Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/3fe413-bd51-4765-bd86-b7441032e59f/1/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.mft
File: OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.mft (raw, json)
Hash identifier: +rAQTImywB/dgT/J7Mcumv5JzmenE80+577njE3Q5gA=
Subject key identifier: 56:52:FC:A5:60:2D:57:C4:18:B5:73:47:E1:2F:7B:D1:8D:46:6B:9A
Authority key identifier: 38:A1:9E:64:0D:E1:F4:52:A7:DC:4A:BE:78:6A:A5:81:34:29:27:B1
Certificate issuer: /CN=38a19e640de1f452a7dc4abe786aa581342927b1
Certificate serial: 019C40FCFDB3A09041F621F3B32909156B9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/3fe413-bd51-4765-bd86-b7441032e59f/1/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.mft
Manifest number: 074F
Signing time: Mon 09 Feb 2026 06:00:47 +0000
Manifest this update: Mon 09 Feb 2026 06:00:47 +0000
Manifest next update: Tue 10 Feb 2026 06:00:47 +0000
Files and hashes: 1: OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.crl (hash: y/xCXK70/4fJ/ny4uCBfhLTS4EF2j1MINQq8VuuPTFQ=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:40:fc:fd:b3:a0:90:41:f6:21:f3:b3:29:09:15:6b:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38a19e640de1f452a7dc4abe786aa581342927b1
Validity
Not Before: Feb 9 06:00:47 2026 GMT
Not After : Feb 10 06:00:47 2026 GMT
Subject: CN=5652fca5602d57c418b57347e12f7bd18d466b9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:bf:f4:dd:4c:dc:c4:42:bb:6a:d8:fa:bd:b6:
4c:bf:3c:b5:b7:f7:6e:5e:68:fa:e5:66:b1:1e:96:
4d:7a:2e:de:65:1f:0f:7c:72:d5:84:24:ba:00:fe:
53:12:7f:9b:45:07:06:d0:00:74:a7:2b:c9:b2:1c:
c5:09:95:15:89:c7:d3:74:8e:12:c3:2e:74:c5:e0:
f8:ca:0a:ce:c8:78:45:6f:ba:a1:fe:66:55:f3:5d:
90:85:bb:4e:90:83:e0:65:a5:b5:87:c2:cb:e2:d4:
e2:22:6d:a2:14:dc:82:d0:8d:a6:46:72:86:fb:95:
02:81:1d:34:48:da:ba:e7:43:de:73:6c:6e:b9:a6:
3b:7d:89:31:7d:6e:68:83:70:22:e1:59:6f:1f:f1:
e3:d2:7f:10:4d:b4:b1:d7:a4:fd:30:97:4f:c9:f2:
51:17:2b:0e:2f:c3:a2:7c:1a:42:a9:83:f3:7e:f1:
aa:2e:8c:2d:1f:d9:db:8f:00:01:1c:1f:f4:f1:c7:
e1:6c:97:86:35:3f:a7:8a:d2:28:c6:77:ef:34:07:
2a:ff:03:6c:cb:e2:80:59:de:ed:88:24:d8:47:d3:
da:a6:93:5f:fa:a4:37:0e:5a:43:e1:c8:54:07:6d:
26:f9:dc:53:0b:30:68:48:da:ff:67:51:1c:28:26:
cf:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:52:FC:A5:60:2D:57:C4:18:B5:73:47:E1:2F:7B:D1:8D:46:6B:9A
X509v3 Authority Key Identifier:
keyid:38:A1:9E:64:0D:E1:F4:52:A7:DC:4A:BE:78:6A:A5:81:34:29:27:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3fe413-bd51-4765-bd86-b7441032e59f/1/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/3fe413-bd51-4765-bd86-b7441032e59f/1/OKGeZA3h9FKn3Eq-eGqlgTQpJ7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:9b:b4:e1:38:ee:1a:fb:5b:56:f8:10:fc:1b:df:38:9a:06:
59:36:37:21:32:bc:42:a6:8d:52:c8:71:2d:5c:ce:b0:a6:85:
b6:cc:c0:0d:35:2d:ab:7a:06:1a:b0:c4:57:0b:ea:27:1d:d3:
e9:57:2d:bf:53:91:c0:61:95:00:99:a4:12:9d:d4:c8:30:e5:
ab:fc:0d:52:14:22:a8:d3:2c:d9:a9:56:70:15:04:94:b1:b1:
04:70:11:4d:58:da:6d:c8:f3:9a:0e:0b:a4:eb:e0:e2:29:46:
37:11:33:9b:6d:34:c0:7f:f8:8e:51:7c:0c:7e:4d:32:1c:0a:
18:61:39:f3:3f:76:c8:82:70:4a:fa:c2:2e:64:ba:a9:46:a6:
3e:f5:f7:30:44:1a:36:22:41:ca:d5:55:6a:b5:61:1a:9f:bd:
6b:90:b1:56:6f:0d:68:f8:05:e6:bd:74:e7:5a:6f:aa:dc:27:
d4:8e:72:fa:df:d7:9c:a9:ac:39:ad:07:05:82:21:60:06:81:
a1:69:77:ea:12:9b:9a:ba:26:78:62:ee:c2:6c:a5:9c:fa:dd:
98:9a:54:a9:86:5d:df:8a:c4:22:23:72:cd:ce:91:20:84:ec:
d6:a3:b3:e2:b3:a0:2b:bb:b7:af:fd:83:c6:25:7e:ab:9a:3f:
d7:40:d1:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:38 2026 by rpki-client