Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
File: zQwDKJL2la9ME_sKyoBD0Xsbl78.mft (raw, json)
Hash identifier: oJKY2q9anpIxoNUCDvxxnNpKNPTE+ATyy84mFBCP4SA=
Subject key identifier: 6C:23:1E:10:56:41:9D:7C:1D:85:48:C8:57:24:AD:11:A9:29:FB:0A
Authority key identifier: CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
Certificate issuer: /CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Certificate serial: 019B4EBB3341DDA74C76E09A0D408E90BC5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
Manifest number: 0B33
Signing time: Wed 24 Dec 2025 05:00:49 +0000
Manifest this update: Wed 24 Dec 2025 05:00:49 +0000
Manifest next update: Thu 25 Dec 2025 05:00:49 +0000
Files and hashes: 1: zQwDKJL2la9ME_sKyoBD0Xsbl78.crl (hash: L4ORK0aIpqJxguHG26CuukHzDH/7usNOd/q/K3lN4qo=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:4e:bb:33:41:dd:a7:4c:76:e0:9a:0d:40:8e:90:bc:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd0c032892f695af4c13fb0aca8043d17b1b97bf
Validity
Not Before: Dec 24 05:00:49 2025 GMT
Not After : Dec 25 05:00:49 2025 GMT
Subject: CN=6c231e1056419d7c1d8548c85724ad11a929fb0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a9:51:8f:25:bd:31:dd:82:50:2f:06:fe:53:
b4:f2:cb:cb:6b:cb:c1:9d:ad:57:a7:a4:7e:50:c9:
80:e4:b8:0e:fa:99:5e:31:ed:f0:7d:7f:7a:5e:59:
80:e8:78:18:ae:7a:99:d1:b3:c9:c9:d2:ef:39:95:
cc:24:b9:59:84:af:29:cc:16:46:01:0a:90:f7:7e:
c8:47:c7:b9:54:7a:0b:ac:9e:20:e2:b3:1d:09:22:
e9:ef:92:8b:56:4b:2e:fc:16:28:2d:07:09:91:5c:
9e:07:8e:38:97:9a:26:c7:53:4a:b2:6d:2a:60:f7:
81:8e:2b:ec:ef:fd:d7:a3:04:e5:8e:8f:29:ed:5e:
9c:04:bd:a3:63:c2:44:85:87:ed:23:29:aa:8c:21:
c7:38:fb:1b:0e:0e:a3:82:d5:b9:03:5b:21:b4:fb:
2e:0c:fd:b8:2a:77:27:2e:84:94:b5:d0:5d:a0:57:
07:1f:b3:96:33:e0:bb:d4:b0:67:ed:ba:59:bf:08:
5a:f5:69:2c:0a:75:49:1a:04:90:c9:f5:58:90:ca:
b1:53:f5:eb:d8:52:58:21:00:71:d3:0a:26:4b:b7:
d5:79:2e:47:1d:1a:4e:fa:dc:39:45:95:e2:3c:0b:
ae:04:b1:cf:50:62:fd:0a:41:42:b4:36:4d:8c:84:
54:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:23:1E:10:56:41:9D:7C:1D:85:48:C8:57:24:AD:11:A9:29:FB:0A
X509v3 Authority Key Identifier:
keyid:CD:0C:03:28:92:F6:95:AF:4C:13:FB:0A:CA:80:43:D1:7B:1B:97:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zQwDKJL2la9ME_sKyoBD0Xsbl78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/384a32-3e1c-4d86-bdb8-35276b7975ae/1/zQwDKJL2la9ME_sKyoBD0Xsbl78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
de:8b:56:bb:7f:a8:09:93:b5:58:83:ec:be:21:46:8d:82:f2:
90:2c:f7:2c:bf:51:a7:49:27:73:b6:07:53:02:4a:fb:0b:9c:
b5:eb:a2:be:0a:f8:d0:c3:50:e7:0b:74:cd:14:f0:de:84:f4:
07:85:2d:c9:c5:00:1a:cc:5f:e8:bb:0e:a2:f1:13:10:5f:a0:
b8:01:e1:76:19:95:0b:29:7a:de:0e:12:a7:02:3b:4a:42:db:
cd:97:ef:33:a2:a0:b3:c7:a9:96:01:0b:c3:f8:66:29:c2:55:
69:d9:6f:9c:9a:4d:cc:7c:28:e5:1d:d7:5c:76:89:3a:bf:77:
4c:0b:83:88:a7:f6:50:2d:f7:f8:78:b6:62:fa:32:1b:1d:6c:
61:93:a5:1a:0c:87:4c:20:fb:95:c4:3a:92:51:aa:37:d8:d0:
e5:d9:7b:78:8f:d8:80:12:1e:77:e5:d0:f1:b3:45:3a:bc:08:
18:ad:b9:32:1a:5e:38:be:c7:f3:34:ab:47:86:88:24:28:aa:
15:46:32:7d:3d:94:af:11:9f:86:fe:ce:11:55:e5:f0:2c:70:
d8:fa:06:ce:9c:83:c2:d0:99:13:8e:dc:ef:db:1b:09:aa:fa:
29:7c:b3:67:a4:97:f0:d0:00:49:3c:31:08:f6:ef:ac:65:0c:
c3:33:3a:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZtOuzNB3adMduCaDUCOkLxcMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkMGMwMzI4OTJmNjk1YWY0YzEzZmIwYWNhODA0M2QxN2Ix
Yjk3YmYwHhcNMjUxMjI0MDUwMDQ5WhcNMjUxMjI1MDUwMDQ5WjAzMTEwLwYDVQQD
Eyg2YzIzMWUxMDU2NDE5ZDdjMWQ4NTQ4Yzg1NzI0YWQxMWE5MjlmYjBhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzKlRjyW9Md2CUC8G/lO08svLa8vB
na1Xp6R+UMmA5LgO+pleMe3wfX96XlmA6HgYrnqZ0bPJydLvOZXMJLlZhK8pzBZG
AQqQ937IR8e5VHoLrJ4g4rMdCSLp75KLVksu/BYoLQcJkVyeB444l5omx1NKsm0q
YPeBjivs7/3XowTljo8p7V6cBL2jY8JEhYftIymqjCHHOPsbDg6jgtW5A1shtPsu
DP24KncnLoSUtdBdoFcHH7OWM+C71LBn7bpZvwha9WksCnVJGgSQyfVYkMqxU/Xr
2FJYIQBx0womS7fVeS5HHRpO+tw5RZXiPAuuBLHPUGL9CkFCtDZNjIRU+wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGwjHhBWQZ18HYVIyFckrRGpKfsKMB8GA1UdIwQY
MBaAFM0MAyiS9pWvTBP7CsqAQ9F7G5e/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelF3REtKTDJsYTlNRV9zS3lvQkQwWHNibDc4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8zODRhMzItM2UxYy00ZDg2LWJkYjgt
MzUyNzZiNzk3NWFlLzEvelF3REtKTDJsYTlNRV9zS3lvQkQwWHNibDc4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MC8zODRhMzItM2UxYy00ZDg2LWJkYjgtMzUyNzZiNzk3NWFl
LzEvelF3REtKTDJsYTlNRV9zS3lvQkQwWHNibDc4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3otWu3+o
CZO1WIPsviFGjYLykCz3LL9Rp0knc7YHUwJK+wucteuivgr40MNQ5wt0zRTw3oT0
B4UtycUAGsxf6LsOovETEF+guAHhdhmVCyl63g4SpwI7SkLbzZfvM6Kgs8eplgEL
w/hmKcJVadlvnJpNzHwo5R3XXHaJOr93TAuDiKf2UC33+Hi2YvoyGx1sYZOlGgyH
TCD7lcQ6klGqN9jQ5dl7eI/YgBIed+XQ8bNFOrwIGK25MhpeOL7H8zSrR4aIJCiq
FUYyfT2UrxGfhv7OEVXl8Cxw2PoGzpyDwtCZE47c79sbCar6KXyzZ6SX8NAASTwx
CPbvrGUMwzM6ow==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:58:34 2026 by rpki-client