03 Jan 2026 08:00:48 +0000
Files and hashes: 1: uqWupvGAqaitmEU17S5kvPyz_ho.crl (hash: vB0UyX2aNlcRMUzUwYFyPGbEUhMr3gTg0gEw4SFd25A=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:7d:b9:37:7b:80:ef:71:90:f8:db:6d:24:45:60:5e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baa5aea6f180a9a8ad984535ed2e64bcfcb3fe1a
Validity
Not Before: Jan 2 08:00:48 2026 GMT
Not After : Jan 3 08:00:48 2026 GMT
Subject: CN=fcdd13394290386a0a7bedcc85125a164bde32a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:7d:a1:0b:ad:36:d0:6d:03:37:ea:2c:76:ea:
c5:90:e8:7d:83:b3:75:a0:eb:b5:cb:c6:7f:2a:6b:
0a:72:28:4f:14:fe:53:d3:b4:44:0f:29:fb:94:05:
cb:aa:01:31:65:bf:1d:7e:95:8b:6c:20:41:8c:3d:
e6:39:2f:01:1c:40:33:6b:37:78:74:c5:c4:e8:c1:
96:54:50:0f:1d:08:31:e1:9f:51:8a:a4:8b:68:0c:
b4:95:23:4a:6d:5f:af:d6:9b:aa:16:fb:42:7a:37:
17:d7:95:0a:61:4b:ee:88:9b:66:0f:38:7c:ff:7a:
f9:de:15:3b:8c:27:ab:9c:a6:7a:92:87:59:ce:e4:
12:a6:65:1d:c1:f2:9c:2e:b6:37:f3:f9:e7:f3:38:
9e:2c:14:0a:96:bc:70:5e:16:e8:9a:45:f3:a1:8a:
f5:8b:9d:2c:0b:2d:42:44:9c:60:ae:84:59:eb:7b:
fc:9d:94:28:7d:3c:2d:4f:d6:c5:bd:75:da:c9:bc:
18:10:3f:b4:d4:bd:c3:fd:aa:ce:29:ae:96:14:c0:
8e:c7:e5:5b:f7:e5:75:1c:fd:b5:48:c3:ef:24:ba:
c3:3c:33:f3:64:17:59:f6:c9:45:e8:2f:45:2d:ec:
f4:45:ee:1f:40:06:63:b7:72:5c:c6:7c:b4:2c:9c:
97:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:DD:13:39:42:90:38:6A:0A:7B:ED:CC:85:12:5A:16:4B:DE:32:A8
X509v3 Authority Key Identifier:
keyid:BA:A5:AE:A6:F1:80:A9:A8:AD:98:45:35:ED:2E:64:BC:FC:B3:FE:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqWupvGAqaitmEU17S5kvPyz_ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/7f8f76-0d9d-46af-9bea-47e4e274cf64/1/uqWupvGAqaitmEU17S5kvPyz_ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:5b:c7:13:51:85:30:45:68:48:6a:ad:1e:6e:34:cb:9b:aa:
41:d6:ae:b2:35:06:f8:0e:3e:e0:8a:8b:be:9a:00:ef:1c:01:
d2:34:da:4d:fe:03:7b:9f:6b:dd:a9:6c:44:f6:8a:26:67:36:
98:7c:a4:40:17:5e:83:71:20:80:d2:b8:ce:28:f3:ce:72:ee:
ef:31:3c:ff:c3:eb:e3:ad:54:9e:d5:04:63:c5:5f:65:95:f2:
74:85:4d:50:dc:25:c7:69:f9:89:d0:93:66:e8:e3:27:9f:b4:
b0:91:04:3b:3e:33:04:ea:22:48:25:db:7c:c2:80:bd:d3:9a:
75:ae:45:06:9a:a9:b5:c5:bd:e1:ef:2d:c7:a7:07:99:e3:b1:
20:e1:99:2d:ec:2c:7b:f3:e9:9e:cb:32:6c:9c:9f:89:5b:a3:
01:a5:77:d6:22:2f:d8:33:31:7e:07:60:c7:55:fb:b0:59:6c:
13:04:3d:87:37:64:73:c1:eb:bb:65:5c:3d:24:0b:d8:b4:e4:
73:46:fb:ff:22:15:8a:b2:11:f2:5e:bb:9a:95:77:4e:e6:39:
08:d1:87:e7:d7:25:72:bf:af:b1:6e:0d:14:6b:a5:0f:0a:4a:
98:cc:b9:45:e7:63:d7:cd:52:c2:50:eb:f0:fc:b1:52:1b:b1:
a7:43:d2:14
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZt9uTd7gO9xkPjbbSRFYF57MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhYTVhZWE2ZjE4MGE5YThhZDk4NDUzNWVkMmU2NGJjZmNi
M2ZlMWEwHhcNMjYwMTAyMDgwMDQ4WhcNMjYwMTAzMDgwMDQ4WjAzMTEwLwYDVQQD
EyhmY2RkMTMzOTQyOTAzODZhMGE3YmVkY2M4NTEyNWExNjRiZGUzMmE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAon2hC6020G0DN+osdurFkOh9g7N1
oOu1y8Z/KmsKcihPFP5T07REDyn7lAXLqgExZb8dfpWLbCBBjD3mOS8BHEAzazd4
dMXE6MGWVFAPHQgx4Z9RiqSLaAy0lSNKbV+v1puqFvtCejcX15UKYUvuiJtmDzh8
/3r53hU7jCernKZ6kodZzuQSpmUdwfKcLrY38/nn8zieLBQKlrxwXhbomkXzoYr1
i50sCy1CRJxgroRZ63v8nZQofTwtT9bFvXXaybwYED+01L3D/arOKa6WFMCOx+Vb
9+V1HP21SMPvJLrDPDPzZBdZ9slF6C9FLez0Re4fQAZjt3Jcxny0LJyXiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPzdEzlCkDhqCnvtzIUSWhZL3jKoMB8GA1UdIwQY
MBaAFLqlrqbxgKmorZhFNe0uZLz8s/4aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXFXdXB2R0FxYWl0bUVVMTdTNWt2UHl6X2hvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS83ZjhmNzYtMGQ5ZC00NmFmLTliZWEt
NDdlNGUyNzRjZjY0LzEvdXFXdXB2R0FxYWl0bUVVMTdTNWt2UHl6X2hvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80YS83ZjhmNzYtMGQ5ZC00NmFmLTliZWEtNDdlNGUyNzRjZjY0
LzEvdXFXdXB2R0FxYWl0bUVVMTdTNWt2UHl6X2hvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgVvHE1GF
MEVoSGqtHm40y5uqQdausjUG+A4+4IqLvpoA7xwB0jTaTf4De59r3alsRPaKJmc2
mHykQBdeg3EggNK4zijzznLu7zE8/8Pr461UntUEY8VfZZXydIVNUNwlx2n5idCT
ZujjJ5+0sJEEOz4zBOoiSCXbfMKAvdOada5FBpqptcW94e8tx6cHmeOxIOGZLews
e/PpnssybJyfiVujAaV31iIv2DMxfgdgx1X7sFlsEwQ9hzdkc8Hru2VcPSQL2LTk
c0b7/yIVirIR8l67mpV3TuY5CNGH59clcr+vsW4NFGulDwpKmMy5Redj181SwlDr
8PyxUhuxp0PSFA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 10:36:27 2026 by rpki-client